URLhaus Database

You are currently viewing the URLhaus database entry for http://mea.kaisariani.gr/tmp/eTrac/Wrinfk9rgr/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:728862
URL: http://mea.kaisariani.gr/tmp/eTrac/Wrinfk9rgr/
URL Status:Offline
Host: mea.kaisariani.gr
Date added:2020-10-21 11:06:08 UTC
Last online:2020-10-23 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-21 11:06:37 UTC to abuse{at}papaki[dot]gr)
Takedown time:1 day, 23 hours, 12 minutes Poor (down since 2020-10-23 10:18:37 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22Attachments-626016.docdoc 02e690dbfd6ef074801125231bf4d4b402338b8103a7d35d43d223bf72fb3647n/aHeodo
2020-10-2280730P SPA4968.docdoc 24ec183ee778cc4230c8f2df01ebb719356416cf8ed85a928c4864c57dd62befn/aHeodo
2020-10-22DPA49234-20201023-852741.docdoc ff00742ee2e924330820490dd85ef3ebae24558e2aea9bdf91cef583bb047cfdn/a Heodo
2020-10-22Rep-2020_10_23-8563577.docdoc c6656e0509cd5854abdfabd0f1906fa7514dede0e346333b6bc0805729057542n/aHeodo
2020-10-22880653 2020_10_22.docdoc 0ee234682243bf9bf04264c7111b7dfb09ecd2defa3352894085762a363eb2cdVirustotal results 38.71%Heodo
2020-10-22ARC 2020_10_22 BP881.docdoc c34461394bb60cae8905373f5c68ad3e5df587723329161d1cfc4befe40b23c1n/a Heodo
2020-10-22Dat_96824.docdoc bebc62266c9285b082e0836bc0537ee42d986ca536cb2fad58bcb1485da93d27n/aHeodo
2020-10-22Inf-20201022-0295.docdoc d1dcedd7b80d448216607ca5831c042cac714ec9143424a7cbfff5dae30f9d1fn/aHeodo
2020-10-22INF 2020_10_22 SOY1630.docdoc d0914c9b865a1da985b8ab03e4fa31c35866c2268830840d147053efea20f270Virustotal results 39.62%Heodo
2020-10-22FILE_20201022_914.docdoc 83d33594e6308d08e4dabe95a4fe33bc47bbfa6f09219a045c6d42b5a9c99abcn/aHeodo
2020-10-22Arc_2020_10_22_QTJ0465.docdoc dc9b5ae32262f697360bc1b92f520a8211cfc0360bcebec5a1155bbed03f9ccen/a Heodo
2020-10-22Mes_2020_10_22_9711.docdoc 9473776ba71d7fb4c1ce5c3d5d0b87d00fc361ae37fd75fd5b7375f30b9c3107n/aHeodo
2020-10-22inf_2020_10_22_WK6528.docdoc f8238ca73eb3fdeb1f88f5688f5a30fee420309ae61ee7ac48a63b367e174c68n/aHeodo
2020-10-22Inf-20201022-PU260.docdoc 7a34ac3e962b2f906da9fe84d9d13dcfc15e19663d8d9c30762513943a44e992Virustotal results 34.62%Heodo
2020-10-22Mes_647226.docdoc 9f91c3c1109d3edf8276cf3fd48cde191da77831bbafaef50fab8d2ec88d2d51Virustotal results 40.98%Heodo
2020-10-22dat-2020_10_22-EO74260.docdoc ed1aa667877338aa66e291884d7ea0531ab7668bc263424702edd2496c6505fcn/aHeodo
2020-10-22list_2020_10_22.docdoc 33d8282536536c651d28cb08401045d2a01d13e2606369788ecf8ffe2136a4b6n/a Heodo
2020-10-22rep_2020_10_22_62326.docdoc 3400cf4a133326c5a5f9062c0109c732d8bf13b4f912312ad4b0d4372c069d26n/aHeodo
2020-10-22LIST_20201022_849.docdoc ca834d2082d01bcd776f4caf9891c752708e6e5169d37c98480dd73cc13f461dn/aHeodo
2020-10-22FILE_9685.docdoc 7088de375896b1287a4dedeec8070264a6dced5b2ad3323d4deeb18fd8eb447aVirustotal results 35.48%Heodo
2020-10-22Mes-2020_10_22-55331.docdoc 2e99f62aa78a87536bf62a84cf012d4e784300ec8a9dee98f631b12c6e1eef7en/aHeodo
