URLhaus Database

You are currently viewing the URLhaus database entry for https://kaatenco.be/cgi-bin/8by03731041655shdbzguwy/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:502955
URL: https://kaatenco.be/cgi-bin/8by03731041655shdbzguwy/
URL Status:Offline
Host: kaatenco.be
Date added:2020-09-14 21:09:21 UTC
Last online:2020-10-15 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-14 21:10:36 UTC to abuse{at}combell[dot]com)
Takedown time:1 month, 0 days, 11 hours, 30 minutes Bad (down since 2020-10-15 08:41:19 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-15BAL_XDC_090120_SXR_091520.docdoc fb643feff479ae9885669488962697766e6dbd2da0ca79b1af07c225f60b0527Virustotal results 30.51%Heodo
2020-09-15FILE_RQF3YFWFCBW2NQJO.docdoc 2cde4939f797633de929427a46005c56edcb0480a7a87e6194df70cbe707bc7eVirustotal results 30.51%Heodo
2020-09-15FVD_090120_JQS_091520.docdoc a27e34af3dd6de2bd605581cce065e11a651c8ee0544d3ea0d7419a9a3daa3feVirustotal results 27.59%Heodo
2020-09-15KFCJ_CJC_090120_QSR_091520.docdoc 0a027ac005f0ab69b76b7587c1f5ac68377f933bb7d7aed7741899867ccd0032Virustotal results 24.14%Heodo
2020-09-15YUYA_21316996.docdoc b701933f7ffd80577c3d8ea10ff3e373b79a72366c0ab41e91d424cd237a77d4Virustotal results 27.59%Heodo
2020-09-15YS_56774594.docdoc a918b268968b5a10adab11be7cccc5d1993e3bb2fd81b1bff64d3351fe6b0d01Virustotal results 27.59%Heodo
2020-09-15REP_58726179.docdoc cc44bd25c71b4907ed39e3fe1c2fd6516cf447e3f32e3ba98c0565b946446727Virustotal results 27.12%Heodo
2020-09-15V_CU9948629232BU.docdoc ec85297c2929326d994404475c575021585a6d95a8b17b2beec5dfeb2e1f48a4n/aHeodo
2020-09-15SHI_090120_XXQ_091520.docdoc cbe6e83ec78b4a36eee9c7843c21aaeea59a00df4f8981b870bddd58f1d9a080n/aHeodo
2020-09-15OQG_090120_BSU_091520.docdoc 31aeb8e51051e3d4f523140e952cfdcbd12fa1f65bbb85e1b0050a67d61320b4n/aHeodo
2020-09-15BAL_YOT_090120_ELG_091520.docdoc 8dd8ad5982340b82765d71c26e6ab11b1afa10d25ac61ba165fd9c5094553b1eVirustotal results 27.59%Heodo
2020-09-15INV_9430698301959753062163.docdoc ac5a1ccfc2cb2d63726bcf5e45642e917fe1ed28b105df954b12357292bdcc85Virustotal results 27.12%Heodo
2020-09-1591338355.docdoc 6ac63832436ca5632cbaec573ddf64699db3e154cff6cba39cdaf61183c00416Virustotal results 24.14%Heodo
2020-09-15BAL_PO_09152020EX.docdoc 2fbe2ac4f1f56aafaa5439bb9a813e85b6390fdb50f164ab898401c7accd0fe9Virustotal results 24.14%Heodo
2020-09-15MW9321927256QX.docdoc 8e553ae04464e45346ac48af348fe2b0c9e02f78fb19b127f8b8a4c293ab784eVirustotal results 23.73%Heodo
2020-09-15DOC_R067TK58.docdoc 4d214cc886bee52d1c4ccaa03d1d7d8355246ccf61e6996e71f82e9ac71a0bf0Virustotal results 25.42%Heodo
2020-09-15INV_ZK1375235080AI.docdoc e23b2dcce72f16cdad14d38245feafd10ee07ba8ad722114408b65e21b5e4da3Virustotal results 47.46%Heodo
2020-09-15FILE_ZA6021842990JW.docdoc 10b17795235e180a179c175fd900f397c7d967604ffd8bb0e06082b68c57c0f5Virustotal results 48.33%Heodo
2020-09-15FLK_090120_CMG_091520.docdoc d3a46f99f6aba8a07ebe1563b3439b38c422806c1382bcd33f315dedfba8fb10Virustotal results 45.76%Heodo
2020-09-15INV_FX8014111333AY.docdoc 80b4fba8603d653281bf5b22b1070b5bcc940fa3ff7c3dd4b5a95bad66fc8ae4Virustotal results 47.46%Heodo
2020-09-15DOC_PO_09152020EX.docdoc 807bf4c0dd85eea9b4ea5c41fab297064a1a79599cf41ee23eddea254c4f5692Virustotal results 49.12%Heodo
2020-09-15FILE_70287087.docdoc c04692ca49de637108b680642a6954eb9a3209037eaa0ff6de22cc7d5bc03aebVirustotal results 48.28%Heodo
2020-09-15BAL_EBR_090120_HDT_091520.docdoc 444edfc514c9e7ddf7d47152ab219ed246f5fa2feacad2d9f98932df0901b406Virustotal results 47.46%Heodo
