URLhaus Database

You are currently viewing the URLhaus database entry for http://danaplat.com/wp-admin/FILE/eHXbk6WzMnl/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:588273
URL: http://danaplat.com/wp-admin/FILE/eHXbk6WzMnl/
URL Status:Offline
Host: danaplat.com
Date added:2020-09-21 18:06:06 UTC
Last online:2020-09-27 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 18:08:04 UTC to report{at}parspack[dot]com)
Takedown time:5 days, 12 hours, 49 minutes Bad (down since 2020-09-27 06:57:22 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-23dat-2020_09_23-ED32278.docdoc e87784055a8e3b9a8f795862cfc2ba4277f9df2b2df1b6eaff28585356e5b593n/aHeodo
2020-09-23List 2020_09_23 F647853.docdoc 5efdd71d90285698cac5b43da89e5741caf97ba48b7dae94cedab21865012332Virustotal results 25.81%Heodo
2020-09-23inf-20200923-Z62577.docdoc cdeddc28d3d74ce8cc226169b68a4f710bb1f5431d68a3ec333a569cfdbe9e2fVirustotal results 26.23%Heodo
2020-09-23doc 2020_09_23 2768455.docdoc 8b325fb501e6ccef51fd001b0841c524018bc29a230fa989db00f3447496b3beVirustotal results 25.42%Heodo
2020-09-23REP 2020_09_23 LF869539.docdoc 5381708de7bc9f2a55940cb8ac21917588c212a9082fedbfa32e062c686e11f1n/aHeodo
2020-09-23file 183.docdoc d93223f456b3f9315b4cd2bb19d30fc1185136edec54e94f601e641479eddbccVirustotal results 22.95%Heodo
2020-09-23Arc_20200923.docdoc 30b84466aa52649c8f6d61b4a9fc3dbc81571bcf5b5292337ea0fd6b82a7ba81n/aHeodo
2020-09-23doc.docdoc 9779f5ab7945d472c6984721ad10fbf0297623ee1c25eeb109c33c6c8587d594Virustotal results 29.03%Heodo
2020-09-23Mes 20200923 VLW330.docdoc a61f1b45b06305829478c9c58b8b8e94fff53017fc1e735bcd18e288f0efbabcVirustotal results 29.51%Heodo
2020-09-23MES_20200923_QQ9999.docdoc 81b4ff2f6c57e5858dfad271d4f4f0492f41cc41882f8f2c950b146dbfda51d1Virustotal results 29.51%Heodo
2020-09-23VV4131_2020_09_23_8131495.docdoc d077391f811e9aa25621f5140c96860cdda3b56bceaf5245e4d4cbc6a961e6efVirustotal results 30.00%Heodo
2020-09-23UNTITLED-2020_09_23-5294.docdoc 0c2f0e779e16a329037da7e3ba3b8c89fe246e93d8bc3beb6de83daf2c4d9e2cVirustotal results 29.03%Heodo
2020-09-23Arc-2020_09_23-5594.docdoc 2476d30165bd880c46ae9c11a0a7dd1c90560cc39805f1255fe7c888fffb5f72n/aHeodo
2020-09-23UNTITLED_20200923_93562.docdoc 94a81d329bb24822021c39261484f9010d84154b9f9f9d25506cd221381e55ffVirustotal results 29.03%Heodo
2020-09-23list-20200923-129.docdoc 027663162c00f241d945da03d397e35d882cdccce8e0e487e463501b6d2dd503Virustotal results 29.03%Heodo
2020-09-23File_20200923_0745698.docdoc 98c795928098a062d1d20e701e289fad2b5c3e3824cca0715df4bc23d5e3c52dVirustotal results 30.00%Heodo
2020-09-23OVC12204 20200923 LM736.docdoc 1027157b8a3e3b70dd47ea7c0e497544916e9756ff1e3aaafc732eabe77ff26en/aHeodo
2020-09-23Dat_20200923_CB7632.docdoc ffeeb0722e07550459e556ff30cc8718de924313f5eb93821a1ed9dec87e5df7Virustotal results 29.03%Heodo
2020-09-23MES_HE16311.docdoc bc8d7a492cc45195a67d8500390b631b8106bfba0c324869264f3a255fb0ccb4Virustotal results 29.51%Heodo
