URLhaus Database

You are currently viewing the URLhaus database entry for http://kanerika.wowso.me/wp-content/OCT/WkCXVZjOKy5J/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:624346
URL: http://kanerika.wowso.me/wp-content/OCT/WkCXVZjOKy5J/
URL Status:Offline
Host: kanerika.wowso.me
Date added:2020-09-29 18:07:06 UTC
Last online:2020-10-01 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-29 18:08:41 UTC to abuse{at}amazonaws[dot]com)
Takedown time:1 day, 12 hours, 5 minutes Poor (down since 2020-10-01 06:14:37 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-01LFW898 PW511197.docdoc e7e065422a4f53ff6f3260a29f59719111b3bdd8fd148a6682cb5f66ed28bab0Virustotal results 35.48%Heodo
2020-10-01FILE_2020_10_01_R487.docdoc 2316491908b1b0175a9782d21fef85f16d29b5dd05d72c00c8dc943ee110afb4Virustotal results 35.48%Heodo
2020-10-01LIST V95201.docdoc 180e17d6d6ede320ae7e947ea1e473ebdb11480a9200cb3bdeb8d38a15e5e4b3Virustotal results 35.48%Heodo
2020-10-01arc_20201001_949157.docdoc 6ffe1f1e0b366f49f5644ef9775e58ea1aa808bdfea4ced1aa367e2e44cded16Virustotal results 31.15%Heodo
2020-10-01list 2020_10_01 DWG0213.docdoc bc473e3c095e5c8fc312b29ee596cfb5c7f89bd4795e09377e0a3258761b3c25Virustotal results 29.51%Heodo
2020-10-01Inf 20201001 XU9090.docdoc 87441c831ad7808d1f9a4fc6533c65071a13b9ef979ab68ffd24565426558597Virustotal results 28.81%Heodo
2020-10-01Untitled 2020_10_01 I432.docdoc 2236eced769acbff98e98c0f0f46643a46d2411d661697211da7a01b9ed7eb2cVirustotal results 29.51%Heodo
2020-10-01DAT_20201001_VPU44250.docdoc d0b0c89fd70b604e0abda15a2af6e8d0fcef712db05d5b15705862e2dc1120f2Virustotal results 26.23%Heodo
2020-10-01list_2020_10_01_ZF24883.docdoc 750f3ddf6c6bd8e7cf26c3d8103a0dd26becbf4a754fbd78bcb33a8bd165741fVirustotal results 27.42%Heodo
2020-10-01file-8215233.docdoc 1a4225aa9c57fb8c97a5859dc3d004a323c5a31ad17def4ea965f4ed6fb8dd88n/aHeodo
2020-09-30mes-X72212.docdoc 83528dd86f27eafffd6b8b9bc31bcd40ce046ae2f1eadc585ccc3125af320625Virustotal results 27.87%Heodo
2020-09-30Dat-20201001-2533.docdoc 4eb0f14ad3f635965ea0fafdae6c9212c194249521cfb39bab99ca8a69751473n/aHeodo
2020-09-30Attachments 419045.docdoc 8e47a77404dc1b06dfd5021c2deb7c2a7bc7ef7c212f643659615772497a98dbVirustotal results 27.42%Heodo
2020-09-30dat_20201001.docdoc 00811b4a43db0ac2a88c49f0f4cbda45da02316ba871e9e1fca39f1217a92f46Virustotal results 25.00%Heodo
2020-09-30Dat-20201001-8380.docdoc a45457d61dc4348ead8ec41d69cbf25f7a141e5ccf3cea45583e5a1a666cef6dVirustotal results 25.81%Heodo
2020-09-30UNTITLED-20201001-200252.docdoc bc5bbfab7bd6b38fd204b4c31d13dcdb6cc6e1712b448d5c2e6ff31e858b26ceVirustotal results 25.81%Heodo
2020-09-30DAT.docdoc 58cada3d143a20c1a566b797ab0871b4c7a6c143c0d51d22eeac95e24589054bVirustotal results 25.81%Heodo
