URLhaus Database

You are currently viewing the URLhaus database entry for https://kaatenco.be/cgi-bin/B/79224625689/1kexdaofl0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:503015
URL: https://kaatenco.be/cgi-bin/B/79224625689/1kexdaofl0/
URL Status:Offline
Host: kaatenco.be
Date added:2020-09-14 21:14:08 UTC
Last online:2020-10-15 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-14 21:16:28 UTC to abuse{at}combell[dot]com)
Takedown time:1 month, 0 days, 11 hours, 29 minutes Bad (down since 2020-10-15 08:46:23 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-15Y_PO_09152020EX.docdoc fb643feff479ae9885669488962697766e6dbd2da0ca79b1af07c225f60b0527Virustotal results 30.51%Heodo
2020-09-15BAL_68154306.docdoc 2cde4939f797633de929427a46005c56edcb0480a7a87e6194df70cbe707bc7eVirustotal results 30.51%Heodo
2020-09-15REP_CZM_090120_HPZ_091520.docdoc 1d2bf8d22eeecff963437ca091244a4de2cb9c9f01b0219fb61c858e4bb9f41cVirustotal results 27.12%Heodo
2020-09-15N7NL0SWX6FHN69KH.docdoc 095db595db95058560ceb1d9537362042a985ebdedb3e5ea8f421321ca22e042Virustotal results 27.12%Heodo
2020-09-15X_MW5341980671TA.docdoc a4a5666a000ba0795cb2190e808b46aa5da1f9883f5e978c5331fac6f94a102eVirustotal results 27.59%Heodo
2020-09-154319699199100388.docdoc 40fa80a89b068b5d03f654143399184e60506a0dbdb66d0a3c7be8130450679bVirustotal results 29.31%Heodo
2020-09-15INV_WD1124837499YR.docdoc 79a46789e71cdf1123ee030b076bc802e69e91a0e789d74f2de290ff9a9e71beVirustotal results 27.59%Heodo
2020-09-15ENG_090120_FJK_091520.docdoc cc44bd25c71b4907ed39e3fe1c2fd6516cf447e3f32e3ba98c0565b946446727Virustotal results 27.12%Heodo
2020-09-15BAL_PO_09152020EX.docdoc eb2c2c3e17adfb02fc7bf496cbb8f4b533687d6f39ab07101562628b9b0c292dVirustotal results 26.00%Heodo
2020-09-15REP_52827766.docdoc cbe6e83ec78b4a36eee9c7843c21aaeea59a00df4f8981b870bddd58f1d9a080n/aHeodo
2020-09-15INV_AQ7725324764TU.docdoc 31aeb8e51051e3d4f523140e952cfdcbd12fa1f65bbb85e1b0050a67d61320b4n/aHeodo
2020-09-15DOC_ZRN_090120_QDL_091520.docdoc c16e59585fd5dac9a34c67ed08a45a89b15ea9125484f904241fc285c06f2f60Virustotal results 27.12%Heodo
2020-09-15DOC_743216812268121852065485.docdoc 8dd8ad5982340b82765d71c26e6ab11b1afa10d25ac61ba165fd9c5094553b1eVirustotal results 27.59%Heodo
2020-09-15BAL_KK7276717052HG.docdoc ac5a1ccfc2cb2d63726bcf5e45642e917fe1ed28b105df954b12357292bdcc85Virustotal results 27.12%Heodo
2020-09-15B_T30S5XDV.docdoc ef9e7ef2b914a234188bf7e7925d596ec1bdd0e2a1d6bf4fc0d11bfc3cf815c9Virustotal results 25.00%Heodo
2020-09-15O_FPF_090120_EXS_091520.docdoc 2fbe2ac4f1f56aafaa5439bb9a813e85b6390fdb50f164ab898401c7accd0fe9Virustotal results 26.67%Heodo
2020-09-15BHV_XEF_090120_RLV_091520.docdoc d5c5f6dead10c40058579006138a70561276ce9742a9e5777e6be49a9efa1e37Virustotal results 27.12%Heodo
2020-09-15C_40235219.docdoc 4d214cc886bee52d1c4ccaa03d1d7d8355246ccf61e6996e71f82e9ac71a0bf0Virustotal results 25.42%Heodo
2020-09-15G_09759114.docdoc 02d56e5f8a14a2a6cfaae976bce6571984573f2374cfa11d3f72f065ae9978b1Virustotal results 47.46%Heodo
2020-09-15O_8621985391.docdoc dc48bf0bd3fd325ce691d046d191344d78ae9c04c52831a899849d44a4aff602Virustotal results 47.46%Heodo
2020-09-15REP_DK0717727047LI.docdoc ce01a2809c8b91b91d671bf29056f2f6568854c1c027c23847225af17727df7cVirustotal results 45.45%Heodo
2020-09-15K_5167091986149.docdoc 3c264c77078bb3d9bd3d548d754a07710e88b565117a67b25dd5a4c6ab990496Virustotal results 49.15%Heodo
