URLhaus Database

You are currently viewing the URLhaus database entry for https://www.weigeus.com/mvdgd/Overview/z2ft2t8h2/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:518367
URL: https://www.weigeus.com/mvdgd/Overview/z2ft2t8h2/
URL Status:Offline
Host: www.weigeus.com
Date added:2020-09-15 18:19:35 UTC
Last online:2020-09-26 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-15 18:20:40 UTC to abuse-citis{at}prager-it[dot]com)
Takedown time:10 days, 23 hours, 46 minutes Bad (down since 2020-09-26 18:07:09 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-17INV_PO_09172020EX.docdoc 794d05a964943c6e59eef584b6bd5ee060dec7907a990ec1a0d71260e641c74dVirustotal results 47.46%Heodo
2020-09-17HB4288801751CH.docdoc 09da007d427399a8878436226980680d7b93a39388023f1a70151a5fbcf16694Virustotal results 44.07%Heodo
2020-09-1755399237.docdoc 42672053a8a7951c0df29a2a4de07128b0577be82c17609a53a93556faffb7abVirustotal results 43.10%Heodo
2020-09-17NVQ_8DEUT6DXEX7.docdoc bc526212e4dd900787d51de582e68ca1ae212b49dc6834ed90e1eff5e22acdc2Virustotal results 41.38%Heodo
2020-09-17KZ7859792964GP.docdoc 03de8778d73e8753ae7006da7b533c87ac0ee1c1552d06188e045d5d578782a7Virustotal results 35.59%Heodo
2020-09-17FILE_PO_09172020EX.docdoc 887f85960d6c0ac59a114e344b272ee3ed2b737523b6d8c4eefbaf1cf0524e62Virustotal results 35.59%Heodo
2020-09-17BAL_97498322000188.docdoc 9ee794f68aacc1de0f1a485c69ebff89df7aff7e67bb8da365b1da36da0f6022Virustotal results 34.48%Heodo
2020-09-17FILE_PO_09172020EX.docdoc 4988159f7deee6fa12b723aa0158f06c3e3b77034a97827b39e69ffa5c2b8d16n/aHeodo
2020-09-17FILE_TYTC43P7M0IZ5R0F.docdoc fabd2f3729de07ef5f673b245597b0d770876cb520d02fe15d4e9e62c7c7efdeVirustotal results 32.20%Heodo
2020-09-17DOC_URP_090120_MFY_091720.docdoc 33c51d58c2e4bbbfceeedd8f100ddadf9be5354f98a497c5d5a0db849a51562bVirustotal results 31.58%Heodo
2020-09-17FILE_6751039607507076.docdoc 277d36d58169d00e5fa0e5b01791479d28539652aac4b260f80a8e9fcf7fa2c0Virustotal results 32.20%Heodo
2020-09-17BAL_92109141.docdoc 4108b12f718477be2b40d56e715cbd628f3dc502e7a479810d88397f872994a9Virustotal results 32.20%Heodo
2020-09-17X_LO3557614016ZP.docdoc 271414bb6de5a4a21a2068a3bc845fc9303b434e034fd244210f81a079a65c97Virustotal results 34.48%Heodo
2020-09-17INV_N53FT56BRB1.docdoc ed4658f123918fc2a7fec141a0efd053ed8016aa8e8d779abd6377646fb04ad5Virustotal results 32.76%Heodo
2020-09-17INV_UQ0347678532WT.docdoc 24d870441096e99a67d348025f42e44c531b85ccc3a98c5f138e666ec44dcb46Virustotal results 31.67%Heodo
2020-09-17BAL_SCE_090120_QHW_091720.docdoc ce6399120ee307992b13733489078810f36a8a5dbd5e7eabaf399d95216b7f48Virustotal results 35.59%Heodo
2020-09-17PO_09172020EX.docdoc b929bd8a5f5519a7f5322a0bb13f74878a3782bbd4635c67427720c671c1c80cVirustotal results 36.21%Heodo
2020-09-17B_T6MLH9K.docdoc 27eba47f653b19797edea37d8dbf75215328081ca3b6abb42719eb226a877a5dVirustotal results 30.51%Heodo
