URLhaus Database

You are currently viewing the URLhaus database entry for http://www.willow-nettica.com/cache/Reporting/d3G0EUo2lxxH5OQyAu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:582787
URL: http://www.willow-nettica.com/cache/Reporting/d3G0EUo2lxxH5OQyAu/
URL Status:Offline
Host: www.willow-nettica.com
Date added:2020-09-21 05:53:34 UTC
Last online:2020-09-23 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 06:18:06 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:1 day, 23 hours, 26 minutes Poor (down since 2020-09-23 05:44:07 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-23Untitled 20200923 Z6212.docdoc 9bd69510e3c43ec7952a8f5468ff9928523e1a435164c281bd3f6b789568e8a3n/aHeodo
2020-09-22List_PD209.docdoc 5d282237d6e5c0b30771b81556082a026563fc848280761cf0b375a39f36245fVirustotal results 22.81%Heodo
2020-09-22Attachment_LN6893.docdoc ccd5a83bccde7f2627df67502fbbda6f949e14c13b08885aa7bb710d55142a2eVirustotal results 52.54%Heodo
2020-09-22Rep_2020_09_22.docdoc 5744548adb59f24037bb5500e559b80bc6917502f107b28a16b38ab4e6abfb71n/aHeodo
2020-09-22ARC_2020_09_22_YI030.docdoc 3cb78e2ab36c72f8292da6808ae005ee3aa17c694c35a65fea4a89d0f972d121Virustotal results 32.20%Heodo
2020-09-22DAT_FEN6529.docdoc ba2753c69b06b5198fcc5ab9d75dd5760f634a64845c40f9d1518228e8611079Virustotal results 31.03%Heodo
2020-09-21file-20200922-D874.docdoc afeb53f8204c23e2ff8f5733e97220ecfb71466eb4f3f9ad1aef0807fd216973Virustotal results 30.00%Heodo
2020-09-21arc_2020_09_21_173714.docdoc 14d45f947ad30ce515c35815942b9f76eb1b8feb7828112e41de5bbfe9818047n/aHeodo
2020-09-21dat_2020_09_21_DMQ329566.docdoc b16ecce47c281646295a38b45f138c8d0fedc872f816e7467e881dbf00fabc45Virustotal results 18.64%Heodo
2020-09-21Mes-2020_09_21-73259.docdoc 1f612f1b213f34bdf096d391df58a72549173acac407c554bcda4d9498c42932Virustotal results 18.64%Heodo
2020-09-21List 2020_09_21 44506.docdoc a3019d963b212893540926b54307b6f2af7f7a30749c0afe950b18ae5ca323e2n/aHeodo
2020-09-21rep 20200921 296873.docdoc 249d6573f4f79e8743e529bdb81be6c11f86e83a53873ab864ed86b5cf603c92n/aHeodo
2020-09-21UNTITLED_20200921.docdoc 7725ef079e325e61a0940298fd108d997eef7bb18ac14f9767296b65de04ebaen/aHeodo
2020-09-21inf 2020_09_21 8852.docdoc 206dc1c940e5109e2e121fc275c21edbf294ddc5c4d14fbda80d08b35dce5053n/aHeodo
2020-09-21list-84285.docdoc 643d6086cc7145187bc48f08e906244f750cf3830ae09a58630b8074cdb916b4n/aHeodo
2020-09-21rep-2020_09_21.docdoc 8def4d691fff019108c8e68ae99fb81cc8e3712c727908390779a4bb72be4ef9n/aHeodo