URLhaus Database

You are currently viewing the URLhaus database entry for http://tollsbacken.se/cgi-bin/lm/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:716784
URL: http://tollsbacken.se/cgi-bin/lm/
URL Status:Offline
Host: tollsbacken.se
Date added:2020-10-19 09:17:04 UTC
Last online:2020-12-07 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-19 09:18:03 UTC to abuse{at}tele2[dot]com)
Takedown time:1 month, 19 days, 3 hours, 52 minutes Bad (down since 2020-12-07 13:10:15 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-219NUL33ES96AVB7.docdoc efc52b61116de71a3b3191b7bf3d79f9152dd3d3fa3d34889a4f11ef178d9e68Virustotal results 50.00%Heodo
2020-10-21G_8051139383715862428812627.docdoc b7269623a45db722954c9aa554be08c14fb9b6cad622331bb2d5c35e17ca9be9Virustotal results 50.00%Heodo
2020-10-2165417556449083350652.docdoc 453c4b4cf3a5fda7d48005d020112c06ebcbcf478ead4ebcfacf25576781bb2an/aHeodo
2020-10-21INV_PO_10212020EX.docdoc 5b78a4ef32efd6eba54e53df8b14092631d475f672d60774c26f20dbe0ed5f7fVirustotal results 49.18%Heodo
2020-10-21INV_28661767.docdoc e51d9156100eda0d6d892d3a3d1a9c7d0f04da186a5179d1d75cc9e0ba8bce47Virustotal results 49.18%Heodo
2020-10-21INV_PO_10212020EX.docdoc f63551b5b6a12a9fe329cae332d0d952a9e56640ed81da22996a4ee0efd379c1Virustotal results 50.94%Heodo
2020-10-21QAK_100120_TZM_102120.docdoc a5632073a056ae53b317a7302105648ec9a0466377cf55fd7f998490e5c41e87Virustotal results 51.61%Heodo
2020-10-21INV_56894411.docdoc fdf5102af9db589345a5c7d4e747c98489a7341147058b2a42e337a03fa62baaVirustotal results 50.82%Heodo
2020-10-21BAL_65427391.docdoc 7f908989bf2f5cff2696b9acfd100b4b53d53710a1ee8b56aff626fbad9ba829Virustotal results 52.54%Heodo
2020-10-21BAL_PO_10212020EX.docdoc 721f734838d0f598574d947ef490dad60e25a8dec9446274d29d3542b24c115fVirustotal results 49.06%Heodo
2020-10-2151792681.docdoc fe1e5c66a4990cc515e5925db68def9f29f1893d9c6d3fa6b47e05f5c5f618ddVirustotal results 46.55%Heodo
2020-10-21REP_07954343.docdoc 230fc1531e7d113ebf83ea8dad03120965c293da08a2ae82305ac9cb61efe7b8Virustotal results 47.46%Heodo
2020-10-21DOC_DAI_100120_KKF_102120.docdoc 7e61ca1b65ed5f86ae7603431d7296593ded64f620465d59ad3a62e0f1bef5cfVirustotal results 45.16%Heodo
2020-10-21DOC_04548314.docdoc 25d12cabe3d39e681a0b8c9ac88206110f66071089e92667ee0fed7bc917e918Virustotal results 46.15%Heodo
2020-10-21L_NR1641459894OR.docdoc 84feca377993d253e4d214e7c044ddd45eb3ef0f47796ef2970e9a5bd1f2f535Virustotal results 43.40%Heodo
2020-10-2185819016.docdoc b0e434b1de80d97737347fcf4a28a60aad479593c4dde9c9611296cef08185e8Virustotal results 43.33%Heodo
2020-10-21DOC_HLI_100120_LRB_102120.docdoc 8db61b871aac2949105b26c1ca2a22579e3b3d6e99aab20279c3bbea5dc87b8bVirustotal results 43.55%Heodo
