URLhaus Database

You are currently viewing the URLhaus database entry for http://fabaafrica.com/wp-includes/attachments/7THTwl4SSR3wiE/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:607319
URL: http://fabaafrica.com/wp-includes/attachments/7THTwl4SSR3wiE/
URL Status:Offline
Host: fabaafrica.com
Date added:2020-09-23 21:44:33 UTC
Last online:2020-11-23 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-23 21:46:02 UTC to abuse{at}godaddy[dot]com)
Takedown time:2 months, 0 days, 16 hours, 46 minutes Bad (down since 2020-11-23 14:32:57 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-11-20Inf.docunknown 15c4c72232fd60a89e56ff8e201fd75779c35d3f60e27f3875f07e53baedd9c4n/a 
2020-09-24REP 2020_09_25 415925.docdoc 1632ea7fdf8e7ab955b1357fe5640e06aadcfb91202f35eba24bcff15b298b3dn/aHeodo
2020-09-24Inf 2020_09_25 67436.docdoc 52e89d8e2327a58a2e0ec6c17bdb7129d1f442f1f16e451f3e0108bc3e43010bn/aHeodo
2020-09-24arc-80812.docdoc 9e5f0e71f00b8f6b9873396df74c8857c4fa39ddc5375d47c5a657e6ce932cf4n/aHeodo
2020-09-24File-20200925-530.docdoc e30954491227d012c82dacddc3299730619d5f9edf66a0d7769f87cc5bd184feVirustotal results 27.59%Heodo
2020-09-24FILE_2020_09_25_69641.docdoc a6ddf78d3d416a39bd0fa21dc6b8427d9ab14d4779ef3610094ad9c0c91e0870n/aHeodo
2020-09-24File_2020_09_25_QFH5059.docdoc 819d704854a620b851cd2fe4531030ad05a3d82f59c47e268c43d54e8c90293en/aHeodo
2020-09-24VAM4554 2020_09_25.docdoc c4d712fcbfdcbac3196fc983a57b6a12c98a8c0159e5dbb273caf4b86ee387fan/aHeodo
2020-09-243751WEZ B237.docdoc 185f4da81b1ccadae432ba82640736fc8e8e2bf32ac25f0283780ab885f10b26n/aHeodo
2020-09-24list-20200924-Q299081.docdoc 3023848606f70e4c8e610002f75270ed20035daa98d771822b7289fdb3546456Virustotal results 25.81%Heodo
2020-09-24MES-20200924-3995701.docdoc 7c7931e2a5756a6fd6f33a27ecff111e91b130b23141fef9c5c1cdc7d3b0545en/aHeodo
2020-09-24arc-9944.docdoc 6a205d4b4325fbf7c157353573657c65e446aa4a321aa503441adf432a53bce5Virustotal results 29.03%Heodo
2020-09-24436JNX-20200924-OVX673.docdoc 2ca4f67d659ac798a549746e9415d5924ad92dd7c8aa90dd445f1bf6b4e6c6e1Virustotal results 29.51%Heodo
2020-09-24425543-23403.docdoc 53894a66cb2c5b7803247d709fb0ddd3352721e5b03c2a381085a5018a2eda0fVirustotal results 27.42%Heodo
2020-09-24rep 2020_09_24 NSV44517.docdoc 1e2311cdd83dc62ce3967d86b505de9ac9a472d43568bb35f442c96d1f707029Virustotal results 29.03%Heodo
2020-09-24File-20200924-TYU541.docdoc 6a6cc537196b40cf38d199ec827fc46fa8ca4cdd9967e9469c5b46132ca99918Virustotal results 27.42%Heodo
2020-09-24doc 20200924 364158.docdoc 0659cfc4b010396551f8842405a5d4d047abbf71bd783a7956dd41c1329972c9Virustotal results 25.81%Heodo
2020-09-240643842_B694.docdoc 57c819aa8037219a797527d244de0184e442b0f39eb6dd73b17661ab7f97969cVirustotal results 24.19%Heodo
2020-09-24Dat 20200924.docdoc 0bbf6ade1e1dde1eee57d4a7ff17d22247db6a4c8aca326ae05e3ec8464e5f85Virustotal results 24.19%Heodo
