URLhaus Database

You are currently viewing the URLhaus database entry for http://shocksock.it/wp-includes/paclm/wuy6zhtLVI/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:629004
URL: http://shocksock.it/wp-includes/paclm/wuy6zhtLVI/
URL Status:Offline
Host: shocksock.it
Date added:2020-09-30 11:09:08 UTC
Last online:2020-11-25 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-30 11:10:44 UTC to abuse{at}heartinternet[dot]co[dot]uk)
Takedown time:1 month, 26 days, 5 hours, 34 minutes Bad (down since 2020-11-25 16:45:33 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-01Doc 2020_10_01 59158.docdoc a781877d21e10d3d41927fa45111c52a960125350e3113661f2a35d4d0c03a05n/aHeodo
2020-10-01Attachment-VEP2002.docdoc 1602d8655094a28e4a57ca5925f75d554d1b3e50d86bc343ea4f3bc82a82ca3bVirustotal results 29.03%Heodo
2020-10-01Doc 2020_10_01 744.docdoc a1a6daeddc9c07b3660ac0f9f22b98011615cbe27c907e95d9a9b568b6febfb7n/aHeodo
2020-10-01MES-O68282.docdoc b90ebb7dae742cfdb7da6ff6bd16da492a5ecb897232a60c12636140d8abb80en/aHeodo
2020-10-01Mes_2020_10_01_X8652.docdoc 857db507ee804fb61efddc2c08ca8c0da54fee58ede29f82bec97513e1b263cfn/aHeodo
2020-10-01LIST 20201001 K0307.docdoc f6282300466cc494ecc66faafb76d6d9fdd8aeba93ba804e5ad7a66bcad9795dn/aHeodo
2020-10-01Mes-2020_10_01.docdoc f500682624f2e7ca6a407eee8ea4d347097c36bc08e8717a8cf6496152f9a627Virustotal results 35.48%Heodo
2020-10-01dat 2020_10_01.docdoc 4e29f93d23065a600d39a4f1db754b951bd6a38706c145d990df65d6ebf5b6dfn/aHeodo
2020-10-01INF-ZV327985.docdoc 3c75033aa8888dbd05f3597fca23642083e9624fd30ffe6e88114552aac1a2e1Virustotal results 36.07%Heodo
2020-10-0135425144_2020_10_01_1288.docdoc 46a59f3fe0efcffcdfcd2c366c3cda5205ab4f7c79e6c11c1bac4ea7247906d5Virustotal results 36.07%Heodo
2020-10-01Doc_20201001_RO3234.docdoc d66305170c4d1718156918c0580b9ebb5b1186ca6df4899f266ff1d1bd0cbcffn/aHeodo
2020-10-01Untitled_95702.docdoc 777127cbba49b66a0abc912156156af484a0903a78b298981ed5e34b107cc08cn/aHeodo
2020-10-01File_A934394.docdoc b2af72414cca6a559fbc5e9254b6080ce9d292ef4b2a37d8973118f7fffca277n/aHeodo
2020-10-01File_2020_10_01_Q248530.docdoc b3776f674d9ce6db3d98ad056a43c66c185a8109320db88ec042c4224ff2d5ffVirustotal results 36.07%Heodo
2020-10-01FILE.docdoc 2ce45b11fa32eb63d439d9a9faeda5a4bbf6739316516a3d5d9e3a3d9e44f0d7n/aHeodo
2020-10-01UNTITLED_564401.docdoc 86dbb41d6058264e118fb00ad05407dbef472020460a4c9f0de0ada45e794935Virustotal results 37.10%Heodo
2020-10-01File-106.docdoc e7e065422a4f53ff6f3260a29f59719111b3bdd8fd148a6682cb5f66ed28bab0Virustotal results 35.48%Heodo
2020-10-01rep_2020_10_01_75546.docdoc 85226bf4b5aae875eb53ec867bf5e5349c57c45cca5e2077e05eb090328c4d61Virustotal results 35.00%Heodo
2020-10-01List-FZ85051.docdoc 180e17d6d6ede320ae7e947ea1e473ebdb11480a9200cb3bdeb8d38a15e5e4b3Virustotal results 35.48%Heodo
2020-10-01arc-7474.docdoc 6ffe1f1e0b366f49f5644ef9775e58ea1aa808bdfea4ced1aa367e2e44cded16Virustotal results 31.15%Heodo
2020-10-01mes_M821.docdoc 625b3a690caaa5c130c9cf6aff2104b733573c0124222e7761d9d9abd7f5bc03Virustotal results 29.51%Heodo
2020-10-01Mes 2020_10_01 9121.docdoc d382a8d884d288f590e7382d6f5a50924269e1098dbeff15c664104aece75ddeVirustotal results 29.03%Heodo
2020-10-01List-63933.docdoc 6b860b1c9d7e92d8ac4e346503ce13d6ddf993cd471d17ca26ad437fde1b2809Virustotal results 29.03%Heodo
2020-10-01ARC-20201001-346.docdoc f599f04651361e4298bea8b9c219e4588d021a8cbf00802660a69c92584446d8Virustotal results 26.67%Heodo
2020-10-01file-20201001-JFG28031.docdoc 1065e6daa80b86a72a1d83d506754e2095355742ba0162e798a32fe05d39c265Virustotal results 27.42%Heodo
2020-10-01LIST-BE70727.docdoc 9140dd246193f4397044dce4c62930cb81b729b3900b10c5e9ecf6778a077648Virustotal results 28.33%Heodo
