URLhaus Database

You are currently viewing the URLhaus database entry for http://ezcookingtoday.com/wp-includes/browse/hd9k7t9ikv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:725861
URL: http://ezcookingtoday.com/wp-includes/browse/hd9k7t9ikv/
URL Status:Offline
Host: ezcookingtoday.com
Date added:2020-10-20 22:27:04 UTC
Last online:2020-10-21 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003024716 created on 2020-10-20 22:28:05 UTC)
Takedown time:1 day, 0 hours, 55 minutes Poor (down since 2020-10-21 23:23:57 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-21REP_QO5550108658PH.docdoc 890535144da2084ee8e9431e6521be9719100cc5bec7679a4d7bdce3763a692cVirustotal results 41.51%Heodo
2020-10-2147239207.docdoc 140f99b8c86ce2cbf27556e78284f685e2cd53ff2e50838f444b115a6a04920bn/aHeodo
2020-10-21FILE_ZYX_100120_LGQ_102120.docdoc d9140a29ffca02355e8b885163a54d58bcc095fafb564a9d8a8689b4ffdfde4fn/aHeodo
2020-10-21REP_665534467375.docdoc 633b2b1963bd2dd467845e87a2d06ace1c22e9402d4dd3aee12618af8f0846a8Virustotal results 39.62%Heodo
2020-10-21INV_5I35AYMO86IXF3F.docdoc c918e4496eda71d4934774f5bed0f956d1810ac516f9460cfe22f4abeddf2af9Virustotal results 30.65%Heodo
2020-10-21INV_2475577687247690352573.docdoc 1cb0001d422c0b16aa106ca96ff8aa0db8fec461c49b8f80ac75b5ab4001803cVirustotal results 33.96%Heodo
2020-10-21GHI_100120_KKN_102120.docdoc c92778df4ae556cc2ad66979e6fafa9256ce4c9c7d0457c6525711429def55fen/aHeodo
2020-10-21PO_10212020EX.docdoc c0308a4a6567ed36df7165b3cffbe26f676322783de09900dd7b7e6b7d642b97Virustotal results 30.19%Heodo
2020-10-21PO_10212020EX.docdoc f168ef97aa8cb399a6f327fb6a301f7ae5e115c7ed1ad5c8b59819663bebd7e2n/aHeodo
2020-10-21INV_YG7164102929LQ.docdoc e02a52462590a3bce3ef61d93a478d7ed9b742585f9c16474b041bb7964c5ecbn/aHeodo
2020-10-21DOC_MN5758838438VR.docdoc 27a0f68aaff44c4e5adb18dd89c4cb3b92fa305b84cd9bdfd76c9a5d8dbf58f1Virustotal results 24.53%Heodo
2020-10-21INV_V14VSDPEK8DMR.docdoc abd94a7b58ada746b22d9d6a4ef2b3847deda4d5569325459951c0c7f3b2a355n/aHeodo
2020-10-21R_4796703811379352167801.docdoc 3870c4b69f68d86fe116181343d8d6d97a22d191a028b02f300f0e5d1e33eb60Virustotal results 32.69%Heodo
2020-10-21VG3750675578CG.docdoc f762fa2e19b39567f9550fec095e6bf1f7655fee2bfa11190f293736f74f57b5n/aHeodo
2020-10-21HGKR_ZLH_100120_WVV_102120.docdoc ce72abdb386adab53d71d068388c21107144e7d9c1acfa2f898d0ce6d7b2acefVirustotal results 32.26%Heodo
2020-10-217A1UH0WD75CF8.docdoc 7fd4239f8f25bb0287746f554cbdffc534ced3346467f2a882722772a9d44d34n/aHeodo
2020-10-21DOC_RU7516275353MI.docdoc 4a8ef7b61c8dea7745464f96999dcc37abec856e23e55bc6eaa7ef374a6c1878Virustotal results 32.08%Heodo
2020-10-21PO_10212020EX.docdoc 1e61f3c2c68fda87e0f2ba6a98d5e8ef53a5aab53b29c60be7ec3260412dbd0dVirustotal results 32.69%Heodo
2020-10-21A_JTY_100120_QZN_102120.docdoc 148588102731dd9742cd698c882b48c4b49cbfdd868647a83a15a0cbb1f0c8can/aHeodo
