URLhaus Database

You are currently viewing the URLhaus database entry for http://wzyst.top/wp-content/report/bwcso6mijh/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:609325
URL: http://wzyst.top/wp-content/report/bwcso6mijh/
URL Status:Offline
Host: wzyst.top
Date added:2020-09-24 06:27:06 UTC
Last online:2020-09-25 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 06:28:16 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com)
Takedown time:20 hours, 37 minutes Good (down since 2020-09-25 03:06:11 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25ARK_98158448.docdoc 8a73bdca97395b9f659104c200734008fe685faff6734fc31ce0cd575090f1b2Virustotal results 29.03%Heodo
2020-09-25REP_21574715.docdoc 870bc543d566751893f393fcf0c7abd3bceadb183ce2f7384e8922bb56a5bbb9n/a Heodo
2020-09-25PO_09252020EX.docdoc fe2ee906d8d8678d7ec22ed99ec97b47b6bc55850eefac61f9ec622f2a049bb1Virustotal results 25.81%Heodo
2020-09-25DOC_TXE_090120_VVL_092520.docdoc eefd694ad7a3c1d10441452c651459410143b5ce0d56e19d39c16c1114105d09n/a Heodo
2020-09-24G_19808803.docdoc 7732eb513243e6e3a764a526f3e87061885357e7adc6901e3ff647b039b4bda0Virustotal results 30.65%Heodo
2020-09-24REP_PO_09252020EX.docdoc 8e4be7abeafb997210d1c39bf851ab0c4cd097268cf3664f53c72abc3dcce92fn/aHeodo
2020-09-24FILE_10960210.docdoc 029de7c595a68b46233e28bbff65f065f8baf48178b6998928ebadafb8d3368cVirustotal results 32.26%Heodo
2020-09-24REP_55894770522220.docdoc b77cd70861b08e97e103e926c367d38fb18c9588b70cce776fab3c7b9888c31cn/aHeodo
2020-09-24FILE_QEZ_090120_WNL_092520.docdoc 7e1935fab86166df5d6770468bf12c57a50720c0b7ba90e21accf2ca8493ce15n/aHeodo
2020-09-24V_6542954098.docdoc c4fc9ec7954c1bc71dc415464f2813e6151dd7c106526dfe3aa8d97ec3b8f9deVirustotal results 20.97%Heodo
2020-09-24QA_18226730.docdoc 96d9b3d02df7aea418bb5629677cc35f0eaee5ea68e2373e23a730378f5f5297Virustotal results 29.51%Heodo
2020-09-24REP_270031706560098304224378.docdoc d25aed1074e6086a1e8ee4fb6885c8accddd96469d110e343f36d2e13aaebee2Virustotal results 29.03%Heodo
2020-09-24R_OF0072815750DA.docdoc 715f9dc1efa5fca591ca9ec3b12ea2cbfb023fdeb8f0964988c191a7be6166c8n/aHeodo
2020-09-24DOC_LAZ_090120_TFS_092420.docdoc 5bbcb03cbdf0fa9eb5854ee7d5c7d3669e469fbde2dd1cfe0b6c4767dd19d138Virustotal results 29.51%Heodo
2020-09-24QRC3VDKJ91VJE.docdoc 68d56a79c843b1b6a5d9937b5f98c3ecd25a60ebbffb348a9e08cde6dd1a98fdn/aHeodo
2020-09-24DOC_9362202852320880044.docdoc e065d7a8263671a9d5afd66e671dd1d8cb12ccadcde39686f63b37c411d977ddn/aHeodo
2020-09-24INV_QL0819319999PO.docdoc 520c035bd0bd60fac0008ee46cd8e3eab4dbdc31d8270d9559efb1e7b5016c7cVirustotal results 29.03%Heodo
