URLhaus Database

You are currently viewing the URLhaus database entry for https://forum.zkbrasil.com/includes/parts_service/4rk5ey34q/g12312315223lwtn7z3ecvp5s2gkso876c/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:519515
URL: https://forum.zkbrasil.com/includes/parts_service/4rk5ey34q/g12312315223lwtn7z3ecvp5s2gkso876c/
URL Status:Offline
Host: forum.zkbrasil.com
Date added:2020-09-15 20:10:06 UTC
Last online:2020-09-16 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU002939053 created on 2020-09-15 20:12:06 UTC)
Takedown time:16 hours, 18 minutes Good (down since 2020-09-16 12:30:09 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16321353995253503006.docdoc 0e0913f7c913e70406fdc7b5e47f2455d7152c4e461770cc1b9bee581491fab9Virustotal results 25.86%Heodo
2020-09-16E4EZB9ZCL.docdoc ff707add1c74a6d7884de1fdbca86c891861883fccab90f4ef5f97130f95d825n/aHeodo
2020-09-16FILE_PO_09162020EX.docdoc f03cb295ce892d3a5376e3dca50e8d59e04c023ca4bbecf921022b94432763f6Virustotal results 25.86%Heodo
2020-09-1634282950.docdoc b8d558c1ac20808b0809fcfa0c5a017da7e300736b6dbfee52ed1930c7b19a08Virustotal results 23.73%Heodo
2020-09-16INV_MJ4668813457AZ.docdoc 716dc594b3320a3bc8601253c2e46721df663c180acbb2b8e62c64f7362b06a4n/aHeodo
2020-09-16919969449571386470479651.docdoc 4127d459a04c32375faea92c1b93077f9a79c1c7ffff36dd050303fe2c295bccVirustotal results 20.00%Heodo
2020-09-16REP_7AMT79S358G.docdoc 8cb0c890547d5517a0d6a06caec30b9b2480920b6c23bc5129f3a2e991bf647bVirustotal results 20.34%Heodo
2020-09-16BAL_OX9191285425HE.docdoc c81e73cde0ba06145f34071dd88dcaa6a7a0490d9096b1c3f78886fbf5063669Virustotal results 20.34%Heodo
2020-09-16UC_H9DX6WKS0.docdoc 09c3f3aad8f9bc8f65a86d581ecb23b0a6262a9e28d5c5e19750e6770aa5e40fn/aHeodo
2020-09-16FBR_090120_LOX_091620.docdoc 5927e1050bff0bafdd3d27911f79db68592ead3752725e920c682910c76a8eafVirustotal results 20.69%Heodo
2020-09-16PO_09162020EX.docdoc ae431c5920941951a5f48a3dfeea0729513e6fe01f6641fa747033213df45ed6Virustotal results 20.34%Heodo
2020-09-160585340815247002632540.docdoc a28a23ca128d4219c14856421649e8be9836b60650040fba71022341d239b6faVirustotal results 20.34%Heodo
2020-09-16INV_GL8011235102VG.docdoc b0a0b8c0689039bcb63108626720aa99a3bf7a6b09f92dba5ac5243bdc3e61deVirustotal results 20.34%Heodo
2020-09-16PO_09162020EX.docdoc 3e62fb780c0ad60d1b4e8a1cf6e61782262a3376a1b6552c72c17df57d5375eeVirustotal results 20.34%Heodo
2020-09-16INV_RO4982040782OM.docdoc a7f50bf321bf73c7af879ec128a67f16868adbb11239f8c21520fb3ba193eff8n/aHeodo
2020-09-1632FKDBZ0YS8Q.docdoc abd53fd5f66e4ea484f4c037e59274f3933de850d9e618d2cc9123d48a571affVirustotal results 20.69%Heodo
2020-09-16N_SP3262712689VG.docdoc 1bb4012e89aef09b80eda22d99a564f0d3e923f96cbf25dc4a78ff6de6dbb31fVirustotal results 34.48%Heodo
2020-09-16DOC_QAENOHEV6P9F3.docdoc 0b1f822ec4210b6345a48fc8f51bfe50d3713137557385c9ea7116635bac1f6bn/aHeodo
2020-09-16REP_PO_09162020EX.docdoc 0dbd4a1c724732ed63f98689408f3fc72fe81f5c82ceca3ac7c45f111965e4b3Virustotal results 33.33%Heodo
2020-09-16DOC_ZZF_090120_DLU_091620.docdoc 1b96135a2846d7a48ebfda9e2ca65dd11d6820c9fb6f1ef9a9b2b15395cf48c9n/aHeodo
2020-09-16DOC_6824864527050998055760911.docdoc b75415103d2353ac48eeb8630f5fb9c840dc5b1653351fd68b9a18b4bd070b5cVirustotal results 33.90%Heodo
2020-09-16REP_AY5281487922YD.docdoc 9b7b60825eb2ba0fbacb8419b73d618db0a10d1e8b7e45a946aa8afd771038efVirustotal results 32.76%Heodo
2020-09-16FILE_959DTB7NRPZP.docdoc 0db5f8d914e43863feb97b598b9d216663ef184121d7d2fedee37f04325c1dfbVirustotal results 32.20%Heodo
