URLhaus Database

You are currently viewing the URLhaus database entry for http://otto-nautic.ro/wp-content/Pages/KUEUwtz9Vlmn/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:611408
URL: http://otto-nautic.ro/wp-content/Pages/KUEUwtz9Vlmn/
URL Status:Offline
Host: otto-nautic.ro
Date added:2020-09-25 07:08:10 UTC
Last online:2020-10-08 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-25 07:10:21 UTC to abuse{at}nav[dot]ro)
Takedown time:12 days, 23 hours, 50 minutes Bad (down since 2020-10-08 07:00:59 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25list 2020_09_26 73132.docdoc cbc9a7ac55009cf820410419866cdf3028b42c764efab1210a3ffef2998287daVirustotal results 37.10%Heodo
2020-09-25Inf-2020_09_26.docdoc 3e7c8a0cc1f474c9b713655a5efe124262dd8a7541f68fe9ce7a262aaa14c714Virustotal results 32.26%Heodo
2020-09-25EV60279-20200926-498057.docdoc afaaf67d6062d7dc8d8dea0dfccfbe18041099790d46711eb84c7937d4385ca5Virustotal results 30.65%Heodo
2020-09-2530040-20200926-9458.docdoc 89db3a9a81f8bf6207af13c5ef8ab9c6468ff0dccc90bcf34d2724de641562efVirustotal results 30.65%Heodo
2020-09-25Mes M355.docdoc 53285bf2aff7155aaf4d28de40e67449f704eb1233bfc3fff6af913c92fe7b88Virustotal results 30.65%Heodo
2020-09-25Dat-322566.docdoc 5acdd7def61463f4658cdaf92e50b51fb65140b83bc9261e2972f49e1565fcbcVirustotal results 29.03%Heodo
2020-09-256491018_20200926_846.docdoc ab96712589f7f37c3a74abf911ed391328cb5b4ee106e641f4f58aa42209bfb6Virustotal results 29.03%Heodo
2020-09-25Mes_2020_09_25_PG45135.docdoc 0af0ce557b9cc0351e7c7358018dfe9d18cd9554481debdab64ba090f88f67d9Virustotal results 29.03%Heodo
2020-09-25dat 20200925.docdoc 1a6f5ce8332779b4f0ee9ad0d8d4fcaa2882f8dc5bb6cbf457af4d981d957786Virustotal results 29.51%Heodo
2020-09-25Untitled_2020_09_25_1797575.docdoc 34172fac16f26b4cfbc1a01621467e5d3eabd46919978c3afb3209950d172105n/aHeodo
2020-09-25Doc_89573.docdoc a36b376c1d12142dc414ebc28fdf51969ab36f6b2679e65b21a10a8386edd960Virustotal results 26.23%Heodo
2020-09-25Dat_20200925_578.docdoc 11d5ae5dbe98037bdaf8ee5753f38a0d58255e27f35d18a618e4d20854c617c0Virustotal results 27.27%Heodo
2020-09-25inf-A867.docdoc 9719f9600d71422dac2ccd8b4bc9a3de8886b16855ccde3e744f832971416f21Virustotal results 27.42%Heodo
2020-09-25REP_S64069.docdoc 346855a6cba4cd23b81f7e96dbd916904e0a6e14d5742e172298b30644c5b37aVirustotal results 27.42%Heodo
2020-09-25doc-20200925-2657.docdoc 3121ce2e1565ddf9c54759018736d582cc86a5763599b415936da87ee166fecfn/aHeodo
2020-09-25Attachment_2020_09_25_420379.docdoc f773a6eca5407509af20be45743cd12fd52304fa035b982f83e6cfb42dd7898an/aHeodo
2020-09-25Dat 20200925 M720982.docdoc 0f32f4590ff3bed0c890c4c8db46d75c5742f03eba5e5f897442f4c1816b1e58n/aHeodo
2020-09-25Rep-8421901.docdoc 9df62fdffdcbaae2b92e8c6bd2148c30fdcde3cdcfb64c26e62816dc3418c2d6n/aHeodo
2020-09-25mes_6056769.docdoc 20ddb0f1fa0b1a02453ad8a63690d0938b8f718010e6775c75c7e76144378d71n/aHeodo
2020-09-25UNTITLED_IW361544.docdoc 282c18b381f489a84bda419d6220f47602a753e0aca5247b30243be1ac09f4c1n/aHeodo
2020-09-25inf-882.docdoc f1139db9666104244dd2439dca1d69e80a5dd587c6a4173d44920f7a43e3a3b3n/aHeodo
2020-09-25REP 20200925 2695.docdoc b7e3f7882a7a0a82ecce73ddc21941b9ef69799a55dbdac9af12c5006724c933Virustotal results 27.42%Heodo
2020-09-25Attachment 2020_09_25 W105.docdoc 98748197b1beff559c60e46eea0a1cf4a1bec7259dd96d1a9fb2530313d02826n/aHeodo
2020-09-25Arc 20200925 3570202.docdoc 86d7aeea5789087887c51341c3f2594378f73a7b628800f928c9d95ac6bd700cn/aHeodo
2020-09-258963E-20200925-488938.docdoc 3a71138b8bc388f4982dd216cc4395b5e7305dd3a3719bcb8fbf8b34f1dfa3faVirustotal results 37.10%Heodo