2020-09-30Attachment 2020_10_01 AGG2078.docdoc 19b1eea04af9072b8f9b94aa2c85b3160cbd12770bd5d169655b334141d8ef3cVirustotal results 26.23%Heodo
2020-09-30REP_20201001.docdoc 32a1991f3cccd7f0d787d1fd9ef745328cefd8d134d25a6a2e12d49808143952Virustotal results 25.81%Heodo
2020-09-30INF 20200930 SN920.docdoc ff3315b87d2b2765a5e026ae9583280025aedf196ffd9d83606cfc049d9cc800Virustotal results 22.95%Heodo
2020-09-3006935-20200930-RPI25385.docdoc e92f158f2faa36f1af7c6995a3e4433ef891eb4dcfa6a15c6ad994527c01d680Virustotal results 24.19%Heodo
2020-09-30INF_2020_09_30.docdoc 9d324dca782f0c31fabf90945e2299934a2a4a5f08c328100843fa3c06380300n/aHeodo
2020-09-30arc-2020_09_30-362.docdoc 86c6b7b0bcb5c5ba4062cb3cf30ae97c00932ea003bcb4ab638a0c2bea73b2f1n/aHeodo
2020-09-30212651-2020_09_30-X2399.docdoc b04512682b99769e9f703d6e0d527806605144a0c723b530c2467182ad6cd807n/aHeodo
2020-09-30UNTITLED 20200930.docdoc f83ac83b76893b32fe71e9ce9fff80c0392ffae0ad66425140513c71a568885cn/aHeodo
2020-09-309819532_20200930_555048.docdoc dc681f3d1933c88a3830910384602c5c5b3f2f3c0fce741e5becebf377a6ad03Virustotal results 24.19%Heodo
2020-09-30B79852_20200930_OS6008.docdoc a6939a0d29def5129bbd46b4368e98aa137fc72bb23620be065261d8f19dd633n/aHeodo
2020-09-30INF-2020_09_30-IUK9995.docdoc f6ebeb959a9c21b3b223984baeeb720c187190538242879925d8c5b284dc74c1n/aHeodo
2020-09-30file-NBO4856.docdoc 4b04228efdc9faeab3a76db865b9770cec91902332f6517d3c1de9b188252e7fn/aHeodo
2020-09-301750-2020_09_30-BPT82631.docdoc 531099fb2b364e3b25a4860725ed07bca198e56c1a53c47a7d2655cea71f9122Virustotal results 22.58%Heodo
2020-09-30dat_1560.docdoc 0490f801b82efae8e0e92613dfb9f1f79324a9e8f3c7b22dce5238b5cd08153an/aHeodo
2020-09-30mes 20200930 AAF2046.docdoc efb4167bc0cff354c12bf008da6ffdd636d608141a89d9c77f85c40b28dcd31fn/aHeodo
2020-09-30FILE 2020_09_30 JS059.docdoc bb859c1cdc55c8efda32c573ecc7e09c0692cf12de6a7c4bdc300e6e86456782n/aHeodo
2020-09-30List 20200930 4644705.docdoc 9ac40a72e7924e44c504e25d64e72256f0b7003d884c6dd0e77eacdca2cc10a1n/aHeodo
2020-09-30file.docdoc ccd09c9d5a3e23cf11d4573a5ce8d84c634f8cdcf7188378a94ab61d27544009n/aHeodo
2020-09-307219M_20200930.docdoc 2e596652391370bfcf5e776a4379dd5061fcb4441200889c726c34ea6207ee9bVirustotal results 20.34%Heodo
2020-09-30file OEW9910.docdoc dca2f3f5cd4fc577315e8bd9fcb344afb5cdc0726cd6349dd3698c48cc0542d4n/aHeodo
2020-09-308085334_20200930_7238981.docdoc 82581c6ad4b432cfb2c3782851f3838d3bbcd11897cacec6fe66f0453d0251ean/aHeodo
2020-09-30Rep 90590.docdoc 1ea4a863ce7e31c402eb464be746c8b9e82418fe4a3452c097cd3daf8b9fac2cn/aHeodo
2020-09-305820378 20200930.docdoc 638f854ddf0512642125aa805b9b59a11c6197b711e11aa71db57fabb2f83f67n/aHeodo
2020-09-301770 2020_09_30 3852748.docdoc fd826f7ad1f1e372efdc57065d0bb9c4c29931529a7ec64c0cdc3fce95a4b547n/aHeodo
2020-09-30List 47854.docdoc 8499ca7bd03946d76958ade70190e439f10d822405083e41472af011d95445den/aHeodo
