URLhaus Database

You are currently viewing the URLhaus database entry for https://www.ttlrecycling.com/wp-includes/browse/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:623166
URL: https://www.ttlrecycling.com/wp-includes/browse/
URL Status:Offline
Host: www.ttlrecycling.com
Date added:2020-09-29 13:34:15 UTC
Last online:2020-09-29 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU002972359 created on 2020-09-29 13:36:06 UTC)
Takedown time:4 hours, 51 minutes Good (down since 2020-09-29 18:27:13 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-29FILE_XN4903281766HE.docdoc f24ccbb78792f8c22271d8ca930b6d77b3c843db571b12f11007e1f043ebb8cdn/aHeodo
2020-09-29FILE_88201233.docdoc a1ff4c3cc94952016f96e7696b9d0eff572e92076bc8f88bab00ff2dc752a676n/aHeodo
2020-09-29PO_09292020EX.docdoc d3461e80df2f5fd3509e98212a3fa95e931e1311e382e800fdf0469d256a3e57n/aHeodo
2020-09-292731429285527846450.docdoc 844dc7bc8eab502d43f5eb0a7501fc0b97ed3192fe06e4e2f33d69dd28fb63f5Virustotal results 34.43%Heodo
2020-09-29INV_YZ74KEUX9L.docdoc 6d00d6451661d40ba68a9650bead442eecae2c92266613dd9577e380f31f9644Virustotal results 35.00%Heodo
2020-09-29CXCHYE5N15.docdoc 8735f3fba355d62e151499b2d1420f146f803f54119070ff76d6e23e7e35b412Virustotal results 33.33%Heodo
2020-09-2921008899.docdoc 5577b05132ddcf2fef9772af4f137196e88f80ad743454f18de1a1f8d90f336dn/aHeodo
2020-09-299RFID21TKQ3BZ.docdoc 75284ce88d24ec303b134ab93a005af756cfd8e65c06fd2438579d8ff10dd621Virustotal results 33.87%Heodo
2020-09-29PO_09292020EX.docdoc a379c99d0452638d4c8f009ee52263def6724224858745b1828a7141006c8647n/aHeodo
2020-09-29FILE_PO_09292020EX.docdoc 3ac2fab6d38a1b39310ed1c690ee400a2e3fe82c6c762a2c0d795a4140586832n/aHeodo
2020-09-29INV_PO_09292020EX.docdoc 549c060a34038b8d0a3428103aea9b8f402b8ec6627d3f1c4ea4f436668016bcn/aHeodo
2020-09-29DOC_00168653.docdoc 745c43f7578cbd7dc997f5fcdb6f547c74055514e0120e14dbcdc4772babb5acn/aHeodo
2020-09-29INV_4038741675905340072.docdoc 5d7b41f08cf6e23731422e3268ed357cf8966a916216f88fb4fd7c1e058607d7Virustotal results 24.19%Heodo
2020-09-29REP_LO8828338924KS.docdoc 6e9852d3647c4e98ea816cd8a40aaad4dd2c5f2b2b1f23aadd3d237eee251750n/aHeodo
2020-09-29INV_4DMH4IAG12G91.docdoc d286eeb463240cec38ca707bac6d0bab917ed05ed87cda5f42f3865dd2cbdc1dn/aHeodo