URLhaus Database

You are currently viewing the URLhaus database entry for http://bbwbbs.cc/wp-admin/attachments/lI4nq7llW4e/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:758727
URL: http://bbwbbs.cc/wp-admin/attachments/lI4nq7llW4e/
URL Status:Offline
Host: bbwbbs.cc
Date added:2020-10-28 00:55:10 UTC
Last online:2020-10-28 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 00:56:13 UTC to abuse{at}colocrossing[dot]com)
Takedown time:14 hours, 25 minutes Good (down since 2020-10-28 15:22:05 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-28Attachments 2020_10_28 5907.docdoc 6c58da1bd5eede82cb348babe12cc31203210597052750d996977b49d09b08a8n/aHeodo
2020-10-28Mes_J120601.docdoc fadb9f507214862924f94fe92c13282054a2522a4b0776d5ecd2fcb203c05a38n/aHeodo
2020-10-28rep-2020_10_28-7221.docdoc 14a231cb5f18f89a77a9267b2f7907a57258406d712c3795e5608bf04f702865n/aHeodo
2020-10-28KV748_20201028_473291.docdoc 0a0f920896176c798ee972d9e8f0455f8d39552c3304ed33f5b5a6776db0b6efn/aHeodo
2020-10-28FILE 2020_10_28.docdoc 20e74d670b10c22727bc37f9737fef25a0acfaff19fe44e4c0f59870f26be78dn/aHeodo
2020-10-28rep_2020_10_28_92621.docdoc fc7b874ee322b22028918d9deb7cba9d087061a1939d9534e72b82c7fc79a0f3n/aHeodo
2020-10-28file-20201028-V0126.docdoc ae3d650ba24dd80404c0a514f6455bb2a56e61df533ef1704cab33e46f41b1cbn/aHeodo
2020-10-28FILE-6903772.docdoc b61ffccc2459f78a7d0b2dea3c749ebe72f4ab3b6ca6dd6099d2548537561a08Virustotal results 17.46%Heodo
2020-10-28Dat-SKX14177.docdoc ae14a8bfd6863ef8c39e36774089e581aaed45e5e6cf5af493f18e676c4e6bd4Virustotal results 34.92%Heodo
2020-10-28Dat-20201028-YN39244.docdoc ddd37bb51d021cc4f42fda37668a2378014801bc7035676598a5faddd6eee60fn/aHeodo
2020-10-28Untitled 2020_10_28 352986.docdoc 5cf54e1bb1d28b6fe18106c2ab05c35a90362e5eebdfea67e4f42f3f9f6f3e3bn/aHeodo
2020-10-28inf 20201028 6868.docdoc e2861831be4344cd8c0fe40b847eed9c317fd5d1349d8aef2da8580c95219ff7Virustotal results 31.75%Heodo
2020-10-28LIST_BG889918.docdoc f7924c0145c0ff8ac501947adf36affbca4f0718dc964ef681ab241d0e390c74n/aHeodo
2020-10-28inf-2020_10_28-YGN956490.docdoc 7d34fa4b3159340dc6f389fd81167fb0340e0ff28f65e1e4fbe7ab9da3b7b257n/aHeodo
2020-10-28Doc-2020_10_28-33488.docdoc 4ab9614151e8732d4f54a8dd18a8a329471ef031db0cac98b47c11f53d7c3a22n/aHeodo
2020-10-28Doc 09460.docdoc ae0bd13ac6d1adf7dddcea524268df5987717942b97ab1e1694c411e7d36eba0n/aHeodo
2020-10-28SHY08497 2020_10_28.docdoc 3f613f9a6463317b5a575c8829a4e8c8f04a69a3206d14ed89f9c76dba29d162n/aHeodo
2020-10-28rep-2020_10_28-873862.docdoc 112c95fe386222e9430c67872a964ef648379683a283ed01f7cf506a3db9d9b7n/aHeodo