2020-10-2127871732.docdoc 2465db836fb8ce33c72ba9c55528a00a290b770a2bb977ecaed539b453c1211bVirustotal results 40.38%Heodo
2020-10-21PO_10212020EX.docdoc 7b59e4314d2b1bbefd045815d54be5bd19315bcd13e3de6816a36bfd0930e032Virustotal results 39.62%Heodo
2020-10-21REP_YLM_100120_FXT_102120.docdoc e3b58bc04eecbb1fb55ace8390236594852afd2f07faf2b8bb7c84dec2fb1da1Virustotal results 38.89%Heodo
2020-10-21DOC_66064896173474496.docdoc 0d80b679c7accc183439a7f6d72dfa61e4fb2e260706398692fdb1f2c1255343Virustotal results 38.89%Heodo
2020-10-20BAL_43625212.docdoc efaf4fb2659ba4d696191a3cf4dc5484b92f1c09e106bcee9310a24211afe482Virustotal results 40.32%Heodo
2020-10-2001152338.docdoc 8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915eVirustotal results 44.64%Heodo
2020-10-20EZ9925503698PT.docdoc e6ed92a2be8cac09be62e066409f461a6591959a0d772b5dc6fe04c356949852Virustotal results 45.10%Heodo
2020-10-20INV_U7DMKWFVIL91P2.docdoc 07bdea9c73c53c4d65c9cf2061b9a303e8f05180736729fe54c17c6953e66184Virustotal results 41.67%Heodo
2020-10-20PO_10202020EX.docdoc 1f3247c54314af3a9b3f4f91856bc6ceac63e04a92d8d4a4d4b07ffb8aad00f2Virustotal results 39.29%Heodo
2020-10-20REP_65011696.docdoc bab707f338d98b9ae46b7775dfe552e80b39498b2703f95077f0ff3b2b622790Virustotal results 40.00%Heodo
2020-10-20DOC_RY4328505029QX.docdoc ab0f780d3717e6b5be76ac64376d1d82b1b0e1b5da173cf7e602e60d0a9d1f9bVirustotal results 37.93%Heodo
2020-10-20FILE_EE4469276302CC.docdoc d54e59166ab5d45a4512ed3637a2e8eb61cf1e55ff82c19f6ff37e43c951cca9Virustotal results 40.98%Heodo
2020-10-20REP_RB5L1QAQETFV1ALM.docdoc 56573f2921b15645b4cf6a60b11164be0ade27cab2866e59bac8a7ab572ed2acVirustotal results 38.33%Heodo
2020-10-20JTQZ_JQ7256521062OQ.docdoc c968430d2daa7d9cc5014d3a44e3297632920f5482e3e5097671a94bbfd3a21dVirustotal results 40.32%Heodo
2020-10-20INV_Y5V3TYQ1BVMBX2.docdoc 53d96a7a8d56f1e2d064c677509dbaa14fdbbb01054bb25349290a7a959fd920Virustotal results 40.98%Heodo
2020-10-20N_13910810223816603554.docdoc b512afcd2e8231f4b0ed812b652026b433dd1189ff247fe75d31d6d9a9ac0c28Virustotal results 39.62%Heodo
2020-10-20REP_98490566749670352.docdoc e0b1bc7ae2ab93ab68ecc603b67bf124c72d2aab047c0a5280afc1c7b50c0600Virustotal results 40.35%Heodo
2020-10-20AXG_4222886068732638.docdoc 244b6b7cadea9edf3e0f6a1a48f36de078573de7e255d5725428d636dec58630Virustotal results 41.07%Heodo
2020-10-20DOC_YM5766694287RA.docdoc 521d891d4ae509c8262b875df2e3d2dd21b8b638721d2aa59e5106ae666ce2e7Virustotal results 37.74%Heodo
2020-10-20NV6210303007YT.docdoc 55d272b806611b58ec2d9daa68b80036ea1110ee1bcec7406b4c4dc1f311dff2Virustotal results 30.65%Heodo
2020-10-20BAL_STA_100120_LKS_102020.docdoc 06d3837c55c21a03895793e1e29e56753b8693d83f1229a436289cb8c1f987a5Virustotal results 33.87%Heodo
