URLhaus Database

You are currently viewing the URLhaus database entry for http://elrofanfoods.com/buvlj/eTrac/fkQkAs59QZsS/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	583325
URL:	http://elrofanfoods.com/buvlj/eTrac/fkQkAs59QZsS/
URL Status:	Offline
Host:	elrofanfoods.com
Date added:	2020-09-21 06:47:05 UTC
Last online:	2020-10-01 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-21 06:48:02 UTC to DCAbuse{at}zayo[dot]com)
Takedown time:	10 days, 0 hours, 40 minutes (down since 2020-10-01 07:28:29 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-23	Attachments 520.doc	doc	1efc790008eb7e0bfb5daa775aaeb4e590d6ebd45f815e33bf8370be89818d02	29.31%	Heodo
2020-09-23	INF_2020_09_23_NA23964.doc	doc	25a6879db668a83d39e1a4696472ac50058cbca71afbe055fe38e6d7c4b8c8eb	29.03%	Heodo
2020-09-23	Inf 2020_09_23 8283.doc	doc	ead5e12d378c9099bd007886c313ffb492b6d6579557cc4cc9288566b7739663	n/a	Heodo
2020-09-23	Mes-9776.doc	doc	94a81d329bb24822021c39261484f9010d84154b9f9f9d25506cd221381e55ff	29.03%	Heodo
2020-09-23	Attachments_20200923_P08335.doc	doc	9e4c0d210568ac46fbe5e7a4bd8218589c9388f06859b43fd62a53e9c0a949a5	n/a	Heodo
2020-09-23	Attachment 2020_09_23 4228.doc	doc	98c795928098a062d1d20e701e289fad2b5c3e3824cca0715df4bc23d5e3c52d	30.00%	Heodo
2020-09-23	FILE 2020_09_23 1248.doc	doc	692bbf3c78f0c8af1c57acea7c9910b8138ef4e85822096176a8bbd7603623fa	30.00%	Heodo
2020-09-23	rep-20200923-N9565.doc	doc	8d9264f42739eb272f340990d05b2688263682781551a47e197cf7fd15f54695	29.03%	Heodo
2020-09-23	inf_2020_09_23.doc	doc	bc8d7a492cc45195a67d8500390b631b8106bfba0c324869264f3a255fb0ccb4	29.51%	Heodo
2020-09-23	mes-2020_09_23-WU589.doc	doc	352b0eaafd07102686fb7e59059288bd6f527e4190c6700cc5dd1e6f267bda16	29.03%	Heodo
2020-09-23	Doc 254658.doc	doc	dc3e3fef5b584cbf8e923630c4a9ccf834c5140265e79ca13ade90150f9bc1fa	29.03%	Heodo
2020-09-23	ARC 20200923 HDA932.doc	doc	d03d4795373da32664a311273c0132ee17ffc655feb3849ba4a46450e7aef536	29.51%	Heodo
2020-09-23	file 999.doc	doc	835f71195c622e6d5dee5f8d307078c0efd97045a75c08947600350fb2da5a5a	27.42%	Heodo
2020-09-23	MES-877590.doc	doc	da5ffbd8e3f1e32cde22e5e6d87f62a99816d614a29179e6c393e6ee1d1eec8b	27.42%	Heodo
2020-09-23	file 8780.doc	doc	e9421ffb031a4df49ce806717de37db551caa063785c2295788dfa979a778478	27.42%	Heodo
2020-09-23	D062-2020_09_23.doc	doc	f2e74e9f4eff803c24130a1d601bf039e1c14eb872c3aa0f026982512146ffc2	27.87%	Heodo
2020-09-23	Rep 2020_09_23 GE056.doc	doc	3b12b9e3c5bb951db8bd86ba2ed902362a034487b029eb22199b2a7c28264480	27.42%	Heodo
