URLhaus Database

You are currently viewing the URLhaus database entry for http://webittest.com/content/lm/R4sD1WdKTyiIInXtwMaC/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:600548
URL: http://webittest.com/content/lm/R4sD1WdKTyiIInXtwMaC/
URL Status:Offline
Host: webittest.com
Date added:2020-09-22 21:49:04 UTC
Last online:2020-09-23 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU002956509 created on 2020-09-22 21:50:07 UTC)
Takedown time:16 hours, 44 minutes Good (down since 2020-09-23 14:34:20 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-23File_2020_09_23_1047.docdoc 6b7169e1405cbfde9ecf5e41b1fda35ad6727c74121fc498048ad01e905d51den/aHeodo
2020-09-23Attachment-20200923-1408556.docdoc 4a3c88b2aa4bc0894e15c9b83fe69ec25430243e3a01fd942efa606b3b22e27an/aHeodo
2020-09-23mes 2020_09_23 XX00894.docdoc db038e21bf63ae34f34ca72fcf79b82c440034cc2b279a1ab25c1a3cf091eb02Virustotal results 31.67%Heodo
2020-09-23Dat 20200923 6254.docdoc da70616307607ec5010de6bc4f9d01785fee4f96a316e839ab7e76751608b734n/aHeodo
2020-09-23Mes_2020_09_23_769218.docdoc 5616a07174bf07899d97125e61f8bf9dfffc6c3e363c87a6fbef04d0ca2be8e1n/aHeodo
2020-09-23GRM742.docdoc a7f4e79e5cf16bc83cc9dbd4bd7c5a048bfa1ec0d15f9886b2ff5c18cd5bd6e9Virustotal results 24.19%Heodo
2020-09-23Attachment 20200923 A0741.docdoc cbcf169ef81ebb6ff607f88b8a05590d501c70fe69aac3bf69db17c15587ad87n/aHeodo
2020-09-23Rep_303327.docdoc 6b20a791dcb305a95fc85a4525f1f9c29f3064bdba27b7bffe8260445377071cn/aHeodo
2020-09-23Untitled_2020_09_23_U0105.docdoc 47e18b0d14146e88eb076aae4f30d764e9663f0988b32b580b372a1978ad5306Virustotal results 26.23%Heodo
2020-09-23doc 2020_09_23 KO86557.docdoc eb08530e5f924639dcd82792dbdb90d6cc3b51a631675c77a66a27351382158cVirustotal results 24.59%Heodo
2020-09-23dat 20200923 G55484.docdoc 453b69010023da795bba1876cd362cefe28c387fc05257ed7037b766a101779cn/aHeodo
2020-09-23list 20200923 XBI92057.docdoc ead434b3cf15155d453036e17ce0eacae1e7f65f106ef69f454113322301a945Virustotal results 25.81%Heodo
2020-09-23INF_20200923_NP787.docdoc 2ab17f6163c325943c87411fe2e3a03f6b8f8099ad6c4b668bf0e9607613bc2cVirustotal results 23.33%Heodo
2020-09-23rep.docdoc 56030b1317e1938948565d60fb5058b0a683637f2dd820947141ccab89998f43n/aHeodo
2020-09-23doc-20200923-289.docdoc 48860f05fa54eb5e2a2d97f62a59f8bbc2f3df78ea0a6093fd26420a7c7c860eVirustotal results 29.03%Heodo
2020-09-2352265_20200923_986.docdoc bf62cdbe7b5e4207ff3acb0aba88b0180f584c4a1a7d3eb14dc3d66c27fdbe21n/aHeodo
2020-09-23doc 14016.docdoc b569a229941b7c815c828e1d70d8a88ba59b924c29d1c9e744058bda1e9e32feVirustotal results 29.51%Heodo
2020-09-23list.docdoc d29db979a44af6a91074afd2c68cd3c1f353bc4f4a30a953916795ecb3813e61n/aHeodo
2020-09-23dat 2020_09_23 77984.docdoc 85b4fbf1a796cd28815ad521352072c05d7e3b638a3810de89036c2a1459cd1an/aHeodo
