URLhaus Database

You are currently viewing the URLhaus database entry for http://tollsbacken.se/cgi-bin/01390/hgk82fswvneh/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:716993
URL: http://tollsbacken.se/cgi-bin/01390/hgk82fswvneh/
URL Status:Offline
Host: tollsbacken.se
Date added:2020-10-19 10:00:04 UTC
Last online:2020-12-07 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-19 10:02:11 UTC to abuse{at}tele2[dot]com)
Takedown time:1 month, 19 days, 2 hours, 51 minutes Bad (down since 2020-12-07 12:53:21 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-11-15DOC_093650374947745198197564.docdoc 44304c0da201f8146f66284167e9f9d8737570153c3f990fd1f5ab959f4b02afn/a Heodo
2020-10-21DOC_093650374947745198197564.docdoc efc52b61116de71a3b3191b7bf3d79f9152dd3d3fa3d34889a4f11ef178d9e68Virustotal results 49.06%Heodo
2020-10-21BAL_94468454.docdoc b7269623a45db722954c9aa554be08c14fb9b6cad622331bb2d5c35e17ca9be9Virustotal results 50.85%Heodo
2020-10-21EO1812403251ZQ.docdoc 988037ab30e7fefdcaff766f160658d982522969787c02fddfd09ce912573dc1Virustotal results 50.00%Heodo
2020-10-21O_BO9131074468QY.docdoc 9d3040374b112258a669d0ed8b5cc9bf7444e7ab0e937ebff0e3cab6286ab626Virustotal results 50.98%Heodo
2020-10-21990034210.docdoc 850a811a1e29aafadeaca369778609e35c77edcb8588f69f153e44195d40d6b5Virustotal results 50.94%Heodo
2020-10-21B_EVW8Q7X0TWE66H.docdoc f63551b5b6a12a9fe329cae332d0d952a9e56640ed81da22996a4ee0efd379c1Virustotal results 50.94%Heodo
2020-10-21QO2713638057LM.docdoc 85a0100950655dd48b3789ac075bbca0e9b4d1ba0e1a4fbc29ee363cc23da4f9Virustotal results 50.00%Heodo
2020-10-2182632280.docdoc d65b0da5366ec38c1f2a4590b31d6603e933919179361a9a8e71ad368331f751Virustotal results 46.55%Heodo
2020-10-21FILE_PT1137911895FO.docdoc 9166a4f2e7f6b56512ad7185a5b2930a5ab9c6e592a2def1ee629d5c553d9a7fVirustotal results 49.06%Heodo
2020-10-2195920038950.docdoc ff560f270317afc9d31e1eae55c277c99bdd45f9fbd3a2dc44e8929a25ff065cVirustotal results 48.33%Heodo
2020-10-21REP_9513336809553778455550.docdoc 927877d8e5e4459c44bb91a386050f2aee647421c37048212690b5caa0fba080Virustotal results 48.39%Heodo
2020-10-21PO_10212020EX.docdoc a6bddd637e4236272a008fab76c75939a56c92161692387612bde0123e8b26e1Virustotal results 47.54%Heodo
2020-10-21X_65079375.docdoc a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225Virustotal results 43.40%Heodo
2020-10-21DOC_82486716.docdoc 730dc7281140bb144e159ad27638ff4f4d3a021999727a26b7731250343a3f76Virustotal results 44.23%Heodo
2020-10-21NMR_100120_WXF_102120.docdoc b0e434b1de80d97737347fcf4a28a60aad479593c4dde9c9611296cef08185e8Virustotal results 43.33%Heodo