2020-09-24ARC-20200924-X97108.docdoc 951d6f18d680fd8bee849c739c1e9b2da02df8baa9230ab6c74266f3bbe444fdVirustotal results 24.19%Heodo
2020-09-24ARC 20200924 169396.docdoc 60bd12b32ea4d28ec43c02a394f2ddfcaa21c0820cbdff6e37debb55c1673fb0n/aHeodo
2020-09-24Doc 20200924 985458.docdoc 7b5378ce13af3f6931afc6d5c872969bbc5a7a238e8f0e09125a8597db0d0d83Virustotal results 22.95%Heodo
2020-09-24file-2020_09_24-8968.docdoc d7830edfcc130fa55772340c76b1c276dba29b52af14de22d5e8e79a22183879n/aHeodo
2020-09-24Inf-LYL1539.docdoc 275e3d43a39d79cba33fd4980e129e93e26b5b03b9a9089433a3ea67fe8c57ceVirustotal results 22.58%Heodo
2020-09-24Arc XOF128164.docdoc 963ac9c75f4684b43800ebc6cc5e1b94d27f2d8087cb41741025b4d20e66d92fn/aHeodo
2020-09-24inf_353163.docdoc 91d4db940e1aa39c3f44049dc853d5c531800f70c254c9305929ed03617febd3Virustotal results 33.87%Heodo
2020-09-24Inf_20200924_IG287966.docdoc 6385eef5703c3f76489bfc193bcf554462e10050828e8d0e32abd144021c6354n/aHeodo
2020-09-24INF 20200924 I9389.docdoc 649574766029bc1522b50f75bc2e6aeb76537751b1daf24bbc2f6bfadeaac360Virustotal results 32.26%Heodo
2020-09-2493276I 342681.docdoc 86d2019588fb145c2bfe7a33c8e288a715192e175fb157e6c628d1b130243ff2Virustotal results 32.26%Heodo
2020-09-24DAT-2020_09_24-25980.docdoc 0c2ae9a1118e6cda72f1b0904311e5ceb1a2f2609a0a142df82032645a54e32cVirustotal results 30.65%Heodo
2020-09-2449478187-20200924-6785.docdoc 4498f1490461e97e457f5346e061a24752f6fd4913fd5a7193e4cd450379f8c1Virustotal results 29.03%Heodo
2020-09-2449506J_2020_09_24_LO6012.docdoc 1681355c7231be5b8c4de6f34ca51d36069fce69fc52a391eadd66898a10cf9bVirustotal results 30.65%Heodo
2020-09-24List 20200924 USV98506.docdoc 813746f9ab7f5febeeae88626f82ec4c28390336a202a16ca16112e19c702d90n/aHeodo
2020-09-24dat-20200924.docdoc 34f5158426dc7d775b697265ae8e85145b08383b4e32648441ea89dd5c88f5ddVirustotal results 29.03%Heodo
2020-09-24Untitled_20200924_16283.docdoc 10c276571c36df4cfe95f75f6a76d198dc5637d7669169289f2d8e06ede86a0en/aHeodo
2020-09-24inf_20200924_Q549.docdoc 80e1bc32c17a50925f89034a663d003675155ef685794381b55a771b8b793dd1n/aHeodo
2020-09-24dat-20200924-Y082.docdoc 6d5f382b2aa75d0a79e6a165d850a0814905c88ac074ed68ff945190ce6068fbVirustotal results 22.58%Heodo
2020-09-24Attachments-2020_09_24-VQ150989.docdoc ba70c35fa9fe6c659211cb57c37743fcbfa7c18cd4904cd8da6963aa573b65e9n/aHeodo
2020-09-24file-6023.docdoc 9dd38b38e8e4c05419fe21d2979f10e73b638f3daebe5155502078b0c55c8e79n/aHeodo
2020-09-24mes-M766441.docdoc 6dbe352bb9203a1b268ab47b35f5d86b3f309a8e2595f8ece915bd547bc9c33fn/aHeodo
2020-09-24Attachment-2020_09_24-BVT55814.docdoc eb57e86cb83d891d8f3c4affcf8004405974426112d58396bd7f5684f6d2d7b7n/aHeodo
2020-09-24ARC-2020_09_24-IU128334.docdoc 35374c15f575bacca1d8ab66445da5ff278e99f98a29cf8a552c6943c1c8a848Virustotal results 43.33%Heodo
