URLhaus Database

You are currently viewing the URLhaus database entry for https://obazda.de/admin/statement/wg7nvn/u45191556324973215k779xwc6mebnagqej/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:533948
URL: https://obazda.de/admin/statement/wg7nvn/u45191556324973215k779xwc6mebnagqej/
URL Status:Offline
Host: obazda.de
Date added:2020-09-16 16:04:04 UTC
Last online:2020-09-19 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-16 16:06:35 UTC to abuse{at}strato[dot]de)
Takedown time:2 days, 17 hours, 6 minutes Poor (down since 2020-09-19 09:13:09 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-1833102833145362136125.docdoc b525847655a58e746a7e416a39cab7b90b6a71a6228f915657e78f00799dddffVirustotal results 40.68%Heodo
2020-09-18QFCB1N938DVVB7H.docdoc 2a866b80dba5296ae8ac1b012b79caa8f11c6e64bffcbb7aae8bb2e327982728Virustotal results 37.29%Heodo
2020-09-18KB2300327807IH.docdoc 18b503caff600c141a8c902b753c8aeeea72206dc7884fdb2c2aaa7b36da6450Virustotal results 35.59%Heodo
2020-09-18DFHBDEQD6O.docdoc a17a378e78e3f2c7ad05f3802369e818c2b5669a6c4a1136d096f598417a46e6Virustotal results 37.29%Heodo
2020-09-18FILE_60KBE7F23GK8HHP6.docdoc 39aaa2dda57fc4b9a918325a7de9d04f3064adfe0adf8ec9665c1068e9036497Virustotal results 34.48%Heodo
2020-09-1806012040.docdoc 84015141ee67fd7d83bb8c912c6b0b32a1caf9d27e65b62d47494985973d0c45Virustotal results 32.20%Heodo
2020-09-18XQF_090120_CGO_091820.docdoc b02fe797b672303974d385294fa02def7aad1778e2108e67e7d4bff8d574d724Virustotal results 27.12%Heodo
2020-09-18DOC_WUI_090120_SUR_091820.docdoc 6ab74ad3c653889035ff3db8f4ec2f7e9a51ff1ba6eaf7bad699662c4b40c753Virustotal results 27.59%Heodo
2020-09-18DOC_6744847906417125.docdoc 917291b862e0556f8d98d9dcae320d8b6d9307ee1978e2c8ddf0608cfb87ad85Virustotal results 22.03%Heodo
2020-09-18REP_I57FF1JD0XUT5.docdoc 37adedb2ef245a78142b80b0da888715d3abb817111e00ae9f6c2976a79136f4Virustotal results 25.00%Heodo
2020-09-18J_UY3103825798TS.docdoc d2a69c58abe4e6aa189d2eb2df014d31d32208d552627e3802565ae231cbc587Virustotal results 21.05%Heodo
2020-09-18FILE_33879837.docdoc e2aa96c2ea0b7006d5694ffeb59a7f8e5e10c69a67546cdce25d765398b73a1dVirustotal results 22.41%Heodo
2020-09-18BAL_NOJ_090120_KWT_091820.docdoc 83676faad35894bb04262d898f1279995a52ca4f91f343223e0403b6c915311eVirustotal results 49.15% Heodo
2020-09-18FG1XBC0S.docdoc 06c9227d4059187168fe843f5a2e505de30fd0b57bd50e63a3ec103241277414Virustotal results 49.15%Heodo
2020-09-18623044832978435.docdoc 01dc05c389198097e73f0e51d7e1ea7d9038367c30cf1e0408129374d3ed7db3Virustotal results 49.15%Heodo
2020-09-18REP_78805555402595997.docdoc af0e40cc260afaf98685419c7a7e2a7bb5071876da22daeafb069c208b8a9ff1n/aHeodo
2020-09-18DOC_67447886964677822080.docdoc 95aa58c779d17b78ffab83759ad0e70fdf40edf24f573b20839e2da83896d55aVirustotal results 50.00%Heodo
