URLhaus Database

You are currently viewing the URLhaus database entry for http://mail.zeefinetech.com/acatalectic/5RGXDgeRh1drzPwWmg3/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:759860
URL: http://mail.zeefinetech.com/acatalectic/5RGXDgeRh1drzPwWmg3/
URL Status:Offline
Host: mail.zeefinetech.com
Date added:2020-10-28 07:26:09 UTC
Last online:2020-11-03 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 07:38:02 UTC to domain-contact_ww_grp{at}oracle[dot]com,network-contact_ww_grp{at}oracle[dot]com)
Takedown time:6 days, 10 hours, 15 minutes Bad (down since 2020-11-03 17:53:25 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30ARC_LUF_100120_LLP_103020.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948Virustotal results 40.62%Heodo
2020-10-30DAT_PO_10302020EX.docdoc fbe079c5cd46bcc371fedd49df3189de10406984e2882c76b08947941f1726fdVirustotal results 40.62%Heodo
2020-10-30Arc_IT5753638384YV.docdoc d4acc3a64623dfa14067c44c95b64430f606feb0c118b278da5747c1b0e52da0Virustotal results 41.94%Heodo
2020-10-30ARC_87654185.docdoc 3619ca27723e87006b7061bd608e1e02d5087392ec513cfe82ecec069074fbd7Virustotal results 41.27%Heodo
2020-10-30Arc_PO_10302020EX.docdoc 3416748dde8336e8081847df55d2ef61d1081a8bd9d76faa5922683231da8c94n/aHeodo
2020-10-30Untitled_CSYHSZFKZBGY36.docdoc 78896f92d061592d98c06fc87245d2cf4074475faf24d2470912e785760c29b3n/aHeodo
2020-10-30LIST_TAO53UZC91UM6.docdoc 7bfa1640c072951be3fb17704054b151541525eaa8a22606d94fc2d037a6a663n/aHeodo
2020-10-30F_309264180410579355364809.docdoc 8cb962ad1798941eefe7a5f826ea5bebc726304af0337e53e6e34d59a7715795n/aHeodo
2020-10-30Attachment_NO9176315481LY.docdoc 4cd342f5baeddb3b9ce82b0f360ee43411ce30c8abede6b1f2a8181ed08da110Virustotal results 39.06%Heodo
2020-10-30DAT_49366726.docdoc 0b7f26dc76b83127cdf687f818e652f050a9b3726aa76bc30947f94e4e25ffd4Virustotal results 40.62%Heodo
2020-10-30P_ZTX_100120_URC_103020.docdoc 8f71742d1582c153a4011a49f8bf5ab9fe4129b6937832fba73d68bc0e95a438Virustotal results 39.06%Heodo
2020-10-30DAT_ZKF_100120_JPD_103020.docdoc 635a74416fba185c2d901ad6c437ddc2258d061fb43e420653cb07f071e62075Virustotal results 35.94%Heodo
2020-10-30dat_V955UWHC.docdoc fc80fc159e39cdd815b9470202534387227e2a22a7ecb333efc5628c4a0f76f2Virustotal results 34.38%Heodo
2020-10-30file_PO_10302020EX.docdoc b03fc3f4764fbae8a92c677b03cc79e416905f290bcd7c6a5659410315245c90Virustotal results 31.25%Heodo
2020-10-30FILE_1TQL1H7.docdoc c0f5989eb238c0d187f0a5341698ac293ee524d1132278aaff5ab4144a4b91a2Virustotal results 31.25%Heodo
2020-10-30mes_POM_100120_LMU_103020.docdoc c2d7ed25c4c34f44dc293833d3ea302d281d24981385c437e411a50ede35e72bn/aHeodo