2020-09-17PO_09172020EX.docdoc 5331ea5ad449f1402737c6cfe0f9249a582b986ec49743db376e79c59e59ecbbVirustotal results 36.21%Heodo
2020-09-17REP_32733004.docdoc dfc124f5ed8d3ebb78c8d924921f3195fc05cc1aa1a635e51161dcbe1106a386Virustotal results 36.21%Heodo
2020-09-17DOC_00116188308185245277534.docdoc 8a208192487ebae685a63017664df013b885234a7104db17ec13514b4b9ced41n/aHeodo
2020-09-17FILE_CMSHF66GZM.docdoc fe6c61d58e613b1737dd42c11ceb421b40f8f854324adeecb71245e245ed3a34n/aHeodo
2020-09-17BAL_879483841946.docdoc a3efdad2ea2076e2a90cd4c401817a6d4e0dcffca6f825af796416755a6fb7e2Virustotal results 31.03%Heodo
2020-09-17BAL_Q693L187J5K37.docdoc e74a5aec9160f939b2e4851b5872f2bf9ff98d4897f282e8033c77b415654e5fn/aHeodo
2020-09-17FILE_PO_09172020EX.docdoc fd0f987936c01acfb91bb84e9e9c3e6f425f55d07887f14ee595ec418d252849Virustotal results 40.00%Heodo
2020-09-16BM_420349772715708118744576.docdoc 901353bf497a3403db274b0c2175a9e1dfc3a0f60720e0dabb97619da3cde741n/aHeodo
2020-09-16Z0M9E2E.docdoc 38ecd62b04b76c28921cd29f65b7ccde2a36b4414a258682357c05b925825953n/aHeodo
2020-09-16INV_VI3560500419FE.docdoc 1b96135a2846d7a48ebfda9e2ca65dd11d6820c9fb6f1ef9a9b2b15395cf48c9n/aHeodo
2020-09-16G_FRM_090120_BUE_091620.docdoc 63179447814d11c06c79d802adbf84daa1d758ac37a1591e280194ac6db52e16n/aHeodo
2020-09-16QJ_U3YNRBFAE6O.docdoc b55bf8d95ff3a2bbad6b0601a57de2a479f99a33add787f61befe740dad11b66Virustotal results 31.58%Heodo
2020-09-16BAL_57694164.docdoc 5cce38afd4ebb2d6788c1c97654dacf76b69f37c87f90e32970b3b6e2e707d80Virustotal results 32.20%Heodo
2020-09-16OU1328107382TC.docdoc 48cf59d8b7c9372f65bd02e6ca168e0651fdbcc3b7330dd22b34a5df23c384f1Virustotal results 28.81%Heodo
2020-09-16FILE_2785197087430545833092549.docdoc f612c549bdd3f599721c805169c70aa6e0b6f144a0a58a323f0d59d11f23b45cVirustotal results 34.48%Heodo
2020-09-16BAL_7815217047630744903.docdoc 879cb07fa12e39fbaafbeef54a8c988ee57a673fb57a02099a1f6bb733318c44Virustotal results 31.03%Heodo
2020-09-16DOC_PO_09162020EX.docdoc adbca35477fb3a09c475fd0866dc9150946d2e4bd9b05650f9f066118659df26Virustotal results 30.51%Heodo
2020-09-1602560489989768993.docdoc a643c8295a70cc3882662f7eac8da65ca398f824961fcd9a47454364138218e0Virustotal results 28.07%Heodo
2020-09-16ZZD_MR5102984716KK.docdoc aff9c4fbadddf0c2b4c80320ddb1809027d157508adbf5e5f12d88db367c782fVirustotal results 24.14%Heodo
2020-09-16H_93206520.docdoc 722e0b21752c8eb64fbb26fcf4ef9ab58f89050b3b690fa97b068eae6a0b522fVirustotal results 24.14%Heodo
2020-09-16REP_45T9QFHANCXTE.docdoc 7ed2061c4e694c21459db2c680fc101f2f2ed9bb6b8b8768a3bfc2b19ca14ef5Virustotal results 25.00%Heodo
2020-09-16Z_LZ9230740111SV.docdoc b08ba532b43fe11e03765134c030e9f47fcd626ebc014e8b2d1d3cf4cd7f1074Virustotal results 25.00%Heodo
2020-09-16FILE_DRLR4AQD.docdoc b0ee242bd63c84fc1dc0a0688e6c44566078121fa2b637d55dc0584e5952c27aVirustotal results 25.00%Heodo
2020-09-16BAL_24829584.docdoc 231d8f32ef0ff8e1a2b69db9bf1bf6c665c0cdff42bb4e3407cf7fe579304994Virustotal results 25.86%Heodo