2020-09-15REP_PM7NNJSRSTKM4KU4.docdoc c04692ca49de637108b680642a6954eb9a3209037eaa0ff6de22cc7d5bc03aebVirustotal results 48.28%Heodo
2020-09-15FILE_Y30HLQE4J0JD0MTU.docdoc 444edfc514c9e7ddf7d47152ab219ed246f5fa2feacad2d9f98932df0901b406Virustotal results 47.46%Heodo
2020-09-15FILE_83347434.docdoc 7432c22b6a99281670f18f32f78f9631d8b04c2715337de620a57debec0ce02bn/aHeodo
2020-09-15REP_PO_09152020EX.docdoc b617699d1445779a5c5d2ea5b541d08847222079b757576ba7629969648e2e39n/aHeodo
2020-09-15DOC_6094060169714523628648853.docdoc b39dbc57e68cf701fad0dedcb81f6851d1241eb91edc91e37894db8d34bea3d5n/aHeodo
2020-09-15RD_24565554241289.docdoc c35e9c9afc96480d2758c3b540ab077b6cb25140d4fe35c18a49627acfad2745n/aHeodo
2020-09-15FILE_PO_09152020EX.docdoc e9dcdd05f3bee021e5dbaf4417d78e6d1ec42c64f82d194f794a1f19bea93a79Virustotal results 45.76%Heodo
2020-09-155607501964707.docdoc ccc9ea68df213a152feb8f3b7b4381d502ff957fd113af34cde9a3f956b5af6eVirustotal results 45.76%Heodo
2020-09-15FILE_8903229860300581388307.docdoc bdc5631818335d59a977eee0b55578254df73a429b5c6a2d24b1956194e29c66n/aHeodo
2020-09-15808351572.docdoc d0dcbde5aede4521f1d0489d388b91bd821e1974f6638e733c3666be52be48c2n/aHeodo
2020-09-1548366124.docdoc c6aeaa35f509ebc9ec72cf09b60a5b65360f64329041aa96959044f268dc8e86Virustotal results 44.83%Heodo
2020-09-15INV_PO_09152020EX.docdoc 9878cacc1262e89f6d50a4e453aaa51642e6fd1eb5533ba0bc92112d986433c3Virustotal results 44.07%Heodo
2020-09-15BAL_76525628.docdoc 9922b76bfdc024016dde4bbdb94099ac4a6ed95e4843cad3a7c5e1869dbdaef8Virustotal results 31.03%Heodo
2020-09-15INV_ZP7699603442DI.docdoc 170bc543267aa70eeff72152eadc384d37e9053138b40b9d80c66c00992a7c33Virustotal results 35.09%Heodo
2020-09-15REP_MMA_090120_ULX_091520.docdoc 73cd2d4bb406922adc159853e08fcd53729602962e108a35f446bea2f029cfe9n/aHeodo
2020-09-15REP_PO_09152020EX.docdoc 32cfd3125df4596ebbe537f8ebe608a2e0da4ef99572123862fb088482db29e8Virustotal results 41.38%Heodo
2020-09-15PO_09152020EX.docdoc 96e9194d08285c4dae093f6075771fe0f21778e87b190999a06e84e9d5aef3ecn/aHeodo
2020-09-15INV_KEC_090120_XOJ_091520.docdoc e534714104dce95e26cb8d7d6f9025c18e27c6106ed4727b430d97f861f6294cVirustotal results 31.03%Heodo
2020-09-15W_DL1220442358LB.docdoc a0317339838e6999848a008692eb356adc893034fca1c323524533514cff15ecn/aHeodo
2020-09-15BAL_866S0SBY.docdoc 3101660852449fb80ba31c9c0dbb29ffd2c33de28fcf1e2080b3ec6594f4f963Virustotal results 31.03%Heodo
2020-09-14123560793464256262036291.docdoc b1519746d2c2a349f5fd48d89760bc67161a6474005f9060909bcf2e2c3fa1c2Virustotal results 42.11%Heodo
2020-09-14BAL_81964963.docdoc 2b8668a2cbfcf9b88c18995f1f415540b05b7668e8493f0ea171097b7e34261aVirustotal results 39.66%Heodo
2020-09-14639186207979815216745478.docdoc b5a7d485108a6ba50def96acbffc0765954b5e85ec5e3898ea386ddd63b247a7Virustotal results 40.35%Heodo
2020-09-14BAL_PO_09152020EX.docdoc 8b60450095880b37658c0bdbc46e57e8dd744ffb43fa15faaf54f530ca1e107fVirustotal results 36.21%Heodo
2020-09-1447858463.docdoc f0e0bd710b0178b6000d573906078f6906c0cc4781b7634a9e0dd95d33785aa9Virustotal results 26.32%Heodo
2020-09-1494386763.docdoc 8d253d477a880e88aa5e56dfcc9d55b92d6ed74e03c314896fd41624e12e3f77Virustotal results 32.76%Heodo
2020-09-14D_842268506835399939342230.docdoc edb81dd2ee5a1efcb1e3b8822b14ec26e91bb44f52ebf4443b3d934cbd503e30Virustotal results 25.86%Heodo
2020-09-14REP_TG8860377157FS.docdoc 022b2176a60a0c1a4b01973a41185035d1f0b6bac6eaf5992554cdd42883565eVirustotal results 25.42%Heodo