URLhaus Database

You are currently viewing the URLhaus database entry for https://obeidmachinery.com/wp-content/docs/1znnqyhsw5f6/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	558424
URL:	https://obeidmachinery.com/wp-content/docs/1znnqyhsw5f6/
URL Status:	Offline
Host:	obeidmachinery.com
Date added:	2020-09-18 17:33:19 UTC
Last online:	2020-09-22 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-18 17:34:33 UTC to abuse{at}digitalocean[dot]com)
Takedown time:	3 days, 18 hours, 30 minutes (down since 2020-09-22 12:04:43 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-19	O_480816444.doc	doc	e9325a711e0f6f605b85898c5b507d4320e1f1dc672c68172b06cda359b5107e	34.48%	Heodo
2020-09-19	FILE_EGI_090120_SGG_091920.doc	doc	f4914cbba852a170c0da8d021e223ecd72be23357cf6dfaaac21d926ab043885	n/a	Heodo
2020-09-19	FILE_16710418.doc	doc	391cd9bd45449d75d87e8d3b434aeed7fc41ee587f7b36345418f388f2acb390	n/a	Heodo
2020-09-19	DOC_DHP_090120_BWE_091920.doc	doc	2bdb231a4e071c32f3734fa0ac5a13e5463ad6aea21e4a089fe1a1c69a56d372	36.84%	Heodo
2020-09-19	INV_GU3502937147NR.doc	doc	20afdfa7a7c7a299565cdd046c41bcbea4b1cbdc4041edc9f0e51d52dac04a0c	40.68%	Heodo
2020-09-19	BAL_FKT_090120_ZOM_091920.doc	doc	c8fc2ffef7922459d1144fe2ea5973e62255d0256394126a4cb635bcaa107fbe	n/a	Heodo
2020-09-19	BAL_68834179.doc	doc	1c8b7f12a321e7774f3fc6ef4a68c8ab12b525d9639168bbd5ec3b67ad260c05	40.68%	Heodo
2020-09-19	D_FIW_090120_PBQ_091920.doc	doc	b19f8522e5a2528e85dc936c8c83e1a9ed3bed5055ca06a67433b2b5201fb1de	40.68%	Heodo
2020-09-19	O_72860192.doc	doc	6da6b99d1e7334c2df666c15e596c4fb9cca58c3f3891e9cc6676580e5b1dcbf	35.09%	Heodo
2020-09-19	REP_269450448343007772049.doc	doc	b37ef41801c298349f3b8d0e7f0bf41fb621f4925fecc934cf95f84c7ee19782	49.15%	Heodo
2020-09-19	REP_8F3LM2D5VDI.doc	doc	c066bc4500ead9e0889bdaa4bc27671470aaed708c36824216e519d2b9325dfe	n/a	Heodo
2020-09-19	REP_82370078.doc	doc	32d451b2bae3e18f7c033f617f08f633bbe77e2bd4a98bd72d6fccb66ff80900	50.85%	Heodo
2020-09-19	INV_GYO_090120_JOY_091920.doc	doc	1963ec47acb4c6d57b2e6d75de7d45de3b479c9f24760d5a0456a3accc66ddb0	42.37%	Heodo
2020-09-19	PO_09192020EX.doc	doc	fff500c894e8ce1ddc024ef40ece32c51ed45d3d85eee507a81a1c2d0115db85	35.59%	Heodo
2020-09-19	XJB_090120_KBJ_091920.doc	doc	5b0a648192c791817089baf85e77206be78ec6b2fc7924b465bb1bd718d78b56	32.76%	Heodo
2020-09-19	3X4176U.doc	doc	b8818fbdeecde51adf7270365592b9812f1e323c4cdbf81f12885c590727d3f2	n/a	Heodo
2020-09-19	INV_74277035.doc	doc	1fdd870e2f8e533d5592145cd1fc37281bd190265fb33663d5f8b0bbab9e8e53	n/a	Heodo
2020-09-19	FILE_22543326.doc	doc	a1fa34071ea34019a6dc2db84db432ae749b2577700cd493d6e83c8af8e06cda	n/a	Heodo
2020-09-19	FILE_PO_09192020EX.doc	doc	5236f2813e8823eddc52a679a0129cb8f0edca6ffd3d3323cb9d69b037a86853	41.38%	Heodo
2020-09-19	INV_74549898.doc	doc	b1be0fa6951b0252445d71a28ba08ada17974551790e1c61194c013249c97425	n/a	Heodo
2020-09-19	REP_WCX_090120_QHD_091920.doc	doc	e04d0fb983378ed4932296cee99a78050dc18fa6b09cd6fb726eb90978a6d6ac	39.66%	Heodo
2020-09-19	X_PHR_090120_RVT_091920.doc	doc	4fdb1e6203d6e04a6229d129f4087b311a3824e7fc345b00b555b9593f6f9adb	n/a	Heodo
2020-09-19	FILE_PO_09192020EX.doc	doc	f29d80209cde1118a9399b3937016f28ff68863180d6f36ef6d55fd099de06c1	35.59%	Heodo
2020-09-19	TM2633580356ZV.doc	doc	f45366fd48bfadbe704572fe3f559494d82fc82a99673cf792e760777f56ece1	n/a	Heodo
