URLhaus Database

You are currently viewing the URLhaus database entry for https://helixtap.com/wp-content/balance/bnfHOJ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:755384
URL: https://helixtap.com/wp-content/balance/bnfHOJ/
URL Status:Offline
Host: helixtap.com
Date added:2020-10-27 08:37:06 UTC
Last online:2020-10-28 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-27 08:38:02 UTC to abuse{at}digitalocean[dot]com)
Takedown time:1 day, 3 hours, 15 minutes Poor (down since 2020-10-28 11:53:12 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-28invoice.docdoc 753c4521e07dab9a1de57a156021942b8e1019f48da5659b28dedbc848c3d013n/a Heodo
2020-10-28invoice #744815.docdoc 0b9d0864e1af339c8924de338519f8773111be2d5d0aa9956e910d2bc1b4e1bcn/a Heodo
2020-10-28Copy invoice #6814.docdoc d80a1b08046a480c270322dbb63db1c6068ff358df2a12b407ae126205550de3Virustotal results 16.13% Heodo
2020-10-28Form - Oct 28, 2020.docdoc d23212065500f67a2aa4bbd042ad99075d511959fa1be07d964146fc5cfd618eVirustotal results 15.87% Heodo
2020-10-280327437939.docdoc 32feb7edd391361d09ff5f8c6515c3fd05df572933a78dc033c9fd97a496fc9fn/a Heodo
2020-10-28Payment.docdoc 8825d7209f3d3941021c374a3af3a9e996a6fe548bb4a13782a09ddd75ba5ff1Virustotal results 18.52% Heodo
2020-10-28October invoice.docdoc 2768b3159c641914e0af25850814b52068d8b6957f3b2a1a5b311e3c41c4bf25n/a Heodo
2020-10-28October Invoice.docdoc b1bdd6e1e3abe17d23d0470a135cdf17a4c0753e5829b7abc7bf792d3cca7715n/a Heodo
2020-10-28INV #0033868 FOR PO #00733564273380.docdoc 80c6de9caa8fb29457e799ff74947cf9a28aa5bae84ca015cfbe75b1edb3c93dVirustotal results 15.87% Heodo
2020-10-28Payment status.docdoc 9efe62711778d762d08370193467de5fd1c62cccaf5759890df537fb153a079fVirustotal results 15.87% Heodo
2020-10-28INV #00849 FOR PO #001561979541.docdoc 9e583231a4092b32f4c900501fc90210418cfbc4fc6c7bdd3fc8c3610cff588bn/a Heodo
2020-10-28INV_12459.docdoc 9fee8929b36a06e948d6a56d3de1466b9d102bf2e686ad5fb293f485490ff976Virustotal results 16.98% Heodo
2020-10-28Form - Oct 28, 2020.docdoc d35d4920596ae47da5cad70a58d82cd7857289e6a2721b469dfef372aa439957n/a Heodo
2020-10-28Copy invoice #73790.docdoc e4a4e6c278d0a2cf660e0d6e8cc8359851c32772b4c9fccf98e2b28c9aab7f44Virustotal results 41.27% Heodo
2020-10-28form.docdoc 138f68878f0c09a4d5a982087da5f57943a8f84e87f9ff80bf9b66949d9bcb02n/a Heodo
2020-10-28Electronic form.docdoc 27a3188058fed1166803e44662278cf2a6215057f984d81925a1586dfadf58b5n/a Heodo
2020-10-28090679415.docdoc 25a38466146889f4833a21d4be2e6863c6f4617e632f0bc33436d7023cbaf734Virustotal results 41.27% Heodo
2020-10-280657478.docdoc 7cdf46cacb08878324d471fc7cec17b333e38c7d76479a164d1115811dccceb8Virustotal results 28.30% Heodo
2020-10-28October Invoice.docdoc ab8a246400a024e5490c031fe13b4c892da8e1db9687fd937766669b28467255Virustotal results 26.23% Heodo
2020-10-2808573990.docdoc 5fd6570201a29865b41f8da78021803a4db2b28a392a583170a80c5f24d76e8dVirustotal results 29.63% Heodo
2020-10-28Invoice #342531.docdoc 062ccdaf377390b0400188dd4b76f5479b5c5e4cb11cc321ad63e9223179feaeVirustotal results 29.63% Heodo
2020-10-28SIF-100120 NPPL-102820.docdoc a1546bd45c31f3d8028e9ed32b37a0394e615efc5a71ea3f36e4696a6a913c56Virustotal results 23.81% Heodo
2020-10-28INV_68845.docdoc c8382ed675603412dabc80704bc1e88abdf37c11986e6eac00c7958e3068199fVirustotal results 27.78% Heodo
2020-10-28005642954534.docdoc a6d4e2b08b8440d239b850df7a27ee5b2269f64f6c898b0b4d04ad6d596d432bVirustotal results 22.58% Heodo
2020-10-28form.docdoc 129235f3355a262045edfd381d264ee669cd0eee9eaca1601a8509dad50ac10aVirustotal results 24.19% Heodo
