URLhaus Database

You are currently viewing the URLhaus database entry for http://ekinerja.megadata.co/wp-content/6076302955/lop7uu2r92y9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:529417
URL: http://ekinerja.megadata.co/wp-content/6076302955/lop7uu2r92y9/
URL Status:Offline
Host: ekinerja.megadata.co
Date added:2020-09-16 09:33:06 UTC
Last online:2020-09-25 02:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-16 09:34:02 UTC to abuse{at}cyberdata[dot]co[dot]id)
Takedown time:8 days, 16 hours, 30 minutes Bad (down since 2020-09-25 02:04:38 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-18DOC_20085746.docdoc 83676faad35894bb04262d898f1279995a52ca4f91f343223e0403b6c915311eVirustotal results 49.15% Heodo
2020-09-18W_069NLGRHFZGC190.docdoc 7d6af6fb5524fab475918225161ccfa03fd6b0893b5d6aab343555908978e002Virustotal results 49.15%Heodo
2020-09-18PRM_090120_RQQ_091820.docdoc 01dc05c389198097e73f0e51d7e1ea7d9038367c30cf1e0408129374d3ed7db3Virustotal results 49.15%Heodo
2020-09-18B_612961913524238604.docdoc af0e40cc260afaf98685419c7a7e2a7bb5071876da22daeafb069c208b8a9ff1Virustotal results 50.85%Heodo
2020-09-18BAL_694817192.docdoc 4fc5f9e0ee25a110929851c3a515b195197663205e6fec290ba9b86b0228af11n/aHeodo
2020-09-18DOC_XU0638736554ME.docdoc 58061f1266dff582938c173bf8f0d73a71593d7d31e79899973ab5eab0d0596bVirustotal results 50.00%Heodo
2020-09-18BAL_22294394.docdoc 72a840be472b024fe4cd2e80a56e9a80988be7d4f16fa5df74eed66262615262n/aHeodo
2020-09-18REP_210DH5870U.docdoc e28bdcb88599994404e848c8dcbaeca4af4468e9e45941e1d16541054b9f0fe1Virustotal results 44.07%Heodo
2020-09-1836851544.docdoc 1121962d0a0d52780b13618c7cdcc2916ea8ffdcccb17ae0e54e0b9f8799c5ean/aHeodo
2020-09-18INV_LMP_090120_ZRV_091820.docdoc 58d2b9b0136c19aad467e9f7accc60687e7d3c797dade715f569a2f9e797f10eVirustotal results 40.68%Heodo
2020-09-18REP_IUA1G4LYX.docdoc 88ef0981b06e7ac4b9df459d7c10edc857fcf9c170057b9220ef9ddfd550f06dVirustotal results 43.10%Heodo
2020-09-18PO_09182020EX.docdoc 6e7c00de38741f3be4716a2fb65e495fb306a6a7ff86de27893f5c3e83cab5b5Virustotal results 42.37%Heodo
2020-09-18INV_HY44QK0R65ERZOLU.docdoc 3c04b25b3db13173771d70f4aa9fd25006b34fc0c02f707f2dbd8f9b15938720n/aHeodo
2020-09-18REP_PO_09182020EX.docdoc 07610dc0b3d7c1c61c9b30505f85c5cb407258560a13dd183500c1693dec0dadVirustotal results 38.98%Heodo
2020-09-18ATR_090120_ZFZ_091820.docdoc 57c17b60cd1c361ac69813484b6a4f453aa7cf993c0ec2338665a320341e496bn/aHeodo
2020-09-18UJJFCS03.docdoc ed98997bd450d0c8f1285f0677f4735e52e35f8504b6ab44ca0af91650f29ac4Virustotal results 36.84%Heodo
2020-09-1805675601.docdoc 6e221be1094865f6f92e91e222da06c0cfb67ce691d0bd25afb4b4324bb05714Virustotal results 36.21%Heodo
2020-09-18DOC_AAWK4L4LH4ATNJW.docdoc 4a6e1fd8e8858273824ae02adbef685cf16079c6baa36e1ff244a6b93db151b8Virustotal results 35.00%Heodo
2020-09-18MA9796448060QJ.docdoc 344be8e47a1c334ca0f6e8d6383c509d62ca9004f050e5a368e064e87e2e947fVirustotal results 34.48%Heodo