2020-09-23827_20200923_YNG4702.docdoc 352b0eaafd07102686fb7e59059288bd6f527e4190c6700cc5dd1e6f267bda16n/aHeodo
2020-09-23inf 20200923 ZV8971.docdoc d03d4795373da32664a311273c0132ee17ffc655feb3849ba4a46450e7aef536Virustotal results 29.51%Heodo
2020-09-23INF_20200923_6127534.docdoc b9acb7d689f3f8a078c45f040c5a975fbdcc8be5eb88ee1ef98579350e3d99faVirustotal results 27.42%Heodo
2020-09-23UNTITLED_20200923_56222.docdoc 4936a865fa30aaf552649f3c14f7333565da60037a34a9ec243752662b79c6b0Virustotal results 27.42%Heodo
2020-09-23file_6415941.docdoc f2de99ef933f7cf018ba9947803a5f5c5a9cb72ea0971ee3a565468c10a8783dVirustotal results 27.87%Heodo
2020-09-23LIST-4265.docdoc e98190a409ec70f224b71425bddf57cb8ed96eabd6e92497579714952e93fe4aVirustotal results 26.67%Heodo
2020-09-23N74426_2020_09_23_02857.docdoc 3b12b9e3c5bb951db8bd86ba2ed902362a034487b029eb22199b2a7c28264480Virustotal results 27.42%Heodo
2020-09-23Attachment-3586277.docdoc 3d1707b3867ae69cbfe18261cef10deb79add9d180448d455e6736499be9c3c6Virustotal results 27.42%Heodo
2020-09-22MES 20200923 084.docdoc 41324ce5731ef12252c333f6b777f49fc8d45e9a7ab785823e48e08c8c6c330cn/aHeodo
2020-09-22ARC_20200923_IX539927.docdoc a132f8367518b36376bd03160587713674ff98805021fed3d6e3ff58c045a97dVirustotal results 26.23%Heodo
2020-09-22LIST 2020_09_23 OU2063.docdoc c9c86f6533b9f61a31f465205c905eb1bec6f4ec0aa28152439f806a95d98419Virustotal results 25.81%Heodo
2020-09-22doc_2020_09_23_ID64933.docdoc e012356e1eab3dfbe537c3011127d4e313ea9515ab04c71150782d4f0f118ba0n/aHeodo
2020-09-22arc-2020_09_23-352661.docdoc 4ac3cd1d15cf6dae4a45f6b6bd244e27cafccc89d0cdad0d2766a17a34aeeae2Virustotal results 32.79%Heodo
2020-09-221335SYF B021926.docdoc 1d52c4d30c2bd004ffb8989e076f203d6c0a4b7902b1e1e53d64f2401ecf4d49Virustotal results 32.26%Heodo
2020-09-22INF-AT139425.docdoc df43c0c9f2b9b29df1176b2c57cd9e0189322520d52fd6a4120ae33ed249c375Virustotal results 29.03%Heodo
2020-09-22ARC 2020_09_22 44938.docdoc 0e33489760ef3718d82c94dfe4827be3bbe89593da14b7a7912b7345f3e7e56eVirustotal results 29.03%Heodo
2020-09-22arc DS269516.docdoc 0c7c1cdece9776edb1cd330e990dcce6733c6d05ed173a4dbb26878c012640b6Virustotal results 29.51%Heodo
2020-09-22ARC_20200922_T759451.docdoc 7c9d0aed7e65733fe2d2d89762aa3393fcb5d8acd30ea41dd4e3e532eb64dbbbVirustotal results 29.51%Heodo
2020-09-22MES 8927263.docdoc dbde4aaff8c1d5748e3be5ec0e07691b1f8d1b6a089e1c041825584d5b49ae7dVirustotal results 29.03%Heodo
2020-09-22Dat_2020_09_22_874.docdoc 2db83ede0248f66e68fbfaefe1dbc63a53ff748020c56494817b5122b63a63c9n/aHeodo
2020-09-22list HBE15619.docdoc f70acfaf7932e07a6befae363c753f68bfbd78961bda44459f6051aeda261c90Virustotal results 29.51%Heodo
2020-09-22Mes-2020_09_22-9618960.docdoc 955417c2e173ab3f64f91ad4d7921703e936abfc30a3115a22289becd6fb94dbVirustotal results 29.03%Heodo
2020-09-22rep-81011.docdoc 1086ffb88505e44c03ff9497ac66a9df3717d361cfc1aef1cff28a1b67ae9eb1Virustotal results 47.54%Heodo
