URLhaus Database

You are currently viewing the URLhaus database entry for http://ugira.lt/cli/https://Scan/zEIK8qID7kVUGHk7O/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:453348
URL: http://ugira.lt/cli/https://Scan/zEIK8qID7kVUGHk7O/
URL Status:Offline
Host: ugira.lt
Date added:2020-09-04 14:33:03 UTC
Last online:2021-03-01 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-04 14:34:04 UTC to abuse{at}telia[dot]lt)
Takedown time:5 months, 27 days, 23 hours, 2 minutes Bad (down since 2021-03-01 13:36:27 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-05REP-034.docdoc 4c3f9a91ab8bd67a7de8b61f6d5e49c34a0c3ded123f63205f02d17ff570c204Virustotal results 30.00%Heodo
2020-09-05INF 7502495.docdoc 0b9a2df9ae8e7dd522a8250303134d9778a41e95d02c06cd0b6a060afdb62cbdVirustotal results 30.51%Heodo
2020-09-05Arc 20200905 463.docdoc e598cf9a18d4db4fa8174ec8f921eb470f8b844063cec6fa35185f7f8f1d2b4bVirustotal results 30.00%Heodo
2020-09-05rep 8212214.docdoc ddd8c361d3ca02b5ca803895bb6f365200b244f91cbde23f27b6af134ebedf5aVirustotal results 30.00%Heodo
2020-09-0532326467-20200905.docdoc 4d9d90d94b53b4f6c108a22f33df509c8cfac067f9a6b6d83fd50b9b1157d8b1Virustotal results 30.00%Heodo
2020-09-05Attachments-JDW97849.docdoc 36db57afc7d4faa57d7bbd559db7ca4ae2bd483caacaa9fba1a3cc6839b240a3n/aHeodo
2020-09-05file_AKG161.docdoc 4160aae4b7d4ee73a7137bbd2d8c5cad6f215282af86bec49526c1b15db1c50eVirustotal results 31.03%Heodo
2020-09-05dat_2020_09_05.docdoc 54fac54bf401937afa1a48e9545b32e46ac8be7c543918e4a841177baf879ea3Virustotal results 30.51%Heodo
2020-09-054458648 1324.docdoc d4c076603f475a562c8771e360b65b734aba563731f4417b117ecfad4297d562n/aHeodo
2020-09-05INF_20200905_87897.docdoc 0274b67e43f98e65033f7b7b9c341a6560e515e61187693dfa5b941a2545309fn/aHeodo
2020-09-05MES_2020_09_05_PZH8419.docdoc ca1ecf3a84713ebe3b95b15bb7e7d4fe779daa81b1a2879feb79423222472ec8Virustotal results 29.51%Heodo
2020-09-05list TNS486.docdoc f71c39920ac9463b4be57b2c9ef5a795184d8adab4c0a8761d0d491ae6b5a140Virustotal results 30.00%Heodo
2020-09-05list_20200905_MQA680151.docdoc 62cc3eedb06b43f8a3e286b0a9f04cbf36fe240a532b217d91950ea20fa0ba9cVirustotal results 28.33%Heodo
2020-09-05rep_4903.docdoc a6861aa553541ef958ad8dbfff87e748c920813dd0b745d69787b2818357158aVirustotal results 30.00%Heodo
2020-09-05DAT 20200905 3687142.docdoc 1fde53646d2021d4bd959bcc2ee2b8c1db5ca4b112b58af96efc114ffd4dc6e6n/aHeodo
2020-09-058085-2020_09_05-386.docdoc eda41409cac593fa280357f888dfed9313d45a2523ff59de058f32b76478d925Virustotal results 27.87%Heodo
2020-09-05Attachment-R096.docdoc b647104789174776abced7dc5a7abaa47fa349c4b21749ca3b6634e4f039da4dVirustotal results 28.81%Heodo
2020-09-05446K_946.docdoc 173c9cfe44cb721e3d1edede6afda3a107dd78b74c1adb41c19fae5ae6a382d7n/aHeodo
2020-09-05Untitled.docdoc 206feb1d69aba0e52a7d33975a49cc2a9443deb7bcf9fb4f8a6428ffcd95c97bn/aHeodo
2020-09-05rep-20200905-6607885.docdoc ee2869e612b62baacd8f12266c98e851549e6789343a4020cc424755ae55326an/aHeodo
2020-09-05mes 2020_09_05 NRS680.docdoc 2ddd8ba7251afbeee6c41576c377265c1a2a9f5370cd66683c24db0c89a0062dn/aHeodo
2020-09-05Mes-2020_09_05-MC610660.docdoc 346db091f843b130bc229ea6a6cf9d569e0a9d2408e413dd9a5087bb25437652Virustotal results 26.67%Heodo