2020-09-23	9254O 2020_09_23.doc	doc	73b2c723dfaf202622c57e8b9bc4504b45f7617e3f644e4097c9489a459ee85c	27.87%	Heodo
2020-09-22	mes-FNS08965.doc	doc	45fbfc15ab5afe1f798ec4b481a02fb42c1f0b2e0a5e7e19c60868541380eed0	27.42%	Heodo
2020-09-22	LIST_20200923.doc	doc	a132f8367518b36376bd03160587713674ff98805021fed3d6e3ff58c045a97d	26.23%	Heodo
2020-09-22	MES-2020_09_23-CI37559.doc	doc	a5b7961981d9acbb422832a05d2c07c48361000fb79f1d9e07877821e02e2512	32.26%	Heodo
2020-09-22	N4019-20200923-338.doc	doc	685b5b0268f4430b0aaf1a9997ed136457fa9139467eb02922fa3c6210b4f584	32.26%	Heodo
2020-09-22	ARC_2020_09_23.doc	doc	e3187dbe7923459b3ea645a3d68b357927471e14d70aa4e542327ad4ef540637	32.79%	Heodo
2020-09-22	RS972_20200923.doc	doc	f75097922fc6b528988d0cd8192115dd8ccaf041ef47a0e481e55185fc7dc127	30.00%	Heodo
2020-09-22	Doc 20200923 940648.doc	doc	8031c668f56e12d2f6e1d54f98aea8eca655f14e6dfa3ca6df9da76aaec004f4	29.51%	Heodo
2020-09-22	Mes_20200923_ANB901.doc	doc	6f0e03df41433654a653fde3c2dd49f9839e5c7f59ab54dd3ad0526d2670f4d7	29.03%	Heodo
2020-09-22	File.doc	doc	6a9f1cb57648fe546a21b732a369353a19405aca026db96bad9dc76a943ff11e	29.51%	Heodo
2020-09-22	list-2020_09_22-445.doc	doc	3d797365a4fc8e4c190e44b52e766b13240809683b910a1760721a4d0438c89c	29.03%	Heodo
2020-09-22	doc-2020_09_22-UQ0172.doc	doc	5118e3bd72677f8cda269a8e2c50571beffb5dc3f7dbfb1b05cd1e44a904a214	29.03%	Heodo
2020-09-22	Attachment-20200922-390216.doc	doc	cd537ffeb9d0a9e21855ebee9da69cd5b7e1c0839e6fca3be47f0a695a41d2e4	29.03%	Heodo
2020-09-22	File 20200922 5833810.doc	doc	5231a24a90603fcebbe4e812fb2ac981a788534259a9f3bf6343cef44d447720	29.03%	Heodo
2020-09-22	LIST 2020_09_22.doc	doc	0e33b003b9c1cd0b792da43846113a32d28de0d64477f84d90bbbffa40098016	29.03%	Heodo
2020-09-22	Arc ZN904104.doc	doc	9feac62adca8879c6fb77e71311d55feb8409cc5a2a0929f48934970c404f3dc	29.03%	Heodo
2020-09-22	dat.doc	doc	f9db2998d811b8c5fc0a11e513e628001fc463d8e4c9a44068939c3668f072b6	46.77%	Heodo
2020-09-22	File-2020_09_22-XML068056.doc	doc	ef13496f7022fd77f5c840b34d5fc577bf4c2dcef2a56b1e0b71fa0387d6e8b9	47.54%	Heodo
2020-09-22	ARC-3756139.doc	doc	fee44ec3b333796685007e96f4c1478fc810a6a4549ed0d18c4e26fb91e508f0	46.77%	Heodo
2020-09-22	REP_065.doc	doc	c4699bc83e2c480aa53af341f4b67b5dfb27cb5d28fb09a7619b55689b686ae3	45.90%	Heodo
2020-09-22	91366351_20200922_G8135.doc	doc	b58e849ff15fd90ea845ccee23fb2884bf9666f6dc705ac84dc556130a1f90ed	45.90%	Heodo