2020-09-18VA_29895056.docdoc 58061f1266dff582938c173bf8f0d73a71593d7d31e79899973ab5eab0d0596bVirustotal results 50.00%Heodo
2020-09-18Z_40600094.docdoc 72a840be472b024fe4cd2e80a56e9a80988be7d4f16fa5df74eed66262615262n/aHeodo
2020-09-18D0BBI0XFR0.docdoc eaf897448ba42c47e03919da87640483febb9e38c0f457471d5b91d0bd6b99e7n/aHeodo
2020-09-18BAL_832859736623919863893.docdoc 018f912e134b424700bb01c6a3b3b30d8337eefec291cf518e31c8c4eda6f3f1Virustotal results 40.68%Heodo
2020-09-18935997237555043433161.docdoc 8de1f0bc21df74b36c7d23af7047d1e92050ec37ed0daef2adadb8dee5322488Virustotal results 40.68%Heodo
2020-09-18BAL_77357356.docdoc 3c558e63407682d8fee665283a24bb73c5839f85317215925264c1b15071b061Virustotal results 42.37%Heodo
2020-09-18PO_09182020EX.docdoc d35c221d6da8fb62ac4d9b14ed2a8112b1d26af20f8f82a0ee4b60fcaa759903Virustotal results 43.10%Heodo
2020-09-18IA_JFMRESE0NMT0GI.docdoc 971112bf91b341992aa8874b52425261e68b7cec89ea114487056783acc97e56Virustotal results 42.37%Heodo
2020-09-18DOC_82150806.docdoc b93adb958e71ae93847f4db73ae4fb7f9f596e3f9ff08cb951842dfa36911795Virustotal results 37.29%Heodo
2020-09-18DOV_090120_RJW_091820.docdoc 4b9a2688db3fd6465d84ee5baf9fbdf6c50772a16d3e7c265c758ae284e8a63dVirustotal results 37.93%Heodo
2020-09-18REP_6401095611058.docdoc ed98997bd450d0c8f1285f0677f4735e52e35f8504b6ab44ca0af91650f29ac4Virustotal results 36.84%Heodo
2020-09-18INV_PO_09182020EX.docdoc 6e221be1094865f6f92e91e222da06c0cfb67ce691d0bd25afb4b4324bb05714Virustotal results 36.21%Heodo
2020-09-18REP_IR8425619757VX.docdoc b157c7e4296be966f45fa1efac02053cbc78a6c2012faf885bd9654287f0f35dVirustotal results 35.59%Heodo
2020-09-18DOC_NS0050081574XK.docdoc b42e69393fa458ca73822fb6b7dab4911069668786030a5a6d1ae3b67e107e44Virustotal results 35.00%Heodo
2020-09-18REP_PA4219616189NY.docdoc d95aeafb85cdd18684d7a50288bd895c7549455d652bc1997dc4b27c26788c92Virustotal results 33.90%Heodo
2020-09-18FH_PO_09182020EX.docdoc 043a2eea0e970c626f6ff1aa5ec43ffd5974bb5192e55c0595ca6b3ef0404fd7Virustotal results 34.48%Heodo
2020-09-17ZIP_090120_QBG_091820.docdoc 36d46656d6969e3946e5b7d590c3f84bee9577d16dc333b05a115c41760636b7Virustotal results 35.00%Heodo
2020-09-17FILE_ZG9359326229VB.docdoc 0606ba599bf7a4fca591dc6e4c5b29805cb37284a37a2cefd0f5237a52ce46acVirustotal results 35.00%Heodo
2020-09-17PO_09182020EX.docdoc 5735f038fc7e1b58a8e434b1b4e5080173709bb93463e49005fef016349811b8n/aHeodo
2020-09-17GSE_090120_FZC_091820.docdoc fee4f66531abb15058e37ea550aab747c84213322ca2e601d25dd1de87c7c234Virustotal results 33.90%Heodo
2020-09-17FILE_HZ9147361084NJ.docdoc 24b4b9f235edf4c63faa8b1722508868d0727dd455e4abcbdaf1ac38eb379dfeVirustotal results 33.90%Heodo
2020-09-17DOC_Y7DSH63L2AW2A.docdoc 11cfbdf8ce4f99c93816a1ed7ff7410d051b0cc978efc9ff9fa824db596374e5n/aHeodo
