URLhaus Database

You are currently viewing the URLhaus database entry for http://ctopp.de/cgi-bin/http://OCT/9FsIRX0egi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	500996
URL:	http://ctopp.de/cgi-bin/http://OCT/9FsIRX0egi/
URL Status:	Offline
Host:	ctopp.de
Date added:	2020-09-14 18:30:36 UTC
Last online:	2020-09-15 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-09-14 18:32:39 UTC to abuse{at}strato[dot]de)
Takedown time:	14 hours, 18 minutes (down since 2020-09-15 08:50:47 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-15	4918603-2020_09_15.doc	doc	d5f834ae593cabd408b122437b31211f6007622eed550dddd1e91eaebe425d38	23.73%	Heodo
2020-09-15	doc-2020_09_15.doc	doc	f0f532b83c512e60370f4f66cfdcb7e11d1e2dd7eff883fb220bb128a215947d	23.73%	Heodo
2020-09-15	LIST 20200915 BW485.doc	doc	a3384ba577af296b4baa8ce02d0b093741cb76e47914a6f2a21dc1fcaafa2ecc	24.56%	Heodo
2020-09-15	doc_20200915_GN721.doc	doc	604234e8c583a987270d78ea9f7ca92adc1b14c50fddf9f484af4ea751c820bf	23.73%	Heodo
2020-09-15	file 20200915 5901083.doc	doc	117ff974263e5ba8d7be16655458ab34722982734adac8b03d62ba9c0f8b6078	22.81%	Heodo
2020-09-15	INF-M710.doc	doc	477c395b9e8ff0dbc9e1be2bc00fc237cd22130edf50168630af4a01c2bfde34	23.73%	Heodo
2020-09-15	1378UM_2020_09_15_DH4403.doc	doc	b616ed063c3bd9e92331aeb05899b7ae31bf5e63b94c02e720e3a73fb584b477	47.46%	Heodo
2020-09-15	175205 20200915 SP6850.doc	doc	6c6225685c94dc3731580b64ecab9c502b1a89defe6a0ac2c3d3ddb2726f9a65	47.46%	Heodo
2020-09-15	doc 2020_09_15.doc	doc	43cc769c9e7ba0210e0a9c3b22707a1500245a04efb7e3d1faa76536bafba217	48.28%	Heodo
2020-09-15	Attachment BV110913.doc	doc	e717b01414c10e7c54dc415c20172bc9f9f7985199de7f44da2a21274d95e97e	47.46%	Heodo
2020-09-15	mes-19782.doc	doc	3e868560d166d6558acd1e5a23b2c695fbeaa76a900377c8da768ac562d17343	45.76%	Heodo
2020-09-15	File_2020_09_15.doc	doc	d4c9555b63b03bb49ef48c18edd3d1e1dc33617c56a00505f470823f6de5c394	45.76%	Heodo
2020-09-15	Inf 2020_09_15 XF079797.doc	doc	f15af8515126fa73c26c783a07b7b8102603af53319a2148b073ceefed8de267	46.55%	Heodo
2020-09-15	Arc-20200915-193307.doc	doc	8656695ef3e73212f1da1f7c552c57c9f43e5b9e46fe1f3aec227b1700baf555	45.76%	Heodo
2020-09-15	AP31136 20200915 V36261.doc	doc	0de486e758ab3a42b8cf8fac0544cd138cac337db3c2688bf2e714089db683ad	n/a	Heodo
2020-09-15	INF-Z373.doc	doc	76d26557ad9344a10d718f60b088004f1335e8217a201641d894a46373bf73fd	42.37%	Heodo
2020-09-15	5109920-2020_09_15-006.doc	doc	5fae5bb30e9800ec137ead15679e59e39b70069c5a495f35874953f74cbd4c6c	42.37%	Heodo
2020-09-15	rep-20200915-E8062.doc	doc	0602459939d6a8fb1a4a6930c2dc8e1353770134e7df1852024fabfb17cd7985	n/a	Heodo
2020-09-15	REP_2020_09_15_7279.doc	doc	89966dd362b436e2a9f2c8c60424c4d6c29197c7001146a71acdf9e29600a348	38.98%	Heodo
2020-09-15	dat 2020_09_15 5745.doc	doc	af77b6d2c8b4ac5dd458b68e927c7ff84ed97c517498254d74eec800e9699b1a	40.35%	Heodo