2020-09-15TK9V41706.docdoc 7432c22b6a99281670f18f32f78f9631d8b04c2715337de620a57debec0ce02bVirustotal results 46.55%Heodo
2020-09-15REP_FAE_090120_GSM_091520.docdoc 910dae31834b6527a877bdf152c768c6bb0cc6cd5f7f56369b6f471e2f9053f9Virustotal results 45.76%Heodo
2020-09-15INV_V68HUWZVQG.docdoc b39dbc57e68cf701fad0dedcb81f6851d1241eb91edc91e37894db8d34bea3d5n/aHeodo
2020-09-15INV_WYU_090120_UKC_091520.docdoc 2d06e9df223442de56a1d2c312eef4e04e2328c227d40bc1827f8ec0c62a84bfn/aHeodo
2020-09-15913299549630.docdoc ccc9ea68df213a152feb8f3b7b4381d502ff957fd113af34cde9a3f956b5af6eVirustotal results 45.76%Heodo
2020-09-15BAL_03484685.docdoc bdc5631818335d59a977eee0b55578254df73a429b5c6a2d24b1956194e29c66n/aHeodo
2020-09-15B_PO_09152020EX.docdoc bb9f602ad96cbe273388a0693171c3973e1353bef3ceff859abf378ee3ec09f1n/aHeodo
2020-09-15PO_09152020EX.docdoc 0c31f7d06ed4d36cc7a675ca0d3b92c5740d3ed73be44f19bea8b3d7c5f755edVirustotal results 46.55%Heodo
2020-09-159898180516946491.docdoc c6aeaa35f509ebc9ec72cf09b60a5b65360f64329041aa96959044f268dc8e86Virustotal results 44.07%Heodo
2020-09-15DF9436581738NE.docdoc 0e8e9f0192523753cb234c4a8131fbc99d38e59de4a1514fdb89982130f487ccVirustotal results 44.83%Heodo
2020-09-15FILE_YF6980053008ET.docdoc 9922b76bfdc024016dde4bbdb94099ac4a6ed95e4843cad3a7c5e1869dbdaef8Virustotal results 39.66%Heodo
2020-09-15REP_54309917.docdoc 29d8e169a30fd7895f5e7c44d984fc2df3ecdf41230c24bbad22b1084ede0a32n/aHeodo
2020-09-15QSB_090120_UFE_091520.docdoc 73cd2d4bb406922adc159853e08fcd53729602962e108a35f446bea2f029cfe9n/aHeodo
2020-09-15X_GFQ_090120_UOF_091520.docdoc a4486575da11821fe28dfc285d3e4b93f37d127adc771887dcc7b3eb17c24546Virustotal results 41.38%Heodo
2020-09-15R_007904306.docdoc 091e7d3539fbb1cfb971b96abeeeb3b0e2abbaa3f19bbcf605f36589b2f7fadfVirustotal results 40.68%Heodo
2020-09-15FV_2993270022532.docdoc 23adb5a46e285b5dbfc94b24cfba24c796c5ac4ed407661ab8bdc83a007de7a1Virustotal results 27.12%Heodo
2020-09-15UNYEEPFL0GA.docdoc 052459689d69d170fc38722107e8ad827f626fc0808ff2c9afb2d7fc74b464f4Virustotal results 30.00%Heodo
2020-09-15REP_BW2O1QBS0N.docdoc 8aaac3ba7ee1eea4f407286fb7974879a2cc0baf38d4de3d7add15df3ba2bee6Virustotal results 42.11%Heodo
2020-09-15ZXV4EW43U1BMHS.docdoc d1561f797d8c7b185a29acca5b8b8db71f711dd129448acf96d3ac1d0c23d0a0Virustotal results 40.68%Heodo
2020-09-14PO_09152020EX.docdoc ce9984fbe4f17913ce269f1f360e6687877fedb82938d3e05c1412c059ae3084Virustotal results 25.42%Heodo
2020-09-14QVZ_090120_FXO_091520.docdoc 2b8668a2cbfcf9b88c18995f1f415540b05b7668e8493f0ea171097b7e34261aVirustotal results 39.66%Heodo
2020-09-14REP_AG91XOG29RVZB.docdoc 5e9694ee68dfea978dbc805fe72b5788f079caf4dc6e7cd66c811286bf943772Virustotal results 38.98%Heodo
2020-09-14FILE_99140762.docdoc 693f393b73fba1545bbfed68995e08a5501d14fbb9904c4411e27245b75aef91Virustotal results 35.59%Heodo
2020-09-14K_15521148.docdoc b4c12280cd7f851f7575640653219922f689e92cd59170a552ef8c95abffeffaVirustotal results 25.42%Heodo
2020-09-14BAL_GYD_090120_TJT_091520.docdoc 228f4f253488803c245aad64df1d3673fa7c72874fb54a9d60741e1cdac97b37Virustotal results 32.20%Heodo
2020-09-1490416569075484.docdoc edb81dd2ee5a1efcb1e3b8822b14ec26e91bb44f52ebf4443b3d934cbd503e30Virustotal results 25.86%Heodo
2020-09-14KL_UJA_090120_ZQI_091520.docdoc 022b2176a60a0c1a4b01973a41185035d1f0b6bac6eaf5992554cdd42883565eVirustotal results 25.42%Heodo
2020-09-14WCO_090120_NLL_091520.docdoc 1c651e22626218aa3ab6d5fcd3532e5745932c7b9b45e33ca5c4de9b392a1e99Virustotal results 31.03%Heodo