2020-09-17DOC_YUE_090120_MGL_091820.docdoc ee811cdfd43ecaeeeaa64d3ce8c80c91740d968333e17fec9cca54341338c471n/aHeodo
2020-09-17DOC_15864405.docdoc 794d05a964943c6e59eef584b6bd5ee060dec7907a990ec1a0d71260e641c74dVirustotal results 47.46%Heodo
2020-09-17BN8QI1MP.docdoc 0c92438923e00f86c72398ce224b1da5b328f73bd3cc1fd267475a31ca0a8b53Virustotal results 48.28%Heodo
2020-09-17FILE_PO_09172020EX.docdoc 42672053a8a7951c0df29a2a4de07128b0577be82c17609a53a93556faffb7abn/aHeodo
2020-09-1780683507.docdoc 0b2362700a49af3797e3a32128e561ba70c171de8406a65e5290362ab574c31fVirustotal results 40.00%Heodo
2020-09-17FILE_23115639608295.docdoc 03de8778d73e8753ae7006da7b533c87ac0ee1c1552d06188e045d5d578782a7Virustotal results 35.59%Heodo
2020-09-17DOC_29257898.docdoc 8245f1e6e844bf5725007fd5e4466bd24473fec32d4c47bb3fc445bac627b9beVirustotal results 34.48%Heodo
2020-09-17BAL_26023514.docdoc 6f259bd35269f76ac42871f5c84e9d480c5ab4b878108a381a7040a8cc0b5434Virustotal results 35.59%Heodo
2020-09-17WX6679711309AI.docdoc 1df5b6fa599fb3c788702a36ea699399ccd479a07f4dff1b7372b1bc6fcf6968Virustotal results 37.29%Heodo
2020-09-17FILE_FQ6585751178FR.docdoc 24c7551200e919fc0bdce151aef784c0c324c81a337a8bf70e67cfebf1abae0dn/aHeodo
2020-09-1754709883.docdoc 6274d6fc5f58fb23f021e998ce3ba08addb461bc1403267302e7e7a2abc376d4Virustotal results 32.76%Heodo
2020-09-17INV_785931901.docdoc 1da1190d2c7472ff429ae35611b7120698dca55175d1c298e68f24f33fc4caecVirustotal results 32.76%Heodo
2020-09-17INV_PO_09172020EX.docdoc 1e7768f22ed163e40214a6e4cc98050525441233f7a49852621606f4eedf937aVirustotal results 32.20%Heodo
2020-09-17DOC_AGAXE2NF5MZ3F.docdoc 3b200de37642bf547fd1238ca87c19bb62a4b13de3726d275d70acdd2f7bd4d9Virustotal results 31.67%Heodo
2020-09-1750931542.docdoc a162bffd2c7937b14cbc56696db2b2a7a964b9998e204c32edaa94c4de1cddc1n/aHeodo
2020-09-17DOC_55558209805.docdoc 86c6d2a8e253f6f718c9c33f90a752c85aa9fc47c5a0addf2d8da2e16a5683c0n/aHeodo
2020-09-17C_LFKZ6Y1KDB.docdoc cd7eff89ab25979594648885ed165b0e8cb844bf354d2cd77afb285047573fa3Virustotal results 30.51%Heodo
2020-09-17DOC_DL7563720379IX.docdoc 53cb476741739fa01399bdb2984585d7b534db91b3501aeecd3a07f4d9f927adVirustotal results 31.03%Heodo
2020-09-1797044946.docdoc 0424e4caf10c9b8b80f3114816b85e8268b9a288eb368e1ce66e6ab8e5b73b75n/aHeodo
2020-09-17INV_TIL_090120_IBJ_091720.docdoc ff89c1fbff53a20e37f95ba53c554cc3e185ffea3af08c722c963aced19af949Virustotal results 37.93%Heodo
2020-09-17FILE_NPP_090120_TPH_091720.docdoc dfc124f5ed8d3ebb78c8d924921f3195fc05cc1aa1a635e51161dcbe1106a386Virustotal results 36.21%Heodo
2020-09-17C_02285694.docdoc 9d101c9ae5aad02aab0e581cf566b9cf7e1f0e39db512e79045e651ee42ab9a6Virustotal results 30.51%Heodo
2020-09-1719804649.docdoc 79d28b1f906f26beea84fa259a3953fa6fedf70176ec6a5bcd77e724f4d326abn/aHeodo