2020-09-22	mes-UI519.doc	doc	1a1117fee8d79bc4f17cd8256e6f5a71a970665243bac9ee7b6a475271cfb524	44.26%	Heodo
2020-09-22	FILE WCD38747.doc	doc	8ce52163ceab79b32f012e6129070434d32ea30dfab92da2a9e62e79da693497	45.90%	Heodo
2020-09-22	Rep 20200922 MHU334.doc	doc	5dd221021744417bff46bb5b349b66b0417efc8148a1f40263013ea591e10ba0	41.94%	Heodo
2020-09-22	list 20200922 336.doc	doc	288be7752a470617650f5882ebf631b541951c5c4fc685fffee2de9650e31bde	38.33%	Heodo
2020-09-22	Inf_20200922_280917.doc	doc	1af6f1965d4e602979e445d1fd72691e2fc2abc5c9bf5fd7ed175c7fcb76dd87	35.48%	Heodo
2020-09-22	Arc OZ389364.doc	doc	2684fb0d066483f383653d701aada35989b0f0115ef080dc1383ddc2afb00240	35.00%	Heodo
2020-09-22	mes_724.doc	doc	ec0011702614cd33aa57769c23abfa9106382cc9b99ec9a1f9bb57204cd157d9	32.20%	Heodo
2020-09-22	Dat_575146.doc	doc	2d2a4e7c1a6c9db989a9a9a887c1ab4b0b89d35453aa857abda9b06dd39cbaab	n/a	Heodo
2020-09-22	list-317.doc	doc	8392b428becc751330ef038d88f6b92a3b1902a9f23acebd360f8f7cb11ee9f6	29.03%	Heodo
2020-09-22	inf-2020_09_22-05129.doc	doc	482b54b8d99750fad27a5d6131580e9639eb71432b6befb5dd5ca0b27f67881f	25.00%	Heodo
2020-09-22	Untitled.doc	doc	62a247c06790b9986416ffa1044dc5d8bff40b6b706081e25f4db985f613afc6	22.95%	Heodo
2020-09-22	Untitled_20200922_MRZ375.doc	doc	b218573be430d04bc85df63886bc59d6608ed0e84d058f52456224f9f7f06a8e	24.14%	Heodo
2020-09-22	File RI779.doc	doc	ba056ab0905369eb27251a5f366173bafe84869d58365340e7e4c9436ee6273f	23.33%	Heodo
2020-09-22	Attachment-20200922-8994649.doc	doc	edb38f20a57df9726e7a8a2f78f122e7a968a390fa006a996d93e06a040df87b	24.59%	Heodo
2020-09-22	mes TTE4817.doc	doc	83c6179da780f419a2c33e82aa72779368169c6dfa0c13b5e1301c3ad3d33baa	23.33%	Heodo
2020-09-22	INF_2020_09_22_L20906.doc	doc	bbcbb69fdee99a6460a7164c67fb3a2a7e9f378dd900e36e87682845d0606e56	23.33%	Heodo
2020-09-22	Attachments 0870204.doc	doc	76c0630543f301f3fe63e8ca4ddef6171019fe2bc21d3c891bceb80774bb4caf	25.42%	Heodo
2020-09-22	File_7899.doc	doc	1905997bc71b596381c75393456d143e27aeb93fec85e5b38a5cb4892d5da8d3	24.59%	Heodo
2020-09-22	ARC_2020_09_22_4906.doc	doc	dd39121ba5d3e898c2eb476a46cb2afe029cf388f1265f01ea1293e1c49f6e9e	23.33%	Heodo
2020-09-22	00454ID 2020_09_22 GO878.doc	doc	5d282237d6e5c0b30771b81556082a026563fc848280761cf0b375a39f36245f	22.81%	Heodo
2020-09-22	arc 2020_09_22 Z82849.doc	doc	6194b93de778c4ed12b833a8a06150e0ff059a8a82ea4089e1f0d35aa73c4ec1	50.82%	Heodo
2020-09-22	I247_20200922.doc	doc	dabf1341ef6fa0792b0a910cb351a22a740371db69bda55201dbdbccd746d9af	50.82%	Heodo
