URLhaus Database

You are currently viewing the URLhaus database entry for https://schaefer-konzepte.de/wp-content/INC/xyBCKbUrVogi3/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:585630
URL: https://schaefer-konzepte.de/wp-content/INC/xyBCKbUrVogi3/
URL Status:Offline
Host: schaefer-konzepte.de
Date added:2020-09-21 11:50:35 UTC
Last online:2020-10-02 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 11:52:03 UTC to abuse{at}hetzner[dot]com)
Takedown time:10 days, 17 hours, 43 minutes Bad (down since 2020-10-02 05:35:41 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-23doc_961116.docdoc 15440bc61bdd599da087f77c230d5fffe82ffe3cb14210457d7f09e8f0783c0eVirustotal results 26.23%Heodo
2020-09-22AYZ7852-82952.docdoc c1c64fe054f9be96a2d05c6e7957db0b63d92542154af8a46ac60bb7d5d5d622Virustotal results 50.00%Heodo
2020-09-22FILE.docdoc f835beb865831ae2cd8c4e51c7306297bbc2fde80e0d0c7175c3ab543fae0a0en/aHeodo
2020-09-22Rep 859.docdoc 2f40f8c0127c5d28872650dc20bcd01845874f082242f1ead973adb422a7b377Virustotal results 49.18%Heodo
2020-09-22LIST_2020_09_22.docdoc 0d70d473dd82d66be63e961914b3fccdaac41677e69ee91706bb0be406144501Virustotal results 45.90%Heodo
2020-09-22Attachment 2020_09_22 27107.docdoc 7d7c3ac7f91ddd427921fa257d0e556486d9819ee2e21115247c2b5d763007b4n/aHeodo
2020-09-22doc_20200922_LSB45875.docdoc cf1ab745ab6a4dc857eb8232bcbcfe7675540dbc45e29114985c290ff415b8den/aHeodo
2020-09-22Rep 2020_09_22 BP3915.docdoc e94c86a81dd55fe1bbcab68e01e3d6dee61b9ae5a49c43b73b73ec90a5ed64c5Virustotal results 42.62%Heodo
2020-09-22ARC.docdoc b1b89eb23fc161742f78b19b454b7d0a3b657572a55212755323ccb39886d9e3n/aHeodo
2020-09-22Dat-RBF647.docdoc 943f5e58cd9c9060ea37bd3ca7dba199921932c07110941346389657a4ef1a6bVirustotal results 37.70%Heodo
2020-09-22doc_20200922_XBE846.docdoc 8e31bc6780cc77125d2c78fc762ac2cdf7640be4edf71770f144fd26adc4721aVirustotal results 32.79%Heodo
2020-09-22FILE_2020_09_22_D661.docdoc 264bebcec7d291b85da0a2b0a2bc5fa300b07c9612b461f7ad9f2d55dd4389b0Virustotal results 31.67%Heodo
2020-09-22INF-2020_09_22-K5234.docdoc 34ac58d19f9561fbc90d00ebe4890258f9cf30d98f4fea91a7f13113e2a30787n/aHeodo
2020-09-22Dat 20200922 R6236.docdoc 3d79182bae912b50a6834604a96ac90b10ca5e1ce72ea2355fc0e9e3b38995feVirustotal results 31.67%Heodo
2020-09-22MES_20200922_L97871.docdoc d54e7732d4686780c94f902037c5855a15032d82fb5236e42e072640e767a034Virustotal results 32.79%Heodo
2020-09-22List.docdoc 08eddac7838ced651892ee94e145a639d010807c45f3bd00e9752dbc1590add9n/aHeodo
2020-09-22MES-2020_09_22-87029.docdoc a817507562022f31451f066e1fa331d53cf580488007476987751c5c9b0113cen/aHeodo
2020-09-22EHT4017-H429.docdoc cdf5919973d03aa5d92173567d3c3e48098f193247a8c61802af9c5bb0c10852Virustotal results 31.67%Heodo
2020-09-22Doc-2020_09_22-9614.docdoc 7a69f4936890bbd4971317e9a2abf4042add105e51a3da5fe2be1251a9a68ae7n/aHeodo
2020-09-21Rep_2020_09_22_VQU310.docdoc e555220f1fea5978ed71dd48c9b80f989ba259d12fed9b96cb8692e21a706971Virustotal results 31.15% Heodo
2020-09-21list 2020_09_22 WI754.docdoc 9d856a82f0899be05fb4c7d81837230640ebef104a02ed0e95bf00f88409ad73Virustotal results 30.00%Heodo
2020-09-21835_20200922_283239.docdoc afeb53f8204c23e2ff8f5733e97220ecfb71466eb4f3f9ad1aef0807fd216973Virustotal results 30.00%Heodo
2020-09-21dat AWS53885.docdoc 9cc2df8a0a216ecc363a023aeddecd9f5c70754d904ecc0f4688fb28a93eac2en/aHeodo
