URLhaus Database

You are currently viewing the URLhaus database entry for http://flexpertise.nl/wp-content/public/hu2cd5719utttxbclm1eh7d/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	730855
URL:	http://flexpertise.nl/wp-content/public/hu2cd5719utttxbclm1eh7d/
URL Status:	Offline
Host:	flexpertise.nl
Date added:	2020-10-21 20:02:04 UTC
Last online:	2020-10-24 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-21 20:04:04 UTC to abuse{at}transip[dot]nl)
Takedown time:	2 days, 12 hours, 48 minutes (down since 2020-10-24 08:52:42 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-22	FILE_PO_10232020EX.doc	doc	838408d31e494e72b257feeec73407a2f778e6ecc47754ae16af0290515dc9fd	42.00%	Heodo
2020-10-22	INV_GQJ_100120_CIY_102220.doc	doc	43fdca763d6c5a29b37caa60b67219e78151ebfe7fda9129ad8dc96f91c1a990	43.33%	Heodo
2020-10-22	BAL_TUQ_100120_IJD_102220.doc	doc	bac7b15c1cc9eedfd4670ffe4383b4c9562b04a5fb2cece968408833f933a765	44.26%	Heodo
2020-10-22	54515042.doc	doc	a479d5df4923cf3d9c170aa218de43da798baeda6247d5f044fe539826c58cde	39.62%	Heodo
2020-10-22	50368664.doc	doc	892a53376594e2bdf65731771d6e7faa4d36e2d3b95340ac4984ec74536d3604	41.94%	Heodo
2020-10-22	INV_OQW_100120_BRV_102220.doc	doc	a3a88e1d35a8217720e9e2f632e2cedf4d36418f73975906de221523e0755ecc	38.46%	Heodo
2020-10-22	L_92089774172836059.doc	doc	001639b7cc59c0a2584aa6a318a5f5b65adab079e516f81c1053efbd1feac7cc	n/a	Heodo
2020-10-22	BAL_AXTBJN2YB.doc	doc	9c025489858b7549f67ca1cfe82ab121254e8ab5c19ac7ee160108297862e9bd	n/a	Heodo
2020-10-22	ITB_100120_MPI_102220.doc	doc	ac0f321bf0c06b4983efc4726ccb54b8e31995d53ffef62f095057770c240829	n/a	Heodo
2020-10-22	FILE_UJJ_100120_OOB_102220.doc	doc	64043ad11e076ee6e0b96158f87f864ca48289e112734d2b59678e752d176307	37.74%	Heodo
2020-10-22	FCJ7VHQXYVI1N.doc	doc	a0c3617197a6bcd01ceb39b73663300421eb77c56391c866abab0deba5c94078	38.46%	Heodo
2020-10-22	WAKW85ENWC2CZ.doc	doc	4cbd537b728c17d400cade05f1fcf9810b723df76c9efb65e6a75648d59cf13b	38.46%	Heodo
2020-10-22	TD8856087698GK.doc	doc	2012a08768e19ce57c0229fe901f5710998a91d936f73c4ca838dab581c5010d	n/a	Heodo
2020-10-22	FILE_VIW_100120_XFR_102220.doc	doc	1398dfcbea47214d59bb327957bac69b2db7c06a50da13399c63aa797fa5fa9b	38.89%	Heodo
2020-10-22	G_562172738896548.doc	doc	577c203950be63bd35f6a6eea0fceb7ba785d7b2b6d8e3c702fd6d3f59adb81a	n/a	Heodo
2020-10-22	68273538945822.doc	doc	2e45410e293f870df9a2729fd8d3e0aabac8b6aa79365b502a849f90ccb67b67	45.16%	Heodo
2020-10-22	INV_9097132034389449986601297.doc	doc	864d0a9fffea983ef2c1137ddb09a42b8bb880017d0359af9c5758b250bcca9f	n/a	Heodo
2020-10-22	FILE_3680476331713081485310734.doc	doc	6b40e4dbe404cb318f67b97e169ba8742307b6366d824567b5b76f81e355c04e	43.10%	Heodo
2020-10-22	FILE_7910084877667.doc	doc	c3336108f0ac7d89a4a56fc3ab128adf42d66758ea9b304fca469f13b02e93a5	45.90%	Heodo
2020-10-22	G_HQNZLJE8B1PVT.doc	doc	ae5168eab14a38621615d44a35ff6af0052fabf8af421ef2c66f783169b808e8	n/a	Heodo
2020-10-22	BVM_100120_EEX_102220.doc	doc	7eaf0df9dd2a33ee958384a9472366f58f1c0a204360efea6a7f8b0d298560d0	n/a	Heodo
2020-10-22	C_YZ0KFTSIU.doc	doc	e2d2ebafc33d7c7819f414031215c3669bccdfb255af3cbe0177b2c601b0e0cd	43.55%	Heodo