2020-09-30Untitled 2020_10_01 294.docdoc f7454110fc14b94a8de1a15f118873db33d5dff0040b860e7a74775a986c8196Virustotal results 27.12%Heodo
2020-09-30INF-LXP1168.docdoc 4eb0f14ad3f635965ea0fafdae6c9212c194249521cfb39bab99ca8a69751473n/aHeodo
2020-09-30FILE-2020_10_01-VDZ288.docdoc 24a4f7d8cf601311928b7d9c78fd6067e4b6e6a47c641fbdc86703b0dd3f1ee7Virustotal results 27.42%Heodo
2020-09-30INF_6312.docdoc 00811b4a43db0ac2a88c49f0f4cbda45da02316ba871e9e1fca39f1217a92f46Virustotal results 25.00%Heodo
2020-09-305000-4652.docdoc 59218dd633aa6e55d901c1a8227ace241e21d80c34af6fbd4dd99400832ef122Virustotal results 25.81%Heodo
2020-09-30list-9484.docdoc 58cada3d143a20c1a566b797ab0871b4c7a6c143c0d51d22eeac95e24589054bVirustotal results 25.81%Heodo
2020-09-30208356-UU2680.docdoc 024d41e6829c4934db673c8c999026101957149432f935a6f24412fd9d6e52d7Virustotal results 25.81%Heodo
2020-09-30mes 2020_10_01 394702.docdoc 033b63b825bf7517ef64ce3f911dba2397a18d7618dddf4fdccb79ea91b23bf6Virustotal results 25.81%Heodo
2020-09-30arc_04447.docdoc fb0668d96c8cbdcf1f69f7c6faf12c8a5ebb4182f8fe92489d8e3d31796609d9Virustotal results 24.19%Heodo
2020-09-30Mes_06671.docdoc b07454218dcb173160992f388674d654dbbd54eabbb7f2424014f2f837e1d009n/aHeodo
2020-09-30file-331.docdoc 9bd5e78a295d861307808771659e53c1312461fb22f61de2b49e870ff1d7ce81n/aHeodo
2020-09-30inf 20200930 297623.docdoc 6660c9467c8a00bf94702fb2f3887f078c41c6f662507e7c780dc6567759b33an/aHeodo
2020-09-30Mes 423.docdoc 0a9a431a99ca13b4bc960ce6948bfaf964b8dff0c1de931ed484ee8c8967a430n/aHeodo
2020-09-30INF_20200930_9872.docdoc 98a129783214c4f848182d4ee393f9778ea81fad1808c5d1e589afa4738e38adVirustotal results 24.19%Heodo
2020-09-30file-2020_09_30-3592.docdoc 6d252cf9f5ba5ca72addfd64afee22e96d0205e1f0dce0fee750a463e1f3166bVirustotal results 24.19%Heodo
2020-09-30Doc 20200930 1080400.docdoc 044dcd75928b3bd4271fd410fa7dcbaa9deaa4c5a726acd63adce5efe43daf0an/aHeodo
2020-09-30dat.docdoc 31942ada0dac9b812b7eda1449490454af6c5ee7e421ee11d7c4c9ca467967b6n/aHeodo
2020-09-30UNTITLED_2020_09_30_DS23916.docdoc d8001dcb320e9cea74bbfed4d771877abb643b6b5bf9c2718e2ca6dc92fc36e8Virustotal results 22.95%Heodo
2020-09-30INF 2020_09_30 465.docdoc d170d4853313c3d42e35cf2c19593158ef3d0bb0070faad32f65ddefabed67fcVirustotal results 22.58%Heodo
2020-09-30inf 20200930 65621.docdoc 5bd24f8305ee53941771f8e0be5c7a9bbb45e79447d17a83be3b6f0ccf7ba688n/aHeodo
2020-09-30Rep 20200930 807678.docdoc 6631dd081578f337cc8f224cd1a4c65856ff9bf6001b447a454953b6dfbaf25dVirustotal results 23.33%Heodo
2020-09-302146724_176.docdoc 183bdc9a0c04a6bd49b0c4195ba0d2de5a30fe17530dbd5696dd418ddd7b6a86n/aHeodo
2020-09-309138_2020_09_30_768.docdoc 9c64b681d05175b3e7768a424579e19e1cb064bc89e07001c94b31a19a6db8cdn/aHeodo
2020-09-30Arc-2020_09_30.docdoc 6c775f2e53176b776bb73bfd6c6a98f652a94ae4fb0b74b29f56aff911c3de0an/aHeodo
2020-09-30LIST-67821.docdoc ed926a7382b4d41f66e856dd4a63fb1999014f79f63cbe3c57deec6b6a79705fn/aHeodo
2020-09-30Rep-2020_09_30-6071631.docdoc 81938069c13e85f030801520a48447b0048460b290398887bb5bcb308c39d139n/aHeodo
2020-09-30dat 20200930.docdoc eb8dda76f5e153f5ea9f7c7471f55627870495f236134e3b0a6acb0ab4f067b4n/aHeodo
2020-09-30Untitled-20200930-5307.docdoc c4d36a8bed7042aa9abc38d0883bc4e7916b275ffb51147b6ca9572e5fb496f4Virustotal results 22.95%Heodo
2020-09-30mes-2020_09_30-93106.docdoc d1d29ec48f52dafe3baabff310d309ee7de8c725618d5db63307636e5ff68f4bn/aHeodo
2020-09-30INF_W5665.docdoc fd826f7ad1f1e372efdc57065d0bb9c4c29931529a7ec64c0cdc3fce95a4b547n/aHeodo
2020-09-30Inf 20200930 6713.docdoc ce1d7fe9a715dbd5b408b17ff12010a67d3d1d002a9484370931304e35254f12n/aHeodo
2020-09-30MES-J026.docdoc f5de87215c12489f4834be4a1b71fda51d010a845429e71980e6024e221b86ben/aHeodo