URLhaus Database

You are currently viewing the URLhaus database entry for https://novaflon.com/wp-includes/esp/8DOR9nFDMu0a/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:735527
URL: https://novaflon.com/wp-includes/esp/8DOR9nFDMu0a/
URL Status:Offline
Host: novaflon.com
Date added:2020-10-22 16:25:05 UTC
Last online:2020-10-23 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-22 16:26:05 UTC to CloudFlare Anti-Abuse API)
Takedown time:16 hours, 5 minutes Good (down since 2020-10-23 08:31:15 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-230855NBY 2020_10_23 A4226.docdoc c201dc04bed84411f216935bcad9296fdb3e99daa909ead17006846758dc8346n/aHeodo
2020-10-23MES_NR618.docdoc 0066b1d5dd24b167cf158ec3c464c0fb0a4601c4ceb91b64832e7cc48b0b7bcfn/aHeodo
2020-10-23Attachments_2020_10_23_6754065.docdoc 044fbfe6a7af7880a4a79b11351a8b657219c5717280368151dc6564e7b81715n/aHeodo
2020-10-23Rep-W412.docdoc 02e4ce0981c521bd6a8ca1170e5d7ea8ea35c973d2692d1709b8ecf1db394384n/aHeodo
2020-10-23H616-20201023.docdoc a129d723a80571d6c9f4402118e7a138d3ce0439cefeb6718c1e34d246586d51n/aHeodo
2020-10-23mes-876.docdoc 25093bb7528311c4eee9c173590bd55d34e3101eeb80a3c3405eca6bc50ddd60n/aHeodo
2020-10-23Mes 2020_10_23 JJI76018.docdoc b333f4edbcd85640a50a2cacf9a116caa96e2026f2d2089c90b9c1b72e929581n/aHeodo
2020-10-23doc-2020_10_23-196.docdoc 623493fea7d7d2f6e25e4e0c6d64d8bc684086cf8258e543f4a859b5e2080eabVirustotal results 54.72%Heodo
2020-10-23list_H370161.docdoc 88ede93bbd015607192a96718235dc0b427a8f654bec3ea00739a51abf19e5e0n/aHeodo
2020-10-23Doc 20201023.docdoc d81d19a33f0ac7b353c71ae0ee3bbc4fe3072d9ac384f22725e48503df8d8260Virustotal results 50.85%Heodo
2020-10-23rep_XY0227.docdoc ff799dfe689af4b7f91327702adf9abbf48fdeeae9400493c012692c7bb07cebn/aHeodo
2020-10-23Inf-2020_10_23-31395.docdoc 96140bee4d720328e2113c59df8157377c933260724ce09f2c7f60927b768f55Virustotal results 51.61%Heodo
2020-10-23Untitled.docdoc 6804dbc9724d112e604b0a8c2fa2bdd8d5067918c5479d73632c6258ff83888en/aHeodo
2020-10-23INF_2020_10_23_H736788.docdoc 03290ac1a4a631b629b8ee0a0ccbe41e7e65fd76ce230251d8179173865e0e68n/aHeodo
2020-10-23DAT-2020_10_23-Q246.docdoc f2c23af1ed5933cc85de5b485aa560d2b3d51ef80a20a4215d0ac0bdd9d07bd6n/aHeodo
2020-10-23UNTITLED-2020_10_23-805.docdoc 467cff3339922c5222b7cf47bc2ed154aa32c672291b072854671117da5ee6fdn/aHeodo
2020-10-23Attachments-2020_10_23.docdoc 31a1196eff28cc5bc1abf437836a0f46235d224545bd9202c8d4e35743f5ece1n/aHeodo
2020-10-23HLO7862-2020_10_23-024129.docdoc 2c4575f92dea12a74d983f35de5c3395d1372a0a14776a90350250ad0eaa6be0n/aHeodo
2020-10-23INF 6776.docdoc 4f47d35f875582f23b3901262ec4097e7d11df94dbafce009f1264ff100246c2n/aHeodo
2020-10-23inf_2020_10_23_05827.docdoc e4375d0a2ba932718dec66682d272815c527e91c52f8fd834f2b13a199c60e95n/aHeodo
2020-10-23ARC-20201023-43089.docdoc 0e1515fd40c1660f0b5e48e9eeed031127aad22126d6f1885b30a198f23559een/aHeodo
2020-10-22Dat-428711.docdoc 74956b6fd8fb8af1c1cd21026338c5e52d19533087ce7d60541ec7180469db1dn/aHeodo
2020-10-22rep-2283.docdoc 28f62c50f215f1330b0e55bee7b904932feafada38268abeb16d0f730205cd07n/aHeodo
2020-10-22LIST-2020_10_23-0839210.docdoc 5dbc67d9b88e0dd44bf600661d17c5726d09f83034d0d8c55dd65aac85569d11n/a Heodo
2020-10-22file-KB1991.docdoc ff00742ee2e924330820490dd85ef3ebae24558e2aea9bdf91cef583bb047cfdn/a Heodo
2020-10-2293575736_2020_10_23.docdoc c6656e0509cd5854abdfabd0f1906fa7514dede0e346333b6bc0805729057542n/aHeodo
2020-10-22ARC 2020_10_22 E77916.docdoc d87198e80fbbe7c94cafb9c521c07837a97b8cab7a6dd1a9160051702838363bn/aHeodo
2020-10-22LIST 3028508.docdoc aba2852c2ede40d00712d4f0bf753af374f10fa332d165c7bf62b40803c6b393n/aHeodo
2020-10-22rep_20201022_X647.docdoc 66771dd18891cf71c857800ab02739c617f933bca489b3e5076092d1b767f876n/aHeodo
2020-10-22dat 424805.docdoc 5f53812706f7dfa6933f0857792ec822cceb05736e9d6004339eac9f037cd956Virustotal results 32.26%Heodo
2020-10-22FILE 20201022 HXO040349.docdoc 3b02b55c561605e9c0ac4654750d40e7fe6d788636d2368186e5aca8cbaf0b2bn/aHeodo
2020-10-22doc_RBL783.docdoc f5ea3c1fdc14d93a641aed549436c491220ccd2571f6bcc627d23ff0c5e37b1dn/aHeodo