URLhaus Database

You are currently viewing the URLhaus database entry for http://support.servu.co.uk/behavior-goals/eTrac/g9beyek/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	725038
URL:	http://support.servu.co.uk/behavior-goals/eTrac/g9beyek/
URL Status:	Offline
Host:	support.servu.co.uk
Date added:	2020-10-20 19:02:04 UTC
Last online:	2020-10-21 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-20 19:04:02 UTC to abuse{at}aware-soft[dot]com)
Takedown time:	14 hours, 11 minutes (down since 2020-10-21 09:15:14 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-21	DOC_TX1693337469LJ.doc	doc	efc52b61116de71a3b3191b7bf3d79f9152dd3d3fa3d34889a4f11ef178d9e68	50.00%	Heodo
2020-10-21	UIV_HB4L76B1NEWDM9W.doc	doc	ecf5ecbbe5e2904306de22bb28532af5b7e0cbadc8446cbb2fa456255683e972	n/a	Heodo
2020-10-21	Z_PO_10212020EX.doc	doc	e7863e06fdf3830b0b5b4c8f97dac6420a04c0fae7f728aca4ebe046534b9b0d	n/a	Heodo
2020-10-21	PG_A5M5JSYPD5QZA5.doc	doc	389ad5d9d72b446e4ea03160b107fdc48402bcc7c9f664d73851ebe4d4c7b660	50.98%	Heodo
2020-10-21	INV_NRN_100120_QNE_102120.doc	doc	ffb659e12aeea991c1bca3702e7d3c01cb589251885cd53c4025994a5e3e1309	48.08%	Heodo
2020-10-21	FILE_PO_10212020EX.doc	doc	b886042bae6dcbb3ff1e2343630f7c873d2fedbc6b59147c40346b16f69c8603	n/a	Heodo
2020-10-21	PO_10212020EX.doc	doc	1996ba49c1e42e54c8cd2717756d00e05f3290d1be0d606dc11a3ae0f556ffc9	41.94%	Heodo
2020-10-21	INV_11359224.doc	doc	ec57f3677533e2cfecee42c14801e99d80ee3ef3bd8044c0b11040b1383fe435	n/a	Heodo
2020-10-21	76785076.doc	doc	71410da7fd254423681e9a41961a03bac9777fff1882cee09b6ddb785b38b923	n/a	Heodo
2020-10-21	89067190628723642.doc	doc	fe1e5c66a4990cc515e5925db68def9f29f1893d9c6d3fa6b47e05f5c5f618dd	46.55%	Heodo
2020-10-21	N_21TVJGCYJD.doc	doc	d755c5281821fb9a1af024b9c6bd977a7da4c3aabe8999703525ece1767fdd13	46.67%	Heodo
2020-10-21	DOC_1XCVLAAZE9YWBB.doc	doc	56074bdd23c71846faa6ab17e8fc8485ce763ae329af8573a9e877dd6ec6513c	48.39%	Heodo
2020-10-21	EGES_8JBCJ3D3E.doc	doc	a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225	43.40%	Heodo
2020-10-21	33850932541359990.doc	doc	8ea38c51f8926ffa9ee61be53fc7ee3e4f968f2c7683bbc3b9320d14a2443067	42.31%	Heodo
2020-10-21	X_FZQ_100120_VQM_102120.doc	doc	614bbd10017422522d46a734ed08de066834e449d5802b036b0231a39b0c043c	34.78%	Heodo
2020-10-21	FILE_94805908.doc	doc	89e10dbffeb48b429f49468630b9b93f988c4ca3e6a7de17367b398447309bfe	39.66%	Heodo
2020-10-21	DOC_047555691190089899584.doc	doc	6eb67022c07e3f32436afc6e89eddb132a4c5d34d733c824ab3dabf51b7c712a	39.62%	Heodo
2020-10-21	FILE_YUO_100120_QER_102120.doc	doc	7b59e4314d2b1bbefd045815d54be5bd19315bcd13e3de6816a36bfd0930e032	39.62%	Heodo
2020-10-21	BAL_GM8634735978VQ.doc	doc	a78451771b5a8e66fd912d10f9b621e52239473334785ec68755db5e60594ecb	n/a	Heodo
2020-10-21	6724612923315543929241549.doc	doc	7bf2ce4dd307b31f8b2eeff8a5ca658f7a680a9bb132d54d6182c711504b0ac3	n/a	Heodo
2020-10-20	Z_10651591.doc	doc	a65e7b5a4d99582f1ec1c608eea4d21fd29d1c23bed2b8dd8ec8062f23d90e40	39.34%	Heodo
2020-10-20	39549925.doc	doc	8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915e	44.64%	Heodo
2020-10-20	Q_48394049.doc	doc	8ebe3eb8f2fc91787e217da76d31b3108744220f6cd2a5b74fc6b57c9c681317	45.16%	Heodo
2020-10-20	DOC_YW2017647895MY.doc	doc	73b1ecd0729d4a6776f63d5ec7943f5914ff080311e5f670ab38a4991795d29d	n/a	Heodo
2020-10-20	DOC_YH3XDSW.doc	doc	bab707f338d98b9ae46b7775dfe552e80b39498b2703f95077f0ff3b2b622790	40.00%	Heodo
2020-10-20	FILE_IUS_100120_DPY_102020.doc	doc	621a14c4ff1196a5f40b5abd1aa47738a2855dcb1ac4f16c7e577d6f53935c08	39.62%	Heodo
2020-10-20	LTDNNO0NURIO53O.doc	doc	2e98bef98194397d9ed6991c80f5625893a60603057c532ce9f24cec16a58f9d	38.89%	Heodo