2020-09-18SRA_090120_JWP_091820.docdoc c68b2be94aaee607635cd2becf20f8fed9be32225970b5572ae7c83a643b7211Virustotal results 32.76%Heodo
2020-09-18BAL_ZKH_090120_KEL_091820.docdoc 2ba5ff25d9be507686f6f7c65f57b571384f713824ea7f83ca31e60eab0fdc42Virustotal results 33.90%Heodo
2020-09-18DOC_92414469.docdoc c63f6783c00a837e235c2c2405fccfe135bf4358704dad7525b4660588e6ed3aVirustotal results 33.90%Heodo
2020-09-17REP_FSV_090120_YDU_091820.docdoc 36d46656d6969e3946e5b7d590c3f84bee9577d16dc333b05a115c41760636b7Virustotal results 35.00%Heodo
2020-09-17REP_12186082.docdoc 0606ba599bf7a4fca591dc6e4c5b29805cb37284a37a2cefd0f5237a52ce46acn/aHeodo
2020-09-17K_PO_09182020EX.docdoc edee77f468412b29903ec095de648b2214e471174deffc438b41cb18fed1058bVirustotal results 33.90%Heodo
2020-09-17BAL_JN2231645243WI.docdoc ebce78b8c9a54b4d497ed1c424eb689cd0959596daf9f6748a46b65aa84b91dan/aHeodo
2020-09-17BAL_PO_09182020EX.docdoc 11cfbdf8ce4f99c93816a1ed7ff7410d051b0cc978efc9ff9fa824db596374e5n/aHeodo
2020-09-17DOC_4947745198197564492697065.docdoc 9c119c1d39a1e41201dfbb087466fa543558f959d147c3e8ef77650beaff2d9fVirustotal results 33.90%Heodo
2020-09-17FILE_DE0432906866CN.docdoc 794d05a964943c6e59eef584b6bd5ee060dec7907a990ec1a0d71260e641c74dVirustotal results 47.46%Heodo
2020-09-17FILE_NRF_090120_GZB_091720.docdoc b99a784e8e870636fa298de56b04b6b1768c85f52bf6a93574728c3bd2e9cc52Virustotal results 43.10%Heodo
2020-09-17A_TYLSW0VAJ27P.docdoc eda948b222a92d6413713f55234470c04b2433e2382638dcd362382b73dfcc8dVirustotal results 35.59%Heodo
2020-09-17XKYXOX1L.docdoc bc526212e4dd900787d51de582e68ca1ae212b49dc6834ed90e1eff5e22acdc2n/aHeodo
2020-09-17PO_09172020EX.docdoc ac68b80cefce2e5cea6c8552e9098be831aa16d377071da37b2cf423abb857b6Virustotal results 35.59%Heodo
2020-09-17FT3998120764MW.docdoc c2ad231436f38c11f24315fc258799ac335c49d266d61ff8a1ddf9a771988d66n/aHeodo
2020-09-17DOC_XU6894541840ZP.docdoc b4f9c32e1cdc0458eeb13b08c2894307dc1cdd9df8a610264a5aa0995e9e96afVirustotal results 36.21%Heodo
2020-09-17BAL_FCW_090120_LQR_091720.docdoc 1df5b6fa599fb3c788702a36ea699399ccd479a07f4dff1b7372b1bc6fcf6968Virustotal results 37.29%Heodo
2020-09-17G_TCG_090120_ODX_091720.docdoc 5550d9e16cad7854633fe0ca4c7315a5595cdb78147360f022c916fb27890aa6Virustotal results 32.76%Heodo
2020-09-17PBVLTNR.docdoc 6274d6fc5f58fb23f021e998ce3ba08addb461bc1403267302e7e7a2abc376d4n/aHeodo
2020-09-1767471940.docdoc 76c43618ef9d37e74fc07de291c5e0762aabad08ebfcf56a199a96c85d765c83Virustotal results 31.67%Heodo
2020-09-17D_PO_09172020EX.docdoc 4108b12f718477be2b40d56e715cbd628f3dc502e7a479810d88397f872994a9Virustotal results 32.20%Heodo
2020-09-17PO_09172020EX.docdoc 786d28cd90e9a2bc887c9cbf4225a7fed95a3e28b07ced5f8c932e1f1e673b66Virustotal results 32.20%Heodo
2020-09-17SJ0774328889NJ.docdoc 5a9d0acacf9a1616330ac1559a2243f80f03ec322e564298c0cff70b28014a7cn/aHeodo
2020-09-17PO_09172020EX.docdoc cd11340f54374039a82b315dc4084c5a2f7f8ee0fa6c1960de673c0a400f86f0Virustotal results 32.76%Heodo
