URLhaus Database

You are currently viewing the URLhaus database entry for https://atwakft.com/wp-admin/attachments/VldKyoIqjnzHm/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:718280
URL: https://atwakft.com/wp-admin/attachments/VldKyoIqjnzHm/
URL Status:Offline
Host: atwakft.com
Date added:2020-10-19 14:40:07 UTC
Last online:2020-10-20 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-19 14:42:03 UTC to abuse{at}hivelocity[dot]net)
Takedown time:1 day, 7 hours, 0 minutes Poor (down since 2020-10-20 21:42:48 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-20arc-8783892.docdoc 6327b738dd471b615dda7803b2acd8c9deb49008c8fbd7c5503be35492eea5c1Virustotal results 42.37%Heodo
2020-10-20dat-AHU833.docdoc 17bcf85c3e8000d32daecede094fee54c474bc66ab96fad5dbc428959ee0166bVirustotal results 45.16%Heodo
2020-10-20REP 20201020 86676.docdoc ea889debae5f58200c593fb982a145b972caa5228a56f674e21fbd99629df79cn/aHeodo
2020-10-20Arc-20201020-JW763051.docdoc dc30111a52e8e826eb02cccdc474040ffdda79e363e873f4e17dd1e45b52ca16Virustotal results 44.26%Heodo
2020-10-20UNTITLED_51768.docdoc 5bc31794601b4088311bf33225005d0f3be38cd991a2de34690fb2dbfb79fe32n/a Heodo
2020-10-20Doc_20201020_AU314394.docdoc 427356e6cb2bd5180118dd4c2cf522c27331b85388ddf6405839f2a60baf8d49Virustotal results 41.94%Heodo
2020-10-19Doc 2020_10_20.docdoc 38b035b1b37f64ed891730cfd77f781c442987e5bbe372cdf43473bffaa58195n/aHeodo
2020-10-19MES_913236.docdoc 4a9b30e50b8ff305b06d7a5487d9680a9e14140adea122698fd4b2e6396bdd09Virustotal results 36.07%Heodo
2020-10-19File-20201020-HZ9209.docdoc 197b83f5290dff46430a782816e01e4e6038d99f2ad9536153d2cec8b85c459bVirustotal results 38.18%Heodo
2020-10-19Mes-2020_10_20-5695.docdoc 3207073cb0a36893fd66ce7369e682435effd0a709e6af1dababb08e29185e2eVirustotal results 37.10%Heodo
2020-10-1902518ZV-RB63547.docdoc 979236f4d2d99e9272c6abef5b246723ac02e7bba9dc2aee883c4c907fe4b362Virustotal results 37.70%Heodo
2020-10-19Attachments 2020_10_20 605133.docdoc d9cfb4033370de561edf8d4c1eaf2e4045c764644dc930cb3e2e407bc559c51aVirustotal results 37.70%Heodo
2020-10-19REP_20201020_MWI745.docdoc 32e363a27211e8611e12839054d79162639aeab7df60f9040c45ed5748ec3777n/a Heodo
2020-10-1988193016 2020_10_19 KV387376.docdoc 2da0ef0ca6c372248db1c0649512c63d840327ce42f58c710711ac7d7f5c32dbn/a Heodo
2020-10-19DAT.docdoc d6fc8acb0c1a4b38f100335349e71cfca14003134259cd7798a9d50fe45735eeVirustotal results 37.10% Heodo
2020-10-19List-2020_10_19-4105319.docdoc 5cca0350b2c285aa59bc95b1f71584bc1add9df16d142e8a86c9d7a8ecc2b0c6n/aHeodo
2020-10-19list-20201019-TVR514.docdoc 82931dd9ad6626f3b82f35386c32d7a314c500e6f65c753be39c937958c832fcVirustotal results 37.10%Heodo
2020-10-19INF_2020_10_19_DA538.docdoc 49871d524581292374e1d7bc032507e04f342fb6b1eef3a1d13be8c7cac32762n/aHeodo
2020-10-19Attachment_2020_10_19_306.docdoc a5562dc1d98da4ea0f833e5d1ad078fe3e243e0afacd05b216c4890c328d9505n/aHeodo
2020-10-19dat WAH528.docdoc adaa0fe136908739b1ed8db9d58f52e9632ad712055d7202d851da3257cbf9c1n/aHeodo
2020-10-19Arc 2020_10_19 SP773021.docdoc 06dcbd114edf8160eb598be2701ba77ce7fa290adae7d7627b2ad68e7511664dn/aHeodo
2020-10-19List-633.docdoc ee4d9edb2370e384fb5f36330a42d049a086408f2c0d7b59818c8f7cafebbbc4n/aHeodo
2020-10-19File-20201019.docdoc 92353815ff999cb487b2007b517962fdb9b8c87ac78f64c95f68f6985ef1039an/aHeodo
2020-10-19File-2020_10_19-FF2468.docdoc ab4999a6bdcd2a735d994d4243ac6dad6bb52a5224243bc771cd0156d69bf71cn/aHeodo
2020-10-19Untitled-13918.docdoc 1a3117c19e97f0189d0ba09ca4575a9a80415d66058b077a722f0c03f2a0cd8fVirustotal results 28.33%Heodo
2020-10-194626CFB.docdoc 2d1537b6ac72b0dfda1db918152047f70c3fc53c33d2cfb9be4e86cfb34f0deaVirustotal results 30.65%Heodo
2020-10-19Attachment-HB58570.docdoc fbc0425c72eb13dde61a7d687221084f9cc667dd76975a20b60bce0d524490bcVirustotal results 30.65%Heodo
2020-10-19arc_2020_10_19_IP8547.docdoc 7ab16a794178c35ed18b871703f0e77abe5a7920a8194c6d33d3888237c5a100n/aHeodo