URLhaus Database

You are currently viewing the URLhaus database entry for http://www.mascolokos.com/wp-admin/swift/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:545087
URL: http://www.mascolokos.com/wp-admin/swift/
URL Status:Offline
Host: www.mascolokos.com
Date added:2020-09-17 12:22:33 UTC
Last online:2020-09-24 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-17 12:24:21 UTC to abuse{at}scip[dot]es)
Takedown time:6 days, 22 hours, 1 minutes Bad (down since 2020-09-24 10:25:51 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-18QM_46237375.docdoc 83676faad35894bb04262d898f1279995a52ca4f91f343223e0403b6c915311eVirustotal results 50.85% Heodo
2020-09-18BAL_41639362.docdoc 06c9227d4059187168fe843f5a2e505de30fd0b57bd50e63a3ec103241277414Virustotal results 49.15%Heodo
2020-09-180767182799213.docdoc 7d6af6fb5524fab475918225161ccfa03fd6b0893b5d6aab343555908978e002n/aHeodo
2020-09-18DOC_CK0523120362CF.docdoc 3e1cb9fa06ea2f5d817e2b8a1430d73322593627bb4b5ca66c2f4e9306c401f0n/aHeodo
2020-09-1818518318.docdoc fcba92929cd27ca2bdb803c58ca49fdd35fc6f3b2781278d45dd62e1e46f8742n/aHeodo
2020-09-1838274545.docdoc 8f5dd0f7d3c0f356a4a2cd39351f11b5be1e32ff16162229fff6548dc8ada245n/aHeodo
2020-09-18PO_09182020EX.docdoc dc0b178d082fb9ef3479c57bb72a459f9129a9dec9ae09543e29610b27df1baaVirustotal results 48.28%Heodo
2020-09-18LFT_85723992.docdoc 2111e686944a54f955abb3629f1c0ea08c05a3f1dd451181a8612dbcf4e25cc6n/aHeodo
2020-09-18BAL_619619333168181434.docdoc 6141c4ca354e41f195ad486becc30692e174fa890d504b80a5fde1d32f38ee3cn/aHeodo
2020-09-18J_87055495661095929641.docdoc 018f912e134b424700bb01c6a3b3b30d8337eefec291cf518e31c8c4eda6f3f1Virustotal results 40.68%Heodo
2020-09-18BAL_FW3256994821HM.docdoc 8f433669bafea35f75ac63a4e6aba4cb6345029b4f5d32f42c177071467f9623Virustotal results 41.38%Heodo
2020-09-18REP_BNR_090120_PXY_091820.docdoc 7a087796ba52981da1f8e06f79b5bd1bdebeb961afe1f01af7864edfe071712eVirustotal results 42.37%Heodo
2020-09-18FILE_14408460.docdoc 88ef0981b06e7ac4b9df459d7c10edc857fcf9c170057b9220ef9ddfd550f06dVirustotal results 43.10%Heodo
2020-09-18LNL_090120_LGL_091820.docdoc 3c558e63407682d8fee665283a24bb73c5839f85317215925264c1b15071b061Virustotal results 42.37%Heodo
2020-09-18INV_FN4123766425PQ.docdoc d35c221d6da8fb62ac4d9b14ed2a8112b1d26af20f8f82a0ee4b60fcaa759903Virustotal results 43.10%Heodo
2020-09-18FILE_70241518889008980.docdoc 971112bf91b341992aa8874b52425261e68b7cec89ea114487056783acc97e56n/aHeodo
2020-09-189301363226015392656692104.docdoc 4b9a2688db3fd6465d84ee5baf9fbdf6c50772a16d3e7c265c758ae284e8a63dVirustotal results 37.93%Heodo
2020-09-18JV1879317930PW.docdoc 66d95a630376c2acfd2946fcec3ec5d5e076028bf1c48c388939a3f054c1a6b7n/aHeodo
2020-09-1887192197003057582.docdoc 6e221be1094865f6f92e91e222da06c0cfb67ce691d0bd25afb4b4324bb05714n/aHeodo