2020-09-1701RER3W6NJV3.docdoc 3f70f108975c931a23d9f23fcbfe728d93f6f0b096014280234067b0c54d44bdVirustotal results 34.48%Heodo
2020-09-17FILE_QPY2TUQFFK.docdoc 2544f7f03bcb606491b39f0f8cba55899e5e9dd8871128a268329dd6a539f5bfVirustotal results 33.90%Heodo
2020-09-17ECG_090120_SHN_091720.docdoc 27eba47f653b19797edea37d8dbf75215328081ca3b6abb42719eb226a877a5dVirustotal results 30.51%Heodo
2020-09-17INV_XFX_090120_YWU_091720.docdoc dfc124f5ed8d3ebb78c8d924921f3195fc05cc1aa1a635e51161dcbe1106a386Virustotal results 36.21%Heodo
2020-09-1758398450.docdoc 9d101c9ae5aad02aab0e581cf566b9cf7e1f0e39db512e79045e651ee42ab9a6Virustotal results 36.07%Heodo
2020-09-17GO_LGE_090120_JYG_091720.docdoc 79d28b1f906f26beea84fa259a3953fa6fedf70176ec6a5bcd77e724f4d326abVirustotal results 37.29%Heodo
2020-09-1736372131.docdoc fe6c61d58e613b1737dd42c11ceb421b40f8f854324adeecb71245e245ed3a34n/aHeodo
2020-09-17INV_798875561.docdoc a3efdad2ea2076e2a90cd4c401817a6d4e0dcffca6f825af796416755a6fb7e2Virustotal results 31.03%Heodo
2020-09-17N_PO_09172020EX.docdoc fd0f987936c01acfb91bb84e9e9c3e6f425f55d07887f14ee595ec418d252849Virustotal results 40.00%Heodo
2020-09-17INV_YD5354827668PU.docdoc 51d460db7db57fd212907c9aed23bba4891c43175f73978da2c791c60a412c43Virustotal results 39.66%Heodo
2020-09-17U_VCT_090120_CRU_091720.docdoc aee3fb0f9a09817e17c7844a0ed7f8c34fbd6c30a83fa529ebe838670c0c4a21n/aHeodo
2020-09-17KH2722236864BS.docdoc 1d9148e92ae63e33ea191906e85289c189b94e2d74dfb50606784a2ad9b957beVirustotal results 40.68%Heodo
2020-09-17X_KKNA9RZQB2A.docdoc 9e4278eac329ac03d6c9b60c69594f50d2efb41914b428309216bdfe5ae15904Virustotal results 39.66%Heodo
2020-09-17BAL_4789587423.docdoc d15ec5002184364b882e5c3dc5c4fad1d083eeac52de352b2d263205c92e3165Virustotal results 41.82%Heodo
2020-09-17FILE_YWC_090120_FZD_091720.docdoc 9c68396b3fa012c514cfdcff37a8d8abfa59cbbb9ced4911f1133453bf1d7c5dVirustotal results 30.51%Heodo
2020-09-17DOC_711590421548.docdoc 289d6e951815f7869f284dab3b630a8adcaa56a31d17ce61c4de04bdbca2894aVirustotal results 33.90%Heodo
2020-09-17INV_82545238.docdoc e09973ac979e2a9efbdb59ea10416f8714545ff719579b21a48327219a3ec797Virustotal results 37.93%Heodo
2020-09-17UP1U60VTQ5S.docdoc d9a35783bb245b622048384501eb1c30e098c547b4d3079e0c8d01e06336464cVirustotal results 36.21%Heodo
2020-09-17LM_AFFFFBDAIWYG3.docdoc a2d7a015bbf13ab37b0062c97dce2a11c02f0657166b6fb813780017ba5de723Virustotal results 34.48%Heodo
2020-09-17FILE_NU7122647563ZG.docdoc 7bfbc615a14c1b8e533da21f2d1838f5e3c52ada91bdcbe8b6574195850b9bf3Virustotal results 25.86%Heodo
2020-09-1789354762.docdoc 32d3ded66cd762a234e91ee002a061e053d98f38a52d0fa5356bbbf1576c7880n/aHeodo
2020-09-17964116634062802.docdoc 6ba572ac222372c95a63401ec2b6710af0a9445d6c38efc7cf8397461ab1fd8eVirustotal results 27.12%Heodo
2020-09-17FUPJ_88786464379901.docdoc 1a487a6af75caefff2748862adf7200a692c1e5f6453c1d86ebceab252b5bd66Virustotal results 25.86%Heodo