2020-09-30dat 2020_09_30 00921.docdoc 1710e41764e75b641009119a0a1632eafbfca1ea76a900667509d9e06f7e84a2n/aHeodo
2020-09-30File 20200930 I1863.docdoc 5bf5490d9daa5f884b6597377c8d3f4200a86f12a88c613b3b633681f3998191n/aHeodo
2020-09-30Inf_20200930_CJY0837.docdoc e03fed3300d293debbc3a22ecad92ca0d5081711bb790d7a954385a2abf5ba1fn/aHeodo
2020-09-30file.docdoc 76e9e55c307f36acc01ada6e260d9bf3c42193efdf36fed710a1bcd58594f0afn/aHeodo
2020-09-306453P_20200930_0707281.docdoc 14f2d1d18d19afe92e1aaf65fcc49f7798d6d9c1c150d1d840895741bdd527bfn/aHeodo
2020-09-30ARC SX104.docdoc bc757180acaa1e89b4d2c9e90808cf95c6169ab7a65a5bcad936171ab506b054n/aHeodo
2020-09-30Inf.docdoc c2fd3ccb55360792d0d8b09904444e642fca832f64abbfc28c7a729f98473414n/aHeodo
2020-09-30mes_2020_09_30_DT883810.docdoc 25b7f727f0f1e44dc0b90a12f28264418053fc308ea16c0050ae887a1db7d5abn/aHeodo
2020-09-30inf 20200930 538881.docdoc 173d3683f3f267d179bd0a2861ce23edcef457430364fac577f89dea9c9950b0Virustotal results 20.97%Heodo
2020-09-30768-P3642.docdoc 560d243b886163bf8799f1980448da2bba89ef24b99028c48b3687a710a80fdaVirustotal results 20.97%Heodo
2020-09-30Doc-2020_09_30-4393895.docdoc 12ac85eae36cadb62fd9e5f907ddfb4be98326edce0e3e073622a1c87563cfa0Virustotal results 20.97%Heodo
2020-09-30inf-WIW230.docdoc e72c9a13411ec37399045d05cf6bd73136713d8b946b442f3c760a57b492bb62n/aHeodo
2020-09-30Untitled_2020_09_30_BV35604.docdoc 7464edd6b84b35d71ec4b891bd85c2918da1024f18f49f0e06192b440eb5f364Virustotal results 46.77%Heodo
2020-09-30LIST-2020_09_30-OCM26096.docdoc 4b795f3870e608b6c61e4a7757d87deb5525949aadeb15393e2b83cb4b34e618Virustotal results 47.54%Heodo
2020-09-30ARC-20200930-1924340.docdoc 45fe2fda54ec2b495e927d8205639f79fc95f1de2c7325a84a6651092c11733bVirustotal results 47.54%Heodo
2020-09-30MES 2020_09_30 969372.docdoc 3bdee9fdd814363fa073be396eda19d9242d4bfd82702110dff7564d61ef4a8eVirustotal results 46.67%Heodo
2020-09-30File-2020_09_30-9008.docunknown 551817b29bdd25cae481fa77c2f295a03a36b7de6c5afd9dc612ff0ded86e9f0Virustotal results 45.16%Heodo
2020-09-30mes.docdoc 4ea90e3809b6394cfe327060cefb011a7c1feee15f8bb5c9e59daae70eb100f1Virustotal results 46.67%Heodo
2020-09-30rep-2020_09_30-4129887.docdoc 6f99b89e5bfde428715216d919a8e1dd87475900137dfbb2e07c5ba58bbb2954Virustotal results 45.16%Heodo
2020-09-30Dat HR848.docdoc 6dcb7e9d3ef574e032cf8d4f7da8e1ddefaea58991677a7e53be13723839e09dn/aHeodo
2020-09-30INF-2020_09_30-VUN20655.docdoc 892d8f9cfb26bae3277304d3396027dd55d0899e78181a1431bb43e29dd3e857n/aHeodo
2020-09-30list 6678.docdoc 9d14d3ff8abad95d71af0043f19dd1644cfa14ceb0a6ba617a49f3bd559523cfVirustotal results 40.32%Heodo
2020-09-30dat_20200930_723589.docdoc 10294374734e4bb56cbf03eba2d257784ac87c057586d27a97c2b8b30f1f0f6dn/aHeodo
2020-09-30Attachments 2020_09_30 CUR187120.docdoc a3aa47fd0e69bb9abfdf3263e13b7d854f23cc07579e8e294a8930e6498d6143n/aHeodo