2020-09-23Rep_7254257.docdoc 2e69fd58ed3bec87841d9d5d85c7d769034acd6810bd1c5ac3bb507d7e05ac70Virustotal results 30.00%Heodo
2020-09-2345121 2020_09_23 JFT58042.docdoc f3e2c199feb4b5a8466a05e886c81f1e54a3700521769d35e39aae751770d9den/aHeodo
2020-09-23MES_20200923_0141.docdoc 799375bc17349fabb727d209dce766f0f790222a89a95d7783de4428c113320eVirustotal results 29.03%Heodo
2020-09-23inf 20200923 L893.docdoc 013135853714b2a8873f816a10d899512ba749d4ff178cb5322c96677399ba71Virustotal results 29.03%Heodo
2020-09-23MES_20200923_884.docdoc a1b5ef92ceaa6be33f3950c95ae60066fd936f9757ed3213b26f31ad04659cf4n/aHeodo
2020-09-23Attachment.docdoc b94733cd6b4927c464f2e077dc1f63a740f0982d413efb3b80fdefc3abaa8dfcVirustotal results 30.00%Heodo
2020-09-23FILE 6761676.docdoc 4eea20ea1f7e4eb2be858aa3760fb9de41ca1e865fe12e6d3dd2ce43ed84845bVirustotal results 28.33%Heodo
2020-09-23mes_2020_09_23_251484.docdoc 64c7907e94da2ce9a18f7ad3c62a54d7e9afb9b0be47c3bf44d9e94298fa4e8bn/aHeodo
2020-09-23FT4649 2020_09_23 8406960.docdoc 1e507d68388701dc8f629d1095e01d6d906909f368ced204caf92180f11b1a55n/aHeodo
2020-09-23inf 20200923 N82440.docdoc 352b0eaafd07102686fb7e59059288bd6f527e4190c6700cc5dd1e6f267bda16Virustotal results 29.51%Heodo
2020-09-23Attachment-2020_09_23-IBX263363.docdoc 9c67d232abc4ea64aac36180f8259c7a5a52ae4ccf35ac7d5b9e6f350f5ee00bVirustotal results 29.03%Heodo
2020-09-2308867968 2020_09_23 07801.docdoc b9acb7d689f3f8a078c45f040c5a975fbdcc8be5eb88ee1ef98579350e3d99faVirustotal results 27.42%Heodo
2020-09-23UNTITLED 2020_09_23.docdoc 835f71195c622e6d5dee5f8d307078c0efd97045a75c08947600350fb2da5a5an/aHeodo
2020-09-23Arc_20200923_HK038779.docdoc 4936a865fa30aaf552649f3c14f7333565da60037a34a9ec243752662b79c6b0n/aHeodo
2020-09-23Dat_20200923_KS91512.docdoc fbef2a146f9473c053460e799da175fe08ab1827d046e823a7b4be3cb71e0e94n/aHeodo
2020-09-23INF-2020_09_23-05524.docdoc 3b12b9e3c5bb951db8bd86ba2ed902362a034487b029eb22199b2a7c28264480Virustotal results 27.42%Heodo
2020-09-23FILE-20200923-NVU119343.docdoc 5f81d77b9f520598ee93cdda1bbea38982756b2457fbdea877739ce5dacb294bn/aHeodo
2020-09-22INF 2020_09_23 969.docdoc 41324ce5731ef12252c333f6b777f49fc8d45e9a7ab785823e48e08c8c6c330cn/aHeodo
2020-09-22Rep 2020_09_23 RMD336727.docdoc a132f8367518b36376bd03160587713674ff98805021fed3d6e3ff58c045a97dVirustotal results 26.23%Heodo
2020-09-22INF_20200923_FED17502.docdoc b1da96b89b75a32fe77e9bf1843f1d58ff494b6c23b40f52e721fc145f3c35b8n/aHeodo
2020-09-22list 2020_09_23 W08006.docdoc dc40b9c54ef5dcd5fcf499329332d588db376b50c841461e5f05818e97b69b5dn/aHeodo
2020-09-22909F_2020_09_23.docdoc 8d2251dc615f9d04a6658ae1257db2447c607432e32cab8e52403bef7de84872Virustotal results 32.26%Heodo
2020-09-22Untitled 20200923.docdoc 1d52c4d30c2bd004ffb8989e076f203d6c0a4b7902b1e1e53d64f2401ecf4d49Virustotal results 32.26%Heodo