2020-10-22UNTITLED 20201022.docdoc e7730e780f02da8d3ddf075b379bddf96077fcda744be9b8ed7f7cfe955a1323n/aHeodo
2020-10-22dat.docdoc a9aab448fb96800b129f7f912d5da900789df5ee3ce7b94a02b89a9ed3efb388n/aHeodo
2020-10-22rep-4163676.docdoc 8a689f2d19b100a22054241d81fd818a9a397a60701cf7af99f559f7049ef87dn/aHeodo
2020-10-22list AX3346.docdoc 45b0000b1204b4891b65981eae28a8d9f53c1546b1ec74c7e553cbc6460cda63n/aHeodo
2020-10-22List-20201022-1291.docdoc 1486675598996187b3882520ef24879c30b9d90bf4052e85d9bad9f67db9ffb9n/aHeodo
2020-10-22Doc-20201022-JL1932.docdoc a25344257babd179c56bc660bff618d3300aa4de550c84dba1e3e0a46ecafe13Virustotal results 47.17%Heodo
2020-10-22list 2482.docdoc 794eaaf7e3009055d7e4e5baed069553785993a378dc0dfd454467efc7c39e90n/aHeodo
2020-10-22Untitled-20201022.docdoc 7f61b7ce4755a5fafc9c72d93d476d31dfa8986c59f81295dd2a7729a95d90c6n/aHeodo
2020-10-22Mes-20201022.docdoc bfc9797acaa5c291ca5ae325f7e30c17943114bf6fd2c485cf4a2c5df7eb68d1n/aHeodo
2020-10-22ARC-842155.docdoc 44b689851fcb9adcee67652217440f895e2fe8c0bc74820c5634e04640dec29fn/aHeodo
2020-10-22File-306.docdoc 6759c39cca89573c7c4515f4409dda904ae598d0b2e38b1169023f890647c133n/aHeodo
2020-10-22Mes 2020_10_22 O072.docdoc 670f0987cdf8a447e03310d81c97effc01c48392bc2482e5218f952cefcb6c05n/aHeodo
2020-10-22Mes_P782553.docdoc 16c3cfe1d57d913c326c72bc65e0476284bc3063d2027cc711612cdb8e4d5c42n/a Heodo
2020-10-22file_2020_10_22_466.docdoc 66b977424a823de14f80cbfbb5e6b30980374448a54c1ae75ec6a9d9c2b0bf90n/aHeodo
2020-10-22INF_2020_10_22_292381.docdoc 5216b40ab431ee50f4904d8d52cf5a72d749418f6fbc6b0823bbd20a16f83e0bn/aHeodo
2020-10-22REP 2020_10_22 6837226.docdoc 1459b59e19d9b2356290f0524af52e795d375d764a01d1345e7f0a46df041f56n/aHeodo
2020-10-22Attachments_FU644528.docdoc f95182213ce7c6c1e585a1a0a4a11d9c9dd07358a8acef0539def794f40182fdVirustotal results 55.74%Heodo
2020-10-22FILE 20201022.docdoc 44825c2bae3d56eabd7956d7f042f944a78988f626e43a3e94204ace8c69cbden/aHeodo
2020-10-22UNTITLED 2020_10_22 MUU8376.docdoc cba12caa2cd32ce18fa1c7352a3aae495d982a3e49981dc90335eafc919a352en/aHeodo
2020-10-22inf-4804.docdoc 949394bdc364c283732e10d165b523463c5e3415f4ca80269720f45609aaf1a8Virustotal results 53.23%Heodo
2020-10-22Doc-2020_10_22.docdoc 8b05297c048f55387edd8b05e69d2a1240c7906afaebaf370edb5b8124f57043n/aHeodo
2020-10-22028BD_20201022_521388.docdoc be574340940250dad3b47b4fedf36aedc3c3c1307432c5254b45fb377907708fn/aHeodo
2020-10-22Doc_2205986.docdoc e8cdc278eaa95810ad409fa3670e5cf1dafae7c1532c014bf7e62d4b860a6559n/aHeodo
2020-10-226651_20201022_NMW601385.docdoc 7512e266ad38f56ffe78e660347c98f0decf6bb495e53125976d71042800b3f4Virustotal results 50.82%Heodo
2020-10-22rep_2020_10_22_DWC762.docdoc e67a507d777e002eee507ccec06969302b4e54c01e686bb88b3368c97fd09fa6Virustotal results 49.15%Heodo
2020-10-22Untitled_I941137.docdoc 4533627b4348507c5c05eb7090b96e31e60b845f30f585af35267657efd11cf5n/aHeodo
2020-10-22doc-20201022-PFS957.docdoc d71c098eeb288fe1dbc8460c546c271aac874e8f674e44c24a18ef4e358eda77n/aHeodo
