URLhaus Database

You are currently viewing the URLhaus database entry for https://blog.zunapro.com/wp-admin/Overview/nr558vdIKR4y3n8/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:549143
URL: https://blog.zunapro.com/wp-admin/Overview/nr558vdIKR4y3n8/
URL Status:Offline
Host: blog.zunapro.com
Date added:2020-09-17 23:34:03 UTC
Last online:2020-09-18 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-17 23:36:03 UTC to CloudFlare Anti-Abuse API)
Takedown time:4 hours, 8 minutes Good (down since 2020-09-18 03:44:03 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-18mes_20200918_R182014.docdoc a4f620f140f63dd60825bc9ae8c9ddc6eb6b639b6022d2d014661b008c409932n/aHeodo
2020-09-18OND001.docdoc f6255c1d9d5c191c0265b5b1fbca564c2a9f38fd1e93cb25ebf3073f0e560e29n/aHeodo
2020-09-18Arc 514.docdoc ee7f615648104a41d003de9bf9567f5473569322da47d33def380dbda210864en/aHeodo
2020-09-18arc-2020_09_18-H508658.docdoc 8669123b64918b7f8a0706453cdfb5886208f5e31dcf5d89e598b2ecd0dc025fn/aHeodo
2020-09-18FILE 4979542.docdoc ae2debd077e0cc2e764ce16c176c7d08129ef095bfae6c5196dc3789f6ea0612Virustotal results 37.29%Heodo
2020-09-18INF_2020_09_18_NJJ05150.docdoc ad4eb965cb471c7a137b9037c732d53cae47f7d73467cddddf88cfee5b615744n/aHeodo
2020-09-18Arc 20200918 X601417.docdoc a5dcf96a690cc7c036613316d9003c9f6ee74e66dc2a8ac00502e63f8dfae85fVirustotal results 35.59%Heodo
2020-09-18mes 16756.docdoc c386868e3f526e0cd5d9093ae760761ebadb17cf74591886e56d8de0d3097f1cn/aHeodo
2020-09-18DAT_2020_09_18.docdoc fd6a23dc8063cd09eb09f8a8e111fb0c19101361ec55802cc799481e9047ee69n/aHeodo
2020-09-18file-2020_09_18-K283594.docdoc a8fbe20181a901e4ee77e91e558cb97c24abdf0654a81d254124fc9dbcfce07an/aHeodo
2020-09-18mes_20200918_8671941.docdoc f9a9596b06fd6053fd9fe2f73a3cc010078c12423f3e963d553675df3a02b77bn/aHeodo
2020-09-17Arc VKJ15424.docdoc 0fe021634d1bf18c9da5198d5627924f63245cd526211ade2e1670ab78e9518bVirustotal results 34.48%Heodo
2020-09-17Attachment_20200918_BFS461.docdoc c4c1c3441a6ee140589b9595e1da059946510638048a725450b3ac99c9dd95f6n/aHeodo