2020-09-24Rep 20200924 WW651.docdoc 23db49d5886e034ad5ab63515e5c5c6b6374d5bad5c9b68cfb3d84f39451a301Virustotal results 41.94%Heodo
2020-09-24mes-20200924-0950.docdoc 77d05388e54ffc1cf04195a80a090cb3eaa41f8820c93c4c646f4f56cb6beffdVirustotal results 43.55%Heodo
2020-09-24ARC_2020_09_24_S404570.docdoc 24e031fb985e7f9a012366503ac58c163c138850f5707b5029a5793b27857ba5n/aHeodo
2020-09-248915569.docdoc 4646dd3e53714af28ecc8c4bd54029a5cb00ec4ea6eead753353eeb8e574ff63Virustotal results 39.34%Heodo
2020-09-24Rep 2020_09_24 61834.docdoc 89a45325b3f1df9afd4f37462ca8202a64c8937098465331f9c8e11a042f9280n/aHeodo
2020-09-24Rep_234435.docdoc f936c9284d2c66663fbc538babb06de38024bfe3272f41be52eec3fb8025bc6an/aHeodo
2020-09-24Attachments_20200924_P552.docdoc 452a5769e0ee8f5698e793518a7272414d747287e82494b62ee4db46f2101f18Virustotal results 36.07%Heodo
2020-09-24ARC-JKP232257.docdoc 48523dc1483cef07ef0bca44fe8f6629de0a7ab7e89899640b66568d4816c54aVirustotal results 33.87%Heodo
2020-09-24Attachments-2020_09_24-521303.docdoc cb764536b329d21fa9638d8e1609ad4382e4e4ba44756045a7196c051cd12c78Virustotal results 32.26%Heodo
2020-09-2452454Y-20200924.docdoc 0bf5cdd3f37f117e4ae69a13ceeb2d812055e6bb5b5119bf9adbf69d4218d63cVirustotal results 32.26%Heodo
2020-09-24INF_20200924_4881.docdoc 7d47cfd77354eeae25a92db11ba24486d38653c3d2f2750076541f61b5bfb09aVirustotal results 32.26%Heodo
2020-09-24arc 367.docdoc f6dcaaa7b1e36ac14966538d45c8a37232030e1426436a26542239f6c4b15eaeVirustotal results 30.65%Heodo
2020-09-24List_2020_09_24.docdoc 1deb4e6a6641ebc64dead1bca39705a6df4d32fd478c574303dd3a17370cd84fn/aHeodo
2020-09-24INF-20200924-Y404.docdoc 004393cd825cf21d4459f69da4a083e90490e9c9497fc8eac740cdc269cbf2fan/aHeodo
2020-09-24rep 2020_09_24 JE69421.docdoc 1fc4c93d6328f5525dd8db9b1dd2c94ff20e487b32f7bc13a25903e406d016f7n/aHeodo
2020-09-24Mes-2020_09_24-O763.docdoc a94c2c5af432da438e746e9cf551dd6b3c7645af7a509a8bd8a7b4cdfc76ad96n/aHeodo
2020-09-24Untitled_2020_09_24_ZG0524.docdoc 98cac1b2d3b5764f8aabb6955ae8d2f9d1078b7f4fe2ba221e4c54da5460ef08Virustotal results 29.03% Heodo
2020-09-23REP_2020_09_24.docdoc d5925a52ac9cd59de6d9a5006d99886c79175fa1b26006effce8f26ca1a6385bVirustotal results 27.42% Heodo
2020-09-23REP-2020_09_24-ASE20335.docdoc c934c4297e9c14a09a9aa27d736c11db96cbd3782049de5e8319988206375c92Virustotal results 29.51%Heodo
2020-09-23INF-N470.docdoc 96307c5a62e457f86a55e67c624892de7b841d9f9e37545fff75861f6ff6e749Virustotal results 29.51%Heodo
2020-09-23LIST_2020_09_24_0575144.docdoc 10bf4255bb35705c86bfc4a5baf98ad46011a82c6c1af9285cf8074cafab5ca8Virustotal results 29.03%Heodo
2020-09-23FILE 2020_09_24 22147.docdoc aae947a6fbfba87e976638fd5811037cfdbcb8527d1b048ba6dbf58f52928455n/aHeodo
2020-09-23Doc-2020_09_24.docdoc 7eb8f86f1d35c1b61ec0a376bef90d63b327b9e17acdaa4a32cc2b649de0f4d2Virustotal results 25.81%Heodo