2020-09-19	LL_LHL_090120_EVK_091920.doc	doc	fbe06b77331c2615ddb714d8e539f9f8eb7e35024aad5aad9af594b528f4450c	36.21%	Heodo
2020-09-19	INV_PO_09192020EX.doc	doc	1f267368325cfd8a9665680a987d4b866cbc949478dd3d8485e357ec821295f3	50.85%	Heodo
2020-09-19	DOC_YNQ_090120_ZQS_091920.doc	doc	5f38c1fbef4f42be0184fb63effb0a6d953cbb55009cae9ade7e21c580ace133	n/a	Heodo
2020-09-19	BAL_GB4E0L9OZEOT6J.doc	doc	7df3447e0e3af084cc5d6ad9a9f333ac88e09c1d60c0f9c0f00fcccb6d04b708	n/a	Heodo
2020-09-19	OYS_090120_RKP_091920.doc	doc	aa3cdc25f8835c95178555450c3a59e80c40494e67fce018b448217410b03dc1	42.37%	Heodo
2020-09-19	DOC_PO_09192020EX.doc	doc	ee2bfb3bfc62ad36246c4533bb4bb8c41aa21ffeb8bd74b216d3c6088cbc7b62	25.86%	Heodo
2020-09-19	M_PO_09192020EX.doc	doc	abedf8ebece852bb37a29e46ef57ea6685752259f7a642b458e8b3d3d57a5b34	32.20%	Heodo
2020-09-19	PO_09192020EX.doc	doc	0549a96b45be7693d38af5e4063355260635db3e33191b92e82e43c49eda7901	25.42%	Heodo
2020-09-19	DOC_66944513779.doc	doc	9ccda2e6b37df2289f65dfac9606ad6b9a8638c5ee524ca0ed76e7db70bcba24	30.51%	Heodo
2020-09-19	REP_2014021935224.doc	doc	e1ab557b296ca131391eacfd8b4f90d7aee4de9848750b5df4b8adf770a5ca9c	25.42%	Heodo
2020-09-19	06089772.doc	doc	a6a8b9e3e602b8727f2687f6906dbc66a534b711594e7064776f9128f0582e0e	30.51%	Heodo
2020-09-18	XQK_090120_KSW_091920.doc	doc	cdb734fc9234a80b1fda26d9fde564b0e14efadc283ba63e61e9031657f399ec	24.14%	Heodo
2020-09-18	INV_74478869.doc	doc	c536931bec7f39621f1f86cd9b7b49ba58e35ba7a7f6ce7b92724de491137e3d	23.73%	Heodo
2020-09-18	DOC_CON_090120_VWT_091920.doc	doc	aa12a6e2d8bde68b1618860a225d3f5ac92c9fe7105d626816bf672dbec08415	31.58%	Heodo
2020-09-18	EF_UX1622467631IG.doc	doc	af7a05d648d4175f924ff2431748c2bf40e15eeb256d2135bfeba80f4adbd149	24.14%	Heodo
2020-09-18	JMJGRBX8.doc	doc	e351cb48427d30ca802f3beabc78c164446cadd34d2f040fa46a3842299b2f82	n/a	Heodo
2020-09-18	FILE_PO_09192020EX.doc	doc	f517a93071e1c1603f17e27fcacb8895394f49626d63add12daa6f605b453ca3	32.76%	Heodo
2020-09-18	DOC_53327964380023203347931.doc	doc	f5fb5d637a37ec6c6c5288f46bb6ad3cb9559037f8df024aba1f9bde1d477a4a	42.37%	Heodo
2020-09-18	JUY_090120_JSS_091920.doc	doc	9d18ad242b906738ecf1a87d38dfa1b46320cbed0c62244a23c7585251350efb	44.07%	Heodo
2020-09-18	FLC_7NTQRCLVZZZY.doc	doc	2207a632a023bbb96b9b2e0dc6b930a3c725420713dfce30b4b47c7fa3a46932	n/a	Heodo
2020-09-18	FILE_PO_09182020EX.doc	doc	e3c7337d6899a5aa8ee475f563c6c84af325ac88c2a30a676f56d6182a75b59b	42.11%	Heodo
2020-09-18	AE_FJ4163364736WL.doc	doc	d30150c62052607c9dd68065e9bf07da7c7490bdc0be48077a770b13f28d77b3	42.37%	Heodo
2020-09-18	QS_21050846.doc	doc	e6c59aa272b0319132af611954aba4331117e24c05ed652fdbf58c0ff36e991d	n/a	Heodo
2020-09-18	36975518759655636.doc	doc	4000d1ab30db6a5d94686c02f9a7e6e687231ff9bfd42bf56e3f9f1e8750ede2	28.81%	Heodo
2020-09-18	66558541.doc	doc	07d057a61d3df77ff64c6e81ebfa3e05ac6fb288ec8104f7b215032445fcd4cb	29.31%	Heodo
2020-09-18	FTU_090120_GOT_091820.doc	doc	d23fa82b132d789d0acf534793a6437c0fbd0b86e7e85475b6856e558b964ca7	40.68%	Heodo
2020-09-18	BAL_7988930970852536.doc	doc	0799610f529d55ce947bf45710fe0607c9f5bbfab9a4cb346e6af91607c893c3	42.37%	Heodo
2020-09-18	BAL_G0KZ6ADZ9A6RRX.doc	doc	3b752d71ed854f4870f70aab5782715daa51d69594c62f93c34e2f0ebba6f3bc	40.68%	Heodo
2020-09-18	JD5884597961TX.doc	doc	e95b010a8ff840d370f7b1443ff23aecb562b6a5eafe6c28a393798046565870	40.00%	Heodo
2020-09-18	34485254.doc	doc	d07d0ed674ad854117b8fccbeeb561da2f41ed5e55d708ef7818ed882fdeb1eb	40.68%	Heodo