2020-09-17418526491857.docdoc 7a8024cf777ab45c5c969c5efff3dd4f289bc22baf1c91bd884fc2d29435c884Virustotal results 25.42%Heodo
2020-09-17INV_PO_09172020EX.docdoc 2bc521550fad4a12b0bb8f34a8958db7b2f5b50e9f8579d30d814cee697ab694Virustotal results 25.42%Heodo
2020-09-17BAL_QRFUGF10PR8BO.docdoc 53838205956eab8a004b3f1cd4ecb92e6cfc4eae4cb978b4dafd2a8560c5186cVirustotal results 30.51%Heodo
2020-09-17INV_PO_09172020EX.docdoc 6d27f5af653565630751a1ab0faa64d0c28949cfdceef04b4c543a0b4a7666f3Virustotal results 25.86%Heodo
2020-09-16DOC_OX8S03AJ.docdoc c0418ebecc711ff38d29eb29f832c78c462b0c3f55201223702aac43a15f8e1dVirustotal results 25.42%Heodo
2020-09-16INV_PO_09172020EX.docdoc b2bfefad5d4d6a3dff230f61a9c4b055d5ae4b37b8fecca5550317c89f615504Virustotal results 25.42%Heodo
2020-09-16N_WT9132444222ZZ.docdoc e7631c5a69f76fea0835835a14a8e885f2f3b0c0dec2d577278e70d3776eb0a5Virustotal results 26.32% Heodo
2020-09-16FILE_LO7727996862XR.docdoc d1df096853342d0030f71b7be3c608ee35fd1c81bce971a45e00b001a7d85d3bVirustotal results 25.00%Heodo
2020-09-16X_XPS_090120_GLY_091720.docdoc ca5204766a181d5961896a0f4c506ed00718fad078c3a951d9343e52ad7f16d4Virustotal results 28.07%Heodo
2020-09-16QL9561621135EB.docdoc 665e45861c718dbcda0e3f7473479a62187f5248b4d99ec7d63ff91dd4eed98en/aHeodo
2020-09-16G_8049729828546537530414010.docdoc d55ed14cb859a16cddd063eefbcc2fbc78b5e75f2b964eb1f33e1954ce9f0c71Virustotal results 24.14%Heodo
2020-09-16BAL_76487680.docdoc 4fc07945a17ff1e3422b0c95992fa2750006aeb21b1e886f0c2876d4ef69a14bn/aHeodo
2020-09-16FILE_2076881647890.docdoc 39c83fd21ce730714e93e6bbe85f21770a761285c3fd1b2b2473e00644785e82Virustotal results 26.32%Heodo
2020-09-16XN4699995976DL.docdoc d30169f108ec72fbaf16bb8726e798602988e1c42a7b3020b0ef0ad0572f9625Virustotal results 25.42%Heodo
2020-09-16INV_MPD_090120_MOP_091620.docdoc fc4eb4fb15308d6878f61e096934ed77f56f5f25b48dc2f5f30f0f02cf23a0ecn/aHeodo
2020-09-1619998765.docdoc f656f7fc2ac175767aea79393803f493b18211403a390c2daf9c5dae720e26e3n/aHeodo
2020-09-16WOS_090120_FNY_091620.docdoc b88f5009f8b75ec0a35f549fa777d05a819b0ca478eedb65a7b0a9fd01d51e30n/a Heodo
2020-09-16C_IY5821304689WQ.docdoc e247f4f69c1be4c95bdf6687e2ae1adbd1635c126ace3b544ad989024da5fb3cn/aHeodo
2020-09-16I_HY5230483273LR.docdoc ef3f65e79357e42b0a2783f79e3a8c53a2b789aa8960e3927d59be3a509f9250n/a Heodo
2020-09-16INV_JR0881773792GI.docdoc d7f12b14c351620ca64769a126560507c4746cc966510d04d0fa882e521128c4Virustotal results 41.67% Heodo
2020-09-16FILE_KIRDULD85GSHMYU.docdoc 37af168ebcdcec12d2835ecc3a569839ed4660717927ae3ab0cc6a4b8a733012Virustotal results 38.98% Heodo
2020-09-16O_ES6379605381RE.docdoc 95af0a10239920178927ec407c28ad601db31d71b0a4a64091f1271a6b58d912Virustotal results 38.98% Heodo
2020-09-16POFD_86527132.docdoc 679e5f33c444b178b0da6da41a58b4590f05e7c464293e3b1d8f858dbe157124Virustotal results 41.07% Heodo
2020-09-16VWVD_RBUJAELV8J.docdoc 9c5ec196eabe90d83815fe7015b5334c7fd6bbd350de085a69e022a0fc32ad8cn/a Heodo
2020-09-16FILE_U2S07WQI2J.docdoc c88d8beb44c5609d538cae9b2bba76ebe5b09aefbb561fd2801356e147f179ebVirustotal results 38.98% Heodo