2020-09-22inf_G34995.docdoc f9db2998d811b8c5fc0a11e513e628001fc463d8e4c9a44068939c3668f072b6n/aHeodo
2020-09-22MES 2020_09_22 A668646.docdoc 522c2dc1ddd02fb8e3718418be524df238dda9e30b52aae22abd417881f1f359n/aHeodo
2020-09-22857B_2020_09_22_9055.docdoc c4699bc83e2c480aa53af341f4b67b5dfb27cb5d28fb09a7619b55689b686ae3Virustotal results 45.90%Heodo
2020-09-2223508028-20200922-0432745.docdoc 15587e3981acde8cea14506a7eec74bb7254104c7b3020773de4fe4b17cb9cc3Virustotal results 45.16%Heodo
2020-09-22LIST-X294866.docdoc c837bc71c0f1b7a1f098d0716042070f584f8437ee0c76ef49a42b159218b4eeVirustotal results 45.16%Heodo
2020-09-22DAT_2020_09_22.docdoc 8ce52163ceab79b32f012e6129070434d32ea30dfab92da2a9e62e79da693497Virustotal results 45.90%Heodo
2020-09-22Arc 20200922 S353983.docdoc 3d9019e7759741c92d9b6a1af7a158b3e41d589b529a4f285416a7980aaa2735n/aHeodo
2020-09-212954YDK_2020_09_22_U930.docdoc f2936defc5fc2976c78eb875870a7e003a079975fdeae34fbc2a652f0b488ba5n/aHeodo
2020-09-21FILE X335.docdoc 9d856a82f0899be05fb4c7d81837230640ebef104a02ed0e95bf00f88409ad73Virustotal results 30.00%Heodo
2020-09-21mes 2020_09_22.docdoc 49a768f22fd648f24523668ac5359d7496d4ec78072f12f3e65138eb3e54f94cn/aHeodo
2020-09-21Dat-174.docdoc d55f4a0a5ba6e241b8e8a7e3574474358a990aaafa01443b5ad7a2ded2eef83bVirustotal results 31.15% Heodo
2020-09-21Untitled-Z022447.docdoc ce9b37abd7ee0050b9d074b7d04a2b2a3e7c18576c690d5859b8053726e0870aVirustotal results 30.00% Heodo
2020-09-21Rep 20200922 CZZ03444.docdoc d15ee7beccb032c7bb054749f3921d769bfed37f38a5a877ff005aff025fe4b9n/a Heodo
2020-09-21File-20200922-4025.docdoc 30ca3b2aed5b521c1a38f66bbaa8d0bcc634cf59c59493b8388dd894d048ef74n/aHeodo
2020-09-21Inf-2020_09_22-N596.docdoc b780fd500d7fb2592181acab87281172189878f82ed6ea34f97fad5614203e9en/aHeodo
2020-09-2188399ZCP_2020_09_22_GFC889.docdoc c0e5018509f8a988f0442d2d6c3a200dc70f4d69bc590c7a7e9720b756267168n/aHeodo
2020-09-2186619.docdoc 5d9ea64e57564b3e412eb44aa61235c5b1cb4d677aa5089910f9a5f1c6e6b1bcn/aHeodo
2020-09-21arc WFV507.docdoc f49e5be00aeff785a79ef91f4ddcea3c074c7145f614e63dc439657f8068c49dn/aHeodo
2020-09-21MES 2020_09_21 JDJ2612.docdoc 992275c98caf603507117c6a84326bc0f5820f0f29fcf9e129d19a6e45035265n/a Heodo
2020-09-21FILE_20200921_9950216.docdoc 8c3a4338d7f182b5a61fca23d6848bdf9a3bb775d6c5c938b82cfb845aec45a3Virustotal results 28.33%Heodo
2020-09-21rep 2020_09_21 572.docdoc 65836f35189720691f30ed8f88638a91183cfbf994e08500b8ec1e1c39d54f00n/aHeodo
2020-09-21Mes 20200921 3371041.docdoc f85e575ddd651c3d60580fc1e2a4c74eb93f0097b1141daaab16fcc6ec843279n/aHeodo
2020-09-21Attachments.docdoc ce17c43a0cf8dbf2a3db7e70dff4273c7330dd42cf83c3145453eb94bb51974bVirustotal results 26.67%Heodo
2020-09-212861UV-20200921-HV875609.docdoc c60660ab0787ad07d92caba8f19ce8fd7de59a44856d3c442a770672842f3ad4Virustotal results 27.87%Heodo
2020-09-21file_20200921.docdoc d09bf180c62ff076b690cc1ba7f1848bbcd7aca274fd1350df751593c3d06cfen/aHeodo