URLhaus Database

You are currently viewing the URLhaus database entry for http://nyeh2o.com.au/wp-admin/statement/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	505464
URL:	http://nyeh2o.com.au/wp-admin/statement/
URL Status:	Offline
Host:	nyeh2o.com.au
Date added:	2020-09-15 00:29:37 UTC
Last online:	2021-04-25 03:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-09-15 00:52:19 UTC to njcrabbe{at}gmail[dot]com)
Takedown time:	7 months, 12 days, 2 hours, 57 minutes (down since 2021-04-25 03:49:54 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-16	INV_MLT_090120_CPJ_091720.doc	doc	73158e3c574c5cfbe98520ebb3b8c4270609205751d997b87414e5a43980f960	27.59%	Heodo
2020-09-16	REP_PO_09162020EX.doc	doc	8f96a4ee289f6093a2f1afe8c584cba4a802c054ef22fde70d451254191872fd	n/a	Heodo
2020-09-16	REP_EYO_090120_UBU_091620.doc	doc	e7631c5a69f76fea0835835a14a8e885f2f3b0c0dec2d577278e70d3776eb0a5	25.86%	Heodo
2020-09-16	PO_09162020EX.doc	doc	b3f921be965718a9741b8f63d9b29dba0345f98cdfda7a0cabae90ffabc8043a	25.42%	Heodo
2020-09-16	INV_T9BH6WVLDH6IR0.doc	doc	95af0a10239920178927ec407c28ad601db31d71b0a4a64091f1271a6b58d912	40.00%	Heodo
2020-09-16	CD2050564420EM.doc	doc	1e5ed60832baaf0e362870373615cff90279bbbc4e544c76224f7528687276ee	37.29%	Heodo
2020-09-16	DF9935950470PG.doc	doc	4254483388cd90e041291de79b3a3d26456908113cb0b2957401b5838c949c38	38.98%	Heodo
2020-09-16	INV_TH1517685880BO.doc	doc	342aa4ab42fcc250006a6fb29d75a6c38d4b1fd1a40c5146d41f5b6f2a93e24a	35.59%	Heodo
2020-09-16	BAL_IA63RFSW3YKZ6821.doc	doc	7e6eb01ae2a01609fa859b74092e049509e4c10f6c3fa6b81c728154ba97105b	32.20%	Heodo
2020-09-16	REP_6GNHCEDTBJF0NGKJ.doc	doc	0c982fd7e6da85d772a410a46a6569667df380d6fd19d4c597ca1a0f30c140ac	32.20%	Heodo
2020-09-16	INV_3R09MFFUJEOD1HC.doc	doc	39031955d734e86e67664eee812819b699a9bc4f869cfb4d28db7f4c99cbdcee	30.51%	Heodo
2020-09-16	O_CV9762460978CN.doc	doc	f12b0ab6cd7e38f13cb0faadfb87bb09e736d67bd2004bd85604ba8327c1c73c	26.67%	Heodo
2020-09-16	SK_ZG6429092087MN.doc	doc	4a42864618e8b860f0cc23b81a63cfeb95e60a000bac0acb3edd4294f8531329	25.42%	Heodo
2020-09-16	FILE_PO_09162020EX.doc	doc	1e89a5f9dafcd1d66bcda4eb3a8e391448606ae28a808d4f723c1decc91292c4	n/a	Heodo
2020-09-16	BAL_86361907.doc	doc	8cb0c890547d5517a0d6a06caec30b9b2480920b6c23bc5129f3a2e991bf647b	18.64%	Heodo
2020-09-16	FILE_ZF3999029555KD.doc	doc	30f103a39f5ac055f29f5b9364d03f9777737256ea1096c2cb957cd5285ea8b8	20.00%	Heodo
2020-09-16	E_PO_09162020EX.doc	doc	62fd09a1ff4be50f0ef342f12c9551165d6f9743f510cadc096752e52e0b296e	33.90%	Heodo
2020-09-16	FILE_D8L6SVGYPW.doc	doc	5cce38afd4ebb2d6788c1c97654dacf76b69f37c87f90e32970b3b6e2e707d80	32.20%	Heodo