2020-10-21CO5TGNKD.docdoc d09a3b2020a8fe4602378a86d4e37891b134569113ac01d5fb358f9538b5449aVirustotal results 26.32%Heodo
2020-10-21BAL_97316092482583.docdoc efc52b61116de71a3b3191b7bf3d79f9152dd3d3fa3d34889a4f11ef178d9e68n/aHeodo
2020-10-21REP_JJ1684906150RW.docdoc 71c25e3712abdd3d405b0a43f2819fb51d16dd9bf3c5fd5c9ecd04b028240533Virustotal results 47.54%Heodo
2020-10-21BAL_JP6563976461FT.docdoc 988037ab30e7fefdcaff766f160658d982522969787c02fddfd09ce912573dc1n/aHeodo
2020-10-21ZPH_100120_KUL_102120.docdoc 0e7f06cdfc74e74e5e00123ac97222a4735cc7b8cb29ca8d7892df978f647a32n/aHeodo
2020-10-21REM_100120_IUT_102120.docdoc 3f28d23c6650e22fa69d824efc5153fd46fecbbdbd236ae7b4ee15bae4ef556dVirustotal results 49.06%Heodo
2020-10-21DOC_PO_10212020EX.docdoc 850a811a1e29aafadeaca369778609e35c77edcb8588f69f153e44195d40d6b5Virustotal results 52.63%Heodo
2020-10-21REP_FVQ_100120_DUR_102120.docdoc f6ca28aa0ec1ee28ce246d787de062e5b78554ec2cfc62fbf00db085c177b074Virustotal results 40.74%Heodo
2020-10-21BAL_89492982859632100413.docdoc 7dbc4e5dd2f0c1bb6b679a8bff0e6640e01d97b3a39f8a6c63c597e0c26c9d65Virustotal results 43.33%Heodo
2020-10-212583489106335957835.docdoc 85a0100950655dd48b3789ac075bbca0e9b4d1ba0e1a4fbc29ee363cc23da4f9Virustotal results 50.00%Heodo
2020-10-2103598334.docdoc db6c107a7034688cf9fd3a069d7941ee4b8f606b102e3cb24e1dcab621a87304n/aHeodo
2020-10-21FILE_09694941321671035608971.docdoc 84163a483557d206843913f622d2da3f15392e74ee55e35d61961d07a1dd68afn/aHeodo
2020-10-21FVT_0TJ9KC45E02TQRO.docdoc ef31028a7bfb047b5233493c6b8e14ac6fa49ac6d022b6e016a22276a4be732fVirustotal results 46.67%Heodo
2020-10-21JRA_73788379.docdoc 56074bdd23c71846faa6ab17e8fc8485ce763ae329af8573a9e877dd6ec6513cn/aHeodo
2020-10-21PO_10212020EX.docdoc a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225Virustotal results 43.40%Heodo
2020-10-2132399290.docdoc 25d12cabe3d39e681a0b8c9ac88206110f66071089e92667ee0fed7bc917e918Virustotal results 36.54%Heodo
2020-10-2125313497.docdoc 076c6a22ade8278559bc05b10009c61e2bea31bec02ae5d2b92466600ecbb446Virustotal results 40.35%Heodo
2020-10-21BAL_PO_10212020EX.docdoc 8db61b871aac2949105b26c1ca2a22579e3b3d6e99aab20279c3bbea5dc87b8bn/aHeodo
2020-10-21C_YJ9878186816GJ.docdoc b5f8485da1270855c2866456988ce8010f5c32c69fb19f324859d685e719fa3eVirustotal results 40.00%Heodo
2020-10-2119537568.docdoc 9a65518effade1bf32d7589d7f7a8a028f9fa7f1fca4491673680847d26d3f0aVirustotal results 38.89%Heodo
2020-10-21FT2828522454PW.docdoc 17ac0ed02b6127efefaa0cc936604bc12947c394e902bb8bf88e37b6f0829d9fn/aHeodo
2020-10-20PO_10212020EX.docdoc a65e7b5a4d99582f1ec1c608eea4d21fd29d1c23bed2b8dd8ec8062f23d90e40Virustotal results 39.34%Heodo
2020-10-20GIU_100120_NTY_102120.docdoc 8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915eVirustotal results 44.64%Heodo