2020-09-21list_2020_09_22_G909127.docdoc a8516766300b452a46b02941f4c26fb6b396ca990d85f6e0b7f660e2c3129e05n/a Heodo
2020-09-21mes-2020_09_22-2006.docdoc 6aaab241dd8288bd9525b1a50b7a9bd3573f1b5574ab80fbac7aeb6813e553ebn/a Heodo
2020-09-21dat 2020_09_22 S973.docdoc 92d22198aa452330399eda2a7656453994b1ee2bd263e850b39429aaa34dd9d5n/a Heodo
2020-09-21rep_500.docdoc 3f82fcd3b69f66b0c13d255bd4d7f92c912fcbe022d9b7f8d5f1943a248b60a2Virustotal results 26.67%Heodo
2020-09-21Dat_20200921_W351.docdoc c8ec1b5a11693054c13c42e45d83be353dc88a30205b63b6e820c12c9b38a13fn/aHeodo
2020-09-21arc_20200921_9921412.docdoc ee0c171a228697ac111f2fea82463d7b64680e80f9c7ebce77deb08b6aa5bf2en/aHeodo
2020-09-21Dat 13534.docdoc 306d1ce13f997f20616bd30e5b182990f8a7d6dea71f6b3df38bc80f7d8b4c73n/a Heodo
2020-09-21List.docdoc 6351168d14cfa0372803482062882590c98d717dc4f4eb2541fe3a154e8dc40fn/aHeodo
2020-09-21Doc-2020_09_21-VV206748.docdoc 35cde8868a2076e10e0dfddb3ec487a74ca52b6643cef4d514deb69d11e9edd5n/aHeodo
2020-09-21dat-2020_09_21.docdoc 1df07b51bae05c06a37810d29ec72043b2d9f3e93c01e3dc13cb5ae1a03558d5n/a Heodo
2020-09-21Doc_2020_09_21_580719.docdoc afd45922c3589ecc0dd6a70924ddb82a913798343dd9d425a83b655e94517da7n/aHeodo
2020-09-21dat_2020_09_21_54958.docdoc 0a204bf52aa9793a659c1421454ebf60ecabc4b9aac1ddfdc049575288a49e67n/aHeodo
2020-09-21INF-2020_09_21-953876.docdoc 395bb9568da78936c13a412ac5052ef6a015bc0134fcceeddfef1f47fd692b6bn/aHeodo
2020-09-21Mes_0515477.docdoc 8ca7ddee7d095c888f41356838aace04486d06a5b20a15fa6105416f3c73c9f1n/a Heodo
2020-09-21File-DWL899223.docdoc 9c52aa87b478480188f49240e7286d869dc06ab37388e6821f088b5eab8bdaf7n/aHeodo
2020-09-21Attachments-20200921-TS602331.docdoc 25a45e935d58087ef1e9dbc5ccddfcf223d44a45aec64f99670a5ba62cf8ec73Virustotal results 27.12%Heodo
2020-09-21rep-2020_09_21-P89017.docdoc 871e9f95f83bdec95cd1146efadfca928251886fbcba5671e65906f40d73842fn/a Heodo
2020-09-21Mes-Y435.docdoc 3fec38315e25ce05e197bc39a6136959cf4cdf2b9fa9229fc188a71d464a5846Virustotal results 25.00%Heodo
2020-09-21Doc_20200921_60799.docdoc 569910897c96b5385d7869be7cf95e003220e6e7319f785d1e8748d46fc7c1d8n/aHeodo
2020-09-21INF 20200921 2657151.docdoc 356b82eeebe4eebc57579bc3932589783542b3b169a2f2c85dfa0c78fddb7ac1n/aHeodo
2020-09-21Rep-20200921-823359.docdoc 012c334db958a84f1f475fe44c1a86195a783c7701b6aadeec5c06b539158fc8Virustotal results 23.73%Heodo
2020-09-21doc_3757.docdoc f515aa20198574ad28264b78c6e2e4387697c8d8854080321942c2036133eb53n/a Heodo
2020-09-21doc_20200921.docdoc 04136b8270e1d84f73c175123aa7f38165f56bd7641fb172dca3caa593f6546dn/aHeodo
2020-09-21MES_2020_09_21_A837766.docdoc d47b287ef4b8d45599f5a80f2fcee0858d175bf98714aac0f0373baee18c74fdVirustotal results 23.73% Heodo
2020-09-21Untitled 20200921 026.docdoc 7324fb63ab2862f03f39836b95eac796f953ca27fe0fd545bb8b8fb8c99e3a36n/aHeodo
2020-09-21INF-2020_09_21-N9136.docdoc 78087064fd94215cc6a0700120c55c2ec63db11fd810dd5e175bca51ab8975b0Virustotal results 32.20%Heodo
2020-09-21ARC_20200921_4449.docdoc 006eb3de7c7d6ef36973d365810c036529acdcfeb2f53c7b8d9d3f36231d584en/aHeodo
2020-09-21Dat_20200921_0116794.docdoc 155fc45f0849e7a83587aedc0cb028a587bf371a518ceeebbd95492f5ee666ddn/aHeodo
2020-09-21JR616_T18697.docdoc 3a3066eb5fc603c6bd26e82784e4692ad45e2ceb005e34ef397224cb38b9800fVirustotal results 25.86%Heodo