URLhaus Database

You are currently viewing the URLhaus database entry for https://cmnivaria.com/wp-content/public/5KPFPZCxyP7TKyanQE0J/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:722986
URL: https://cmnivaria.com/wp-content/public/5KPFPZCxyP7TKyanQE0J/
URL Status:Offline
Host: cmnivaria.com
Date added:2020-10-20 10:37:04 UTC
Last online:2020-10-20 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-20 10:38:37 UTC to abuse{at}axarnet[dot]es)
Takedown time:10 hours, 57 minutes Good (down since 2020-10-20 21:36:24 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-20File-2020_10_20.docdoc cbf5c08f7777a6731236552b9de30fb880cbea1cd688065475f14c831361001bn/aHeodo
2020-10-20doc 2020_10_20 EC728.docdoc 6242af547edfc24b0d1d59a0169dd8e612fab4d4ec5f56785ac1620bb52bc218Virustotal results 35.00%Heodo
2020-10-20ZCR281_1139717.docdoc 19b5475b6e1cdcfc2488e7d96a3ab88a10768210ea168b7f86b5af686070f684Virustotal results 36.21% Heodo
2020-10-20Attachments-20201020-QUN151.docdoc fcc2338ece859e3e1922884428c4bb2744b9789c374094c48fd13ec87346731fn/a Heodo
2020-10-20arc-3610.docdoc b32f297c9aa62f28d2c8d981154ed6b2503473d953af6d154c67960d2ccfdb44Virustotal results 30.00%Heodo
2020-10-20Doc-2020_10_20-BGN62050.docdoc 3990d3ddd544db77ec9f7db002a4003b3fadade6921d821f8fc41fb38c793e14n/aHeodo
2020-10-20DAT_2020_10_20_85990.docdoc 17802aff9f795a6b4432cb7d1db03cd0a406d607faa061fe6d8ce52f6a67d054n/aHeodo
2020-10-20ARC-20201020-81260.docdoc 4f814da6301a5f3059c83836ced64d75ecc61128757fc0c8e4db3a0e99c7683dn/aHeodo
2020-10-20List-N04820.docdoc 8c151b464d6002616979d17295914ab4c84f280a43087a96f11b17ad211c63ben/aHeodo
2020-10-20list 2020_10_20.docdoc ef6f58d61cb76b5886a5f0c9b7fc91d07c6da5130abdb537020db8b348b4df1an/aHeodo
2020-10-20Dat-2020_10_20-1582198.docdoc 478aae3f05717ee54be1a784db25fc300e1c9422265956992e84842c0b5c7d3cVirustotal results 30.00%Heodo
2020-10-20Rep-JOD2782.docdoc ee4f51cd9e2d33b94a14358db9c6145dd35d491443b4c19e202eacef60c041dbn/aHeodo
2020-10-20Untitled 20201020 320.docdoc 7243a8b310732194f108b07673f6cd3fa1f5dad347ada8ffc8bd59dce8e1dbdcVirustotal results 30.00%Heodo
2020-10-20List 2498.docdoc be687deb48a6043230adc74e3f2a8830826bc9e2c87842c12cca8c5cba7b7e3eVirustotal results 32.79%Heodo
2020-10-20FILE-K60176.docdoc 838f9fd0c536a3d5f2cb4031a2e784cfe408a2aec8876be02f874e96438a3625n/aHeodo
2020-10-20730 20201020.docdoc 820216f8c962e71d2d8b89b91b37217eb9d18277550125d36433d9dba10dc60cn/aHeodo
2020-10-20Inf.docdoc 60c45c4aed850583c158a7b64f9e6d52bdac2c9570c6db9c712237e605e34b50Virustotal results 38.71%Heodo
2020-10-20UNTITLED_2020_10_20_2170162.docdoc 4a7f5d87a06e0b9b2e72cd98360f8235f7943aa35ffe448bc4c118d0b5c3042an/aHeodo
2020-10-202256ZXT-2020_10_20-4963125.docdoc 64e99051b9cb45a384b9ed588cf3d5a8734c29ec44da0a99b0f38414652bef7cn/aHeodo
2020-10-2047770_2020_10_20_S0021.docdoc 36d85e7b590d027ee48f10add640279d408c58137c90337b661ea084c08e78d7Virustotal results 32.26%Heodo
2020-10-20Mes_20201020_QOK5493.docdoc cf415a723905e1f970c5ef7b1bc16539cf4d628f0fe5c0f7a024ed80cf86d364n/aHeodo
2020-10-20DAT_2020_10_20_9223.docdoc 08c74f6002963030dce939bf75aebf0dce4d86b24b130af6766510e81a19192an/aHeodo
2020-10-20Rep 20201020.docdoc fa15dce4279dfec6e787cf1cd312ce2e99c7a73e9886d87154d1de91d29a62ecn/aHeodo
2020-10-20Inf 20201020 O051.docdoc 4f4d838bf132620f947d6f30d3ab31784ba17c58dfc46d313598b43315c6c384n/aHeodo