2020-10-21REP_PO_10212020EX.docdoc b5f8485da1270855c2866456988ce8010f5c32c69fb19f324859d685e719fa3eVirustotal results 40.38%Heodo
2020-10-21FLT_RD1696454687PE.docdoc 9a65518effade1bf32d7589d7f7a8a028f9fa7f1fca4491673680847d26d3f0aVirustotal results 38.89%Heodo
2020-10-21REP_D2VRQ0HR.docdoc 1393994f35a8a5910cbc519d9a9d9baa91d4dbc85080bea49d95c152892a2aabVirustotal results 40.32%Heodo
2020-10-21PO_10212020EX.docdoc 0d80b679c7accc183439a7f6d72dfa61e4fb2e260706398692fdb1f2c1255343Virustotal results 40.00%Heodo
2020-10-21PO_10212020EX.docdoc 583a7bdb6f07cd4359433a437ffcb7f9dbe1ed88b0a51acfe8ebd88294c940d4Virustotal results 38.33%Heodo
2020-10-20BAL_TEJ_100120_IMQ_102120.docdoc a65e7b5a4d99582f1ec1c608eea4d21fd29d1c23bed2b8dd8ec8062f23d90e40Virustotal results 39.34%Heodo
2020-10-20INV_20875863.docdoc 8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915eVirustotal results 44.64%Heodo
2020-10-20FILE_PO_10202020EX.docdoc 549072b3e94570b866d20997383d99b1b2a7b9a014cd41ab974cb0853307058fVirustotal results 44.64%Heodo
2020-10-20OR8136797192JL.docdoc b4ac4dc450ecf4d75f1f27dfc8a32944dd874d230dee4c978d49c74961cf405bVirustotal results 43.40%Heodo
2020-10-20B_HBFVODI90Q12C4A.docdoc 0cc0e53f93e28f521e6741dd09848e105ecaa03babb51229e44c7bf9bf6676e7Virustotal results 41.94%Heodo
2020-10-20INV_Y81I5G77F4F.docdoc 73fee094af28a164510ef4a3fb7af33aace675c2c0c2f043d2dcd918e42f54b5Virustotal results 40.74%Heodo
2020-10-20L_PO_10202020EX.docdoc 257a7a26795e79f908c2add722126270035ccc4c5a71ae074cb2afc303d00ad7Virustotal results 41.94%Heodo
2020-10-20EVZ_100120_OHT_102020.docdoc ab0f780d3717e6b5be76ac64376d1d82b1b0e1b5da173cf7e602e60d0a9d1f9bVirustotal results 37.93%Heodo
2020-10-20REP_ZNU_100120_ZER_102020.docdoc d54e59166ab5d45a4512ed3637a2e8eb61cf1e55ff82c19f6ff37e43c951cca9Virustotal results 40.98%Heodo
2020-10-20PO_10202020EX.docdoc 56573f2921b15645b4cf6a60b11164be0ade27cab2866e59bac8a7ab572ed2acVirustotal results 38.33%Heodo
2020-10-20IB5038598919HW.docdoc 2d08d60236c8d4fd7d1579f8d0086ae205f602f0c2ef9d738485b5cbd5fb3f6fVirustotal results 42.00%Heodo
2020-10-20WVJN_PO_10202020EX.docdoc 9d1544d6ef4200e70c0018b901d6c0457725561405f6f093e42b29b4f294916dVirustotal results 38.98%Heodo
2020-10-2073239482.docdoc 6f573af4b3c05869192e431cbd3a4b5b8e58becd49abdecaf8f5d04b09638904Virustotal results 38.33%Heodo
2020-10-20PO_10202020EX.docdoc 5b1dc64f14bdc5acd69143527ffdb3809ac03de2773652c13278a55a84693079Virustotal results 40.98%Heodo
2020-10-20REP_AQ0721628219ZK.docdoc e0b1bc7ae2ab93ab68ecc603b67bf124c72d2aab047c0a5280afc1c7b50c0600Virustotal results 40.32%Heodo
2020-10-20FILE_PO_10202020EX.docdoc 9cf5b02816bd565827cdce9d51379ce60e8de2b2a83156c0ac9f6f2bb688fd38Virustotal results 38.33%Heodo