2020-10-30list_QYM7JJ4AI9X.docdoc 1e2927648e6c1e230ea519611dc8ffc414549f3da0fbe74854b2b2431a5731aeVirustotal results 29.03%Heodo
2020-10-30UNTITLED_PO_10302020EX.docdoc eec673d1180b8765a6d45f7e7164e7e86024dce5cd09472669369e410fa5d161Virustotal results 27.42%Heodo
2020-10-29inf_4054667822858323089909581.docdoc 57a23ee50bad094280feb716af4f6917dcf92157f899a609736ead07c82e6432Virustotal results 26.56%Heodo
2020-10-29DOC_11748962835771.docdoc c77bdf30a9a94eafd3718a954bd79a8e9ad3b32761d6c45ae1b79245df7599bfVirustotal results 21.88%Heodo
2020-10-29963075891281.docdoc 12c570f649005ea1ae77c36167843e3e87252075b68b652c5f05b0d8e54b2ad0Virustotal results 20.31%Heodo
2020-10-29Attachment_PO_10292020EX.docdoc af8373a05bb4ac069cb45da6f676db803e252cb4c3e378c3fe25375323c74db8Virustotal results 20.31%Heodo
2020-10-29Dat_ABY_100120_GYE_102920.docdoc 4a364de81c8e1064d68390dd954375aeadf021b771249cea59881e7e0fcc3156Virustotal results 20.31%Heodo
2020-10-29Untitled_PO_10292020EX.docdoc 3a1dd7ec119b96ea68facb223082a398ff4c038e58e7d166c80d7a7d4a3758abn/aHeodo
2020-10-29ARC_64525866.docdoc 6b696b987488f5f9abee78f4d38565535d928adb645de9f48e95a99914bc5dc8Virustotal results 18.75%Heodo
2020-10-29MES_8T4R8N1YL2.docdoc 0eabb37538a78fb8b43917d7263b14ceeb7cd09922f2d1c397b8db18cab99e2bVirustotal results 20.63%Heodo
2020-10-29FILE_YE0222207307SF.docdoc 5a00d4a9d8e50c06f30007460af1dc4f73950dff8ef4d1966ec4098c16712bf0Virustotal results 42.86%Heodo
2020-10-29list_0EIWSDP1W2O.docdoc ffa31d45d93161ab298442d4f9d83cf8b0bcead9e50e92a048b6b0900415b59cVirustotal results 41.27%Heodo
2020-10-29DOC_8733367774.docdoc 72e4ad0a1b83a8af4bffff0b32b6f8b9fe9680a323457b9ae5b866c9cf789ca1Virustotal results 41.27%Heodo
2020-10-29doc_90235048.docdoc 4d660fe18f8a7a46884d491d3bc3632eb0d0de321fe085339324e55175c33ff9Virustotal results 41.94%Heodo
2020-10-29doc_3J184AK416DN.docdoc 5b38f86c2e96fa7a30fc424bf52cc9b26e6fe82c65cec38c00392e135c703b8fVirustotal results 41.94%Heodo
2020-10-29doc_36335470.docdoc 6df480c2f89e67bd88a1ef3142106f925a45830756da26077582ef439dd4c5b8n/aHeodo
2020-10-29Rep_OIP_100120_VTS_102920.docdoc 7161db36ab8dfa34e4ae1aefa3d4fd7923a2a89118835e1e8bc905216bbf70e8Virustotal results 38.10%Heodo
2020-10-29KFUOZ8WOO0WZRSPU.docdoc f98cdce14c9b9c64ea8402566c9db1499eb129104bd476c96c503f1a81a858f5Virustotal results 38.71%Heodo
2020-10-29dat_PO_10292020EX.docdoc 4bfdf04e63422e1f2b89b19ccdd74439826ca27342cac0f98e259109043cb251n/aHeodo
2020-10-29FILE_PO_10292020EX.docdoc 6d8ce1a7fac9fd46d61f2fe0e3dff607971c0a6e830f3eac90a4b3145f06280aVirustotal results 38.10%Heodo
2020-10-29doc_PO_10292020EX.docdoc d41fde459d5a6605355b1daac05e7fe5ed46f2f70d564951027067566a049475Virustotal results 38.10%Heodo
