URLhaus Database

You are currently viewing the URLhaus database entry for http://alborzatashza.ir/wp-admin/eTrac/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:559180
URL: http://alborzatashza.ir/wp-admin/eTrac/
URL Status:Offline
Host: alborzatashza.ir
Date added:2020-09-18 18:42:07 UTC
Last online:2020-09-21 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-18 18:44:12 UTC to abuse{at}hetzner[dot]com)
Takedown time:2 days, 19 hours, 11 minutes Poor (down since 2020-09-21 13:56:00 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-19V30DHA8O89V.docdoc e9325a711e0f6f605b85898c5b507d4320e1f1dc672c68172b06cda359b5107en/aHeodo
2020-09-19INV_NC2159226913XU.docdoc 6f78fbb2d641a076bd2f40a39b2802a3ece7627b834468e1af726bc6bcec7237Virustotal results 40.68%Heodo
2020-09-19EI6896787215LL.docdoc 6ff5d18efc03d5074a5c9d0c27a7ab6738e189f681af930bed2809da5a8f7544n/aHeodo
2020-09-19INV_RJ5858172429AR.docdoc 336faca574dbafcf9eb66a5499f5b37d83a6ad046b7a8a7db5636040fa605429Virustotal results 35.59%Heodo
2020-09-19BAL_PO_09192020EX.docdoc 2bdb231a4e071c32f3734fa0ac5a13e5463ad6aea21e4a089fe1a1c69a56d372n/aHeodo
2020-09-19W_03114334.docdoc 0fad7aa076137ca0eea07801301e4a9799bfe63d5f5ac04aa449db6fa4201512Virustotal results 41.67%Heodo
2020-09-19QL_84864618.docdoc c8fc2ffef7922459d1144fe2ea5973e62255d0256394126a4cb635bcaa107fbeVirustotal results 41.38%Heodo
2020-09-19BAL_4NJJLYDOTJ.docdoc 1c8b7f12a321e7774f3fc6ef4a68c8ab12b525d9639168bbd5ec3b67ad260c05n/aHeodo
2020-09-19MHH_PO_09192020EX.docdoc b19f8522e5a2528e85dc936c8c83e1a9ed3bed5055ca06a67433b2b5201fb1deVirustotal results 40.68%Heodo
2020-09-19WAM_ZUDDV459SVRSIM.docdoc 6da6b99d1e7334c2df666c15e596c4fb9cca58c3f3891e9cc6676580e5b1dcbfVirustotal results 35.09%Heodo
2020-09-19DOC_TVEN65DCBJDQK.docdoc f985df117771ea00d82ebee99e084f574e31d0134d0ac1d15dff5478c02f6b91Virustotal results 36.21%Heodo
2020-09-19LMTN_PO_09192020EX.docdoc f74bbc7638bbd37cb3f3414110b7479daa77451e7e339a3c42d8bc72f93d6862n/aHeodo
2020-09-19REP_PO_09192020EX.docdoc 15533d02d9310a6707f2092410bb3deff89174f7bc64f893a98e946f2ae3ba3fVirustotal results 40.68%Heodo
2020-09-19DOC_ZBY_090120_DRP_091920.docdoc c48a51d8de6403e9edfbd7add130002b895655dfbe014581e64d0fd7bee83155n/aHeodo
2020-09-1947657108.docdoc 4165b27e5b534a04d00fd600c969784706dcd31a10beaa3b585e754f973d89b6Virustotal results 35.59%Heodo
2020-09-19FILE_494272711.docdoc 1963ec47acb4c6d57b2e6d75de7d45de3b479c9f24760d5a0456a3accc66ddb0Virustotal results 42.37%Heodo
2020-09-19PO_09192020EX.docdoc 64e48a3ff70c94d505c873e8a67d31e9e482b8abca66fdae7b73d4f89b69c7c3n/aHeodo
2020-09-19FILE_89066099.docdoc 53c798816c0299b0b57dfc31682d5bc2a73573f248e05ce8b5427b1b9d908150Virustotal results 34.48%Heodo
2020-09-19BAL_ZZA_090120_SUY_091920.docdoc 1fdd870e2f8e533d5592145cd1fc37281bd190265fb33663d5f8b0bbab9e8e53Virustotal results 53.33%Heodo
2020-09-19R_4157049235005778237989.docdoc a0427b223aa7c526dd3cebfcc4d97cc8a6e9d272e790a314a0ebeda94ad3f183Virustotal results 41.38%Heodo
2020-09-19FILE_PO_09192020EX.docdoc a1fa34071ea34019a6dc2db84db432ae749b2577700cd493d6e83c8af8e06cdan/aHeodo
2020-09-19W_PJK_090120_NII_091920.docdoc cda0f300f10989d730a1ea43471dfadb97cb10e13a73fbabeb565b5fbfd6bc30Virustotal results 45.76%Heodo
2020-09-19BAL_W2LN4U1V4066F.docdoc b1be0fa6951b0252445d71a28ba08ada17974551790e1c61194c013249c97425n/aHeodo
2020-09-19NDZY_PO_09192020EX.docdoc 7a41acc2bae61a34f8177e8d2cfa0b5f268c583906f678bd7331d9aca266f238Virustotal results 40.68%Heodo
2020-09-19PO_09192020EX.docdoc f9e9e2dd60777b24a40ffc71551901bcb801741bab413b47a83b13b938bdd86an/aHeodo