2020-10-20RSI_100120_QVM_102020.docdoc 521d891d4ae509c8262b875df2e3d2dd21b8b638721d2aa59e5106ae666ce2e7Virustotal results 37.74%Heodo
2020-10-20REP_NK2ER5B.docdoc c4df840ab34a5f93d21f450de193d174cd5562bce4e5cb1235897ba757023c8cVirustotal results 43.55%Heodo
2020-10-20BAL_ZM6409185629RK.docdoc ef809a2b364f20ed3160030bf3cf422976b5e0d27a69ecbe892664641bc9b746Virustotal results 40.32%Heodo
2020-10-20MQ8409116367TH.docdoc 85797011824df156dc3b6016da61bf4dcba1dd8b776318c8f6068527a5b7952dVirustotal results 37.50% Heodo
2020-10-20INV_ATW_100120_HRV_102020.docdoc ddfed25e7057b0ce36b9d4e9543d67b6533c84e1dd80a99777a26a0841ecc6c2Virustotal results 37.70%Heodo
2020-10-20REP_PIQ_100120_QDK_102020.docdoc e839ad79ebc64c9a9f35e974ee0331fb9e05f62ce04e2d5a7a75082ccea2613bVirustotal results 35.19%Heodo
2020-10-20KV_MJH7BH1HKG5O7P4.docdoc 727b533c2d5e89c6f6a3a402bbdbc4abb5d48514953c650d870a9b5a2a8b19edn/aHeodo
2020-10-20DOC_PO_10202020EX.docdoc f13dec9c8a43cc6bd379b02b6ac07a0104d180729a7949b4d7d642344c204f0cVirustotal results 48.39%Heodo
2020-10-20OTY_XZI_100120_QVR_102020.docdoc 592e1b94138444f3b8002612cef1322999a466e791c4c85b060cfdab8880a0bfn/aHeodo
2020-10-20C_35780754439213.docdoc 3daca8d729c038fedec6902fd156b95c3491e8c07c72d47d27352deed9b5f97bVirustotal results 49.06%Heodo
2020-10-2070WZ1T6EJM0.docdoc 49795d33d7c679a6a191590c742647402c2dcc89598c51f466f5e7a50d64f027Virustotal results 50.00%Heodo
2020-10-20PO_10202020EX.docdoc 6ed8baafe6922ca166f88a03248e937ce53a63c5260c3c8942af8a10e5a032a4Virustotal results 50.00%Heodo
2020-10-20TRR_100120_NJI_102020.docdoc 731f9c60c47914b2dcc22536d709f5bf0aae0176c27bde61e5428e9a1afdc602Virustotal results 50.00%Heodo
2020-10-20PO_10202020EX.docdoc 560e17ab781532dd680043276cde3e357e271c4f119d985600b4d261b7ff37f9Virustotal results 50.00%Heodo
2020-10-20I_YE8DSP0W84EGOS9K.docdoc 6034c3f10da662027ef2a9cb8754ae7c41fc080aa19c9f3218a50c744750cc19Virustotal results 50.00%Heodo
2020-10-2017383913562.docdoc 529117d0294d9326b40b4b6d9aa5f717f93c21d8b2c9a30989f2ac9eb3dc180cn/aHeodo
2020-10-20FILE_PO_10202020EX.docdoc 5cb6d2ac7c0048a18397fbd75effd392d58835e1f50e4f17400ae73dbd25f3f5Virustotal results 50.00%Heodo
2020-10-20FILE_MUE_100120_JNF_102020.docdoc 369ec98daf629fb7a9b10d83025aa7dc69a00048e7b10f0038011248d6675ad7Virustotal results 49.06%Heodo
2020-10-20DOC_7S91JGU.docdoc 74afe87260e0cdd043828e9c02ff4cf56de8b36e0bd111f6423f32aff0814d1dVirustotal results 49.18%Heodo
2020-10-20VZDS_GGE3OMB282X.docdoc a0e469d08ee726ce9fae3096bae0d3140afb1489feba6034d9eb67e59f84b1c2Virustotal results 48.39%Heodo
2020-10-204705731749005.docdoc f22a2e1ffde1f1013983eefa4e4dc25cd58590aaf8ae33f7989b9d0a5cbe6b15n/aHeodo