2020-09-17INV_TDSB9IGVMW.docdoc ac629bfa977c9c601f69581348de29fc7da506da5a9b40c3c9111d37dbc3076en/aHeodo
2020-09-17REP_LE7525569191RN.docdoc a3efdad2ea2076e2a90cd4c401817a6d4e0dcffca6f825af796416755a6fb7e2Virustotal results 31.03%Heodo
2020-09-17FILE_28122245.docdoc fd0f987936c01acfb91bb84e9e9c3e6f425f55d07887f14ee595ec418d252849Virustotal results 40.00%Heodo
2020-09-17REP_RK6048359526JN.docdoc dcf52647f987ed5fd370ecf3ddd3dedf9c3bcda6c29057f5464d8222839fc45cVirustotal results 40.35%Heodo
2020-09-17FILE_CLN_090120_DUD_091720.docdoc aee3fb0f9a09817e17c7844a0ed7f8c34fbd6c30a83fa529ebe838670c0c4a21n/aHeodo
2020-09-17FAW_090120_YCZ_091720.docdoc 55830632b4ab2552e0bd05b69d7e03291c05b89c3f4a37dccb611ec180d70721Virustotal results 38.98%Heodo
2020-09-17MP2734700805QE.docdoc 9a88ee70e3fe3b917d0907d5061182917ad1a2fce66ea4cea78b8a9e870be220n/aHeodo
2020-09-17INV_18716634.docdoc f0c89d19ca9b6c30286a2f5a0383fee0c9516589dabbcde5749a541cb666b41cn/aHeodo
2020-09-17DOC_PO_09172020EX.docdoc 8d1ff2bacfbda66fbafa8dd2c05aa1912c32f694f2d0aaac4ac43897edcb677fVirustotal results 35.59%Heodo
2020-09-17REP_93007223.docdoc 289d6e951815f7869f284dab3b630a8adcaa56a31d17ce61c4de04bdbca2894aVirustotal results 33.90%Heodo
2020-09-17BAL_04905602.docdoc b16adf0d1893ff9c5ccdcc3c1ab65b9b3f8c570cdd9bb139f238f4be5b89cc8eVirustotal results 31.03%Heodo
2020-09-1723569208.docdoc b4306a30afe6746f29ea38b3e2dca0704d5d3d18107aa1b8ca555bd35fa918f7Virustotal results 27.12%Heodo
2020-09-17BAL_SA6214186786JZ.docdoc e5e50b3fe1f789a9a2a4a7b75735e5bd4bb90824b7925886453fe6c80d5641aeVirustotal results 33.33%Heodo
2020-09-17812360603296348.docdoc 7bfbc615a14c1b8e533da21f2d1838f5e3c52ada91bdcbe8b6574195850b9bf3Virustotal results 25.86%Heodo
2020-09-17REP_PO_09172020EX.docdoc 8f30ed97624714bbc4dd8ce51400050e106aef3630f8510ffd8195e28c9ea6e9n/aHeodo
2020-09-17L_PO_09172020EX.docdoc 32d3ded66cd762a234e91ee002a061e053d98f38a52d0fa5356bbbf1576c7880n/aHeodo
2020-09-17INV_YU1378163768FR.docdoc a9c8d3bb56d6abf69a804578bde7b85ae2717ff03d86c79d9f96d313d82552b5Virustotal results 28.81%Heodo
2020-09-17BAL_PO_09172020EX.docdoc 76bf8d09a314a6ed1f11e8794d3027fcedcc3762677e37d8f7a304e4d370837cVirustotal results 27.59%Heodo
2020-09-17V_01504187.docdoc ba46d0a65699ff5ec5670d31287ae8d04710450b5d267d9e4a2fdf0e94078194Virustotal results 25.42%Heodo
2020-09-173646600941020863729532919.docdoc 11edbb83a5be58e02605322f9c28134420f1aafe0e30a23b264ef751657c70daVirustotal results 25.42%Heodo
2020-09-17INV_OLX_090120_EOX_091720.docdoc 409d5db4ee06957895e043e25c81a8d9b2438a172c248bfc3f149c6c947e3ce3Virustotal results 26.67%Heodo
2020-09-17DOC_IZMQDZFY.docdoc 39c83fd21ce730714e93e6bbe85f21770a761285c3fd1b2b2473e00644785e82Virustotal results 27.12%Heodo
