URLhaus Database

You are currently viewing the URLhaus database entry for https://fastwebmm.com/wp-content/LLC/skmfdawwi65o/auf1rz9l7et1js67d5uq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	699366
URL:	https://fastwebmm.com/wp-content/LLC/skmfdawwi65o/auf1rz9l7et1js67d5uq/
URL Status:	Offline
Host:	fastwebmm.com
Date added:	2020-10-16 05:43:05 UTC
Last online:	2020-10-21 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-16 05:44:08 UTC to support{at}servermania[dot]com)
Takedown time:	5 days, 14 hours, 28 minutes (down since 2020-10-21 20:13:05 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-17	22688133.doc	doc	360a5cb7eed923017b4ef07460e7652362cdf1fc0a902516addbb8e244e30134	56.45%	Heodo
2020-10-16	DOC_H7SG56T.doc	doc	11c67e93ede508aef0bb3d1c43fd0dcc4109fa2c3c93811c94f36094662b2c23	52.46%	Heodo
2020-10-16	JC9B0R7VO.doc	doc	58d9abbb83b6f4df5a5dc7b782ecfc3a0a400197866d76f14500b97d206a7eab	46.77%	Heodo
2020-10-16	JIX7AY2GJGM.doc	doc	457b10f1fc21e30d9630120fbbd7f0d7681e7ae38d1a3738cc07621995830543	43.86%	Heodo
2020-10-16	471712019663695555.doc	doc	70a35d75979116a3deb5a05fd800b019ce1a1e3cfa73a22c3e547f5fdfc702d6	46.77%	Heodo
2020-10-16	DOC_IDK_100120_OUW_101620.doc	doc	ffa06f345711cab1bbf64ad42a6ab9b9264655ec20d39fd3ab37d4e950c98b8a	46.77%	Heodo
2020-10-16	DGMP_AZM_100120_FWH_101620.doc	doc	cb781c9123caaf90b0aa1ccf875c58492ab61503576a1c169840b6ee881a95a7	46.77%	Heodo
2020-10-16	BAL_PO_10162020EX.doc	doc	89157919f283aad6306a78ae43e54b55c2431a0a64dbfcef22df553bf09ae681	40.98%	Heodo
2020-10-16	FILE_PAX_100120_GST_101620.doc	doc	ee640ad9d020dedce3c3a18efe2a6a9a14ed4cf50ffa64ba27090765dfb3cc6b	47.54%	Heodo
2020-10-16	RZEQ_33214558.doc	doc	055c0768feaa5f21bc4c430d586190b390dfcb0f18a8c908bf9dc4fa01bc99d0	37.10%	Heodo
2020-10-16	AHQ_100120_GZK_101620.doc	doc	9ef9aea93327bfec6723725da363f724f06ca447c1a54fa84210ec1b01c86415	35.48%	Heodo
2020-10-16	2CB3WL6O3GK.doc	doc	af1991d94bf56819c52eef955dd09bb89bae5f8a1e0139efbda83e46f54f94ad	35.48%	Heodo
2020-10-16	RXOB_ODCS0OO7CJPE7V.doc	doc	2aad9229681f4940224f69e7fc019a8c0c7ed305b41805841cb61c039e823b78	n/a	Heodo
2020-10-16	E_06112143053990209450.doc	doc	9c709e26cab4a752ef535629ca0789fa9454436ac24b8d5577c2cb420c60b20b	n/a	Heodo
2020-10-16	BAL_YW8139964990YE.doc	doc	92dc665b7b2d60b59bd68c238a5afc7a39185bd6e0909a003a0a25bab691bedc	35.48%	Heodo
2020-10-16	DOC_43338166.doc	doc	66ad2d1939fed89f992a25cbdd0aa594a8c4e2065358f7142dc648ea2f5d8317	n/a	Heodo
2020-10-16	UK2488454977SW.doc	doc	5f94a90f54d5c04a4ba33f0d4884392c5411775d63d2293793f9e0d348bfc88d	n/a	Heodo
2020-10-16	BAL_09806820.doc	doc	06ed9f71bb75c3f1c65fc774e6cf9914f9d7f8e54cd0cfe68ff7e71de686f446	36.67%	Heodo
2020-10-16	REP_A9B9R6PAY5K.doc	doc	edb4f70584295164d9d97ecd140501fed80903b2d3149447f60b6dff1a991a82	n/a	Heodo
2020-10-16	719673893278.doc	doc	c54b2a88a8922dccacaa6cda1569288f09ac7fa058a7979ccc50ef2160fdfdc2	n/a	Heodo
2020-10-16	REP_42264393.doc	doc	85cafbd8a7231965377fdf168bcf3ebbf41b13c90266dd1bc18d4b20ca6b5f61	33.33%	Heodo
2020-10-16	52975964.doc	doc	6c6034adf70bda77f3e897034b3889552be5d6627751cd9277767494db6218dd	34.43%	Heodo
2020-10-16	RVB_PO_10162020EX.doc	doc	768292084d86bc82801ba526575885cc35839752d121e54b146b9fbf489e11ef	n/a	Heodo
2020-10-16	DOC_FR3618408889DD.doc	doc	4fec3f0a66c5b164010bb6f4b7837ce3eec638886509e5fe06af6ed9f575b544	30.65%	Heodo
2020-10-16	15549024.doc	doc	b3900bcd297271f2e9a902ee2c398ddb51468949bd90a5cbfb6f0531360cc22c	32.79%	Heodo
2020-10-16	BAL_39683797077960794352.doc	doc	18b87dafb2baba028eb4b73c0fa26e56c77d007dfaeaa33de5a7b45a5842a989	n/a	Heodo
2020-10-16	BAL_VP6092163864NQ.doc	doc	5e68650f2243c0318d2a6e551b02d3294164edaa15b2fa7700e05337dd9eb4d3	n/a	Heodo
2020-10-16	PO_10162020EX.doc	doc	44b5ac3a1688e978f2ab497cb9a2b77b9a4a27edb617212e27b63035becfb148	50.82%	Heodo
2020-10-16	INV_84887211.doc	doc	8c5946d83496491e60468ec85aa90964c00945bcbd8e72e8b05b9f230d85f7f4	50.00%	Heodo
2020-10-16	ST_PO_10162020EX.doc	doc	147b9616588be0def766828cbdc415348543d772fbf13e9a7fbe0b37b0ebf3fd	n/a	Heodo