URLhaus Database

You are currently viewing the URLhaus database entry for http://szynal.info/ywwi/eTrac/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:538557
URL: http://szynal.info/ywwi/eTrac/
URL Status:Offline
Host: szynal.info
Date added:2020-09-16 22:20:04 UTC
Last online:2020-09-17 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-16 22:22:25 UTC to abuse{at}ovh[dot]net)
Takedown time:17 hours, 8 minutes Good (down since 2020-09-17 15:30:26 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-17XSZ_PO_09172020EX.docdoc 266182936e91bf387900a37c29c044541d8646676cd85790aa27214e6f210848n/aHeodo
2020-09-17RAG_090120_BCF_091720.docdoc 28e0ec9faec8fb63dd3210568b84e14423b5bfe6e353859a2da0fadc23b3e8ddn/aHeodo
2020-09-17HQ5555712201NR.docdoc 55e876b6274746f9d8486bee3ae8b45b9fac29272c39e6d09ec38a93903d3decVirustotal results 35.59%Heodo
2020-09-174960071021465406216291290.docdoc 14650f22ccd9ac8f4effcb6415afc3ee21a1a681e0d621888dd3e28a30e9e237Virustotal results 36.67%Heodo
2020-09-17FILE_447645960.docdoc 4988159f7deee6fa12b723aa0158f06c3e3b77034a97827b39e69ffa5c2b8d16Virustotal results 37.29%Heodo
2020-09-17GP8545641991TP.docdoc 24c7551200e919fc0bdce151aef784c0c324c81a337a8bf70e67cfebf1abae0dn/aHeodo
2020-09-17DOC_J17T2DD58499LUFS.docdoc 9ffdb4d90517b3838da2fe89fe09c33a7351ab0d5b14173bf9674c01c88c1a7aVirustotal results 31.67%Heodo
2020-09-17DOC_11686314.docdoc 76c43618ef9d37e74fc07de291c5e0762aabad08ebfcf56a199a96c85d765c83Virustotal results 31.67%Heodo
2020-09-17NVJ_EJF_090120_JHB_091720.docdoc 4108b12f718477be2b40d56e715cbd628f3dc502e7a479810d88397f872994a9Virustotal results 32.20%Heodo
2020-09-17FILE_38256041.docdoc 1e7768f22ed163e40214a6e4cc98050525441233f7a49852621606f4eedf937an/aHeodo
2020-09-17BAL_YY8OE3Z4.docdoc ad55f28a8afc74e7d12b0862d1efc14cccb40e3ff5a2faff1b30c26d2cba6d17n/aHeodo
2020-09-17A_88352250.docdoc cd11340f54374039a82b315dc4084c5a2f7f8ee0fa6c1960de673c0a400f86f0Virustotal results 32.76%Heodo
2020-09-17641693375650436582.docdoc d6780dd989cd52d8f8db998fedd1bdc4d5b52c738e0850db64c96310eddd7c1an/aHeodo
2020-09-17DOC_87239640641130058177958.docdoc 2544f7f03bcb606491b39f0f8cba55899e5e9dd8871128a268329dd6a539f5bfVirustotal results 33.90%Heodo
2020-09-17DOC_OJO_090120_FCX_091720.docdoc 08ea41da443b28325813eaf4915479f7b46fb810c9abb7ff732f3da617f9aaa4Virustotal results 35.59%Heodo
2020-09-171QDPYSXEI.docdoc fa191cce995bce7e56b494fa94b13859f68f274e86a7aceadbac93d6778ad84bVirustotal results 35.59%Heodo
2020-09-17EQ0TD917.docdoc dd730a186b979cc083c88419bd457f1ad9a0c235f8ac5c7552b4b9d24fb9db2dn/aHeodo
2020-09-17TH1038471731QB.docdoc 983df755ad1ff2fcd969c936320a9571908168ddbff5caa34b63ea51be406312Virustotal results 35.59%Heodo
2020-09-17REP_BE5503840836WA.docdoc e943c361eeea788f3fbad581f7d9317d305cd0cb8b17c745b04479b16c52f735Virustotal results 35.00%Heodo
2020-09-17DOC_Z8OYGPAHLIZ5.docdoc a3efdad2ea2076e2a90cd4c401817a6d4e0dcffca6f825af796416755a6fb7e2Virustotal results 30.51%Heodo
2020-09-17REP_23360742.docdoc fd0f987936c01acfb91bb84e9e9c3e6f425f55d07887f14ee595ec418d252849Virustotal results 40.00%Heodo
2020-09-17PO_09172020EX.docdoc 0ed1adf222903a5b3335427d554d4a74c05a27cfd1a438788c04f3b3d720c002n/aHeodo