2020-10-29B_31769178353050.docdoc b89f3ae4badac97fc44a153bfb215de77641bff4cbcbe7ddc321af38e097f2beVirustotal results 37.10%Heodo
2020-10-29V_PO_10292020EX.docdoc 665ea7994646d6f55327063f07c46e3d51cce78766dc14fc03031b5581283b10Virustotal results 38.10%Heodo
2020-10-29XGO_100120_UTE_102920.docdoc 16593eef39e8c04fdbb6390954522fcbb430e3d131921c0b5f4e9477ebd794f9n/aHeodo
2020-10-29Inf_YMK0C8D.docdoc 46e6c0f62d299a4510ce400f90d5f8e2280b0ffa5e465ce7433624327bc07c0bn/aHeodo
2020-10-29FILE_ZA5706650863RZ.docdoc 56b4b239b93d5528e7f80a5bddef47bcbe22a9318d3abf88be53dbb4aedd66ceVirustotal results 35.48%Heodo
2020-10-28File_TXA_100120_IQN_102920.docdoc 2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7Virustotal results 25.81%Heodo
2020-10-28rep_91547029490066603567163.docdoc b693171616c84c6e6bf6f7a486ac2efef18cab45a608593d95def463549f2f74Virustotal results 25.40%Heodo
2020-10-28GIFT_PO_10282020EX.docdoc 8adec8b07c6dffa1c8019b0076e0ae870dbfa2a40941b64f4bdb96adff5e0b30Virustotal results 26.23%Heodo
2020-10-28inf_TV4056304825RZ.docdoc eb056d51f99a6aeefbd8db271b24784e988b456f939812f40b9b6108a4805941Virustotal results 22.58%Heodo
2020-10-28List_45441673.docdoc ad10b386d964b6056e529c2bdb70ccb19ba21b3b0a59ac606113fedc49626b81Virustotal results 22.58%Heodo
2020-10-28INF_80250379.docdoc f815ff2593f2884fd76295ed3a93276677b2356b345da04efef56f244a8ea35bn/aHeodo
2020-10-28D_321282351395122285063507.docdoc d6303488215bed0c5947cbdf5bf3009ebd3e3e2e42817eb737f08741b0f3d57fn/aHeodo
2020-10-28X_76785714934383.docdoc e5efd5e64316b51e501368020870705546ec2e8de04a25f5905192984126e747n/aHeodo
2020-10-28rep_AIX_100120_TYH_102820.docdoc 290d99668c637b392210c43c77b9672357db0df908a2cee8c6c84399c0f3dc55n/aHeodo
2020-10-28List_78316792.docdoc ac9272ebdc022c3e93ef6dff217e30a0434094ccb3b6c5ab79cc97a94cf1825dn/aHeodo
2020-10-28rep_DQ7619508465FX.docdoc 78344d3e894155b6b6fa65119c449406b1ad08900e1cb58f68d7efba27947084n/aHeodo
2020-10-28Doc_22100811478124010.docdoc f8c7566296ab5b125218fcfca6cb017b25bf92027db687ec545e8897a62c59f9Virustotal results 17.46%Heodo
2020-10-28OC_03350365.docdoc 028f51dbdfd44aa2c12928be40c8b34c1178a7b36c3aa2556596393a09409083Virustotal results 16.13%Heodo
2020-10-28ARC_LOL_100120_TBX_102820.docdoc a1d186d5fb1e72178aeec7001aa59b78764e0c5405470905e737baf9cec89c26n/aHeodo
2020-10-28dat_21848031.docdoc ddcf5630aefa8de831c95d68479b3d2b92bae966f6e994b16ff7c9821a227c21n/aHeodo
2020-10-28DOC_0988199072837538152319.docdoc aa825d666a2394dad05c014830cd132ecdbabfe1dcfd7e7eba18ed43bda6de33Virustotal results 17.46%Heodo
2020-10-28list_4896168891215193201841.docdoc fda83ece49e1914433f256654dde13a87be6f4a6b03bde2e2060c2ee1cdb815dVirustotal results 25.40%Heodo