2020-09-05Attachment-2020_09_05-759252.docdoc 4f193825cdb87bbefffaa5925f7b422f06f0add25d518ea4f874acc892641968Virustotal results 27.59%Heodo
2020-09-05Inf-2020_09_05-947258.docdoc 6914af81ae643d0106a7cb16454991e2b4d29053551e92e659456ad592120f57Virustotal results 26.23%Heodo
2020-09-05Attachment-2020_09_05-4465593.docdoc a4455d8697ed542eb675343e5b8806faa6b522c16a69fa423acaef8577319b47Virustotal results 27.12%Heodo
2020-09-05mes-20200905.docdoc f3c01505f223d53a856b4cbb5201b5cbad5706145be5e214e266f4570491a8ccVirustotal results 26.67%Heodo
2020-09-05Dat-20200905-RG9482.docdoc 2572ca226200ecc1019e9813f939d7484962a7f90ecc62921f7efb01e5bdefeaVirustotal results 25.42%Heodo
2020-09-05Rep_20200905_D38295.docdoc d933cd9a8fdaa58bf021074d4dcbca7f3fed26971db346a66f8b2435afb70b50Virustotal results 22.03%Heodo
2020-09-05Attachments 20200905.docdoc f0e8099995f3ce14cd75fb397efda8a5ef10d2360783b3321d55be49eb5a7888Virustotal results 22.03%Heodo
2020-09-05mes 6537678.docdoc 08946ba696e1f6e1da7e3f5cc61273c6d9c2bc25f61ff89151213d62d4c8e625Virustotal results 21.67%Heodo
2020-09-05File-20200905-MCG819867.docdoc 072bf6d9f33086a40282befdb7fbd11fc1015d54c2cf4935ba1dcce2934cbd5eVirustotal results 22.03%Heodo
2020-09-05Arc 20200905 84398.docdoc fc3e08fd58ba899bf7597bdf599c48d0a7628661213da9a31f112a226748053dn/aHeodo
2020-09-0529828250-20200905-50607.docdoc a0c340e5b8f401a13ec7ea03f405623ed8532d1bdfc9f708d34ad94a2c14ac47Virustotal results 22.03%Heodo
2020-09-05DAT_WX8812.docdoc e5b5640cb999ccd3a5fa07ef28ecdb37ea16dbe142bd3cec619837a9c0c3baddVirustotal results 21.31%Heodo
2020-09-05Attachments_20200905_LHS32866.docdoc 4c30d9c7120c06908f0bfdea08c45fbef17a72793a4688a2aa236899c0aa8d2bVirustotal results 22.03%Heodo
2020-09-05Inf-TT021.docdoc ac03cec1ea7e2d4ba254b3225a617ff11bb93247cfd84340907d0533522327e4Virustotal results 21.67%Heodo
2020-09-058575ALU_4800.docdoc b4301b5b4f251bbead273946c32085189c6ca478fd25ce929a0094c5500642d5Virustotal results 21.67%Heodo
2020-09-04dat_8369743.docdoc d9a9da6db3834089876251db68e72db8a21ff82ee58ca338a43a055110f793c4Virustotal results 22.03%Heodo
2020-09-04Doc_20200905.docdoc 6d8bb4cc926450189c32b7634d2940fba6556c2865096d7ccafec6b4b6e0c396Virustotal results 21.31%Heodo
2020-09-04FILE_2020_09_05_5826.docdoc a68967c55063a216717a336462d01e74b4dbf73c0e3ad3b56bfe2c4ab10f3b38Virustotal results 23.73%Heodo
2020-09-04UNTITLED 2020_09_05 EHW20539.docdoc bb32a5e79b853e76e64596002da4cf3b42d9e2c10db3f2b7fc7fd805fa43ff71Virustotal results 22.03%Heodo
2020-09-04inf 70438.docdoc 0f264ea12ac1b1f96e80c683d7aabce629b15ded57f43e29a4faa7cbf057d673Virustotal results 22.03%Heodo
2020-09-04doc_2020_09_05_6045.docdoc a8e4d449c8018f90196d3de6e14d75cdca5c5f76b989880e012890f87d43f6c9Virustotal results 21.67%Heodo
2020-09-04INF.docdoc 50d0908dff351c8fcdfd307f4c93cad6065d4c10c2614fd4201209f862681cfdVirustotal results 20.00%Heodo
2020-09-04652528-8344702.docdoc e3986d10ba408aefe9c0f44c298dafcd5501ea916fc093cbff42c479194a9309Virustotal results 20.00%Heodo
2020-09-04Attachment-3172827.docdoc 79b65c86df194fd9f4a7d42889a26c715ccfeca32a0e1eecbb9d65ebfac19ac7Virustotal results 20.00%Heodo