2020-09-22	Dat 2020_09_22 144531.doc	doc	3a55d135adcf77677eb1ba21e4b5425ff19a8198264e313df904dc6982bf1a80	50.00%	Heodo
2020-09-22	Untitled.doc	doc	5744548adb59f24037bb5500e559b80bc6917502f107b28a16b38ab4e6abfb71	48.33%	Heodo
2020-09-22	file_2020_09_22.doc	doc	0d70d473dd82d66be63e961914b3fccdaac41677e69ee91706bb0be406144501	45.90%	Heodo
2020-09-22	10969_20200922_709.doc	doc	bba3849ec67263bb32327cd4462beff2e001ff9db4a576d683df43961006394f	44.07%	Heodo
2020-09-22	Arc-91681.doc	doc	3d12017589f14be9a98d02b6c5baec7ea82f462d13cdc018cc2fe7b235ca723f	n/a	Heodo
2020-09-22	list-2020_09_22-24054.doc	doc	b3bc13c79571b2cf77ab2ad7a593e512bbaf1bf61f0ac3eacb10e78e840cb9fc	40.98%	Heodo
2020-09-22	dat 20200922 0465696.doc	doc	bc077632ea6bd7e0d83fe02cd1b706c078d7bdf7a18b0c1477c0c3f94d2f14b1	40.68%	Heodo
2020-09-22	Untitled GXQ651582.doc	doc	050f8c672a68de19be1fc1f6137e6a572d8abc551e67d2477a567dd5f94d4e5a	33.33%	Heodo
2020-09-22	inf 2020_09_22 617.doc	doc	8e31bc6780cc77125d2c78fc762ac2cdf7640be4edf71770f144fd26adc4721a	32.79%	Heodo
2020-09-22	DAT 2020_09_22 EF1023.doc	doc	90f5fcbadecf831b2ea1ad31be2ad24a539c2886611a270e23975355d3ba2692	33.33%	Heodo
2020-09-22	inf-6246790.doc	doc	34ac58d19f9561fbc90d00ebe4890258f9cf30d98f4fea91a7f13113e2a30787	n/a	Heodo
2020-09-22	rep-2020_09_22-ES58781.doc	doc	3d79182bae912b50a6834604a96ac90b10ca5e1ce72ea2355fc0e9e3b38995fe	31.67%	Heodo
2020-09-22	Mes W157.doc	doc	ddabac18016628a7b4e14df72caa0012c52af6a318df5c236615b4869b257546	32.79%	Heodo
2020-09-22	ARC_LTU26436.doc	doc	08eddac7838ced651892ee94e145a639d010807c45f3bd00e9752dbc1590add9	32.76%	Heodo
2020-09-22	UNTITLED_2020_09_22_RB511819.doc	doc	a817507562022f31451f066e1fa331d53cf580488007476987751c5c9b0113ce	32.79%	Heodo
2020-09-22	INF_2020_09_22_416.doc	doc	8a2890bb71a8c5efcd1478ee7b30ed6d9c942d68f9a2b98bcbce5ebeef693071	31.67%	Heodo
2020-09-22	JA13919_20200922.doc	doc	cbf5b0482bc2cdc04d1f4ffa6c39d4517ef6793289339305a64f7820553bdeac	31.15%	Heodo
2020-09-21	DAT.doc	doc	6a0b69f7aa83a9052858c1c98fe25792ae8d393fe5133baefee848ba652038fa	30.00%	Heodo
2020-09-21	mes 20200922 3200.doc	doc	f2936defc5fc2976c78eb875870a7e003a079975fdeae34fbc2a652f0b488ba5	n/a	Heodo
2020-09-21	Untitled_20200922_X501192.doc	doc	0394eebf7602baf22b2e45b390f4aa5854b0179e671b3a2607dbf44a5130870c	n/a	Heodo
2020-09-21	inf 2020_09_22 L29396.doc	doc	afeb53f8204c23e2ff8f5733e97220ecfb71466eb4f3f9ad1aef0807fd216973	30.00%	Heodo