2020-10-28arc-2020_10_28-AGH41158.docdoc c679c2011e712ee0ae1956c77ae41d5d1009759b57fdd8cec97c3a08ece1ea5an/aHeodo
2020-10-2877337-UB18329.docdoc 5ba6a0db5fe221f32f4a9cd85cf69ab066cc4f6186d6e93b5669571a32a35d7an/aHeodo
2020-10-2894841NVA-20201028.docdoc cfa7b0b510a2266be87eafb4820fd7c2168406cd0088d49bb69953c15c4c29den/aHeodo
2020-10-28doc_2020_10_28_27159.docdoc 53fffa1d2b04904727032f955d050fcb057ea2f6d67077c001bed40e68b5a74en/aHeodo
2020-10-28Dat 20201028 A59287.docdoc ef4f0320bc9b1630b65794bd9002483b4befdb4cd786cc1e950fae7424d0d789n/aHeodo
2020-10-28REP_QT117.docdoc 0594b095b292eb215e9a2794dc8167980b98b8e65042641637a81b193e2d2339n/aHeodo
2020-10-28File-JA2422.docdoc e0149996d56095e6d280019c91eed5f60a27662ccbe25de1397e115c0cca4c65n/aHeodo
2020-10-28MES 2780618.docdoc a003060572cdb9836b81c7e55a99cb99107bbaf0b15183ce3f823b5c32690392n/aHeodo
2020-10-28Inf 20201028 KOY1190.docdoc bdfdd232b2595883bee70d5bc1310e4eda72350e0c92f7ad4ec6c7bd9a1e5761n/aHeodo
2020-10-2875221C-2020_10_28-408.docdoc 785d6c0b148d8dddf3cbb492f290386eed4b1e54c7960b26263014af5b68b783n/aHeodo
2020-10-28FILE_2020_10_28_WUT893.docdoc 8c04391d0a311e35b7ab76044cd603cb29ce05a6c9f47f45a377b2fc6b057d25n/aHeodo
2020-10-28arc-A847.docdoc f3f544d1ebc8663d6d4d375f2fd7e749d0b34bfb3aeca33e3ce7c598f5748f3an/aHeodo
2020-10-28ARC 20201028 6425.docdoc 58be97521b2bf7d1e21910c071a6871cbc6cfa32d57a5b1f6e6a872cfbac2f04n/aHeodo
2020-10-28INF_954088.docdoc 64b7e5242a5c60c2b2031129ad5ff53540b70c43ac2530d09a627c3f8d4f4c43Virustotal results 35.19%Heodo
2020-10-28doc_2020_10_28.docdoc 13578189ba67b1b728017c0e96a3708199a8c879f2be7531e35e6570b09f31ban/aHeodo
2020-10-2815673417-2020_10_28-24573.docdoc f0c1677fe438fd6ffe9e4d5236396062d106d01fabce19561b919795cbaf7f18n/aHeodo
2020-10-28LIST-88157.docdoc 80a191cc38404a967426611154ef6e37c584a8690f6ba474f2ff4cab5bf05dd6n/aHeodo
2020-10-28Arc 329.docdoc 6d31a92d5a682c250c92f5f41cbacd685697e662f5ced5145c76a0cc0044eb56n/aHeodo
2020-10-28arc 20201028.docdoc 88a224c66bc34bf992821c58b6790906b8048d27fb20dd123ea5379ede510dacn/aHeodo
2020-10-28List-20201028-P299053.docdoc f1ae5f1b0254e4e6517e7e89de3a1a57b7666e9f931daa590b757fb3fb105727n/aHeodo
2020-10-28Attachment-2020_10_28-D69327.docdoc 132100bfffa85becf5559d60da19db951340f396ae4775da61b69376b084b112n/aHeodo
2020-10-28Inf_C9518.docdoc bed5fa9f5076e8d4ac1560db74c286203b27441c28399bdae949b4f0155e21c8n/aHeodo
2020-10-28Arc-20201028-B455.docdoc 933899c854d4e9166cbfa37c763338c236faac01e87a8baba170ac0ee5f33a2dn/aHeodo