2020-09-19DOC_610168890722847774.docdoc 3d64095f4564ebc30eadbe6a61d8dd290bf34c82c7c49a9accc8179312fc53edVirustotal results 27.59%Heodo
2020-09-19DOC_3BB9RS6VS8UMTCVV.docdoc 90e191cad172245af9b6ffe8c5ca065163bb8ae54f8a3b6c573663f7179dc471Virustotal results 27.12%Heodo
2020-09-1918784095.docdoc 4b9de007a12dfbcc6b19f1bd5cf8d12f6ae9a7d2a3c3c04b1147e448974d9486Virustotal results 40.68%Heodo
2020-09-19DOC_563971545546293062333201.docdoc 4198131e8d2f03d52598f0c99b1f8765ed8d7380b175ec0ee5e9ef4e845f90feVirustotal results 27.59%Heodo
2020-09-19HAY90OQOH.docdoc 5f38c1fbef4f42be0184fb63effb0a6d953cbb55009cae9ade7e21c580ace133n/aHeodo
2020-09-19W_LTE_090120_QMG_091920.docdoc 3f8ac48efd3eef3c80e8979f8cf9bbf0e0d98511a42e7517063cebdf73789e60n/aHeodo
2020-09-19PO_09192020EX.docdoc aa3cdc25f8835c95178555450c3a59e80c40494e67fce018b448217410b03dc1Virustotal results 26.32%Heodo
2020-09-19CUCEMPH5UVO1Q.docdoc ee2bfb3bfc62ad36246c4533bb4bb8c41aa21ffeb8bd74b216d3c6088cbc7b62Virustotal results 37.29%Heodo
2020-09-19DOC_BD2557941337YQ.docdoc 56813b1ff2c178be52fb844d4656d77d7d061aeeb71e90418d1665f9aac64978Virustotal results 26.32%Heodo
2020-09-19BAL_SWH_090120_EPB_091920.docdoc 9ccda2e6b37df2289f65dfac9606ad6b9a8638c5ee524ca0ed76e7db70bcba24Virustotal results 31.03%Heodo
2020-09-197UCDE4Z.docdoc 30ee1918a15e45641f559b5bda9985c8aceb4a0e4e64e49de6364d24982556afVirustotal results 37.29%Heodo
2020-09-19BAL_34546399992337920937.docdoc d9156e388b67c26c8f24291bc16ca0fab2a5ef2b1a4bdca9efd9a5c1a2262a2cVirustotal results 25.42%Heodo
2020-09-19DA_60557551623208270.docdoc cdb7ce8fb7effdc8c98c363838bd824c3fbcc6a08290601a0e6027f1c6faffddVirustotal results 25.86%Heodo
2020-09-19AM5809926530KS.docdoc dd13b659498d74b258fb4a1c4bdd684ec3f2e264a202de63086c804abe195010Virustotal results 35.59%Heodo
2020-09-18PO_09192020EX.docdoc 3cecaccb2ac195f3828add4513535047bf92e18f3fd39df822a1aabf5a50ac4eVirustotal results 23.73%Heodo
2020-09-18MWF_090120_LGP_091920.docdoc b5718d755ae4e46d507e6fc54db7738a1c231ba9625ac6470b6a3393ae120d96Virustotal results 30.51%Heodo
2020-09-18DOC_MQ9N533PI89C.docdoc 143d3dfeff768c6ff529e34fe2134d9fcd1e8adffa35118c52d37eefb124abedn/aHeodo
2020-09-18INV_PO_09192020EX.docdoc e351cb48427d30ca802f3beabc78c164446cadd34d2f040fa46a3842299b2f82Virustotal results 39.66%Heodo
2020-09-18INV_3LKMIKD6WHD7LM25.docdoc 9c37c2186ad636529ea347cc19e89ee41554ea314182ebe3a962fe8072507000Virustotal results 30.51%Heodo
2020-09-1875302801.docdoc 93d817dfd2bf4e664bc17daefb9bb205e54156396a0d675a88bc250194bc7d9aVirustotal results 23.33%Heodo
2020-09-18PO_09192020EX.docdoc f5fb5d637a37ec6c6c5288f46bb6ad3cb9559037f8df024aba1f9bde1d477a4aVirustotal results 42.37%Heodo
2020-09-18REP_49896173514824950.docdoc 523f29c1434d7c2b71f1516c5c73cf9bd1546f0669e730fdf9282641ced7cfd4Virustotal results 42.37%Heodo
2020-09-18IPOI_064884966988210930652.docdoc e2f56917b3d099c1181df4dca64371a0f7bf81e02f1ce666637390ea0c95c18dn/aHeodo
2020-09-18JD4588701813NF.docdoc 33099cd71cd92838445b2b6beaab0d5f29220c7866510e1a83dd32c0779c91a8Virustotal results 44.07%Heodo
2020-09-18LCF_UY3505278006HY.docdoc 4e500dc20300e081376f4f6951330ba0b37700ae0b23ac5662a2e96e2cd9a755Virustotal results 42.37%Heodo
2020-09-18FILE_KG3342018814ZK.docdoc e6c59aa272b0319132af611954aba4331117e24c05ed652fdbf58c0ff36e991dn/aHeodo
2020-09-1882800261015423.docdoc fbb0768a54c96daabef7659e5ec321d26211a023027f8beb9b9b5bf49f36d583Virustotal results 40.68%Heodo
2020-09-18W_PO_09182020EX.docdoc 3794f324eaaa25b46f1e7f2d4c169c9839efa90483f52fd6816bd621f0984562n/aHeodo
2020-09-18DOC_TU6552649765PU.docdoc 844364fc7fd27d3f478237624a434b3255b9f564ed64e272e1935914ab559d9aVirustotal results 36.21%Heodo