2020-09-21	Arc-SI537.doc	doc	408b12e331000ac29de83635501b2c1ad800d8465e28a0a8054f10c4fdcb091c	30.51%	Heodo
2020-09-21	FILE 2020_09_22 443.doc	doc	0ff979ea9674b24eaaf44e80354ff0126f6a59acc790907ccb1fc48c8e1384b8	n/a	Heodo
2020-09-21	Mes_20200922.doc	doc	30ca3b2aed5b521c1a38f66bbaa8d0bcc634cf59c59493b8388dd894d048ef74	n/a	Heodo
2020-09-21	REP P129.doc	doc	868eaaf542a2552458dbab990542114b9eae6c1c9ab0de7dbab93ad7d932cb24	n/a	Heodo
2020-09-21	list 2020_09_21 54435.doc	doc	4e8b907a2a9db801e5ac5e63be51c941944aa0432de155955a9b8f7741387890	27.87%	Heodo
2020-09-21	REP_2020_09_21_9846943.doc	doc	c8ec1b5a11693054c13c42e45d83be353dc88a30205b63b6e820c12c9b38a13f	n/a	Heodo
2020-09-21	ARC-2020_09_21-GA289.doc	doc	f49e5be00aeff785a79ef91f4ddcea3c074c7145f614e63dc439657f8068c49d	n/a	Heodo
2020-09-21	X83076 745.doc	doc	13d74ade49feace676a6bb678121492f29faad5dfc83d2512b9ce9cf872a375d	27.87%	Heodo
2020-09-21	doc-2020_09_21-V792.doc	doc	fccf528f0152705715608cfaccb8952b64971c5f5c8a3479f035b979b8e51631	n/a	Heodo
2020-09-21	List.doc	doc	817dfa0131f4686e1849deaf26ff7ffe1f5b2eb30526bc09a6753ce13185f502	26.67%	Heodo
2020-09-21	MES 20200921 TI29256.doc	doc	716299f97023ee3e7f0a20ad1843ee7284684da8a503b9031fdaf0aac7e81671	n/a	Heodo
2020-09-21	List_2020_09_21_0230.doc	doc	61eb0d422b0465e3df0a4d5167d820688c9b0435aa4d28b8a09cf216487399af	28.33%	Heodo
2020-09-21	List-2020_09_21-4973.doc	doc	fada4708605505ec08d2045110877e6a7cd8fb2037b0d9bc3c32c5607a23c21a	28.33%	Heodo
2020-09-21	Inf_2020_09_21_S718.doc	doc	22a29b66bba17966a31c3cd3286dc31fa1c99e45ab2fa9bd84eeee1bd847f58e	27.87%	Heodo
2020-09-21	LIST 20200921 392515.doc	doc	f7e288414ab9e74bc1a11ae2adad7f9308badadd13b048f166a403029ce4c272	n/a	Heodo
2020-09-21	MES_2020_09_21_RIC2670.doc	doc	80a8b5600bf204df850aadf7d4e7833263ef3c4771208d62fcb53e662007b5d3	n/a	Heodo
2020-09-21	Inf 20200921 GOT4483.doc	doc	8444b33aede1c4250ebffcce3e2abc7f96072003c7a5981b85a10bad9536ecae	23.73%	Heodo
2020-09-21	mes 20200921 X4516.doc	doc	f2e681ee5b79805f8cf54b83b821ad59c1c4b7daa53deeac54ac5ac3ee7a6421	23.73%	Heodo
2020-09-21	doc_OQS677.doc	doc	d6b49fd8cd1ae8ef8187df86ab91bb6b2b0c19b4025834915102eb597a04e0c8	n/a	Heodo
2020-09-21	Untitled 7394449.doc	doc	6351168d14cfa0372803482062882590c98d717dc4f4eb2541fe3a154e8dc40f	n/a	Heodo
2020-09-21	Attachment W88882.doc	doc	012c334db958a84f1f475fe44c1a86195a783c7701b6aadeec5c06b539158fc8	23.73%	Heodo
2020-09-21	Inf 2739.doc	doc	42f29aa41b1f7d9de698db6b2a4512a76e4c54af72ab7ce26542fc3666438084	n/a	Heodo
