URLhaus Database

You are currently viewing the URLhaus database entry for https://100procentzon.nl/100ZonWP/m5bsyh61186197608702brggoy2nvfrr9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:608626
URL: https://100procentzon.nl/100ZonWP/m5bsyh61186197608702brggoy2nvfrr9/
URL Status:Offline
Host: 100procentzon.nl
Date added:2020-09-24 03:16:41 UTC
Last online:2020-10-07 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 03:18:07 UTC to abuse{at}microsoft[dot]com)
Takedown time:13 days, 12 hours, 35 minutes Bad (down since 2020-10-07 15:53:56 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25W_9K2SW9OEB5XZEKS.docdoc 8a73bdca97395b9f659104c200734008fe685faff6734fc31ce0cd575090f1b2Virustotal results 57.38%Heodo
2020-09-24FILE_PO_09242020EX.docdoc 460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974feVirustotal results 26.67%Heodo
2020-09-24REP_PO_09242020EX.docdoc d038ad9d31d6764ec9e5ad2246c2f2a99e0c06ca8798bd54e73deecb05dab14dn/aHeodo
2020-09-24NITOLZ3.docdoc 14d3028b892573f0d8b812deb455b13424beb8580cd1d928cabdbe4c613a7e22n/aHeodo
2020-09-24VZSTBDR0SE15.docdoc 0513605e1d28ab01152da25d30cb6762b95b79d8183cb775c505abc6f341e4f5Virustotal results 30.65%Heodo
2020-09-24S343TKW5.docdoc 1b0522ef94f38e510dcc9cef4fcd477690c2c18de3cab3d1f534d2a2cc4c32afn/aHeodo
2020-09-24INV_9257046342513823738.docdoc fc98a386a0e52834ae5dcb93beb5aa33305f3e71cd4183a2e47c7c38d9cfeb1cVirustotal results 22.95%Heodo
2020-09-24BAL_HVH_090120_TQM_092420.docdoc 447465de32a94153d18ec88201122059c81c4d5e43fad6bdace0fc4b7b788a57Virustotal results 27.42%Heodo
2020-09-24V_75218717.docdoc 27dc3b44a37b8d1d2c9fb8be66fc68db20eddfd82efd9aec4a13681328129242n/aHeodo
2020-09-24DOP_FIB_090120_DOI_092420.docdoc d9e5e99a04e37db7783f369c532e2e6d5171b90a286f2c397fcd6356a1abcce9n/aHeodo
2020-09-24DOC_TZ5621326516CU.docdoc eb6603914138fdf745639105d5d9df8a97a3db951cb1ed415138f3b3b2d1fd80n/aHeodo
2020-09-2410994456824867664249.docdoc e5b9b4889b3cad8f0920a0d4153cab5517ce077683139476f36bc1bf91652725Virustotal results 21.31%Heodo
2020-09-24BAL_PO_09242020EX.docdoc e4a782671d6a001f226fd064f2f6204cb368f6e4e82aad502a4d5cd56b65a78bVirustotal results 19.67%Heodo
2020-09-24O67PWVM1V.docdoc 699130456adedce5c03d39cefc3df4b0cd5136c6b5ca856bc65252a8c686ee94n/aHeodo
2020-09-24S_050277477134942847485192.docdoc 6cbd2115091ed6aac27b36f75ef0aa1328e9cd43fc463b039ff9cefed0d8b1f8Virustotal results 20.97%Heodo
2020-09-24TV_5476244450410531716597618.docdoc 2cb8e1446721719846acffe071530942784ff1af5081ba4740e713f33ef02571n/aHeodo
2020-09-24PO_09242020EX.docdoc cfbd97481c83537fad9115e2c33ad3cdb1c05c7cac4aec15f2aaaf6acc3d1006n/aHeodo
2020-09-24DOC_P53M7E67SU43W.docdoc 60443647991cdcd0fb310b965e853672e8c5c83a64629a83d7ee568b23e44296n/aHeodo
2020-09-24DOC_3895148347667013136.docdoc f2621313b9111b762e3fdf55bb9e64523d3a6ee50a09b193cc339ab22a42cecfn/aHeodo
2020-09-24Y_4993704941357761275563939.docdoc c1b41bcc38633ca3448055479dfc5bbca852649dbca3c9b90c0f8d884c9dd705n/aHeodo
2020-09-24REP_BI4418538724AH.docdoc 3b2da1783943899a3e23e20477670990adbde1f6edb9bb2e2ec1aa640c601f3dn/aHeodo
2020-09-24BAL_CZ2849477642IR.docdoc a48a197539aed2368c68f377ee4e1a8886412cabd39050e98b3fab282c089d39n/aHeodo
2020-09-2437393428.docdoc 8f054924ac0e3a72b2725a18206bf1e2faaa327460d2e7199b1152126241d054Virustotal results 35.48%Heodo