2020-09-15	arc_20200915_997822.doc	doc	3dd9848d0ed7443d064dc035f363bd7b96e8712e4540981de8d3358092a6e74c	39.66%	Heodo
2020-09-15	List-2020_09_15-AK351.doc	doc	cf8d757135f246e73646a6a72adfde896d3ed51271e7056596076d834e960968	40.35%	Heodo
2020-09-15	doc 15112.doc	doc	0b92085e3fef4b9cb196fb9a8e9bf64d4eb8664184ea2bdf46132abfa7f72a3f	38.98%	Heodo
2020-09-15	File_20200915_316.doc	doc	8a39aeeae70b5b869cf70b80cf2c4a4149a216d99839bc70e705f62472eea851	n/a	Heodo
2020-09-15	list-GF8466.doc	doc	0e56a212452f8382cc59f8ea56838b188802b56853a868f03a610e633095cda6	38.98%	Heodo
2020-09-15	inf-20200915-QZA620214.doc	doc	c247ddf966fd2c2df2ffec2956e4798990741e8b0f7d121639bdd06fa98053de	38.98%	Heodo
2020-09-14	4881Y 20200915 6102955.doc	doc	e16c524a4a5cdb8c78cf9413fda5b88385057a9f97e2a5c080f8c015fe1fa9e9	n/a	Heodo
2020-09-14	2669UDD.doc	doc	6e10a01cd9dec093dcf1eb9caa2d4a8209d2d6059899c938b397b75bf04efffa	36.67%	Heodo
2020-09-14	Arc-2020_09_15-9238852.doc	doc	353654c4a8d65e5878b00c7943ee5d2e19e6438c31bd949ad16452496ca627e0	37.93%	Heodo
2020-09-14	34912693-2020_09_15-6472187.doc	doc	70f8b76003bc7406cb62c86ea3ff4e8437cb4366b7178f64ab4a530a0f4e5522	35.09%	Heodo
2020-09-14	inf 277.doc	doc	374a3742f2987f267779f65990c040faa7f1f456304706c295fec11f11e4db91	33.90%	Heodo
2020-09-14	FILE-20200915-3156957.doc	doc	e5abd1707e24afbeb2ad49977ec61f6da45392df2a709979f8f17a4b6d187002	30.00%	Heodo
2020-09-14	0233WF-JGH88125.doc	doc	3ac2cc1c70a22ab87b2717fb98dbf5b247d572b4bf1e04d65e76d1a85980dcbc	30.51%	Heodo
2020-09-14	FILE-2020_09_15-99166.doc	doc	b5c594f80d5f76a189ece1257e4d352cd66bbf5e048a214779208e9b9a56e8f9	n/a	Heodo
2020-09-14	Doc-20200915-F918.doc	doc	a9d0dc516e46f592102883f6f8731a8ac1fa089322f6fc5783b1c107efa92068	n/a	Heodo
2020-09-14	LIST 20200914 683632.doc	doc	f4c878657ae6b4e7739b6a3da75dd297c2807e070430e1ead9ada6a845efce73	25.42%	Heodo
2020-09-14	47310727_20200914_HI0045.doc	doc	6182d411be0d9307e20cc25cf002ae1e861bf4d635a354004699f3e4cb916c34	25.42%	Heodo
2020-09-14	doc 20200914 72716.doc	doc	0aaf77ddbd6733d57e90b7a839a8eec42c677c110577bd60b7cb99d0e92371a0	n/a	Heodo
2020-09-14	rep 20200914 IGH0233.doc	doc	c9c354820f02ae6dfc24e0ec2bffe39a23788c33f0a7022088bfdb17980038e0	25.42%	Heodo
2020-09-14	FILE-6281835.doc	doc	3497e1cf506b91bab9a901a99757f2115d1ad48386a00ca764dfd35aaea32e5d	25.42%	Heodo
2020-09-14	ARC_20200914_684.doc	doc	a08de510f35e7e06ad165ed35d4292990a37f575efd818a6bc06d5edf736fabf	25.86%	Heodo
2020-09-14	Attachment-20200914-601.doc	doc	4c238bc4a71797dc06d39c3e4b3dffa290150e757c9a4398c8241ecbae65485e	26.32%	Heodo
2020-09-14	LIST 2020_09_14 5863483.doc	doc	de5ff2a86b9b97821a627ee23d91fecfc32dcb3d5db129604ca5c47f4feb102b	n/a	Heodo
2020-09-14	9715_2020_09_14_XTR524.doc	doc	f838500b48eb331bc0d22698c3787400b13298bc5e140d32c07d6c7807a464a6	25.00%	Heodo
2020-09-14	dat 20200914 WFX088412.doc	doc	e50ebba147c9a5a494145d0e722bf188c43eae950ffb9067a80dd7a21aaf9fa9	n/a	Heodo