2020-10-20BAL_UXS_100120_OJC_102020.docdoc 40acf5c1261d6d9139f62df39cfae30d1514dc9b507ce21ac857069a62b2ad95n/aHeodo
2020-10-20Z_74479320526492442.docdoc ddfed25e7057b0ce36b9d4e9543d67b6533c84e1dd80a99777a26a0841ecc6c2Virustotal results 37.70%Heodo
2020-10-20B91K9DBZ9TF1.docdoc e839ad79ebc64c9a9f35e974ee0331fb9e05f62ce04e2d5a7a75082ccea2613bn/aHeodo
2020-10-20G_TU1701530348UO.docdoc e75423a49a99ba135e99625ee8258aafeae5055d75eb6cc6e821a4e30358aab5Virustotal results 52.54%Heodo
2020-10-20T_6Z9ULSE3Z9.docdoc d4efb2abd5dee8979636f5811f9e9cbfb4fc4618a6a1ab86e87d93891675c834Virustotal results 49.18%Heodo
2020-10-20FILE_973401566344.docdoc f5434fc590101707d60839d45f0da90b59a859ea342ca10fb508fe6dc8e6366eVirustotal results 50.82%Heodo
2020-10-20PO_10202020EX.docdoc dfde9cc85916bd77dd4bd0cec6b988c49597cfde37839cf29f966bf8142b9b2fVirustotal results 49.18%Heodo
2020-10-20O_79559597177985121222.docdoc 49795d33d7c679a6a191590c742647402c2dcc89598c51f466f5e7a50d64f027n/aHeodo
2020-10-20REP_84684563522367.docdoc 6ed8baafe6922ca166f88a03248e937ce53a63c5260c3c8942af8a10e5a032a4Virustotal results 50.00%Heodo
2020-10-20REP_UO9315457933GB.docdoc 1e6d5d9b73ddea3227ae8d721122acac8fe3c44b05dc1820ee175f83fa0b9a69Virustotal results 50.00%Heodo
2020-10-200AU9RJEBH5D5.docdoc 560e17ab781532dd680043276cde3e357e271c4f119d985600b4d261b7ff37f9Virustotal results 50.00%Heodo
2020-10-20BAL_PO_10202020EX.docdoc 8bf073f99d2eaf5d61ab0aff7e4d8c764fdc59a98d011f9f0f45619b079fa2acVirustotal results 50.00%Heodo
2020-10-20REP_SCL_100120_OKI_102020.docdoc 529117d0294d9326b40b4b6d9aa5f717f93c21d8b2c9a30989f2ac9eb3dc180cn/aHeodo
2020-10-20DOC_RDHRB9FG0GG.docdoc e47c2781f1f12c438c8dc2e9f649cceab35bd91f11ce60bd4a6f5c59e2b9c88an/aHeodo
2020-10-20KME_100120_XDE_102020.docdoc 50c9426575f1d5d3e6a7b47ff0fd82095b8e376b08a2388d8de17256f0997d3dVirustotal results 48.39%Heodo
2020-10-20BAL_KFI_100120_NFN_102020.docdoc 369ec98daf629fb7a9b10d83025aa7dc69a00048e7b10f0038011248d6675ad7Virustotal results 49.06%Heodo
2020-10-20H_ZLL_100120_MBZ_102020.docdoc 74afe87260e0cdd043828e9c02ff4cf56de8b36e0bd111f6423f32aff0814d1dVirustotal results 49.18%Heodo
2020-10-207327173770461578475836.docdoc a0e469d08ee726ce9fae3096bae0d3140afb1489feba6034d9eb67e59f84b1c2Virustotal results 46.67%Heodo
2020-10-20JER_DZNXEVADJK.docdoc 6fbded5702d0539f9849e8daf7a3c5d017e03faefa23d711bb82b15c7250ad8fVirustotal results 48.39%Heodo
2020-10-20PO_10202020EX.docdoc 325d15836a3948692d4f2b68f9830932e758173c0f5e78bf261cfb7002a2f6d1n/aHeodo
2020-10-20L_XMEK100Z.docdoc 83c06efc736a9bcb18d36092a16ef484ea9b44a9f759ce63f5f1e5edf09330c3n/aHeodo
2020-10-2014483777.docdoc 886ff49a670a583572de65190cb27ccf2b32e875d56ccec77c6dbe0ce9883824Virustotal results 45.00%Heodo
2020-10-20REP_59209079.docdoc b115c55302deeae4e7e088c8dd801349c25089e867dc300251bb75936f96260fVirustotal results 43.33%Heodo
