URLhaus Database

You are currently viewing the URLhaus database entry for http://bodzan.pl/wp-content/docs/1719xrmo59t/m6wet1vcn7xyt2zh6uihbmtn2ql5rn/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:699474
URL: http://bodzan.pl/wp-content/docs/1719xrmo59t/m6wet1vcn7xyt2zh6uihbmtn2ql5rn/
URL Status:Offline
Host: bodzan.pl
Date added:2020-10-16 06:42:03 UTC
Last online:2020-10-21 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-16 06:42:21 UTC to abuse{at}nask[dot]pl)
Takedown time:5 days, 9 hours, 51 minutes Bad (down since 2020-10-21 16:33:32 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17K_9479171220126372293150905.docdoc 360a5cb7eed923017b4ef07460e7652362cdf1fc0a902516addbb8e244e30134Virustotal results 53.23%Heodo
2020-10-17WU0890071442QY.docdoc 36d4d0f8ba694e3a45ac3fd858e3312538bf61d501403dcbe763638f043ab3a1Virustotal results 53.23%Heodo
2020-10-1743458963.docdoc ba34959e897c2ec63c8cba1a6da0e8711cd958153938466386cfe70cc8f2df52Virustotal results 50.82%Heodo
2020-10-17Z_73917834.docdoc 83af4eee8013969fd28932937f24ed1bb6031013a525dcd161ed6914b41feba5Virustotal results 53.23%Heodo
2020-10-17FILE_50353699.docdoc ab13f6f95154d0396465d9bb9d42e49708e2efdd49c259b7189ae2c7c7c2d389Virustotal results 53.23%Heodo
2020-10-17INV_46047274211032960.docdoc 8eed16b7e0a64351cb06ea437eeae8f69b227cac04237187ed17cff470a3cb0dVirustotal results 52.46%Heodo
2020-10-17EXP_100120_BRK_101720.docdoc 2b95f52b2f665277c1b271f68b7ac017b7653d398e73877b7c8db4bf2ccaa52cVirustotal results 53.23%Heodo
2020-10-17B_92372260704023643.docdoc 9fddabb44e0d01bdc8e0886790e1e34059ac1aedbe3faf4cdfa66bf9dec923cbVirustotal results 53.23%Heodo
2020-10-17BAL_PO_10172020EX.docdoc 797ebeb27b3af7fa872d899601baf807800f85a84371fbee97e2232f841c4ae4n/aHeodo
2020-10-17REP_42121356.docdoc ea065a0dbc3ca645237d0c98e82887ca636451f3fa822c6c0a087a2fe98c230fn/aHeodo
2020-10-17TR0034440134HM.docdoc cab952f8c6436054516b7fb9b6dc980a0921858a4a312229099f2817b9846340Virustotal results 54.84%Heodo
2020-10-17EGIZI3EC0.docdoc 9e5f94414bcc33c4f9405dd2c0747ccc8c79921dbaab834a1ce8cd0205bb1f9bn/aHeodo
2020-10-17Q_CO88P2X.docdoc 85a42a8d612d20af55e105cdd7caa6c881ebae398c26dea03e0cf147e543f917n/aHeodo
2020-10-177559287090763.docdoc d718b0058aaa9406fd6bfdf6d7f13e8963789c2c0b331e70fd6e8edd6b1f22ebVirustotal results 51.61%Heodo
2020-10-17OXK_914327287.docdoc 499b6b84f53cf364ec9102e8947398e3435340efcc0638338dc94d2ffe7f635dn/aHeodo
2020-10-17FILE_35887096.docdoc 7563b098e425087d70e59bc0ad1d712d39ec6286fc63eaa9a9eea68f9a7ede26Virustotal results 51.61%Heodo
2020-10-17INV_PO_10172020EX.docdoc 905c7ae4c62237c4d5783b52652b9eef6be72076862c6f6aaa440f8e7ce23a8cVirustotal results 53.33%Heodo
