URLhaus Database

You are currently viewing the URLhaus database entry for https://w-maassltd.co.uk/sys-cache/LLC/zenx05r/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	694530
URL:	https://w-maassltd.co.uk/sys-cache/LLC/zenx05r/
URL Status:	Offline
Host:	w-maassltd.co.uk
Date added:	2020-10-14 21:44:33 UTC
Last online:	2020-10-23 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-14 22:10:14 UTC to abuse{at}fasthosts[dot]co[dot]uk)
Takedown time:	8 days, 10 hours, 50 minutes (down since 2020-10-23 09:00:46 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-15	O_36636360.doc	doc	099d655f10b7e9d0e9a55994e8e8fa9ee064af726187f27e444a4583731c58dd	37.93%	Heodo
2020-10-15	U_FW1353210965WJ.doc	doc	5f924aabbc4f91b49f4b5c32468ef0ccacd1d850eb5c3157c1b4ae8783192c61	n/a	Heodo
2020-10-15	REP_QW7164467393YE.doc	doc	832d456b57cda198dd3a21201f33c236a82d272d4780ba484a97e544f7ef998a	n/a	Heodo
2020-10-15	DOC_ANF_100120_RXY_101520.doc	doc	c0262229e5edd279237ae1ba85efc2937e3c3f4ef2ab8bd8be3b243fe1862faf	n/a	Heodo
2020-10-15	DOC_PH7032310048BM.doc	doc	8a18bd4ad8eba8310bcd422c1ba2612b6ad2adbcbdf5fb76408f85fbf496b5be	38.71%	Heodo
2020-10-15	32113158.doc	doc	d30ec2dde96e92164e6be1b42ad79b2b25464da4be6140e0965cb115a5d9e8dd	32.26%	Heodo
2020-10-15	FILE_NO1380385737TU.doc	doc	19374cad4526845510b04c4f99d32873a3ca0e5da21abd1bc6aeafdda7473529	32.26%	Heodo
2020-10-15	BAL_SZE_100120_LZS_101520.doc	doc	344a9c50e80e2db73c5a76277f41e8020eec2a3aef55276cf9ac4947493b62bd	n/a	Heodo
2020-10-15	BAL_DDE_100120_WJM_101520.doc	doc	a251d76425f1841e17b9efa9ab58b8a0f26c25f997500348b2c5a7cac89daa78	n/a	Heodo
2020-10-15	DOC_JF9272484411NF.doc	doc	74162fa1b634bfdde5cbbc8882362c3d5083368cbea1e88ab8c413863cab2ac3	32.26%	Heodo
2020-10-15	DOC_LUQ_100120_YWC_101520.doc	doc	da773aecb5b38de74a2aa07b5e5f4c66165271f9bbe3fa5a5a4f06bed264adf3	n/a	Heodo
2020-10-15	PO_10152020EX.doc	doc	1cc454d75dc586cd5025eab16ed2a8097e3d412f9efb96ddd568041631aa0ebc	45.00%	Heodo
2020-10-15	23900542679918.doc	doc	48caa70a3b31ff976df78f2b4525b27307a53e88d1ce4f1846dd5801dd2c9b76	33.87%	Heodo
2020-10-15	VO8573456322EG.doc	doc	b36b1ab739c6689f92c3da6e9a8c93a009756069b982b64e74e4075e98badc70	38.33%	Heodo
2020-10-15	BAL_75436036.doc	doc	6c5881955c63a7667fcdcbb9578f630c4ee7941cf731018c2bde6c0375cd265d	29.51%	Heodo
2020-10-15	DOC_PO_10152020EX.doc	doc	599c5a96c48cab303ee9a8fedda331cf66f2db8f076733cf715d00c5c4278e20	29.03%	Heodo
2020-10-15	PO_10152020EX.doc	doc	09ca73e0406c4d96a73cbaa68660617439ee99224d2603caf1610dd5cad5cb25	n/a	Heodo
2020-10-15	INV_UB9146996984AM.doc	doc	7527e19a60407075d5ecb0a0f304aa0608f6deb102d4f9dbc42f65e03e985426	31.15%	Heodo
2020-10-15	TJ6515684248FA.doc	doc	b716ead26e4edc1ca7925f26ba16cdbe932e9cff3fbb636630f3d7bad4ad487d	32.26%	Heodo
2020-10-15	FILE_2130498291764362197.doc	doc	2cac6b6f1ed831e31b804e46839fb6e8e196a14ba3d75ba6c945d4b87dd18f04	30.65%	Heodo
2020-10-15	Z_U4E4718V.doc	doc	bcd20ead58694ee7adb822b6a4c40c62433fc6ca968f2a728a7e10fd21d0d1b1	37.10%	Heodo
2020-10-15	G64WMLCCX.doc	doc	0cf59450f4af8123dc62d34cb387c1f4bcc5a3c38cd4c966acbd7552574d9fc8	29.03%	Heodo
2020-10-15	10955839488.doc	doc	100b400505d67803dd47e7093247e44637dade8df24255e8fd14b80a78f77533	34.43%	Heodo
2020-10-15	FILE_25399449.doc	doc	9954017c3108e9f6fd524436830144dcc04c49f339486dba48e2d3dd3dfbd0a7	30.65%	Heodo
2020-10-15	HWS_AC4503273755IY.doc	doc	2d22c090ca32c456c3d88c382392a124bf484fb67ef5737c1e9c6ed81b87e4fd	29.03%	Heodo
2020-10-15	FILE_BQ7126500241EX.doc	doc	14cc0eaf88072cd7dc29c10554024abceb5d548710ad957dcece3133a3a37dc7	27.87%	Heodo
2020-10-15	INV_EVU_100120_QRE_101520.doc	doc	275d247b675319a0e083b29b0e1c88b3bae28687e80b83a5b6db109ae72d954d	31.15%	Heodo
2020-10-15	BAL_PO_10152020EX.doc	doc	1c801dab1da2fe35b4c87872baf097cb7b5500b886bc75cc29cd8aad2e83d2d4	35.48%	Heodo
2020-10-15	Q_123043610.doc	doc	f2749bfcb47ccd5ca2d9a1a0707ed06064ceb9ad0549c3bbff8475d01668d9b5	n/a	Heodo
2020-10-14	FILE_WNO_100120_CQG_101520.doc	doc	7b075ad4950850227bed02d8388e00fb244191c6f5dc0af216109799e512aa5b	29.51%	Heodo
2020-10-14	I_542275871701774.doc	doc	9c89c629514bf2387f6c00a5c10903227b923f18741a52982877996be1ea5811	31.15%	Heodo
2020-10-14	DOC_64582061844013.doc	doc	766cbde7ddad3ff7d55d13146e76bdfdd1699d56ad5886d619dc2e74f2889d1d	29.03%	Heodo
2020-10-14	DOC_UVD_100120_XHW_101520.doc	doc	9670351cda3385021054e49a74fab0df1f24d4e7d1344baddab81bfc1a4ae963	n/a	Heodo
2020-10-14	CZ3079603296RN.doc	doc	f8efdcf08f666340fa8366b19c6e6507fc838fca261888999523f1d0da5f165e	30.65%	Heodo
2020-10-14	REP_43869237.doc	doc	17de7a6f4665896c233d8dc13318c316bff4f9ee492c0d33e8e64a5d38a1b0f9	32.79%	Heodo