2020-10-20FILE_214044362174512561.docdoc 8750e31efa6cbb4e2c580cf4368c62b9a3ed4a1dac4135dc6ec05d91e1d7b1f1Virustotal results 50.00%Heodo
2020-10-20DOC_HOCDL0BB.docdoc 73b6c10bafb00d4f9dd27964f985c9d4eb4df9962a6500e8df8686198a15eb53n/aHeodo
2020-10-20BAL_13532888.docdoc 886ff49a670a583572de65190cb27ccf2b32e875d56ccec77c6dbe0ce9883824Virustotal results 45.00%Heodo
2020-10-20BAL_05213628.docdoc b115c55302deeae4e7e088c8dd801349c25089e867dc300251bb75936f96260fVirustotal results 38.33%Heodo
2020-10-20BAL_SB4129476106KM.docdoc f74c9faf99869bbd9b3f65657d504b69796b45c4bd1427bd6a9a83dc2cd3b611Virustotal results 45.00%Heodo
2020-10-207A9XF3QFZ7YB.docdoc 06f71cd1c5534fb45c46484d93feedb1aa7cfd412094bd0d4893f79725a25e5bVirustotal results 47.54%Heodo
2020-10-20INV_QZJ_100120_HDL_102020.docdoc ef9b5567f4d0522bdc9c446cfe86db8daf0e6c6a16d48cde2691b1f1a10b6d41Virustotal results 44.26%Heodo
2020-10-20FILE_687261516851960.docdoc 5ee7fbe582e7e187c61eee1b5d66f665d3623c90a7ad3197cbde16c4d210f536n/aHeodo
2020-10-20AXDD_PO_10202020EX.docdoc 1bba132909206fdf4ee6aa8983cb2fe4b5d39cf69869e0945c87dfe853df59b9Virustotal results 41.94%Heodo
2020-10-19FILE_PO_10202020EX.docdoc 319f3bc0835158bc9ec5a351ae5e72d6f1e9f12a173caa968e5554716b39dd71Virustotal results 40.32%Heodo
2020-10-19WT9LQ6C2IJE7.docdoc ce224725e9d7fdbc1b41ec7a89d7a9e50032f6575280c00674f26c9b447b3236Virustotal results 40.98%Heodo
2020-10-1996463327.docdoc 30152a6c0f59f8968dcc935f1384a25fcb1e25cd3467f63e7ce6412931166d02n/a Heodo
2020-10-19INV_L0VQGPIT.docdoc 7fe2b58881dc1b3b075d548c102f49957b1fce31dd4a904e266b3be3191c3cb3n/a Heodo
2020-10-19INV_IUD_100120_UUN_102020.docdoc d2bfbbaa7d795231d900c544c667d08adc25d996043fe338bd8e390f3b5a7564Virustotal results 37.70%Heodo
2020-10-19ES_43980516.docdoc 5a3a9a56661d12f1650cebe5f4a3cab2135efc8c3113959a28415186f0ec7148Virustotal results 37.10% Heodo
2020-10-19BAL_KHUYG8STG3QUGE1.docdoc eaf93fbc04a9e8098a27b810e944e91a44d09db4e82dfda3f51e3c68760547c9Virustotal results 37.10% Heodo
2020-10-19PO_10202020EX.docdoc 7aebcbb199c8facc45ce3fe6ee6eeae8c90b63274f31d60e1205b0171b48417en/aHeodo
2020-10-19SSA217L.docdoc d684ed61705b1b1454f593263d3af902f854f6f32c217838fab990f4ad9d1a46n/a Heodo
2020-10-1906992618.docdoc f9ebc3e04c76e5c85a1f2707f1b2c878da89a78ec181ce9e43b96a1eca318d7dVirustotal results 37.10%Heodo
2020-10-19DOC_PO_10192020EX.docdoc 9363f5e5b8327d3d48fc6ec86fbe5628463d725ee19b8155cbd6ee410dc11cf8n/a Heodo
2020-10-19J_PPY_100120_FXH_101920.docdoc 0ea679788d2585f17ea28cf1aa4db04247858e6975b9f6529e1be13e205b5665Virustotal results 37.10%Heodo
2020-10-196RBJ13D.docdoc 7f388ddc065d0126652ac487c70e0b436aaaa4ecc50291288bc181b26226cae9n/a Heodo
2020-10-19TVH57E1W.docdoc 6b49e4f9fa88dd99e2847840a9468f1686c4e069ea056c486cdd658f6df49125n/aHeodo