2020-10-17REP_PO_10172020EX.docdoc d1e952f7b8eac274a9eb54c0ce6e8c6542aaa16cbdf7345c10c79852c2d5bd0dVirustotal results 50.00%Heodo
2020-10-17INV_LX4465150381LR.docdoc d19c1e922354570a8700f8dc25900a7c8ae4bee4b08908a4c6cad2309eff1ba1Virustotal results 51.61%Heodo
2020-10-17LM_32117827.docdoc 02730b23749bb5e945d78771425520fe94a15b5647f34a7efeca54a72c9297c9n/aHeodo
2020-10-17B_WYK_100120_LLD_101720.docdoc fd0ec2733cb7fc4d8f934cf81b56a9a6fd2dd7290c257cdf4c2a1b3da2bcfc10Virustotal results 51.61%Heodo
2020-10-17YWA_100120_KMZ_101720.docdoc a106e1da9cf3b1b5b2f7211307b55422cf772fb176003bd02070def6d3b1c13eVirustotal results 52.46%Heodo
2020-10-17H_4919606875818734410496.docdoc af4011781c0a2add45a6f72b8d52e5bd7d7381ff28c93e478dede0ff100ff237Virustotal results 50.82%Heodo
2020-10-17CYI_PO_10172020EX.docdoc 99acccb026919eac0d3249c8a9207a71d032fbe59c7540c12aee398ae86e6780Virustotal results 50.00%Heodo
2020-10-17INV_48GYCQ91JQJYQM.docdoc c40e490d1149a43b982a7c65d5f04d36117a86623374f75bf8d47f31090f8b18Virustotal results 50.00%Heodo
2020-10-16DOC_26795060445322.docdoc c25321d27755dd74dfcb51c16c96a607d16b09b59b1cbe7f025dc89763d9d630Virustotal results 50.00%Heodo
2020-10-1601363706.docdoc 3772d83153c2d54a8a3dd72055370d3db69948bf4eafeb69018ce518c7801d05n/aHeodo
2020-10-16REP_29163839898919.docdoc 70c3e11a1960c379e6be0215b70999623bb37cad12e932cf4d222f70f078c6d2Virustotal results 50.00%Heodo
2020-10-16T_N4YPB5L3T10U.docdoc 6647111dcc98f3a01470eee7de5a3b93b579a08c585cd3553cbfbdf3d54db556Virustotal results 48.39%Heodo
2020-10-16F_6050575577.docdoc 8b9e3d3ef38f9f1096f096111876eeffc30737416c2ef195b4ec180c0d3eb176Virustotal results 51.61%Heodo
2020-10-16BAL_VQC_100120_RVK_101720.docdoc b22624074fb5efd4b4c7a4882f6a7bf06faa842197e9fc9199e85c8c1fe02b8bn/aHeodo
2020-10-16FILE_20405979.docdoc 7bc4797a66cfb8dbdc6f95c5568595d0229200838644a798b7228d1bde86b554Virustotal results 46.77%Heodo
2020-10-16BAL_KN1607945863QG.docdoc f9e446821e7544fb3343aa3a069112853a802cfa173c8ff3650af2faf9b22caeVirustotal results 53.33%Heodo
2020-10-16REP_44150101912947874702.docdoc 90be4d140e8e68dd1b218a9ebd10ec1271cd234025341115f1cab4e3149e7f90n/aHeodo
2020-10-16INV_GV5236238220YR.docdoc ba3ac6b60b4acb6aa9b534e4cdbab1c537fdb07b6fcd10d5e16f076fac5fbf1dn/aHeodo
2020-10-16REP_CONKJ3P.docdoc b8b0d6682b9ad8d4b9127d767c30e0c8a94c504487d1bd7c0f049dda7a0611b1Virustotal results 50.00%Heodo
2020-10-16P_KUB_100120_HWB_101620.docdoc 11c67e93ede508aef0bb3d1c43fd0dcc4109fa2c3c93811c94f36094662b2c23Virustotal results 47.54%Heodo
2020-10-16FHXJ2UKV61.docdoc 66039545c0341ab69ac7dac547c88d087e88a6fe13ea338a5fd0397364c0350cVirustotal results 44.26%Heodo
2020-10-16DOC_PO_10162020EX.docdoc c1fd24a9deadc257d29b97063f9923762034a656723d87a0196f23b1cf899e53Virustotal results 46.77%Heodo