2020-09-25File 2020_09_25 P46975.docdoc 2d120ec328b3b5736533793ced757970141a75ff0a75561cb2888f18b83fbd4an/aHeodo
2020-09-251211544-20200925-086.docdoc d73eff91255a1ae905955ee23b52b1822a72c5640224a8026c8e71d3f545bbe0Virustotal results 37.10%Heodo
2020-09-25Mes_2854678.docdoc 8184716f0f234f3296e458730d9d455caeecfdc39fd53ecb85372e504927d125n/aHeodo
2020-09-25INF_20200925_1992947.docdoc 53415bcf66245f93bbc317e427ea64ae10b82b89914edf08d3fceb25c8ca9430Virustotal results 36.07%Heodo
2020-09-25H087 JZ774.docdoc f4cc9f780fa49d42f2ddcbb2e78293e5011432b4c4828221774f336c3abf787bVirustotal results 37.70%Heodo
2020-09-25ARC-20200925-PZY40352.docdoc 018067bf198382877c4b21006840178202d28ca1cef4c8faae500a82dc6672f8Virustotal results 38.33%Heodo
2020-09-25UA219 2020_09_25 3282903.docdoc 265d752d9628320557704b9100b0fdaf93a159efa599cd15a66c2dc14518f4ben/aHeodo
2020-09-25Inf 2020_09_25 NSH6705.docdoc d6d988dea5f98bf25591bd80d4685342d58be3a634a311fd0664a5ad86714cf1Virustotal results 35.48%Heodo
2020-09-25rep_7662.docdoc 07947ce0608b1ce86a97780bc1668db6b0c441193d71b97cfe73d62c645edc6dn/aHeodo
2020-09-25list_20200925_P607303.docdoc d748371ce483b059051893015b0aa4bb9c4d406d198537c26f4bfa07136685b4Virustotal results 35.48%Heodo
2020-09-25mes 2020_09_25 7640790.docdoc e4a54cad2bf089dd58ef6952a21470cd51d236cf18bab8a27801d7f1a674cbf2Virustotal results 35.48%Heodo
2020-09-250503486 W552.docdoc 423f63eebfd073a0861727cc705ee239ecf673ba8ca42c3fd4fdc61e18e423f0Virustotal results 35.48%Heodo
2020-09-25list-20200925-506996.docdoc 00d2206a0492af4e5ca8c9d8b67dc673e53caab5243f9104ccb7dd7248462a37Virustotal results 27.87%Heodo
2020-09-2586686 1742985.docdoc 1a6cfda9ba0418fbe17f1829079f856cbea7789c02d8a9056ff18b7506511ae5Virustotal results 29.03%Heodo
2020-09-25File-2020_09_25-Y397168.docdoc 15d95523658166ebe3f0936e250ea84cb9bd6c93f98fd233bba3709318b15c45Virustotal results 27.87%Heodo
2020-09-25Mes_2020_09_25.docdoc bf27565d42242141b33f941bbd430bfe251a2a58a263f5fd06e816abdb4557b5Virustotal results 27.87%Heodo
2020-09-25Attachment_2020_09_25.docdoc 48a443d0ad6f5a7221d22b942387069852f6bb26e9b7021896f0e00bb686e8cfVirustotal results 27.42%Heodo
2020-09-25FILE 20200925 H239.docdoc 912e6b82fee5f9b6770150fa456e40051bfae0d70f696e3cde2b0c82e9a1f891n/aHeodo
2020-09-25Arc-20200925.docdoc f167065e81cb64aad1e390ed479435dbbc9e493dad0eb3a93ccf01605373cb4fVirustotal results 27.42%Heodo
2020-09-25Mes_2020_09_25_L375505.docdoc 059202ce7b96a89a3d55a0f47f496ac65e242c3fad84762019f5ddd4c00f6a29Virustotal results 27.87%Heodo
2020-09-25FILE-20200925-LFP9058.docdoc 9a52292706a4d69a0bb35515cb99ac46d3665a3f8c479bdbc54f658a86cfa3b8Virustotal results 27.42%Heodo
2020-09-25list 65091.docdoc 63c70c3f9100ecbd5ceed01c952d8fa54927a057e656b6b29e6013c8fc1dd735n/aHeodo
2020-09-25FILE-20200925-RX2729.docdoc f6c123ab052497d0d3161d543f49fb02ea76751cfe235be4ce6f7d6c24733575Virustotal results 27.42%Heodo
2020-09-25Dat-623.docdoc 9a9de7534f2409a959b4c5976795d3b3c1b32f35317936b97b8c3defa1a11766Virustotal results 27.42%Heodo
2020-09-25Dat 20200925 7920691.docdoc 211629a0074efa84bdd50ffec79600731c2338a2c25f9f39f467146a13063a09Virustotal results 29.82%Heodo
2020-09-25REP 20200925 IKO40824.docdoc 7af65b3e6ff098ff2470d97bd7516a4be13b0853251bd92c07bea314fcc3a209Virustotal results 26.23%Heodo
2020-09-25FILE.docdoc 8e99f5628dbd486efa0f0ef64fde215e35fc4f3ef1a045ddd87084b61b0676f2n/aHeodo
2020-09-25Untitled-20200925-G84028.docdoc 45e6aea2390f44e6f216b37b4534d4d8d0841e416aa1ba63d0b194dedac58130Virustotal results 26.23%Heodo
2020-09-25DHB26153 QO75013.docdoc a498490c2d2082417852e61a598fa2606f70d6a8fd7fd5f6ae72ac00b1276126Virustotal results 35.48%Heodo