2020-10-19842771776.docdoc 3d82207119a5c24befe9aedbd371a9168a00420cb2b0587ed4f3c3a4810b1cc5Virustotal results 33.87%Heodo
2020-10-19INV_4918933116275844672.docdoc e76c541de939c23796a9093b300a1f31ebe1be4712dca0efaef6ed5218525f93n/aHeodo
2020-10-19BAL_7547212766571848.docdoc 3837c3b95db5756f21d9920809ccbad0909eac42344076a4c12582f61acfcd6dn/aHeodo
2020-10-19FILE_G3HOAA95C6IZF.docdoc cfeb18e60913b48ee28948d2fc7770a7292d72f0f42e0c16a6cb1d8a0526fa23n/aHeodo
2020-10-1960002811.docdoc a05e5c6098ba14cba82976f163c619e06db72ff518169f6f799e8c89f1fd0c7dn/aHeodo
2020-10-19DOC_MJM_100120_IZO_101920.docdoc d8ca4ead51d79a8893ccb65e58b265f40a3781139e1a65cda7d61387678801cen/aHeodo
2020-10-19ZW4419733856EN.docdoc b109e971441a6457c8cb7412fad8764b8c5dd8d97098844356f40a32393a3e1bVirustotal results 31.15%Heodo
2020-10-19FILE_HLPUR9XC.docdoc 842c557e752e952467e2c376507e1df0b4861f5d0f4a57ba110d818a97a43bf9n/aHeodo
2020-10-19FILE_PO_10192020EX.docdoc 3f046626d961cb82a07beec8983b8b401e9998ad3bcf832856f6c562ab1f7852Virustotal results 30.00%Heodo
2020-10-19PO_10192020EX.docdoc 3cc91108bd9d95f641996cfbde558f3ef6f6e02cd25106217a2d6dfab9da1f30Virustotal results 31.15%Heodo
2020-10-19SNY9ME56VEZ8.docdoc bf4249f24189224be0b48509b7618d77f103b09a154d06e6b302c271c53ab179n/aHeodo
2020-10-1920251641.docdoc 00b3a42a8f864aef2c3eea8f902f6905400767bdae65f51468d5b40694531632Virustotal results 26.23%Heodo
2020-10-19FILE_PO7D96G.docdoc c4a82a8cbffbb0e1398e3429b37d9adda018c824d1c0235ddf77c8bd57efd334n/aHeodo
2020-10-19INV_PP7034843618VX.docdoc dff2cdbd9518761e0ea0abca5995d7d0f48efe8e68e956cb13a01db30c4c0023Virustotal results 27.42%Heodo
2020-10-19REP_QK1846943953ET.docdoc 5cbcd0e1fe5d17dd201ce16fc19469203da9bc8204c8ae6ccbba3df51aaab2efVirustotal results 27.42%Heodo
2020-10-1971289573.docdoc 73ad1a097ae639ec4766a9089db90689d021da8fc07958f6b386bbb32042d324n/aHeodo
2020-10-19REP_IIE_100120_BLY_101920.docdoc a5086676ca495bac1639e5c5e803e3f2c769295b78ff005ad723900666536dcdn/aHeodo
2020-10-19DOC_LUR_100120_LHK_101920.docdoc aaf1a1ed7d6a708dc047f1f570b8e8f75a0bea3df69adeb6a8caaccbdc86299an/aHeodo
2020-10-19PO_10192020EX.docdoc 271538004178922007e96e6567aa430f23cf65067fddd64a879739a1569e5782Virustotal results 27.42%Heodo
2020-10-19REP_PO_10192020EX.docdoc 1ab29f6ccdfb51c3dfa584c849ca93a0afa5b67fc5a061c54c9e2abca3d04c9en/aHeodo
2020-10-19BAL_PO_10192020EX.docdoc aa285e5da6dfb3c61efd6c3922641001a801ffd691213cb3920af4c8ca9c9080n/aHeodo
2020-10-19REP_EWO86VTBZY8OL.docdoc e7e4dbaca136efac09b7a3fa373d6ee232ce5985c5c94c3f26cdbec937188eb0n/aHeodo
2020-10-19REP_PO_10192020EX.docdoc f3b3f5ca8628b1317a63c79efe04653ecfd4a076075da5b7adb9ad8b29620cb6Virustotal results 27.87%Heodo