2020-10-16HQQN_OT2275981901BN.docdoc fe64e60c58eedce9a19e9f18a2c5d220d3d38b0aeb719cfbf027218a13121621n/aHeodo
2020-10-16BAL_20832949.docdoc 9d28dd58c8ee62277f91e152a8c7e9964052f5025f10424ec75b9563e6b50cf2Virustotal results 46.77%Heodo
2020-10-16N_PO_10162020EX.docdoc eee6727eb427510fdf3fc2a8dffc94ab47b897f5c20b69a87cff6f9a5024fe89n/aHeodo
2020-10-16FILE_DB4964255224GU.docdoc 682f6bf35f7cc1f36fb26805da313fa9c07b6b397f6e72c400d1f8ad51e01been/aHeodo
2020-10-16BAL_7856623421897553.docdoc 055c0768feaa5f21bc4c430d586190b390dfcb0f18a8c908bf9dc4fa01bc99d0Virustotal results 37.10%Heodo
2020-10-16O_PO_10162020EX.docdoc ef0e715e1da6a1717d119a57d6ec4f961a3a700f9a807b1072fae419151807d8Virustotal results 43.55%Heodo
2020-10-16DOC_TX9WJGBIZQP7V.docdoc 691f5cbe4e05b980ee84be377f07bf6659cb32cbb7011c4ea835b730c293891eVirustotal results 43.55%Heodo
2020-10-16JBIGSRLKD.docdoc 4d92f4549c627c844dc6c2212d8028b73f0c3d07b19296f0a297ed9577b979aan/aHeodo
2020-10-16SZC_QD9976283001XK.docdoc 49b891f547c9042ac717fe74811e052e8df8362d6bab3276ff46166b0aa74de9Virustotal results 42.62%Heodo
2020-10-16D_COB_100120_TKG_101620.docdoc 66ad2d1939fed89f992a25cbdd0aa594a8c4e2065358f7142dc648ea2f5d8317n/aHeodo
2020-10-16REP_PO_10162020EX.docdoc 697415f7d2838a2fe5e7071ebc10e957884f4f4b6fe1d5122ec6d58a86883364Virustotal results 40.98%Heodo
2020-10-16REP_LKP_100120_RGF_101620.docdoc 30dfcef2007b235ad1365502bcd27b7396fb3ff1ba1a11b04fbde4e96b8f6a14Virustotal results 31.67%Heodo
2020-10-16CPSJ1YFDH.docdoc edb4f70584295164d9d97ecd140501fed80903b2d3149447f60b6dff1a991a82n/aHeodo
2020-10-16Z_JS2092333127GQ.docdoc c54b2a88a8922dccacaa6cda1569288f09ac7fa058a7979ccc50ef2160fdfdc2n/aHeodo
2020-10-16YD9346414325KG.docdoc 928ec3474e204aa23a9fe0971c55669cb5ad9a752f46fdb16c46c974035fdd9fVirustotal results 36.07%Heodo
2020-10-16DOC_61791736.docdoc 6c6034adf70bda77f3e897034b3889552be5d6627751cd9277767494db6218ddVirustotal results 34.43%Heodo
2020-10-16INV_913TW65YRMIC8.docdoc 331449b7cf090472612be3eaaf098869cd351983a12f809e5b6dc3860d35c556Virustotal results 30.65%Heodo
2020-10-16T_77655030.docdoc c9146e559eeaafb38494a657eb583b6833b2c35dd60eafe2140ee8bc22150c96Virustotal results 31.03%Heodo
2020-10-16INV_111JOVLE3YZV6O.docdoc 1b99bee5107d65911ce974818c5a70392b28f6b62085105e181c3e570c908496Virustotal results 32.26%Heodo
2020-10-16M_222510702750258.docdoc 9e16a1c487318559bca602d0c341d760109650549d600ab32ea6c5b07b9c838dVirustotal results 30.51%Heodo
2020-10-16DOC_PO_10162020EX.docdoc c4e5490b2508ceaa3f196549d3c7d2865225ebbd56af97bc4a753542204c6641Virustotal results 32.26%Heodo
2020-10-16INV_FO7671924347YL.docdoc 3550b173f084aabdd854dc658b31eeac18f28c421c23052d45d5e8a92f8a3e93Virustotal results 32.26%Heodo