2020-09-18DOC_NYQ_090120_ZMO_091820.docdoc f6bd46837e705aee39428d412f28116876f6351e1148b7ce01d5e1848b7d0061n/aHeodo
2020-09-18247580938072066.docdoc 344be8e47a1c334ca0f6e8d6383c509d62ca9004f050e5a368e064e87e2e947fVirustotal results 36.67%Heodo
2020-09-18REP_2762906854197614.docdoc 5c9ee841d3f2ca4934e2df7970319d3d7eaa875a68f3df8f691f19191fd138fen/aHeodo
2020-09-18PO_09182020EX.docdoc 2ba5ff25d9be507686f6f7c65f57b571384f713824ea7f83ca31e60eab0fdc42n/aHeodo
2020-09-181YLTXQWN4HISEU8S.docdoc 043a2eea0e970c626f6ff1aa5ec43ffd5974bb5192e55c0595ca6b3ef0404fd7Virustotal results 34.48%Heodo
2020-09-18GJR_090120_RTW_091820.docdoc c63f6783c00a837e235c2c2405fccfe135bf4358704dad7525b4660588e6ed3aVirustotal results 33.90%Heodo
2020-09-17FILE_3787041910771209072089.docdoc 0606ba599bf7a4fca591dc6e4c5b29805cb37284a37a2cefd0f5237a52ce46acn/aHeodo
2020-09-17INV_UF6156846362FN.docdoc edee77f468412b29903ec095de648b2214e471174deffc438b41cb18fed1058bVirustotal results 33.90%Heodo
2020-09-17BAL_WF9506478025PB.docdoc 24b4b9f235edf4c63faa8b1722508868d0727dd455e4abcbdaf1ac38eb379dfen/aHeodo
2020-09-17INV_569129281125021.docdoc 11cfbdf8ce4f99c93816a1ed7ff7410d051b0cc978efc9ff9fa824db596374e5n/aHeodo
2020-09-1770279103.docdoc 9c119c1d39a1e41201dfbb087466fa543558f959d147c3e8ef77650beaff2d9fn/aHeodo
2020-09-17CCH_090120_BGY_091720.docdoc 794d05a964943c6e59eef584b6bd5ee060dec7907a990ec1a0d71260e641c74dVirustotal results 47.46%Heodo
2020-09-17KAQ_090120_YVU_091720.docdoc c81ad3ff9f4ab6829b4f06308391cea0e98bb5e371462d2bad0bcee9961b99ean/aHeodo
2020-09-17BAL_60344733.docdoc 09da007d427399a8878436226980680d7b93a39388023f1a70151a5fbcf16694Virustotal results 44.07%Heodo
2020-09-17NPCEVVC9XG4JU.docdoc 4158528b357889ce0b983d5f0ffb48cdf92c23296c2f12cf848cee1e46538af4Virustotal results 43.10%Heodo
2020-09-179120232784385092541984186.docdoc 46ed6bbe96a97f0da9479591c55394830ccd60524bcfa7b78b035514fb9a8ebaVirustotal results 39.66%Heodo
2020-09-17REP_PO_09172020EX.docdoc 03de8778d73e8753ae7006da7b533c87ac0ee1c1552d06188e045d5d578782a7n/aHeodo
2020-09-1719216062.docdoc 25b7caaf5594b6cc48bb28f48e54b85ffc9e4368c9144ba569554d8730d66298n/aHeodo
2020-09-17PO_09172020EX.docdoc b4f9c32e1cdc0458eeb13b08c2894307dc1cdd9df8a610264a5aa0995e9e96afVirustotal results 36.67%Heodo
2020-09-17REP_PO_09172020EX.docdoc fcc75ba7d4acb2ad490a81c60786cbc02465a0ede00deb9002980beb85a4b317Virustotal results 35.59%Heodo
2020-09-17REP_9849D21DBOIMU663.docdoc 10d566256d3e680d192406e23941bdeccf3b373ddafec2fda9c0e3557ed8d42en/aHeodo
2020-09-1717408505628187.docdoc 33c142bebe8fd0e786a5db3cc089405aa699779e88f811c212cec330927fbaa5Virustotal results 32.20%Heodo
2020-09-1757360057.docdoc 76c43618ef9d37e74fc07de291c5e0762aabad08ebfcf56a199a96c85d765c83Virustotal results 31.67%Heodo
2020-09-17BAL_DJQQOUKYRERHZW5.docdoc 71d6d6e89a4d037f612549e5ffbdf9a46da63f9781d662460c048dd573a33383Virustotal results 32.20%Heodo