2020-09-16YO_NP9809099909CE.docdoc 8803b647321791051baa9ae249b48b03143908965ed583a37b955bf28c6a1c77Virustotal results 25.42%Heodo
2020-09-16X_OSL_090120_BRO_091620.docdoc 9a29066aa3490e60be3e563dadcd9f7ef75e6eef752abd1bd40ab5323a57a83eVirustotal results 25.86%Heodo
2020-09-16BAL_AD7151401190FG.docdoc 9380f9cd5f7294278d3ae6cf6e6a6b7ac08e815a2649e50d5ad1bb16b9ac0bffVirustotal results 25.42%Heodo
2020-09-15BAL_443625DMZK2PEM.docdoc 629e1a081ae300a6d2f05af5d3062f2b48e11d58f2589a4dc44c4f79c9c32c87Virustotal results 27.12%Heodo
2020-09-15WYR_090120_PJP_091620.docdoc 8869192957c4d226cae4679243a3a7ac5a193866a2e1048e37ca60f29d9af28aVirustotal results 26.32%Heodo
2020-09-15INV_28639187.docdoc 3a008e06592f52dd80d9010935d5c1600be581e27402f7b909fb7d66aca492cbn/aHeodo
2020-09-15DOC_OBLKM45BQ9KVYADP.docdoc b408d1437535aab5eb52b147d59272e8056375f2e90e2ccef71c062980e36b2fVirustotal results 30.51%Heodo
2020-09-15REP_ZWS_090120_MEQ_091620.docdoc f6aeaefccc4efba1167df73a2a3ba80a76c030c8278f7e8466c4d3dc7cf0084fVirustotal results 30.51%Heodo
2020-09-15NUR_3DCJIEG0AOSIB.docdoc 350cf5c830bdf242f41ea336e2803b83af81ba91751cb13c418e5cff3674d95fVirustotal results 29.31%Heodo
2020-09-15DOC_60989171.docdoc eb6bbcf1755a8438e950e632c5e1330ff4c78dc8849914d2126abeb732ec4360Virustotal results 27.12%Heodo
2020-09-15DOC_PO_09162020EX.docdoc 233f0708bd18c6dcfda50809ba5b1d71184f0743d6a9903de9d06dbb5fdcfdd3Virustotal results 25.86%Heodo
2020-09-15CIJ_PO_09162020EX.docdoc c8c52e1ff627d998a9a7ab47afecc546bab7e768dddab4862fb9f2d0b25fc070n/aHeodo
2020-09-15FILE_PO_09162020EX.docdoc 1fdc71b89f5d3b5fce037341692415964a8c4141c9579be50045bf9d2e309afdn/aHeodo
2020-09-15PO_09152020EX.docdoc d4c8ce2687fd07ab7c3991cab5500c05e719381d7906228371f0457d260ded94Virustotal results 25.42%Heodo
2020-09-15I_PO_09152020EX.docdoc f8b89f97feff5649f70d133e5a998bb941c042aa450267dafba9ed28a95b7f59n/aHeodo
2020-09-15PO_09152020EX.docdoc 17ee903ed9c7b72546d333ce76b2e0996a4688e758937667ff466bb3ff005c00n/aHeodo
2020-09-15109322852388272320712.docdoc f8a35f4ee5b56117d206ece5cd25afb33aba58cbfb3c32748018d4424f212bddn/aHeodo
2020-09-15REP_78152978016298498.docdoc 5d9edc02f04ddf9fb8eeb524fba385c85303fdb91b154a912a32edc47763657cVirustotal results 32.20%Heodo
2020-09-15REP_PO_09152020EX.docdoc 82c25613755c7a3a9737fe08cbc7fae6d75faa2807218b65d6b5a6dfb1bbff67Virustotal results 32.20%Heodo
2020-09-15BAL_0KZY824PMUKJAA4.docdoc 2088edeb14b235a68f1d6c36b0f0538fd4850dc4001d21db0a5c147916f8124cVirustotal results 32.20%Heodo
2020-09-15PO_09152020EX.docdoc 1c6ce51748a1b4bdc97378a6091b03df69c39d6ec6185382608edd0355ae0bf5n/aHeodo
2020-09-15BAL_FQW_090120_RXS_091520.docdoc c8410c8dd820bc1e8805ba93260cd2fb0f7707d75573915bdb97ea2a01b66ea8Virustotal results 30.51%Heodo
2020-09-1517422549.docdoc 99cd329144ecd59f0a395fb6b78ebc0e16c295cbb98369baad836540e2037af9Virustotal results 28.07%Heodo
2020-09-15BAL_AP6327835610HO.docdoc 06f74948e8415b0a5c18875bf65de75f9f4513e69ebd87c743c91fd8160aafeeVirustotal results 31.03%Heodo