2020-09-21	Attachment-20200921-HQ3484.doc	doc	0f3dcf665c7ea9ad31fbcaa324e8f714b5611ca2d55c539279fe724acbf61cfd	23.73%	Heodo
2020-09-21	UNTITLED-20200921-D215629.doc	doc	164898a09b7b291c8898d773c7d1bbf378552734b76b9ee7ce6f8ec296cca217	n/a	Heodo
2020-09-21	Attachments_20200921_L80767.doc	doc	d514c46c30e752ee22291f4cfce174467d0b7c6ee1506f12d854a4090fb65ef0	30.51%	Heodo
2020-09-21	List 2020_09_21 355414.doc	doc	006eb3de7c7d6ef36973d365810c036529acdcfeb2f53c7b8d9d3f36231d584e	n/a	Heodo
2020-09-21	8759439-20200921-FB08262.doc	doc	5b553de983ac2fa97b6d41a6bc545e330a7e725deb81c7d4ebb0e795becacd4e	n/a	Heodo
2020-09-21	doc-20200921-ENA58692.doc	doc	3a3066eb5fc603c6bd26e82784e4692ad45e2ceb005e34ef397224cb38b9800f	n/a	Heodo
2020-09-21	Doc.doc	doc	712fb1d60ad43d0063de94b64d1db09629a00d5803efef4ce9a6055f82b26ff1	n/a	Heodo
2020-09-21	doc-2020_09_21-371980.doc	doc	5d4548534f15df03e54ccccf8eaa3a7cd08ac7482dfe65414a7758507e96d7f3	n/a	Heodo
2020-09-21	LIST-20200921-79533.doc	doc	c011f657db09823eeda192e8f301d95cd0abb5aa4fac1ef4d53c5169e951bbf0	20.00%	Heodo
2020-09-21	dat-2020_09_21-730.doc	doc	8b160c5e14e6cdc95718a1db66d62bdfe791723e5f08bfeaaf2937f7ba9e74c1	20.00%	Heodo
2020-09-21	DAT_I42838.doc	doc	da3050b0d91467358dae813cc2436cdf839c08206d0651e0703b74a81caf1ebd	18.64%	Heodo
2020-09-21	Rep_K7427.doc	doc	374523e9d054ba30d59eaaa8686fe97fc74a10882a0b467d52b21de5efddc31a	n/a	Heodo
2020-09-21	arc_2020_09_21_162.doc	doc	c1ebb641f36328616711fb377d95f38319840fe6a0ace1c0858b64d7b75f96b5	n/a	Heodo
2020-09-21	ARC 2020_09_21 R10561.doc	doc	b16ecce47c281646295a38b45f138c8d0fedc872f816e7467e881dbf00fabc45	18.64%	Heodo
2020-09-21	DAT-1315520.doc	doc	3af20e9e67353d36d683c97554fc2e0a1ecb6659ae0c4ee670cf6d4a54d68b8b	18.64%	Heodo
2020-09-21	file A991.doc	doc	a3019d963b212893540926b54307b6f2af7f7a30749c0afe950b18ae5ca323e2	17.24%	Heodo
2020-09-21	File_1485539.doc	doc	cacf05026e9ff252718354854402d119747a0a0ff3390f908044e7ee222b1f83	n/a	Heodo
2020-09-21	rep_2020_09_21.doc	doc	249d6573f4f79e8743e529bdb81be6c11f86e83a53873ab864ed86b5cf603c92	n/a	Heodo
2020-09-21	INF-20200921-VEV26812.doc	doc	42bd5694c817a1711d186dcf4dbb1b59c343ad3edf28117ce218fa55fec28bf6	n/a	Heodo
2020-09-21	Doc.doc	doc	206dc1c940e5109e2e121fc275c21edbf294ddc5c4d14fbda80d08b35dce5053	n/a	Heodo
2020-09-21	ARC 2020_09_21.doc	doc	d7eba393957320094938db5221da24c71a0f9d6d29d6e05ec1d2015a6d824a95	n/a	Heodo
2020-09-21	LIST-050553.doc	doc	19f032cd8a2f4e54a759740a457eda11b94fae08920917346e2094949d218546	n/a	Heodo