2020-10-22	972585182.doc	doc	e2e2fc35c9bd68222d8b6d5f8956a22d89314dd8c3eab9686f3b069b37602520	44.64%	Heodo
2020-10-22	FILE_PO_10222020EX.doc	doc	a0ac35ec0ee3a97f79ecb953f29c1dca13fa5661a5df78ba82012b16c5b291d4	44.64%	Heodo
2020-10-22	EKL_100120_NSB_102220.doc	doc	b77d0f1db9365317aa34125ce7ef0a68615d90082791c7d921d7e5173bed6d8c	45.90%	Heodo
2020-10-22	FIJBFLPRI.doc	doc	f3bdfdeda759d384ba2dfe4792bab80ad4aa7354badad324c69e0f4c095cdef2	n/a	Heodo
2020-10-22	H5RG6RQGT7.doc	doc	756a41dbd5912d4c871d486b25958f188c2a32279f2b735e7ea9fb816fa13da8	n/a	Heodo
2020-10-22	VE2282512628MQ.doc	doc	b55af8491b36883ce6fd045e8bf6eda70fc53c4ec9fcef3b56dca6ec970f5c09	42.62%	Heodo
2020-10-22	F_ROC_100120_TCZ_102220.doc	doc	0962178a6edd34473ee5ac0f0dcd4ebd1ab30286664db2bbe2782ddbc4f7477d	n/a	Heodo
2020-10-22	DOC_ONM_100120_GOK_102220.doc	doc	a831fd83cedec11f7394898f70d92d520fbdf5e562fc5299cf83e36ebacd3ffc	n/a	Heodo
2020-10-22	INV_TYH_100120_BQO_102220.doc	doc	0183b5d51eda544d62b1cd8c412328d860d3f567131825824900cc45936aa78d	n/a	Heodo
2020-10-22	D_73913851571.doc	doc	0cf6b6d2c70f90c73c8af70fddcaf553d0b296661f49c2958c7464ed3294676f	45.28%	Heodo
2020-10-22	HM2881340612WR.doc	doc	d810adecb2a17cc42025465a49799119896605f16af88bb79a6342746b7cd8d8	43.55%	Heodo
2020-10-22	REP_3F18T849IFT1MMY.doc	doc	a78a2682db9e96335294df8912a7cd0a843bc011ae898a7fc211f79aea919fa2	51.61%	Heodo
2020-10-22	44162740.doc	doc	0d59d407c6fca62823b5b9e4eacce7270e5b98640aa37b1852d5c298805319dd	50.00%	Heodo
2020-10-22	A_WM5478010029JK.doc	doc	2bfcddec3862fcbe053dd6a0d03d5987ccfa1942950e8c9bea56fa41f6fcaa5c	49.18%	Heodo
2020-10-22	FILE_IV9184811030VW.doc	doc	7b89c410abec246746b6cdf315ae9239982f1a31e0a7629d46fa1e0dcbe7329f	46.67%	Heodo
2020-10-22	FILE_QQR_100120_TWD_102220.doc	doc	056f25e8944119ad3d9d651d77cc32cef6621c5cb3498b47161738be7aff416e	50.00%	Heodo
2020-10-22	X_PO_10222020EX.doc	doc	24ca326ece108e2ec02346c32536bd5cd2a990364f8d8c9fa35b082ba4a68f2f	46.15%	Heodo
2020-10-22	INV_72528252.doc	doc	884d55db64ae38575a793fcfaf4f07a6b4f67a7ee84374571189cc4bdb485608	47.17%	Heodo
2020-10-22	DOC_85479457.doc	doc	00be3474f86c64b8ed871822ccfe02e7bdcbb4b5132682ee36915e8553952648	45.00%	Heodo
2020-10-22	VBAQGR6Y6B391C.doc	doc	9fe7e239b00579f78275ddcdb282bf2b112dad4d3a0bbc7f183e800244486bb9	n/a	Heodo
2020-10-22	I_AT63R9L1CN.doc	doc	fe681aba1adcf7e82fd0daedeb3af000c89d34693b1dd0022c273e936ed660cd	45.90%	Heodo
2020-10-22	FW2061401490NW.doc	doc	8cf9bf37fe3de456cee48cd50ac6487278290ce4038eee214389512625297016	47.17%	Heodo
2020-10-22	FILE_4QAWKK7VM2AMHR2.doc	doc	9c0aa6a67f05f22e0bf2889fef6bb38dbbc89fa9da70a8b6ac6cfe0b45f3b704	43.33%	Heodo
2020-10-22	LXJ_100120_GBJ_102220.doc	doc	95c62759d32e2a426433130be7fc1c17a3d3787359258f3af33f61760463eeee	40.98%	Heodo
2020-10-22	GKN_OI7672728882AN.doc	doc	476b69835ad34811317226c4b0d9c78525fbb9770f4dc6c649da167a65359582	40.38%	Heodo
2020-10-22	PO_10222020EX.doc	doc	c4453119ba010924fa6571eee7895d995ccd52dcc8380f3b65aaa2bb6508290d	41.51%	Heodo
2020-10-21	5750479282458.doc	doc	c772e92b4aa5c7e34108bb1b418cc47bf1561c6ea5944d194eff1af7cefbe4e2	41.94%	Heodo
2020-10-21	INV_2687988209943973693160796.doc	doc	890535144da2084ee8e9431e6521be9719100cc5bec7679a4d7bdce3763a692c	41.51%	Heodo