2020-09-17DOC_37172156.docdoc d30169f108ec72fbaf16bb8726e798602988e1c42a7b3020b0ef0ad0572f9625Virustotal results 25.42%Heodo
2020-09-16BAL_ONO_090120_DCK_091720.docdoc c0418ebecc711ff38d29eb29f832c78c462b0c3f55201223702aac43a15f8e1dVirustotal results 25.42%Heodo
2020-09-16FILE_00349455.docdoc b88f5009f8b75ec0a35f549fa777d05a819b0ca478eedb65a7b0a9fd01d51e30Virustotal results 25.86% Heodo
2020-09-16W_PO_09172020EX.docdoc 6d9cad95f8aa3d8219f21391e294a8dedbde904308f501b7f4be63eb92a8dcf4n/aHeodo
2020-09-16DOC_VBM_090120_SWB_091720.docdoc 665e45861c718dbcda0e3f7473479a62187f5248b4d99ec7d63ff91dd4eed98en/aHeodo
2020-09-16M_0195085531329524125003.docdoc 528a62bc2a5bb42529a57abc0367b0a612ebe84f846906aa5a6737e759d6ae84n/aHeodo
2020-09-16BAL_AOF_090120_JTX_091720.docdoc 7a8024cf777ab45c5c969c5efff3dd4f289bc22baf1c91bd884fc2d29435c884Virustotal results 25.86%Heodo
2020-09-16W_83689003.docdoc 2d28945e5e6a8cb9f9e82d32bbff50d953e72e8f55c46e910c596d92bf646963Virustotal results 25.42%Heodo
2020-09-16REP_4073497092380213.docdoc 8f96a4ee289f6093a2f1afe8c584cba4a802c054ef22fde70d451254191872fdn/aHeodo
2020-09-16BAL_42762828.docdoc 1ecaceaeb20649c823b3a63accf639925ba8e4c350b2509496c04dbd622d5d4eVirustotal results 25.86% Heodo
2020-09-1621565523.docdoc 66bd50b4b2f0524aff6b9f64fcad5a686d04778fc56eae470249da88f7c40077Virustotal results 25.42%Heodo
2020-09-16INV_PO_09162020EX.docdoc b3f921be965718a9741b8f63d9b29dba0345f98cdfda7a0cabae90ffabc8043an/a Heodo
2020-09-1697882485.docdoc d1df096853342d0030f71b7be3c608ee35fd1c81bce971a45e00b001a7d85d3bVirustotal results 25.42%Heodo
2020-09-16I_KE3092096939QR.docdoc 7cad27b68df51d87f204a171a2f75a578b52e11f339a2bab138c6ada02b5a196Virustotal results 25.42%Heodo
2020-09-16M_AM4769934669GC.docdoc d7f12b14c351620ca64769a126560507c4746cc966510d04d0fa882e521128c4Virustotal results 41.67% Heodo
2020-09-16BAL_O4UTT5T4A.docdoc da87185fb8a79bff00dfd7aa5d3a7798054a8b1c882b4a25180cbac2b863f2c3Virustotal results 38.60% Heodo
2020-09-16BAL_JAJ_090120_IPR_091620.docdoc 1e5ed60832baaf0e362870373615cff90279bbbc4e544c76224f7528687276eeVirustotal results 37.29% Heodo
2020-09-16E_PO_09162020EX.docdoc 9c5ec196eabe90d83815fe7015b5334c7fd6bbd350de085a69e022a0fc32ad8cn/a Heodo
2020-09-166JKBGVSEM3NT1J6.docdoc 89e280d00eba5184867b52270ea583f8bda9161dcb52921411e456747741e571n/a Heodo
2020-09-16REP_SXI_090120_FVK_091620.docdoc c88d8beb44c5609d538cae9b2bba76ebe5b09aefbb561fd2801356e147f179ebVirustotal results 38.98% Heodo
2020-09-16REP_UDH_090120_QMJ_091620.docdoc 4254483388cd90e041291de79b3a3d26456908113cb0b2957401b5838c949c38n/a Heodo
2020-09-16REP_4237568293628472.docdoc 670c131402354de954057f1eb06650e55ee70a17fe5360b26daec2ba40917157Virustotal results 39.66%Heodo
2020-09-16UJ3999593191II.docdoc 06875ecfcdad40771a2a6d4ea795ebf797776a5fb3289a4f4f6207dc2d4ff91fn/aHeodo