URLhaus Database

You are currently viewing the URLhaus database entry for http://test.apguae.com/wp-includes/WO0PjJbgNFyyW4FTi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:698740
URL: http://test.apguae.com/wp-includes/WO0PjJbgNFyyW4FTi/
URL Status:Offline
Host: test.apguae.com
Date added:2020-10-15 22:50:10 UTC
Last online:2020-10-26 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003016206 created on 2020-10-15 22:52:05 UTC)
Takedown time:10 days, 19 hours, 23 minutes Bad (down since 2020-10-26 18:15:09 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17dat_QP529.docdoc 294c6f87d8514072c30988bd55dd643c5c018b9f9ae05b9db1a97d034b31e092Virustotal results 55.00%Heodo
2020-10-1727071749_2020_10_17_982986.docdoc cbabf68dbf69bbc9e13cf1c4decc549416db53379348b45da4b5fedff65152afn/aHeodo
2020-10-17File 87205.docdoc ba1aeafd7f85b7fe6d27c96a0fc87b47c20150c8adb74124716adeb6ef26a98bn/aHeodo
2020-10-17629_97066.docdoc 560cbfa962587b928c5ba13f5cce70b94a0a90991ee4f4db32f2a6c6a3936237n/aHeodo
2020-10-17Dat-0087.docdoc ccad29eac2b2a4c03fc1c9a9ac36544345fb0a5f454746c05dbb5f02d4d53210Virustotal results 53.23%Heodo
2020-10-17rep 20201017 457.docdoc 971e189c279099a876618c3226ef35e5afc62b91daf3b8bde466a424fdfaa063n/aHeodo
2020-10-17Untitled_2020_10_17_079.docdoc 203a54f8692f6554ad685a3d9e94ec1f3482366c3c455312540f744cbda4f479Virustotal results 53.23%Heodo
2020-10-17INF-2020_10_17-AS182508.docdoc 6820620122b2210629007eaae85c11949f1d113edfa9e10c0a0678069bcefa83Virustotal results 53.23%Heodo
2020-10-17Mes_932.docdoc 674b59aa10f963845214c91833225375d26e69ccece07609e8a5425a8d952346n/aHeodo
2020-10-17Untitled-2020_10_17-Y653539.docdoc 5422842242a23ce0b01dd8151fb9d86c9c6b41ed43c792e7c4b714cc2cd2a1c4Virustotal results 50.82%Heodo
2020-10-17ARC_2020_10_17_CQ911528.docdoc c14604804cc32fb30b522dd9dff211839670ae27b989326efce1e69589bc9d36n/aHeodo
2020-10-17Untitled-624.docdoc 1e52bc38ce5e8a3c4da25a7c7e4d8169a31fa22bfdd9e43759ff57d25b40db02Virustotal results 51.61%Heodo
2020-10-16Mes-QH8314.docdoc a9d9b8357ff803bd36d7bd0c12c770487fe774ccd22e81318606bad0f6ddaf90n/aHeodo
2020-10-16Rep GD395.docdoc 528b63ef8c44d0a5b08974fb6ad9efa60e0021ce6993d25b30ef1b90c00df222Virustotal results 50.82%Heodo
2020-10-16DAT-2020_10_17-645.docdoc d546749eeff6828f731a5f79a2352276696d9ce6d5614dc6e9779fa2dbbe6799Virustotal results 50.00%Heodo
2020-10-16LIST 20201017 O993.docdoc 8959ae20797df624723d7bba61da21cc88ef3750df52dd083d9eefbc5d90c4dfVirustotal results 50.82%Heodo
2020-10-16ARC-2046.docdoc 164394c49305b99720cbc80504c003fa10b45232decac5c6e7ec20bf1827374eVirustotal results 51.61%Heodo
2020-10-16Doc-2020_10_17-589.docdoc cecc7a6d54b23fac9722185d9674512f5b51840e9909978de84128d07172791bVirustotal results 51.61%Heodo
2020-10-16UNTITLED-3504773.docdoc 2ad3ea37b37feb3b6b0640be566089ddd917334bf3033b741f48bd508a252530Virustotal results 51.61%Heodo
2020-10-16arc_2020_10_17_FGG89495.docdoc d0b24fe52a88df1055812d9b2a79e7acee0b02add126d467c4054a93771b2ba5Virustotal results 51.61%Heodo
