URLhaus Database

You are currently viewing the URLhaus database entry for http://comunasiriu.ro/comunasiriu.ro/sites/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	588325
URL:	http://comunasiriu.ro/comunasiriu.ro/sites/
URL Status:	Offline
Host:	comunasiriu.ro
Date added:	2020-09-21 18:21:10 UTC
Last online:	2020-09-22 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-21 18:22:37 UTC to ripe{at}netserv[dot]ro)
Takedown time:	21 hours, 51 minutes (down since 2020-09-22 16:14:33 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-22	DOC_8PE65VQ3D5.doc	doc	6b58f3d639dbfd3f04c2534bac10583c7e2d0ba1e88ef31ebe443fc18f409a76	46.30%	Heodo
2020-09-22	REP_AC5955552214PD.doc	doc	8d49090e5ad1ca487645e8dad8b6e90d267b4a7f5d4cdf4d9c4441d969f088ca	45.76%	Heodo
2020-09-22	OX6042771517YE.doc	doc	57ba4b4fdcb75beec5d6d63154dfda3510f28ac094da0ca819dd8677ca37a924	42.62%	Heodo
2020-09-22	Y_XU0899265245US.doc	doc	49a1ffaa1b08021d92dd0139fad4b585e8b601c2ca7c74eca69ea9f3ff06ad79	40.00%	Heodo
2020-09-22	MGI_090120_QKQ_092220.doc	doc	f574d141e50f5f004b6d5b2932ce746ef012404c5bf46933947ad0ce3b397665	40.98%	Heodo
2020-09-22	23461684.doc	doc	b014c2416d9b6457a33a1c69cb00a1183b6342db10f39dd9b9ed3ce8b14e3be8	39.34%	Heodo
2020-09-22	INV_IW9550938338YW.doc	doc	9607e3321e8b588ead936b5c46607981cf642a9a5abc9a7d1d0f7474dea3b6fa	37.70%	Heodo
2020-09-22	WCES_PO_09222020EX.doc	doc	76d7ce6a12f4c9d03615c5255b79835bb2cff27e86deb3cb790932cdca164ac7	32.79%	Heodo
2020-09-22	INV_45CPDN72IWM63LM.doc	doc	fb7120cd04c6c488c5a564bb24d9d155389d7cb8a0293e552dd385110bc6ec9f	n/a	Heodo
2020-09-22	INV_37001240896597949080364.doc	doc	9e25ce36733cb087f13b4a1c744a28856f2e1e878782893ac18e682ad0f2e842	32.79%	Heodo
2020-09-22	LA_EQH_090120_CFY_092220.doc	doc	b664feace8781e7ad1ed550dc5f1a66b77b73f75228c1898a1986b67fd543477	33.33%	Heodo
2020-09-22	FILE_JZD_090120_FBZ_092220.doc	doc	b9ae26c8fc56943d82223a7d3c26671f4247a42d3d56fc25a455217cb84674b7	n/a	Heodo
2020-09-22	Q_35400564.doc	doc	09354d76c301e3e65f29aceb76a3bbfa8cd5bc590010a3eaf044b7050c3e61b1	32.20%	Heodo
2020-09-22	B1SII34L.doc	doc	0489a6b94e2c6206bd2730cc32c8f873d1ac1af2ad02bdb69a77a8078460741c	32.20%	Heodo
2020-09-21	INV_NZZ_090120_YBL_092220.doc	doc	f032da6342ee3da2b15c96ea27035574335bf6c5133bc03871bba1958206d66b	31.15%	Heodo
2020-09-21	INV_UCI_090120_YDS_092220.doc	doc	6aaa5d1200a0ddb1900acfe0f5b79eac2ce5b928d30db37c4f21e43cea55d69e	32.20%	Heodo
2020-09-21	O_SPI_090120_WBC_092220.doc	doc	0b406d237fa37888f1acd0ffc4b59577ffd5e45b792a835c2141483e2206ce9c	30.51%	Heodo
2020-09-21	O_GCJL9JWNH2.doc	doc	74c1fc2f43a4a426a9f4ffbc4738e6107d95009d67a202f0c8a2a1b80ef60937	31.03%	Heodo
2020-09-21	PO_09222020EX.doc	doc	5bb3e05266ae1854d7bd5732eface0a2f45a896e99c1d0ae15f6e70423b2a2d1	32.20%	Heodo
2020-09-21	REP_X2CND8ULSYUDR6W.doc	doc	04b6915557c386d4219e56049dca6eeef6f30b41f45fb525d36977e248fbf4ec	31.15%	Heodo
2020-09-21	XWH_002102368153793.doc	doc	b0c1e64b3b04df99668587d56d89c513ced13de50d8596e1d49a2eac66c96049	n/a	Heodo
2020-09-21	DOC_SQE_090120_EFQ_092220.doc	doc	e1e28e6b69d9f4ccb1171262803787c1c468b9b27924012d88df127d9aa1b480	30.00%	Heodo
2020-09-21	LVK_090120_XVD_092220.doc	doc	778a7dec2a3a0d2021406e3186ff559dea78e4a07678dbf5619e3cd6d7d8217d	n/a	Heodo
2020-09-21	REP_KU2397782042IH.doc	doc	c19dd05cf11f244d0b2189ff9b5075a190c1a64d8c65dd5f47a65e3bb8c2b869	n/a	Heodo
2020-09-21	PO_09212020EX.doc	doc	e6573ea6cfe0bdb4f9b3d43b7b68207d18fb492c9ed35aaf6bee52d0d681a9dd	28.33%	Heodo
2020-09-21	INV_42534646169085441.doc	doc	82db633a79ef7fe836d666e7da62a23e424e40387e257c949fdad5990b6d9e04	n/a	Heodo
2020-09-21	68714408.doc	doc	6ca00f6d839ec9a1a0d786abef71fce3d2d88018968bbd427a8e2d25f6099c57	n/a	Heodo
2020-09-21	REP_OUV_090120_EJI_092120.doc	doc	2d6a5431e61158153fef1258729585f1e960289a985c131147dee0f8918b40f0	27.87%	Heodo
2020-09-21	IA7394111934AQ.doc	doc	3ab0702a3d820e15619e9125350d5275da998abed6d3231e31428a8443a2b604	27.87%	Heodo
2020-09-21	FILE_12532081.doc	doc	1e0ad6475aad3deb28ea9202c57b64589fd3638b15484a6f614fb7ae4879f071	23.73%	Heodo
2020-09-21	DOC_WXQ_090120_VON_092120.doc	doc	b28378e6974a53507bdc9ccccae320e4998c79966ec3a03aa0fbbdd5465df93b	24.14%	Heodo