2020-09-16INV_39601908.docdoc 4254483388cd90e041291de79b3a3d26456908113cb0b2957401b5838c949c38n/a Heodo
2020-09-16FILE_PO_09162020EX.docdoc 32eec3ec66c12e442e79982e74f902432abb353ca97501ad43d92c300a1fbc4eVirustotal results 39.66%Heodo
2020-09-16KTLP_04917077.docdoc 3cddfe22684c82c3eeeb0d3c0c8745719dcd417db42c4ea6774c9a10d1a88f3bVirustotal results 38.98%Heodo
2020-09-16REP_215460732917637306624.docdoc d84e8e3441cf862fa793eb241277718737789cb1e43d92be3b8510f8bdaeddc1Virustotal results 37.29%Heodo
2020-09-16REP_PO_09162020EX.docdoc 0745a0b546e98bc288370d0b4faace44a060f1abb905403e159b812b2d694a7fn/aHeodo
2020-09-16BAL_92248020.docdoc c676f40df939ef32b19cfcd36138370ce7ed85e33cfa4e744be20734235ef2can/aHeodo
2020-09-16FA_6145549299562213858.docdoc 4de948e6257ef045a9344b48f4ddf5612d889f7d5cd462390c1e6fc333fe28fcn/aHeodo
2020-09-16FOBK_IT6927014924RA.docdoc e5c37ebebf58e59d2a4855aa35821a501f6412b3960604cb50fd0d14009888e9n/aHeodo
2020-09-16REP_47800878.docdoc 895d3180e6cd0f21d0b56b5061eb6a16f029d010fc833dd6fc2b85ebbbd6b76bVirustotal results 32.20%Heodo
2020-09-16INV_PO_09162020EX.docdoc 5e7e68c80382b2ce3e2a1020acb90d0fc82146e5ce430253a08c7d8c4520952cVirustotal results 26.32%Heodo
2020-09-16M_48219838.docdoc 8f20ff26311834e143d010f2fa23f292d4d619b34cf2639d9d4ef2a7e4df9d8fVirustotal results 28.07%Heodo
2020-09-16FILE_IDH_090120_UUH_091620.docdoc db2e9beef71da38913f682036ac17e7cf2e5f9a0efbc1bf2f4c823a425f82ae7Virustotal results 26.32%Heodo
2020-09-16DOC_DGQOQIUQPLH1SP8.docdoc 8df40fea0429dee60fdf8fa354db52ddf3cbe643cd5945d226b5eedca75bd659Virustotal results 25.86%Heodo
2020-09-16GOY1L21CHLKP.docdoc 55caf48be5ac9c86baa0a943d9733131878d5b4316acdaeb3f9fc054a2e3bd38Virustotal results 25.42%Heodo
2020-09-16FILE_LWE_090120_STS_091620.docdoc bd089de03b0081c4cbcc665d5baf0f6577a7a0c7c5b2b45da1131330ce26822bVirustotal results 25.86%Heodo
2020-09-16BAL_LDK_090120_PRW_091620.docdoc 4f21e25c362b1dc72f9dd3b2b0910516918a46a4016a631a2ee276493d7d160dVirustotal results 27.59%Heodo
2020-09-16DOC_TLU_090120_EYW_091620.docdoc 4a42864618e8b860f0cc23b81a63cfeb95e60a000bac0acb3edd4294f8531329Virustotal results 25.42%Heodo
2020-09-16REP_22833803.docdoc 1baca6df5405b1382432d42c2e064da832f47d748a7e69ce461a438d1e9eeb76Virustotal results 25.42%Heodo
2020-09-16A_7491315058380306658342.docdoc ee69760c14fa03c104d83ca3e3ba2c9649d7c8feafea5c32b239f32e21851a7dVirustotal results 21.05%Heodo
2020-09-16FILE_ZX3165245217LP.docdoc 8398f9c5f37ef0558a84d839ee7058340351a71fe4cf26d2590652a5a66857f8Virustotal results 21.05%Heodo
2020-09-16FILE_597459240.docdoc c81e73cde0ba06145f34071dd88dcaa6a7a0490d9096b1c3f78886fbf5063669Virustotal results 20.34%Heodo
2020-09-16INV_NRQ_090120_CJR_091620.docdoc b8684570ff020824676af136d3c0076181180c4d7abe963ffb04a340ecb68186n/aHeodo
2020-09-16OFB_090120_UDX_091620.docdoc 85e8c954fc64556cac2d3c01b725c69f7b2640b92ee156c1875c02f923db643aVirustotal results 20.34%Heodo