2020-09-16HR6OWSU9CJZE.docdoc 5a7087081eb26bcb32ed31747d75c75ffb62a1ed796fb4f08ebb3a2f9e32e09aVirustotal results 32.20%Heodo
2020-09-16REP_ORI_090120_ZHH_091620.docdoc b2a10928dc3d7419e3b9ec74228185d8a4d57a7dbec48722c9fef2178b7baa68Virustotal results 32.20%Heodo
2020-09-16BAL_PO_09162020EX.docdoc 4d66e8cc8f45638b711778d7d1b698c5b793f452d0a58eb0a71bb5a365729c96Virustotal results 30.51%Heodo
2020-09-16INV_NB5XDXOY5D5TP1PM.docdoc adbca35477fb3a09c475fd0866dc9150946d2e4bd9b05650f9f066118659df26Virustotal results 30.51%Heodo
2020-09-16T_10639208690209350950722.docdoc ede79cad6b8517c5d9a8ce2fa49a478bf40491b3295b2d348c418589f100e877Virustotal results 33.90%Heodo
2020-09-16REP_PO_09162020EX.docdoc 8e6f30327f622ec5f0e0af698a465ea3e932a184bd57077e5561244208e45f8dVirustotal results 27.12%Heodo
2020-09-16REP_HFTSPP691C2.docdoc 233f0708bd18c6dcfda50809ba5b1d71184f0743d6a9903de9d06dbb5fdcfdd3Virustotal results 25.86%Heodo
2020-09-16REP_3995213381.docdoc c22a92c3f9f72a3ac154573621c47a61ea04bc8df6fbd72a14f55b0ac858f385Virustotal results 25.86%Heodo
2020-09-16PO_09162020EX.docdoc 4d6b056c7bab909b0af3f0a3a24f5b7fbc4453e31746d29c0c3d60122def5705Virustotal results 25.42%Heodo
2020-09-16REP_08564086.docdoc 6783ef413f3dc640c8c9accbac37c09de5db05eee45604f5334cd90e7bbc109eVirustotal results 25.00%Heodo
2020-09-16O_1966JD068JLAL.docdoc e6f1e7b2859714d5a971f9bf49e595cd31bbf292fbda1b9e5928fa031cfc7275Virustotal results 25.86%Heodo
2020-09-16Y_XG3062918603TJ.docdoc 8803b647321791051baa9ae249b48b03143908965ed583a37b955bf28c6a1c77Virustotal results 25.42%Heodo
2020-09-16FILE_PO_09162020EX.docdoc 17ee903ed9c7b72546d333ce76b2e0996a4688e758937667ff466bb3ff005c00Virustotal results 25.42%Heodo
2020-09-16REP_UBXS2MFB1CILN.docdoc 9380f9cd5f7294278d3ae6cf6e6a6b7ac08e815a2649e50d5ad1bb16b9ac0bffVirustotal results 25.42%Heodo
2020-09-15WING4JHA3F.docdoc 4f256d7af5ae891b5f196fd51cbed3f7ba7ac2b82d86e8dd998cec459949f00aVirustotal results 27.12%Heodo
2020-09-15BAL_88586883.docdoc aee8c2cd0f5858f9d9f402974a799cfa4ba52786593ce6681014c289e75f58c8Virustotal results 27.12%Heodo
2020-09-15REP_F06BJ03UOVWIX.docdoc 48cf59d8b7c9372f65bd02e6ca168e0651fdbcc3b7330dd22b34a5df23c384f1n/aHeodo
2020-09-15REP_PO_09162020EX.docdoc d4369f512f97c8b7c76bc433989129b9805389a353801dfb3ba84b6a296d5ef1Virustotal results 30.51%Heodo
2020-09-15INV_K60QW7SZKXJ527.docdoc 350cf5c830bdf242f41ea336e2803b83af81ba91751cb13c418e5cff3674d95fVirustotal results 29.31%Heodo
2020-09-15REP_PO_09162020EX.docdoc eba11506102b0d17ade3dd25ef88614226a2faa5c3710af2a89b5588f49844a2Virustotal results 28.81%Heodo
2020-09-15KA_PO_09162020EX.docdoc 6f04f539195c899715c54e7cc3db85949143180e021314c0e670e09722d2afacVirustotal results 24.14%Heodo
2020-09-15DOC_724550702287824603.docdoc 722e0b21752c8eb64fbb26fcf4ef9ab58f89050b3b690fa97b068eae6a0b522fVirustotal results 25.86%Heodo
2020-09-15INV_Q42IV99.docdoc c8c52e1ff627d998a9a7ab47afecc546bab7e768dddab4862fb9f2d0b25fc070n/aHeodo
2020-09-15FILE_PO_09162020EX.docdoc 3b610a0aa4890a007dcf6df33178a042c25d7ae68a3fdff4d368a5728f811a78n/aHeodo
2020-09-15DOC_QJJ_090120_IGC_091520.docdoc d4c8ce2687fd07ab7c3991cab5500c05e719381d7906228371f0457d260ded94Virustotal results 25.42%Heodo
2020-09-15JWS_2824614260377.docdoc 5184e08e6c595ddbb60b6ac4030286b2e70fa5ee7567cb0360b2a66ec04f8d89n/aHeodo
2020-09-15INV_UPSS1UV5SJO.docdoc d2939ee7042da0a88a76cc4e60e5a8cfbc83e5b4fad03c547ffb13bb006a2c5fVirustotal results 24.14%Heodo