URLhaus Database

You are currently viewing the URLhaus database entry for http://labshop.gr/wp-includes/https://lm/6kI6llOzI0rTFffZxM/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:497154
URL: http://labshop.gr/wp-includes/https://lm/6kI6llOzI0rTFffZxM/
URL Status:Offline
Host: labshop.gr
Date added:2020-09-14 14:34:04 UTC
Last online:2020-09-22 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-14 14:36:46 UTC to abuse{at}hetzner[dot]com)
Takedown time:7 days, 23 hours, 31 minutes Bad (down since 2020-09-22 14:08:24 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-14dat 2020_09_14 X489.docdoc de5ff2a86b9b97821a627ee23d91fecfc32dcb3d5db129604ca5c47f4feb102bVirustotal results 25.86%Heodo
2020-09-14arc 2020_09_14 WPV937239.docdoc 8014f6ab3e277e6346b2e49fae79962948c0b264e7000be259601b0b715b3e15Virustotal results 25.42%Heodo
2020-09-14file 2020_09_14 0816443.docdoc f838500b48eb331bc0d22698c3787400b13298bc5e140d32c07d6c7807a464a6n/a Heodo
2020-09-14file 0938152.docdoc 04c3ce2f282ed4ed9c831c5caff0edc29324dbd2eb39817fc6ed53683c5e0933n/aHeodo
2020-09-14Untitled 20200914 1952.docdoc 3f9968dbb3d21b0c64fbf4e6c7ec8fc1e458620e08cbfc640f9dce50c286ab07Virustotal results 23.73%Heodo
2020-09-14Attachments_2020_09_14_SI99027.docdoc 30c24452fe4cbae0d507fcd57055a6172174abbb6ecdec68304f244d67a152aan/aHeodo
2020-09-14031Q_2020_09_14_JS158.docdoc 566cd4d5b217367ca4bcd3a8083b4b0d9d54a60999a8ca7d736d696bef39e9e3n/a Heodo
2020-09-14X20801 2100979.docdoc f78ba6e7143af7a8549d3d722acda8f15318007b2caa9697e827ba958a52f7aaVirustotal results 21.67%Heodo
2020-09-14Rep_2020_09_14_9474945.docdoc 2f46a6507c4618f36225ba5ac1cdbe970be8c8842f309bb8ae5bfe88eef8e805Virustotal results 20.34%Heodo
2020-09-14FILE-20200914-ZO612791.docdoc 83467069c2ec2cbe80e57095585d63441d9ebb7ade6e634ebc31eab616f5580eVirustotal results 20.34% Heodo
2020-09-14Attachments-Q071347.docdoc 30dd2df0674e842f8a3bfd8880f538175f2f42045d66060984f720b865acd353Virustotal results 20.34%Heodo
2020-09-14file-20200914.docdoc 03b57b1e8bb393b869f33bd3afb785fe2b5e01ef20b6359e7c68010f52f3ec3bn/aHeodo
2020-09-14inf 20200914 29932.docdoc ded78c510ee2f226da8500b08b670bf12c44a6a21089ac843e7ad8f2329fd8ffn/aHeodo
2020-09-14List_64145.docdoc 922d0848bdeb45de8993cf7663e729ccc87c4b6f7c93ece47472e9cd8cce416an/aHeodo
2020-09-14arc_2020_09_14_V312.docdoc 4fa14744abdb2748ed7e262ba36b017ac6ca22ba39c70f1afab7500d728bd256Virustotal results 20.69%Heodo
2020-09-14ARC_HC005320.docdoc 26e06b0ee433f5787420c5246683878c897505c0e3c3815f3045d41ebd28b878n/aHeodo
2020-09-14rep-20200914-P65544.docdoc 0b783948053f5f1dadd529527bbbea3e2ed5e25f1cfa250aca3b6620aac9c26cn/aHeodo
2020-09-14file-20200914-RRI185.docdoc eedba6a1fec17811ed9e71674bca1376d7ae271b00bb6f4c3cff98b375b500a1Virustotal results 18.64%Heodo