2020-09-17WV3012541958MG.docdoc 51d460db7db57fd212907c9aed23bba4891c43175f73978da2c791c60a412c43Virustotal results 39.66%Heodo
2020-09-17PO_09172020EX.docdoc aee3fb0f9a09817e17c7844a0ed7f8c34fbd6c30a83fa529ebe838670c0c4a21n/aHeodo
2020-09-1788159866718184281906.docdoc b01858672d33ba389a6a20f1c3d0cdf3987bb6f7d3009d178478ec6bf0fbd674Virustotal results 37.93%Heodo
2020-09-17W_78328678.docdoc 9a88ee70e3fe3b917d0907d5061182917ad1a2fce66ea4cea78b8a9e870be220n/aHeodo
2020-09-17D_61554377585.docdoc d15ec5002184364b882e5c3dc5c4fad1d083eeac52de352b2d263205c92e3165Virustotal results 41.82%Heodo
2020-09-17KZ_FWT_090120_QNV_091720.docdoc 8d1ff2bacfbda66fbafa8dd2c05aa1912c32f694f2d0aaac4ac43897edcb677fVirustotal results 35.59%Heodo
2020-09-17QJ7792433585OK.docdoc bd1df420c9abd76301cf6f1f9bc3fff3ae1c4e3601ac5beccb4f54777402c959Virustotal results 37.29%Heodo
2020-09-177QT7ZWRAGKU.docdoc 289d6e951815f7869f284dab3b630a8adcaa56a31d17ce61c4de04bdbca2894aVirustotal results 33.90%Heodo
2020-09-17UY_ASW_090120_DBL_091720.docdoc e09973ac979e2a9efbdb59ea10416f8714545ff719579b21a48327219a3ec797Virustotal results 37.93%Heodo
2020-09-1728790191.docdoc d9a35783bb245b622048384501eb1c30e098c547b4d3079e0c8d01e06336464cn/aHeodo
2020-09-17FC_1HSTT8L9.docdoc 1a945df2c4c5399840e2cdcc623c15e12451e66db694d71f26bd718dc8628993Virustotal results 31.67%Heodo
2020-09-17PO_09172020EX.docdoc 430ef6af760d2105f3c14655f66ff5dc191916c938a26256085965a4a536c827Virustotal results 32.20%Heodo
2020-09-17I_PO_09172020EX.docdoc 8f30ed97624714bbc4dd8ce51400050e106aef3630f8510ffd8195e28c9ea6e9n/aHeodo
2020-09-1709095879.docdoc a9c8d3bb56d6abf69a804578bde7b85ae2717ff03d86c79d9f96d313d82552b5Virustotal results 28.81%Heodo
2020-09-1759978565.docdoc 76bf8d09a314a6ed1f11e8794d3027fcedcc3762677e37d8f7a304e4d370837cVirustotal results 27.59%Heodo
2020-09-1763823164.docdoc 6ba572ac222372c95a63401ec2b6710af0a9445d6c38efc7cf8397461ab1fd8eVirustotal results 27.12%Heodo
2020-09-17PO_09172020EX.docdoc 1a487a6af75caefff2748862adf7200a692c1e5f6453c1d86ebceab252b5bd66Virustotal results 25.86%Heodo
2020-09-17INV_JXV_090120_DBS_091720.docdoc 409d5db4ee06957895e043e25c81a8d9b2438a172c248bfc3f149c6c947e3ce3Virustotal results 26.67%Heodo
2020-09-17G_PO_09172020EX.docdoc 53838205956eab8a004b3f1cd4ecb92e6cfc4eae4cb978b4dafd2a8560c5186cVirustotal results 25.86%Heodo
2020-09-17BAL_677362982816265651240718.docdoc d30169f108ec72fbaf16bb8726e798602988e1c42a7b3020b0ef0ad0572f9625Virustotal results 25.42%Heodo
2020-09-168835957965540222329.docdoc 1ecaceaeb20649c823b3a63accf639925ba8e4c350b2509496c04dbd622d5d4eVirustotal results 25.86% Heodo
2020-09-162ACPOVAXU5U0VG4.docdoc b2bfefad5d4d6a3dff230f61a9c4b055d5ae4b37b8fecca5550317c89f615504Virustotal results 25.42%Heodo
2020-09-16DOC_407EWJY.docdoc fd4fb3464a7f787ee4d5b1795fe7b4d8ffde4a1683fc6620602fb78ba52f52a9Virustotal results 26.32% Heodo
2020-09-16D_64962012.docdoc 73158e3c574c5cfbe98520ebb3b8c4270609205751d997b87414e5a43980f960Virustotal results 25.86%Heodo
2020-09-16K_2657392548161461619043.docdoc ca5204766a181d5961896a0f4c506ed00718fad078c3a951d9343e52ad7f16d4Virustotal results 25.86%Heodo
2020-09-16BAL_16787900.docdoc f8be1cb32fdc9776f4b599f4b99eb0315d3fccebbdc850498b96f6a65fe9e02cn/aHeodo