URLhaus Database

You are currently viewing the URLhaus database entry for http://geekdeer.co.za/wp-admin/browse/UNoqKfbGOF0apv9t/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	758721
URL:	http://geekdeer.co.za/wp-admin/browse/UNoqKfbGOF0apv9t/
URL Status:	Offline
Host:	geekdeer.co.za
Date added:	2020-10-28 00:55:06 UTC
Last online:	2021-02-11 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-28 00:56:09 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	3 months, 16 days, 6 hours, 6 minutes (down since 2021-02-11 07:03:06 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-28	DAT_2020_10_28_827.doc	doc	1029a93c4312651001128b1973e428ac1a6de1dd4b3ed70391fa7f308743abbb	n/a	Heodo
2020-10-28	List_2020_10_28_9846027.doc	doc	34031f5f46e6201cbd665c4737396e5ec06467bda423ea1a3d86b88f7fa96e7c	n/a	Heodo
2020-10-28	dat_Q32930.doc	doc	5f83b96224f9de6bbc1a455afb18dc39b53857a4e609d1d1d1a46ea47f6e5b6a	15.87%	Heodo
2020-10-28	DAT-20201028-0369.doc	doc	b5113713ed75f8184e3021ac2f1dcfdb473954c6e917c1107e38bd9d6939b868	n/a	Heodo
2020-10-28	INF 65256.doc	doc	16f0266ccac907e9f205a522d178057ca1ec615598162b1683fb3df7ede0c556	n/a	Heodo
2020-10-28	rep-20201028-052.doc	doc	27a735b7d1868b5f31d6ca26f68607186658cec95ffdf97e8319127b037dd873	15.87%	Heodo
2020-10-28	inf 20201028 UR27064.doc	doc	54b10fa227b16f12caace4571d3133dd38b2ff759faf34a4237c487e9aedf6db	n/a	Heodo
2020-10-28	rep-2020_10_28-4558768.doc	doc	6e6bceb8bc4327af841e4038ee8894aa72f45c78a59b8bbac28b353b0ed4c508	15.87%	Heodo
2020-10-28	Untitled 20201028 N80085.doc	doc	bc4a34aee5cd8390d24c478ba575a4479fb71346f98800969f55586c745a6221	n/a	Heodo
2020-10-28	9331366.doc	doc	2d5220a30ebb6a737f6b0b5622f7fe68238d39bd2a66a6bca4591b96160c1ed4	n/a	Heodo
2020-10-28	rep-2020_10_28-CC0924.doc	doc	0a0f920896176c798ee972d9e8f0455f8d39552c3304ed33f5b5a6776db0b6ef	n/a	Heodo
2020-10-28	34020073.doc	doc	fc7b874ee322b22028918d9deb7cba9d087061a1939d9534e72b82c7fc79a0f3	n/a	Heodo
2020-10-28	Mes-WL317.doc	doc	7139612e14675b595b820312f185fd3df1c7379c4712724137d9a47607749e93	n/a	Heodo
2020-10-28	REP-7077349.doc	doc	0108480ef1a0e359c99960286066e2b2f294e5ccc5634ada46ffa0efed4321b7	n/a	Heodo
2020-10-28	file-2020_10_28-3673.doc	doc	0944938a639d744e536297d618052d16d6640413e0b5a8e699eeffead71dfa10	17.46%	Heodo
2020-10-28	FILE_20201028_1082.doc	doc	ae14a8bfd6863ef8c39e36774089e581aaed45e5e6cf5af493f18e676c4e6bd4	34.92%	Heodo
2020-10-28	Rep_N6697.doc	doc	76f9fd95516f2170f2a2b98d549bd1a7acfb32b14b68e37d3179f1b26c540a55	33.33%	Heodo
2020-10-28	0837 20201028 TN25985.doc	doc	be5b883d7b18e6cfb3489cf9082db03bcf41dc43e18440a0bc87f6a00fbdddfc	n/a	Heodo
2020-10-28	Attachments_20201028_Y244291.doc	doc	09ab13ed5cc26d51e726e1121895e9887d1d2b3ac02edc6e7d86c73ada3ecf40	n/a	Heodo
2020-10-28	Rep_20201028_O84519.doc	doc	d3d10de392c0d61043b5786332ff0e306072886898429cd0f8285e76ec019dae	n/a	Heodo
2020-10-28	file_2020_10_28.doc	doc	6cfa4bc9d98411218a03a8a0227df17da83335f49beab3784ef3ccbfe0f2e0dc	n/a	Heodo