2020-10-20DOC_YCP_100120_HIS_102020.docdoc f491c5ef9ef55bfa5e464c3810f3124a7ea7785d71482df6a500ab343391e69aVirustotal results 48.33%Heodo
2020-10-20J_QH6858673206FH.docdoc 3e5e2b291ee178a407b5754c636e6e1da5ce3cae63164fd9962a23838935e99bVirustotal results 45.16%Heodo
2020-10-20BAL_DD0681161485TS.docdoc 06f71cd1c5534fb45c46484d93feedb1aa7cfd412094bd0d4893f79725a25e5bn/aHeodo
2020-10-20REP_DVR_100120_LME_102020.docdoc edb3881186a3db995e00c5909b9f64dbcc81f44d79277f0ab7a31cfb80bb1789Virustotal results 44.26%Heodo
2020-10-20BAL_FLH_100120_RUP_102020.docdoc 5ee7fbe582e7e187c61eee1b5d66f665d3623c90a7ad3197cbde16c4d210f536n/aHeodo
2020-10-20PO_10202020EX.docdoc 1bba132909206fdf4ee6aa8983cb2fe4b5d39cf69869e0945c87dfe853df59b9Virustotal results 41.94%Heodo
2020-10-19BUM_100120_XNZ_102020.docdoc 319f3bc0835158bc9ec5a351ae5e72d6f1e9f12a173caa968e5554716b39dd71Virustotal results 40.32%Heodo
2020-10-19INV_IV6561269779EQ.docdoc fc1939fd2cacf6f7ac22fe924f8d116a91ae8d2e883fc741c8412a45e0643d01n/a Heodo
2020-10-19H_RN1139525219YY.docdoc 7fe2b58881dc1b3b075d548c102f49957b1fce31dd4a904e266b3be3191c3cb3n/a Heodo
2020-10-19BAL_QQ7690142235NH.docdoc f57713dcb50722aa6233c9b48839cb85ee2feb806d20199bcdb8fc7f71de58a3Virustotal results 36.07% Heodo
2020-10-19FILE_IX8847033511GL.docdoc 7f0612913efc6d90be3e1567000dab8fa81239eece583f92356cd973ae25bd30Virustotal results 35.85% Heodo
2020-10-19Z_FWQ_100120_FLN_102020.docdoc 5a3a9a56661d12f1650cebe5f4a3cab2135efc8c3113959a28415186f0ec7148Virustotal results 37.10% Heodo
2020-10-19PO_10202020EX.docdoc 47c8f3f7a043772a6b2c14665b43e993671b77adc6014c2b58c06a56e52910e0Virustotal results 37.10%Heodo
2020-10-19FDV_Q6EKNQZRDKBX.docdoc 7aebcbb199c8facc45ce3fe6ee6eeae8c90b63274f31d60e1205b0171b48417en/aHeodo
2020-10-19INV_75490861.docdoc 5e6567555b2e4a67f8f23c33992a9c668b4a43136bf33bd3c0cedebd8d99c290Virustotal results 37.10% Heodo
2020-10-1979981622.docdoc 3609b53854e45524f9a41351bc0ebed9dce553e0eb558fc06fab72cee6b97de4Virustotal results 37.10% Heodo
2020-10-19PO_10192020EX.docdoc c69f8886e0dd4a67752caacd147ea8eb766ad091c433fccb0f2dbb45b5d57765n/aHeodo
2020-10-19REP_CB7609157959MM.docdoc 1c98ab8476847336dcf434e658a40e23a898ce637bb774decaab9f8715db95a8Virustotal results 37.10% Heodo
2020-10-19HIH_100120_UHW_101920.docdoc e4cae7134a939ae224a0fa899027649f447d79f17e0ddf6985aae21adcabf57an/a Heodo
2020-10-19R_YG1520218659LN.docdoc 565428f8684d132fe694b24d2369001296a859d07e60cde2a078efb451991c76Virustotal results 35.48%Heodo
2020-10-19V_94343435.docdoc c7b747cd1c60fa173fa3466e99337863d3e4552c315e3b2a1f284f6293bc8e46n/aHeodo
2020-10-19ZN_OC9958661715EG.docdoc 5d349dc97b131734a22ef88c9825497239e6211786be5b294d6e7f9b7a41bc9dVirustotal results 37.10%Heodo
