URLhaus Database

You are currently viewing the URLhaus database entry for http://wayupit.club/cgi-bin/statement/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	624957
URL:	http://wayupit.club/cgi-bin/statement/
URL Status:	Offline
Host:	wayupit.club
Date added:	2020-09-29 20:51:04 UTC
Last online:	2020-09-30 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-29 20:52:16 UTC to abuse{at}upcloud[dot]com)
Takedown time:	10 hours, 23 minutes (down since 2020-09-30 07:15:49 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-30	GEQ_090120_OQH_093020.doc	doc	9c8962de4c40c27a546d2347cc878f099354ae9f5cc7e799e78d864d74a6a72e	n/a	Heodo
2020-09-30	O_03074906728.doc	doc	09920ec2c5029cdb6177cee45414e34e9307a6f40548df1ba80385c44cfcc613	43.55%	Heodo
2020-09-30	M_465020246230884874067.doc	doc	8292af351e1a3422b40ca14a730c4a8c4e65bf1fe1daaa33852934cac3a2d43c	45.16%	Heodo
2020-09-30	FILE_PW3390026469EO.doc	doc	58ac8a64e7d1de26e8f6081b9ae7bfb57cf872206ae1e11eb6c00dfc798752ea	41.94%	Heodo
2020-09-30	DOC_EC0163738555KB.doc	doc	42c1f3bb9e1fae138c02e1447a93ea34c9c4859fca0078bdd3ea01145c4ed12b	37.10%	Heodo
2020-09-30	U_G35296QDKA3YM.doc	doc	1854226276e84dabaf5ceaefe8e33cd56360b60752eef6ff1a0e8e1657931e53	37.10%	Heodo
2020-09-30	BAL_PO_09302020EX.doc	doc	797ac0be9b6e1c912dab41fdf6c487642e027c1a24c2a6510ee3a1a326ef7bb0	37.70%	Heodo
2020-09-30	DOC_PO_09302020EX.doc	doc	cf47fcf596bf3abee5508f311666cec1399ab7e9b1f1632056db94a3e3a54468	n/a	Heodo
2020-09-30	AT5039614900AD.doc	doc	8649c9f23563646d5b0033bb729307388ddb4396da639cbf0385c08ec0a01cff	32.26%	Heodo
2020-09-30	INV_PO_09302020EX.doc	doc	98d73b34a062ee1b2c37410e0e1780a6fa53a694ff1df676a5b0213206078d85	32.79%	Heodo
2020-09-30	BAL_UOQ_090120_IHJ_093020.doc	doc	5620011cd8bf0acd1f3ecc32958d26a9f38c982b191406bada41f3db5a9250e5	32.26%	Heodo
2020-09-30	LN5040684484TC.doc	doc	75f032ed1b4c5d9738c4ebee1d878f1fe5307cba5c43dc44ce2443a640e7fb2f	30.65%	Heodo
2020-09-30	DWS_090120_ENT_093020.doc	doc	c7e94b09a7bf83d363a7949d7aef5bba5516bd5b0e0c149bbd1dc341b9cd5180	31.15%	Heodo
2020-09-29	52873919.doc	doc	5bc9314961b874f09854775cf9f6bce09cc9c8106200074edb961cd544efb675	30.65%	Heodo
2020-09-29	172323026672099344066.doc	doc	ad21f91ac048eeb669e0a9cc8199225d755cf89a9f5d79d7fb39ef2659f04a9b	n/a	Heodo
2020-09-29	REP_ZX8450628722MM.doc	doc	f3156f2dd9bbd4c0f1164e92165433c3f689d7777297b5149c47299dfbb1d840	n/a	Heodo
2020-09-29	FILE_UP2554487646NN.doc	doc	d59faf29c8fe5f632a3b7d91802b08434241b502d47b2bcdf2276dc68e4e7d48	n/a	Heodo
2020-09-29	DOC_V4H5PUW22H.doc	doc	a7bac9b6662da2eb4c3fa6f12c10d790ab6b8ef1735241fcd2a4d35a152a8965	27.42%	Heodo
2020-09-29	FILE_HXU_090120_VCB_093020.doc	doc	ec406f315de493ed38f3fc8e7bdd65664965b74a7215c69123b3e1c08ec28fc8	n/a	Heodo
2020-09-29	H_PO_09302020EX.doc	doc	33c16dca57826043e0e0e906d157fcde3b15178d62747fe0ee0f10f1589d9498	n/a	Heodo
2020-09-29	DOC_ZUO_090120_SPY_093020.doc	doc	07263c9336e4403639003a79c1911c50625c0f8b4684e24e5936bbdca96c8ca9	n/a	Heodo
2020-09-29	BAL_3065488326.doc	doc	e4f489cca030944314421b5bc6d72833515d692b991be16287fb9a642785294a	n/a	Heodo
2020-09-29	TG_RNQ_090120_NOW_092920.doc	doc	1a54d91500ff4572c7bd747c5d05133661b5bfa5a961de5468f14e7e66cc7203	33.33%	Heodo