2020-10-280769946046AX.docdoc 6c40a86cca19d777bd981ee02c7511d1e4d2cb3b958f17a34e06eda569c38be3Virustotal results 26.98% Heodo
2020-10-28INV_27455.docdoc 22ff098ed7106067b60086383ec7d4ac8211fec5b7298cb2c7d22bdc05e75b8eVirustotal results 24.19% Heodo
2020-10-27October invoice.docdoc b2c300696fc8ad9ff5f0aa4ae76a7ae337d9cf8427bef59aa3baba261b9b048dVirustotal results 22.58% Heodo
2020-10-27DA0326 invoicing.docdoc b35d615da70e3502114b5ba61a1979d6f463f7eb8b0fd6bb17d4da8bd1561646n/a Heodo
2020-10-27INV_12572.docdoc 6695d93e57264079a79dd7fc5155df3df40f82d2a6a78063c99d8617362850c2n/a Heodo
2020-10-27Form.docdoc 14e540b9e6a505b670a6107a33915ebdf49ef9cdcbe819e7d14993c1f1d2619aVirustotal results 25.42% Heodo
2020-10-27October Invoice.docdoc 99c91035c6a269a23e022673bb84e4cb8e8b40909281707212bd9dc4a074c3cfVirustotal results 28.30% Heodo
2020-10-27invoice.docdoc 4955a66e9711e8207f53c9204d68f89903e7aec37f30cbd298ff102bf68f937bVirustotal results 28.85% Heodo
2020-10-27invoices 27845 & 8087.docdoc 57dede1f54d1939e59316810f3dbd48bce103d37bc58ce856404ae327b165e67n/a Heodo
2020-10-27Form.docdoc ccd9a6efeec7e3257f7e01534eae6701580d56c7792ee2a8661a1ad396a6320bn/a Heodo
2020-10-27October invoice.docdoc 8572cb899b936699bc1d20c1b922b10340cab95df6e94f179476da4dd2286996Virustotal results 26.79% Heodo
2020-10-27Form - Oct 27, 2020.docdoc 18e31e5b8ad5d3194d4fad561b4c5bf1bece67a65dc3454ef30e5019479afc42n/a Heodo
2020-10-27Inv_644679.docdoc ca9b4a21c4b284d48ac4b2fb4e838c186778f7d36a0b7c262cee27085bd500f9Virustotal results 27.78% Heodo
2020-10-27Copy invoice #773451.docdoc bb035dfa04791584d81e71d154e443811c21deb1ae691425a9bfe05696187c9eVirustotal results 25.00% Heodo
2020-10-27Electronic form.docdoc 4a10c49813723560898495290eedafdf0dd7dc2ca1e0df6a54cae088c48b9b3fn/a Heodo
2020-10-27Invoice #758692101.docdoc c65f81b1bc17e59bcd7774ce83db577909d5551a1f71d0993fb1595bc48165e2n/a Heodo
2020-10-27Form.docdoc 0046dd430f33eec36daf84e72714fd8adae02e6cf32755fc2284462d9bce05dan/a Heodo
2020-10-270210952.docdoc 799de3c0b3c57093a424c4e80e471b26b7f7d121e6e4b75a250304ed59ab9d6fVirustotal results 34.92%Heodo
2020-10-27Payment status.docdoc 67011bec5cf45e968a04498d7999b76ecf312b542a1bb0c0ca98a57d0dfc4a1en/a Heodo
2020-10-27INV #007750 FOR PO #5322200.docdoc 4dee867bbb0a188951ce67bac529c1d7aefcd46c4964b24f6603829639aafb08n/a Heodo
2020-10-27Electronic form.docdoc 3ef590314e0374ea0d69809bf451d0cd1296a7d1c2cbaee157a7dfd627389e3cn/a Heodo
2020-10-27form.docdoc e4db9002ca55bbfd2e44eb64d348fc63fbd8e647a3f406b20603a92783b32777n/a Heodo
2020-10-27invoice.docdoc 1d244f2a7c9030ea564fbb27d23393b3bd5d90f41e2d9d0d92ad31097ca84f67n/a Heodo
2020-10-27Invoice #804154496.docdoc 4fd0f1dcffc6115e013d498b8148ff626dd3c8a68ca6c4397781d190e4ea34c1Virustotal results 35.19% Heodo
2020-10-27Invoice #70183.docdoc 993dde892377b2ef5b81f4e13c54293aad56861d29f37b3cf253ff19bce2429en/a Heodo
2020-10-27Invoice #30791196.docdoc 3f5ce2d57635a5ebfdf3de5fb1d6be2b71cae647e4cf98150a81368533f525a8n/a Heodo
2020-10-27Inv. 006264623079.docdoc fffd8f91ba3992b4e4ab37f5c691bda01848627747b4483dd6f6cca97716c2a2Virustotal results 33.96% Heodo
2020-10-27invoices 6970 & 84097.docdoc 05b7fc943b818ef784499d72667516f200a2bd1365c47470b18769629838f550Virustotal results 33.96% Heodo
2020-10-27INV_57106.docdoc 0d24e447f06192cb249e3557e7541d6f56562b803bc2cacba5896d16ba6d2db5n/a Heodo
2020-10-27Payment.docdoc 75e9bbd2466e53cb3d43940128a3518f795ede2cc682a3f1e132adb98ca4ab68n/a Heodo
2020-10-27Inv_680037.docdoc 311b325ab2da16b422b2e1d19d3b93af7e9b8dd2729e9f2b2f6aff7c96929f25n/a Heodo
2020-10-27Form - Oct 27, 2020.docdoc c6c21ed1555b95796afee0c5cef9fcebf4e501655edae5f847782bb727cabcfaVirustotal results 33.96% Heodo