2020-10-19BAL_URLJGPX9P.docdoc 3837c3b95db5756f21d9920809ccbad0909eac42344076a4c12582f61acfcd6dn/aHeodo
2020-10-19BAL_56909525979504197549209.docdoc 34ee8ba7a8157031f68b98e8ac7ad44be2eed233ac106ae095ea47884b6f8cf2Virustotal results 34.43%Heodo
2020-10-19DOC_PO_10192020EX.docdoc 2e7dd0cdfb94a9aaa5584499208c22a7bc3ea2fdc0a26c0e408a622a0e94b6aeVirustotal results 30.00%Heodo
2020-10-19PO_10192020EX.docdoc d8ca4ead51d79a8893ccb65e58b265f40a3781139e1a65cda7d61387678801cen/aHeodo
2020-10-19FILE_GER_100120_ODW_101920.docdoc b109e971441a6457c8cb7412fad8764b8c5dd8d97098844356f40a32393a3e1bVirustotal results 31.15%Heodo
2020-10-19PO_10192020EX.docdoc 4654f7a3e01f6c38053257a6fbbd0b52b2262ec650daf49240ad4d74bc6b519bn/aHeodo
2020-10-19INV_KZ1128760147DI.docdoc 3f046626d961cb82a07beec8983b8b401e9998ad3bcf832856f6c562ab1f7852n/aHeodo
2020-10-19BAL_OQ1F09BZDT9WU.docdoc e70629dcf62d93f64e5e57e1e03d2d662822926bd73aed78fea3cceb9a16b4a2Virustotal results 31.15%Heodo
2020-10-19DOC_21423536.docdoc bf4249f24189224be0b48509b7618d77f103b09a154d06e6b302c271c53ab179n/aHeodo
2020-10-19PO_10192020EX.docdoc 00b3a42a8f864aef2c3eea8f902f6905400767bdae65f51468d5b40694531632Virustotal results 26.23%Heodo
2020-10-19PO_10192020EX.docdoc c4a82a8cbffbb0e1398e3429b37d9adda018c824d1c0235ddf77c8bd57efd334n/aHeodo
2020-10-19380675712.docdoc 2c96ee7bb9a140937824d29b2f097ae2810ccc164fc0870690440184c016ea1dVirustotal results 27.42%Heodo
2020-10-19REP_355176392026.docdoc 5704de861cd887e620c5d4091b7e0281b1a3936c0d3d1e60403dd76a755fad6fVirustotal results 27.42%Heodo
2020-10-19WVVG_PO_10192020EX.docdoc f1b420722c2f21d74998a977673f6f6828734c88872d04003b47b509799eeefen/aHeodo
2020-10-19Z_98021062.docdoc 90fe5b232db9473c424e9e05e616c77827974b0ada54b93dad652632c5707bcdVirustotal results 29.03%Heodo
2020-10-19MXLKOUUKH5PUGX.docdoc 34d963518ea410088384709aa8e4e8a7e7e6cfc0dc5d85b1a2eaef7087a10995Virustotal results 25.64%Heodo
2020-10-19DOC_63620022.docdoc 271538004178922007e96e6567aa430f23cf65067fddd64a879739a1569e5782Virustotal results 27.42%Heodo
2020-10-19DOC_6ZQ5Y18D0TH.docdoc dcf80e8a25b494d2145d4a432b9d83ec9e5beedcddc5bebcdbc9c98935017482Virustotal results 27.87%Heodo
2020-10-19BAL_R7SEN1BSEDPLY.docdoc a6362bcd0a49ea94d4132f685f8b829ec26d837ed0c71ef45519c0d4f0c6a5ecVirustotal results 27.42%Heodo
2020-10-19839559207.docdoc b5f031baa50f8ec7fd6b0b268738c47151469c47fd0866e4f7bd9ac7c569cc45Virustotal results 27.12%Heodo
2020-10-19J_PO_10192020EX.docdoc c582b432bc3c0bef16cdd325bcae9d9f1c200d1c668739153015188db7ad78eaVirustotal results 27.87%Heodo
2020-10-19Q_PO_10192020EX.docdoc 21f11e67b13a01b4421c376ed1aae2dde1d4a9ec09b78e005755e01df98a89aen/aHeodo
2020-10-19FILE_UPP_100120_IRH_101920.docdoc 672cb06fa48adc648ab5cca70e3656211803b42049b011e02d0da0e4d335585an/a Heodo