2020-10-21Untitled 20201022 YBO2169.docdoc feb428de94cd42d3f8a3e5d5b95134902ab3ec4b06299008cad8569a71e466c1Virustotal results 43.55%Heodo
2020-10-21309 2524897.docdoc a6a0435d980b4a2f75c95757aa7d6b7810c901e612b8d6414f8dee775adc4dc0n/a Heodo
2020-10-21mes_DQU03956.docdoc 71bde1c72f6ee962da28302c540d7ae0ac08986b68ed1fd7c126d680de6dcdd0n/aHeodo
2020-10-21FILE_2020_10_22_183.docdoc 3a50c2c4c531d62cd92b9c799af0e0deda105f9690655f85e403d1a54cd14416Virustotal results 45.61%Heodo
2020-10-21list-2020_10_22-5430.docdoc c2f0f8e8d0fbfa48d0ac6cd1251964b6a14dd3b0956a1d293140bf7cb439e049Virustotal results 43.10%Heodo
2020-10-21file-XF18771.docdoc 42538e931722bfc76683ba8032a3f9771599b561326a105c20053210ee28d4c2Virustotal results 44.44%Heodo
2020-10-21file 2020_10_21 015014.docdoc 62b13b2b46266429dc16ef57510143aadc8b8d4c43363b03d787eb44a98cd410n/a Heodo
2020-10-21INF_492.docdoc 2a134af3605cd8875600e60812b847503f74c33b2991c3fef4b4449ff3421233Virustotal results 41.94%Heodo
2020-10-21LIST I039510.docdoc a6eea83d7fab009cc5bf69ff232eec13d0b06e8db76df67d40843391f0f6579cn/a Heodo
2020-10-21Rep_2020_10_21_84059.docdoc 351bc2d545540f7803343ed6b60942a6a96d7bf0524c30abbba917f25467fb99Virustotal results 46.55%Heodo
2020-10-21doc.docdoc 6166977ed2093f4737ea6771eb5fa4298fe60000d3ea12a61966cc10c9e83d26Virustotal results 45.16%Heodo
2020-10-21FILE_XK196008.docdoc ee0a2fe5c7b689bc059cf0849b40346779fa307da94bee18344cb200aa5f0315n/aHeodo
2020-10-21mes 2020_10_21 V5724.docdoc a447b0a5d39a2c14afe4b7b7661b3d457aca245bf581422a77fbe74fb48fc68fn/a Heodo
2020-10-21list-20201021-9740312.docdoc 00ed59c9df48338ff3a5a699c8e8f21b57b36396088820dd0e3b51382a6e3016Virustotal results 37.50% Heodo
2020-10-21mes_20201021_195719.docdoc f6cca707c3dba7f0fb0a216c7910dd5b8da4d5601fc47156afc04c9e516d8284Virustotal results 33.87%Heodo
2020-10-21REP 20201021.docdoc ef613896b6dae13013f72c27afbabebb56995eb5f3dcbee3b1847d0bab3f0406n/aHeodo
2020-10-21MES_20201021_EIO416698.docdoc 9108ca23d908dda4dec8fb03dc119e054b45ac8bef157933a4034f5992ca7ce7n/aHeodo
2020-10-2139000-20201021-08735.docdoc a1d14cef317aece443bc010579448ed548c495541c8540cf423fc5f1d8a20fe7n/aHeodo
2020-10-21REP 581.docdoc b810acad3328d5717f79a8ea761a90f67e6fd8ce92653ad0617fd5666da2d600n/aHeodo
2020-10-21FILE 20201021.docdoc c49c888c4e812e17dbe295a1bb58813cf0642281a4c323b0bddc4e67afcf35cen/aHeodo
2020-10-21Mes-2020_10_21-W097553.docdoc 045041df64a94daee99eaaf2d1ac99432dbd37c364eaa832872d6eed0c4c7138n/aHeodo
2020-10-21ARC_20201021.docdoc bebca256f7d7dea851ea48ddd84315c2ad2a86e2b9e2379ee74feedfbf513e95Virustotal results 29.03%Heodo
2020-10-21MES-2020_10_21-8861.docdoc c3a404e700c460b8f433349a29e503ad340b23bd2d5af138e10a36b816e57a69n/aHeodo
2020-10-21Attachments_20201021_NHH6345.docdoc 998919f449bb4ffd8415c10684417b4c1e7cd78cd3f3805ca260534d4053e861n/aHeodo
2020-10-21Arc_XMJ06397.docdoc e6d71d846d35b211eb67758e310079569c72326f3c7b4ebe3aa85fb7f2bca91dn/aHeodo
2020-10-21Dat_E1859.docdoc fddcfb4b89940260fe8789a2ff682c488629909675f5a7f7bf1f86fbac452c5cn/aHeodo