URLhaus Database

You are currently viewing the URLhaus database entry for https://omgtech.tk/wp-content/INC/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:562343
URL: https://omgtech.tk/wp-content/INC/
URL Status:Offline
Host: omgtech.tk
Date added:2020-09-19 01:33:04 UTC
Last online:2020-09-19 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-19 01:34:23 UTC to abuse{at}amazonaws[dot]com)
Takedown time:6 hours, 28 minutes Good (down since 2020-09-19 08:03:21 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-19DOC_LV3785454959TV.docdoc f3bea1e9a17c2c0596fa59400e54751f3101a0905e12055bec42c1e02ef96d8fn/aHeodo
2020-09-19ZB6160861263IS.docdoc 53c798816c0299b0b57dfc31682d5bc2a73573f248e05ce8b5427b1b9d908150n/aHeodo
2020-09-19BAL_33112586.docdoc d0916058bac3e5720c7979d05019d5fbffb9f64eb341116f0d3febff67abea01n/aHeodo
2020-09-19CTE_MBG_090120_EEH_091920.docdoc a0427b223aa7c526dd3cebfcc4d97cc8a6e9d272e790a314a0ebeda94ad3f183n/aHeodo
2020-09-19S_231618578614780573083997.docdoc 86b1a6a408c5639132533fa3f488087c8f0a47c3c1a5b57cb8edaba5501166f9Virustotal results 35.59%Heodo
2020-09-19FILE_31742809.docdoc 9836021a37477ee929f62edefd022550374c055f9629119c37decbccf76b0693n/aHeodo
2020-09-19BAL_20718303193029626067696.docdoc aae82415f0c1d33438261bb6ea1039cdff8bccc786541f5177e6938497f5b2d1Virustotal results 40.68%Heodo
2020-09-19DOC_PO_09192020EX.docdoc 778c345084d688acf88bb52a9c052c1e852688885a2b4c6c3938f6f471888d44Virustotal results 29.31%Heodo
2020-09-19FILE_545339280985.docdoc e04d0fb983378ed4932296cee99a78050dc18fa6b09cd6fb726eb90978a6d6acVirustotal results 31.03%Heodo
2020-09-19DOC_33807377067229527071246.docdoc c90a7677c0c1d3dbca678dfb12ab0a8dd029bc5ae143cdf3f84902395211f021n/aHeodo
2020-09-19BAL_ZKG_090120_EXI_091920.docdoc e3917f2ed0855bcc9400817a19340a2e860e4235af3697c42483a6f2d69642b0Virustotal results 35.59%Heodo
2020-09-19PO_09192020EX.docdoc f45366fd48bfadbe704572fe3f559494d82fc82a99673cf792e760777f56ece1n/aHeodo
2020-09-19IQ7120910290VO.docdoc a750366c2526e29a08f729005ab062b1a98ae9774f4c3d0ff22d881c67405c41n/aHeodo
2020-09-194885189655481858518099591.docdoc 9cd1ed00043bfb185a3b497fb855abad25261f016f8882ae085daa73ffb32deeVirustotal results 46.55%Heodo
2020-09-1951806047270471143662285.docdoc ebb66d12381191a931ebf207ea13eebdca01c5860177d35a6a5967bf1dd00586n/aHeodo
2020-09-19FILE_06652090.docdoc d20baee3b136e9ccf09f5dd19ddf745c78f62622f6449979fd30940853bdb70bVirustotal results 35.59%Heodo
2020-09-19REP_48872526.docdoc aa3cdc25f8835c95178555450c3a59e80c40494e67fce018b448217410b03dc1Virustotal results 26.32%Heodo
2020-09-1994829853.docdoc ee2bfb3bfc62ad36246c4533bb4bb8c41aa21ffeb8bd74b216d3c6088cbc7b62Virustotal results 37.29%Heodo
2020-09-19QXNAWYHP2QMV.docdoc 0549a96b45be7693d38af5e4063355260635db3e33191b92e82e43c49eda7901Virustotal results 38.98%Heodo
2020-09-19FILE_LL2467904893QW.docdoc b837078057329148a35e96ef42c7c83e16fd7f203fa7f1f225fc1a42246349c2Virustotal results 36.21%Heodo