2020-09-30File-2020_09_30-66630.docdoc 1d44cd8c3d04874dc41108bc844eb637f657064927fc28927f68c95fe596bcaaVirustotal results 32.79%Heodo
2020-09-30X5427_2020_09_30_397.docdoc 1b7ae75c0843e24188c16e98283ae53b2d5d441a3149a30eae0eda9db7781220Virustotal results 32.26%Heodo
2020-09-30arc-20200930-P821655.docdoc b3209c6972bdb3ddba9f14b30f6a49d2ee49d09003fca07ae1f28646011f0a0bn/aHeodo
2020-09-30MES_20200930_7758119.docdoc 07f05248ebd561f95c8b5988fddd0396c6d3c0a61015e3cf154e1e97f2af015aVirustotal results 32.26%Heodo
2020-09-30Mes_2020_09_30_PN2055.docdoc 02c3c1d0653a24c203ad1bcef154e65e155db910100619634569eed5982b5d26Virustotal results 32.26%Heodo
2020-09-30Attachment 20200930 680.docdoc 8b094b3853afcb79ef514333bfa570faac9b7996f06500f174020ce0e5a31751Virustotal results 31.67%Heodo
2020-09-29UNTITLED-20200930.docdoc 98c87f2f2e124f5e8444896304f556a844430d6543223343abc894702abf99e3n/aHeodo
2020-09-29LIST 2020_09_30 78907.docdoc fe1ce0fd30ae39c4347efaf4fd829853c3df12a2eaa46b281faf17855b5c3a2dn/aHeodo
2020-09-29I093 NO189182.docdoc 349dd2ac63132716ea7360223fd038575e1b7144925c60d87589880fbd488670Virustotal results 29.03% Heodo
2020-09-29list 20200930 3468210.docdoc e3de30ef5c7981eda918d57d374e0b63e76c17fdba1ac6c9c710bf76fd1b8526n/aHeodo
2020-09-29Mes_396411.docdoc b6924c37febb8c64ef7ba11d8266e713aac4062636eb088d498cb095fb68010fVirustotal results 19.67%Heodo
2020-09-29G673-20200930-BHV47737.docdoc 7b65d8ab639b2e52bf89d1991cd330f6290b79269e2699b295b134f62689d29eVirustotal results 19.35%Heodo
2020-09-29INF_2020_09_30_PHZ046.docdoc 182753a6c1d4b67b4f7ae6131148151d0b2cd2b05c8b09f5aca4329bec74cfecVirustotal results 19.35% Heodo
2020-09-29Doc-2020_09_30-9610.docdoc cdbc3d9af98086634425aa8705246094a3b602fd00a7f35717208a55a4da2144n/aHeodo
2020-09-29INF 20200929 Q177771.docdoc 0829f123bba644a77511c370a9ddca16d627ad787899728730ce9389ec254751Virustotal results 19.35%Heodo
2020-09-29Mes-2020_09_29-1003318.docdoc 3d235a4140752510bfc661fe22f35beed507a33c01e5ba04d7ef218b9a9f4f8fn/aHeodo
2020-09-29Attachment-20200929-437304.docdoc f7a5f4499460af59d26675a0a4e6e45c7422b7f830447a95d261fb2950001aafVirustotal results 19.35%Heodo
2020-09-29Attachments-20200929-51557.docdoc 9441c64607ce749604dff7e3f2080dc43eff5cf59ab51c17e8e276ae8f9a24d6n/aHeodo
2020-09-29Rep_QWV416263.docdoc 0495b89fed42b19dc6fd71b8f9a2dbea746f203b28ce8388a4069e86385b5207n/aHeodo
2020-09-29Doc-525.docdoc 0c7d2c1664ccd97c72a5f0e32e5cb2f5b3b0b558e61edbbe58dfc4b9b937699fn/aHeodo
2020-09-29Attachment_175.docdoc 32049385466cefdb6902bff7a1c1c93274f20eb51842f1dc68a84e5de14716d1n/aHeodo
2020-09-29arc 20200929 Q21775.docdoc f597bca2ebef9eaaf692c33d4b2e5aeb17867bb7748ffe9ee8699ead5521982an/aHeodo
2020-09-29File-195650.docdoc d435b2493ea1edeebc83a76235d60fa8e4f0f9323ae6fed0920974f35c301fe0n/aHeodo