2020-10-28	840375_20201028_1569.doc	doc	072751c1432883b1d8eedc16c5af25355d8e49aa2207b3ebf401b5641ecec311	n/a	Heodo
2020-10-28	File KZN2598.doc	doc	d0407229837e16300869db2286f98ba2f503d302a76aa7f006e16190accc9115	n/a	Heodo
2020-10-28	Untitled QRJ499.doc	doc	2cf3d4913e94c3a564e5c9e16a395ed68e8d693a91818fbe5f2fed1a86ce6b0f	n/a	Heodo
2020-10-28	Inf-20201028-678.doc	doc	41df63441f779c2dbcc1f298638d0ac777c90fa3015f56c6111917d8975d53c1	n/a	Heodo
2020-10-28	REP 2020_10_28 J3459.doc	doc	1736f509165e604f7f58184b16d9aca99de74f3ddfe9e65f8c95f089b0722dec	n/a	Heodo
2020-10-28	list 20201028 S515.doc	doc	f289fe1aa7062da67e7201277de66c29292036422f8889341568ef7f6bb50dfd	29.51%	Heodo
2020-10-28	Attachment_2020_10_28_G876297.doc	doc	3de930132db31231f7e9bfd6bfc17b2df526c48c5614f5b05e157732692ece8c	n/a	Heodo
2020-10-28	70754BLW 20201028 P3368.doc	doc	ef4f0320bc9b1630b65794bd9002483b4befdb4cd786cc1e950fae7424d0d789	n/a	Heodo
2020-10-28	5933WE MXR067.doc	doc	0594b095b292eb215e9a2794dc8167980b98b8e65042641637a81b193e2d2339	n/a	Heodo
2020-10-28	MES 2020_10_28 XEV6234.doc	doc	ca14c889210c0fd94300e06ca84b485d3d06adde745ab559254deb5cfa2e859a	n/a	Heodo
2020-10-28	UNTITLED-2020_10_28-333.doc	doc	24ebcf996471396b752396e9fca71feaab4a6f384f7691b5932cf939f570beb1	41.94%	Heodo
2020-10-28	inf-2020_10_28-HLW9763.doc	doc	ad5b3185d42023dd4f845ed7671baaada0a2e4687de4db140a324798cbdcc240	n/a	Heodo
2020-10-28	List_96658.doc	doc	8c04391d0a311e35b7ab76044cd603cb29ce05a6c9f47f45a377b2fc6b057d25	n/a	Heodo
2020-10-28	FILE-2020_10_28-CFH249176.doc	doc	6702852d6449cc2549b7987cc2fa0583a15fa2f831dc77cf8c8d428605912203	n/a	Heodo
2020-10-28	List_2020_10_28_K2279.doc	doc	9a1ce249e8e683a86ee1e1e3eb72b03a64498ac7f623bd0e41194e964d732d74	n/a	Heodo
2020-10-28	MES.doc	doc	64b7e5242a5c60c2b2031129ad5ff53540b70c43ac2530d09a627c3f8d4f4c43	35.19%	Heodo
2020-10-28	File-20201028-6042.doc	doc	bf48a449d6878a8a6776ab0062d4878c02b393d5590758b78c6aea5436e33579	n/a	Heodo
2020-10-28	DAT.doc	doc	f0c1677fe438fd6ffe9e4d5236396062d106d01fabce19561b919795cbaf7f18	n/a	Heodo
2020-10-28	Doc-20201028-872578.doc	doc	80a191cc38404a967426611154ef6e37c584a8690f6ba474f2ff4cab5bf05dd6	n/a	Heodo
2020-10-28	Mes_252.doc	doc	9ca8226ef71916dee3526b14cb6e112f6d9c12c2365d5bf4ef43eabfa3c844d3	n/a	Heodo
2020-10-28	Rep-2020_10_28-RT9822.doc	doc	49a9e653ecfad6200a5b9bfc90ca6a9c749b95aeb2fbe0ec38d2842b1de797a5	31.15%	Heodo
2020-10-28	Untitled MXV362055.doc	doc	3480287d7c3c6e1edff8e974cf8f0bab25db84ae708d710be34f48aa6ea31850	n/a	Heodo
2020-10-28	File 20201028 653.doc	doc	bb767a987c3bb38d105c55a5e17fe4bec3ce116f87235dce04be1f03c3ba6fcc	n/a	Heodo
2020-10-28	File-2020_10_28-6285237.doc	doc	7862369f401d84f41b94003a00d8fe6b36e51c435f35a8e996138a0f52fa1893	27.42%	Heodo
2020-10-28	LIST_2020_10_28.doc	doc	a1e19706a93e53e657ae474f58a7e0e0d452d2f95a832d25464a5e7509624aa8	n/a	Heodo
2020-10-28	MES-2020_10_28.doc	doc	933899c854d4e9166cbfa37c763338c236faac01e87a8baba170ac0ee5f33a2d	n/a	Heodo