2020-09-045306DW 20200905 DA63705.docdoc 4833c57c4ff48c2720247aa3bc9c8d62222f9fe3d095924030c344bfa8673847Virustotal results 20.69%Heodo
2020-09-04inf-452.docdoc d22f6705c1735812ddadd90de20741627b3116e4f8f97de636b160757970fc90Virustotal results 20.00%Heodo
2020-09-0475634_ZK89659.docdoc b177d6304e1239837128c14fc3423ded464e3877b918bdf27db3d2f40375c398n/aHeodo
2020-09-04Arc-20200904-B823106.docdoc 9f003b20287110dbbea8826454c0666aee189fbf57cb907e8cf072dfe3829b18Virustotal results 19.67%Heodo
2020-09-04LIST_2020_09_04_7152549.docdoc bd6fabb51f037d2253220c55129be8125a21f63b579dd69ca9d82604f0208b60Virustotal results 20.34%Heodo
2020-09-04doc_20200904_MF13805.docdoc 9c0798c3e8889889ef70b039545920afb91f1508144606704a1889286192bbf9n/aHeodo
2020-09-04MES-IG860395.docdoc 623ee20c1b2e5a53a0bbf6eb21f4b87cb0e6392e023f1e08267abc08c26e5bbfVirustotal results 20.34%Heodo
2020-09-04doc 032.docdoc 627615216c18d1e8f7e1fd2774e09f54950e8068ccf5712cf072d21fc266763fn/aHeodo
2020-09-04Arc 879967.docdoc 0cfb4e12de240822e52fa2d66698bdcfea13a994ccf47b7fa45634e0dfff294aVirustotal results 35.59%Heodo
2020-09-0460815692_F897992.docdoc 112b31f94d0408209223b109553273ff732fcd2f05b532c53d7ef7e4658bec80Virustotal results 35.59%Heodo
2020-09-04List-20200904-2795.docdoc 4500dc04802c13fe7026076c983b30e2762694f15df4a35bec777b09e64b899dVirustotal results 36.21%Heodo
2020-09-04Doc-2020_09_04-G11014.docdoc 380c46aa7a6ebfb32b4e005930aa368ca90386ecf02e2587a0c6f035569df404n/aHeodo
2020-09-04679_20200904.docdoc 6c877a456539164bd26f3616e98e39cc8ccf75c2003dec0016ec825d2d1902cbn/aHeodo
2020-09-04YW3216 962.docdoc 1aa05e276c9fc45289cfe940287e1141128258a93052f3ac4d5d7b78c9b0f15cVirustotal results 36.67%Heodo
2020-09-04list 20200904.docdoc c9b3d60eb5016eb7958189110cbe77208b4099ca5f9f4b71d6170a263905e07bVirustotal results 35.00%Heodo
2020-09-04FILE-XCW559.docdoc 403170a4ca043be478bde432c994bc04e0ec0bb95f4d457928890829a998e46aVirustotal results 35.00%Heodo
2020-09-04REP_20200904.docdoc 74f31456977a691fa6c56243890fd997e0ed0e2793ec4b6e1df8e8a0c93a22cfn/aHeodo
2020-09-04FILE 2020_09_04 80514.docdoc 4f574c1f2f33241e9d1d44b74075d96778a9a152808b8c397f19a51c1b16ab2dn/aHeodo
2020-09-04LIST-2020_09_04-UJ10348.docdoc 0d5e301807f834486dc3a5e55e4e04056e56cb6b8a2f2136c64f55a0ba12f1f3n/aHeodo
2020-09-04Attachments_2020_09_04_E033140.docdoc d4416a6ff0dbbf8a60d1df15030c7eeaf6be3883b9f4df72bd6312eb84caa672Virustotal results 35.00%Heodo
2020-09-04Dat-FWH684.docdoc 4ff12f48cce6bd43cadbeb06f54c727fa688da49d56903348dc190711e4d0891n/aHeodo
2020-09-04inf 2020_09_04 42681.docdoc 482e43557c2b67031f8b9141f11291ebb6d9fa946193ab1287ef2010ab18b462Virustotal results 26.67%Heodo
2020-09-04MES 20200904 9695.docdoc 088de2c93ca2a5d1c4e17cab469aa2ea619a58e4c03c744b338f74787e4dca86Virustotal results 30.51%Heodo
2020-09-04DAT_2020_09_04_81042.docdoc 9c82f57cbccf6ba04020fd7828aff371796a2f69e908f5ecf8c25d921a13abf6n/aHeodo
2020-09-04Inf 20200904 06033.docdoc 10120ac722ecdac5928884225db5f204e4e339196f5a48027e3bd623cb105542n/aHeodo
2020-09-04Mes_20200904_TDU105282.docdoc d7452abd23b4d0a252d67436bea5f98b177d6d4a707ce10ce71852940cf97a3cVirustotal results 29.31%Heodo