2020-09-24V_RJ4410251756OF.docdoc 267834c0d23e344ce20d8814e0e5499c7f5bc32fbda08c9ebf721a3dcb2efe26Virustotal results 24.19%Heodo
2020-09-24R_Y1BD49Z.docdoc 2a383eeb24d148e1343c8ac61522fdc8b79c8fe8c0f5f1079009ca43cfed93bfn/aHeodo
2020-09-24A062HNMO7V0A.docdoc 60b9c51a988490875a152231c3217de228b7406a1378ab07263aea7f02ecd3ccVirustotal results 20.97%Heodo
2020-09-24FILE_852121686519485.docdoc 8845dd7a737d5dc44971ca503bd120028edc33db789f8155a39c0651c11caf72n/aHeodo
2020-09-24FILE_9P402LV4R994.docdoc 37b5d86751a2c999901df382ddadc7aa72d891a4e24ef527e02266ffab2efa41n/aHeodo
2020-09-24SCS_090120_LKE_092420.docdoc 460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974feVirustotal results 33.87%Heodo
2020-09-24INV_PO_09242020EX.docdoc cb1631d0c39aa43d0b8891aaca96d162c853b06f92e395beb682d5c520bc0d90Virustotal results 27.87%Heodo
2020-09-2410733115.docdoc bf6caeac64ebd3eca96f936635d26ea90e62f1093b72146a98a20623a13688cbVirustotal results 27.87%Heodo
2020-09-24REP_47459483.docdoc da886aa9c4cf9af28406c6c6b2bd1a84fdca0dd1861259185aba9da512264acfn/aHeodo
2020-09-24FILE_4811962311201956.docdoc 62b4929ff251b1ad4f361fa4d8f8980b722d4219e9e7a8c9aea193558deb8c2bVirustotal results 27.42%Heodo
2020-09-24BAL_62223664130607401821469.docdoc 0b102ec43b4bf3d7459491664e5c2f731286d92134e87e00967a144e59c28ad0n/aHeodo
2020-09-24DOC_HGW_090120_OGB_092420.docdoc 7e5a42a73c29e93f48c97d924845eef4cce7d6a931dadaa19068f78f4bb83015n/aHeodo
2020-09-24ZV5884838299HC.docdoc ad3cc6eb7a75a0347dc31dcd03afb293c1165a9ded2cad9fd9effbe448d6d816n/aHeodo
2020-09-24ZI_AYM_090120_DGH_092420.docdoc 9af648ba32609c02e0e93baacc5f17d031d6adb0dc7c238c2720052dd10ce586n/aHeodo
2020-09-24ZLY_090120_DXT_092420.docdoc 11e3728d9ed2d0468dd44f01dda3611b75b1b9dd7645e9322036d913c43b138an/aHeodo
2020-09-24REP_4V70W4HOD7FS.docdoc 1c66ec5827934e0744220674a8ae91d47bfa027376d756dd4722ecc165f09878Virustotal results 22.95%Heodo
2020-09-24INV_282778898041136936.docdoc 21e3f5e7a57c3e1871bec153b6876e793eea367a4c1cb2876681f858454ee52cVirustotal results 21.31%Heodo
2020-09-24FFBD_PO_09242020EX.docdoc e4a782671d6a001f226fd064f2f6204cb368f6e4e82aad502a4d5cd56b65a78bVirustotal results 19.67%Heodo
2020-09-24INV_SYE_090120_UHB_092420.docdoc b0c9e63cd039da312aea84e7c632e4faab8fa1bf3b6d8382f6fd898635c39941Virustotal results 22.58%Heodo
2020-09-24K_NC0599110812TR.docdoc 69ff6eb0a71090b17e21b2829b6108b2eebf8bd12b92fe587ce103a4c5cc0f3dVirustotal results 20.97%Heodo
2020-09-24INV_STA7OZJBARXEY.docdoc 54d6881837b3fcb6a0b3e639c58f6e159abb745d0862e1f5cabe6c7df3a3da12Virustotal results 20.97%Heodo
2020-09-24DOC_VQ3130125363WE.docdoc e2dffd7e2a3663a738dac21fd590dec2cce14df9ccf7aebcc5944258a827bc04n/aHeodo