2020-10-16rep-20201016-KVD72244.docdoc 38a11481f8db3eb3a204bc7199da74cf95b722b0b5ff283001ff594b5bde8dfdVirustotal results 52.46%Heodo
2020-10-16FILE OS994426.docdoc 5d7464a628237e351aefb990f56c4c205ceca5119aeae9e13b8d596d9236c451n/aHeodo
2020-10-16Inf_2020_10_16.docdoc 0f3f04ac85e78d80efbda9617f67a8790049ba50df890fc992c9b0ea0688cb96Virustotal results 52.46%Heodo
2020-10-16UNTITLED_2020_10_16_807899.docdoc de085b2aa71406dd284396b50a4931dc24c0648c58b6b5f8dc22b9d7b2d491d7n/aHeodo
2020-10-16File VH8439.docdoc 043bfe23c72df96ce773d46e7b722e475c04e868f22ad1cfbe8415c36a510350Virustotal results 33.90%Heodo
2020-10-16mes_2020_10_16.docdoc 4a62341e7eba55b8c1a9b126d220bff4b129035a3ac48b5d6987e41e41d3e9f5Virustotal results 32.26%Heodo
2020-10-16inf-2020_10_16-69863.docdoc 422ae15c3d269de834714e59a70f5eece8995dfe4197b56641efc28118c3f750Virustotal results 32.26%Heodo
2020-10-16Arc-20201016-VSA371928.docdoc 950a860cc010f8e402b3f3cc3aa827a37dac110703b9353d744f0dcc4dac1ee7n/aHeodo
2020-10-16Attachments-20201016-CVZ04286.docdoc 23321ef2552ae21809b21f51b4380c31d17917222fe373a59d73500eedd99fdfn/aHeodo
2020-10-16793_938603.docdoc c7eaa50533057cbdf24f415cb8d041b1f240705fb1962b333ae94ab576f19ec3n/aHeodo
2020-10-16REP-20201016-T14154.docdoc 75465934273d4a95881d769e7055c61f64860d7f9e51f5251241615b2b620993n/aHeodo
2020-10-16list-2020_10_16-ZI40521.docdoc 15c9b8c96805cb5eec520765084f122d2d992f581b1e885ec67341e7b7954006n/aHeodo
2020-10-16File_20201016_992.docdoc f9d5124fa2f49422eaacc95990935571a667118bbdebac076de0f178e54e9ce3n/aHeodo
2020-10-16DAT-1011.docdoc c85e897e957fa44b137c35917ea9886343ba4b8d4fbc13668515d382ed874555Virustotal results 46.77%Heodo
2020-10-16INF 2020_10_16 F578214.docdoc ef15c47fd8dcd129ee3580f45ef2062281b18b7410002a2631200043b9d170aen/aHeodo
2020-10-16LIST-20201016-NMY41932.docdoc aabb9ea2a83771f9921f5d074e4cf99314607d95cb6f4b069f4ffbca8b18a8f8Virustotal results 46.77%Heodo
2020-10-16doc_962.docdoc 83448d68b30a338d342ea658d0e47016d9d48db83c7750caf277bc17f0a3f0f8Virustotal results 41.94%Heodo
2020-10-16mes 2020_10_16 UUD485.docdoc e1fa8ab1bc95406a6ca6938a72337e0b9206e90dcd5517bdcf36c487c5a92bd0Virustotal results 41.94%Heodo
2020-10-16doc 20201016 3881346.docdoc 8ca596c47a7c3f64989bdd6cd89f70123d1edd290b90213073d63af492531845n/aHeodo
2020-10-16dat-2020_10_16-261362.docdoc 0fc7c5948e396de87107663a180678d0eb591acf3e897fc39502c371fe9e17aaVirustotal results 40.00%Heodo
2020-10-16Doc IL989550.docdoc 3be03cd4738ab3f977af3cfea372ba8def5e7c4515743292a9d45f7a39be67edVirustotal results 41.94%Heodo
2020-10-15Attachments 5492143.docdoc b060160af00ceb90812eb219ac8e72258f487365866f64374c5786171cd6c947n/aHeodo
2020-10-15list_2020_10_16_3049.docdoc 39f443a944e3114cf6c84fcd6c270f6f8ed42bd1ecf833189fb7e9a96c8fdd2aVirustotal results 38.71%Heodo
2020-10-15mes-2020_10_16-5504663.docdoc 609112e04613f2eed3ecfddccfd458d553696c160e8d452d24621c02e2ecd9edVirustotal results 40.32%Heodo