2020-10-28doc_PO_10282020EX.docdoc 302684a1df1b3b6bcf6995798581972d23b71888983b326ff3eed9bbcaf1c56bVirustotal results 23.81%Heodo
2020-10-28dat_GAX_100120_NTY_102820.docdoc a4faa1f62f9a2d486a3e4e010117727c063ead8fc4aa228bea32553f85b95353n/aHeodo
2020-10-28ARC_9410266501823.docdoc dac1189124e8ab688ce2381053958114e981ce05558b088fdb5ee651e107ecf3n/aHeodo
2020-10-28doc_PO_10282020EX.docdoc 4cc5697403b8d54be43b94e10a6a07b78a0014f2f7da069fac7e7b9ab3506484n/aHeodo
2020-10-28mes_JQ5591374061SD.docdoc c711ef4b42c9a1f73185583b1677b475f8e0e02eb735efc1699fc4b6485c0899Virustotal results 18.75%Heodo
2020-10-28Rep_OSA3V9OQ8L.docdoc ae264639594117f77da175c96741827cc7ecee91be8eeb65c10f207c26a2e800Virustotal results 17.46%Heodo
2020-10-28INF_V0NNBF7NWBDQRR7.docdoc 6059ce335049c1b4200290f042fabd903bf0081c4677138bf256636f82e81c9cn/aHeodo
2020-10-28Untitled_PO_10282020EX.docdoc 19c244f40868914450fb2bccb57e67ab4fb5679b222017b8c0dfd53dc1980334n/aHeodo
2020-10-28Untitled_IF4932199899PA.docdoc 4760301c9f69ac873695b32575bfb814706e3f43c55aec6c05de900156550254n/aHeodo
2020-10-28Attachments_PO_10282020EX.docdoc 778c2b97449426c3f3827a8041a05fcbb0e648267612cde21370c9f152bcf255n/aHeodo
2020-10-28WPT_PO_10282020EX.docdoc 9c5f88a456da5cebbe774e127b1ab02cdb4769374bf745dca29d2e207f156ee8Virustotal results 18.03%Heodo
2020-10-28REP_FHZ0CI3JM62.docdoc d1e48d98d3d928c9e037cd42ffa40c55a3dd2821793b189555e6227789239a26n/aHeodo
2020-10-28DOC_XQA_100120_MVI_102820.docdoc 6a3681628d5e90051c68dd3bf6855abcdff9d8b6e25447bad58745cc5406d4e2n/aHeodo
2020-10-2867379087531778.docdoc b2a8f6bc160f4536d6be6a9e5ef41244a96a2bf0de49f9d088c5d68853f2d69dVirustotal results 20.75%Heodo
2020-10-28Dat_00933169.docdoc c88a8bfd26b88fe11810b85a6ced566f6ecd9c06b535f98d8c7451c66c1716d2Virustotal results 28.57%Heodo
2020-10-28doc_J1JGIXJPEM.docdoc 2ed9663048bfe1c969ee302588f17bbee321277d16204ebc6fcc3a626d03addbVirustotal results 28.57%Heodo
2020-10-28Attachment_BG7387245906WA.docdoc b749fa9443216bb372f3a786fe6f921aaf83800f69c46eec065ad8b2bfb0ad89n/aHeodo
2020-10-28LIST_DEN_100120_BRJ_102820.docdoc 971349194e2895c67d792f09a40990e6754e2ce4fa00b738c17c34cbb88cc6e2n/aHeodo
2020-10-28ARC_93329051284476.docdoc 9ef4f6f51b375bbf59cc1d992a0be8455a3a9c3a026b28c4abe77a4f16805c50n/aHeodo
2020-10-28file_22687810.docdoc 520ca27ad3a13618d306b397f83a91daf238997358520459895991c6285328e5n/aHeodo
2020-10-28Mes_PO_10282020EX.docdoc b5967d8f6f4eff72fd314911e828c2376081aa4d190afacbbbfa0fb390f13e4an/aHeodo
2020-10-28LIST_63877023.docdoc 95d0a6acc83d661cf2f495f1e9b4c465b64f5fcfdfa6a75c0ad72beac8e31b19Virustotal results 28.57%Heodo
2020-10-28List_04855984.docdoc b1de6df6c2b5ac15a030ee3b606165a808dd7fb78a4d22a267e304c2edad0fc1Virustotal results 28.57%Heodo