2020-09-16	5IWT4AWBULTFH.doc	doc	48cf59d8b7c9372f65bd02e6ca168e0651fdbcc3b7330dd22b34a5df23c384f1	28.81%	Heodo
2020-09-16	BV5627570317HH.doc	doc	17ee903ed9c7b72546d333ce76b2e0996a4688e758937667ff466bb3ff005c00	25.42%	Heodo
2020-09-15	INV_NQ1XTZYBPTQN.doc	doc	8869192957c4d226cae4679243a3a7ac5a193866a2e1048e37ca60f29d9af28a	26.32%	Heodo
2020-09-15	QIB_090120_NEC_091620.doc	doc	1b3feab547c227fce46787527a728a57b05f236dc7f3be77bade5b9e661017b4	32.20%	Heodo
2020-09-15	FILE_U42VZB1N099R.doc	doc	b408d1437535aab5eb52b147d59272e8056375f2e90e2ccef71c062980e36b2f	30.51%	Heodo
2020-09-15	PO_09162020EX.doc	doc	f6aeaefccc4efba1167df73a2a3ba80a76c030c8278f7e8466c4d3dc7cf0084f	n/a	Heodo
2020-09-15	INV_87947629003892.doc	doc	c5be1178786e06c4c3265db8da35fbe4f74a96000fe5eb06874abeb6b85fbd74	28.81%	Heodo
2020-09-15	KQT_090120_LRV_091520.doc	doc	3089debb78ac55d321badf41239a3010dcf1577c1cdc4f69cfa09f2c90affb22	33.90%	Heodo
2020-09-15	BAL_JCN_090120_WHV_091520.doc	doc	c6cc0bc5f638343530d50e465ee7b0a2cf952d971f2d50d1b26c5ff8d2068280	31.03%	Heodo
2020-09-15	DOC_13703355.doc	doc	99cd329144ecd59f0a395fb6b78ebc0e16c295cbb98369baad836540e2037af9	32.76%	Heodo
2020-09-15	INV_YFH_090120_TBX_091520.doc	doc	7c71cb958a4a553e134ecba8798f78473999bbf2a378f6f2ba9dbefd509410e8	n/a	Heodo
2020-09-15	GZO_090120_DHB_091520.doc	doc	7e7d1803366d468d089ff0c15817cc44e03d3cc5109473086a613b68cf5cde80	37.93%	Heodo
2020-09-15	23676004.doc	doc	f6b411752457e67af88361dab260e090f3eab65cc6c2ca63f8e2ee7b81a398cb	40.68%	Heodo
2020-09-15	PO_09152020EX.doc	doc	5c42326192568cbdca87a2ce45c600c464aaf3ca19800654f7195bfd7e5f4e17	33.90%	Heodo
2020-09-15	DOC_42905363.doc	doc	356d47d62853cdffcc77d94782e286aea2cb43b33cfc90bd957d65bf9edf8c05	27.59%	Heodo
2020-09-15	INV_999533389451.doc	doc	1cc4e6ecab2c4d1d8867cc06c63c3287cc0f37d7c173d90b81fcd07ecd523bcf	31.03%	Heodo
2020-09-15	INV_6S4KQ64N4DY727F5.doc	doc	fb643feff479ae9885669488962697766e6dbd2da0ca79b1af07c225f60b0527	30.51%	Heodo
2020-09-15	INV_PO_09152020EX.doc	doc	ce01a2809c8b91b91d671bf29056f2f6568854c1c027c23847225af17727df7c	46.67%	Heodo
2020-09-15	INV_98522692.doc	doc	807bf4c0dd85eea9b4ea5c41fab297064a1a79599cf41ee23eddea254c4f5692	46.55%	Heodo
2020-09-15	ZZ_7ENTH8M9E.doc	doc	3c264c77078bb3d9bd3d548d754a07710e88b565117a67b25dd5a4c6ab990496	48.21%	Heodo
2020-09-15	FILE_NBO_090120_UZB_091520.doc	doc	c04692ca49de637108b680642a6954eb9a3209037eaa0ff6de22cc7d5bc03aeb	48.28%	Heodo
2020-09-15	UXK_PO_09152020EX.doc	doc	b39dbc57e68cf701fad0dedcb81f6851d1241eb91edc91e37894db8d34bea3d5	n/a	Heodo
2020-09-15	TVT_090120_NBM_091520.doc	doc	b3e79810719b8444df9efe7df7bb2f43edb08524fdb894daed4ab770fa9b3765	40.68%	Heodo