URLhaus Database

You are currently viewing the URLhaus database entry for http://www.okankoleji.com/wp-content/uploads/2020/form/JLau/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:759875
URL: http://www.okankoleji.com/wp-content/uploads/2020/form/JLau/
URL Status:Offline
Host: www.okankoleji.com
Date added:2020-10-28 07:33:04 UTC
Last online:2020-12-26 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 07:34:34 UTC to abuse{at}ttnet[dot]com[dot]tr)
Takedown time:1 month, 29 days, 15 hours, 2 minutes Bad (down since 2020-12-26 22:37:09 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-295558405632TU.docdoc 2efeab91d822ab76173df70e491b2cd6881d1435186ad6659da73c4e5c5214bfVirustotal results 34.38% Heodo
2020-10-29Inv. 3402531.docdoc 2176a02ebbadceedea35c2a83fcce17fd40120ff2cc4390a9f210fc26b40a310Virustotal results 34.38% Heodo
2020-10-29INV #0299686 FOR PO #00328682547.docdoc afc85b56b85dac897bde5ec6ba2471b1464001d0fed7be03f90041f07a622ff4Virustotal results 34.92% Heodo
2020-10-29Inv. 07590415517.docdoc a0fa698426cf3decea21c3e89fe324393fd7a7743da94068ba8be39c4ebf86b1Virustotal results 35.48% Heodo
2020-10-29YRD-100120 IDWM-102920.docdoc 12a1ded61ef91e5e79c4009234b54a7f4c391d254585bd931987c8289841abb8Virustotal results 34.38% Heodo
2020-10-29invoice #4980.docdoc acbe2412c4aff06ae0a1c4b17bf4acab3d67874fa57aa0a31578e524d063f715Virustotal results 33.87% Heodo
2020-10-29INV_2835.docdoc 407011017107dd82209d02b6714d52efaf3270f55a81de711db2f20d9b918d23Virustotal results 34.38% Heodo
2020-10-29form.docdoc 03831f7e2f99729e161730c4980e1c8ebf2276ca7365f7aca5a8d60c9cbf60d1Virustotal results 33.33% Heodo
2020-10-29Payment status.docdoc b5924a9723c7486c77771b4e6f971a2740eee79c6a1aa0bc21c05317c63560c1n/a Heodo
2020-10-29Form.docdoc b21cdfd6c2639dcbf952b105db8bcc4566643560d411abd27354cdafbb65f8a0Virustotal results 32.81% Heodo
2020-10-29form.docdoc 2a132f8eb55b91975634807a5dab592f5c50ac116fe5914adcf1cdf16f9a6fc6Virustotal results 33.33% Heodo
2020-10-29form.docdoc 07b12baabc51749df13d78cc093496d641f03a1aed14ee0ecb867e2a4a2d70d5Virustotal results 30.16% Heodo
2020-10-29PO# 10292020.docdoc 1c6a68700c5a829d8c421561d670c1f86cb25027af4b54be19724b1b7a979ef5Virustotal results 28.12% Heodo
2020-10-29invoice #7291.docdoc 9143453f9dd04d35a094a0332fdc37a1d517cc582db210673a79310a26505e65Virustotal results 28.12% Heodo
2020-10-29INV #085497 FOR PO #6354423.docdoc 86dfffd30d29d077cb1a2b881f0cae3c137ba70268ab9726d48444e595f3947bVirustotal results 28.57% Heodo
2020-10-29V-100120 BWNN-102920.docdoc 5ffac4c27d8c1b1162ad2e686e5d3d3397df8684bd78be1ac2658f1bd0fc1b70Virustotal results 28.12% Heodo
2020-10-29Copy invoice #1320.docdoc 4d17de9f2c51a0a0370ec0e01f44ca529a0fafdcd59476ccb7ec423524c52305Virustotal results 28.12% Heodo
2020-10-290053898.docdoc 9bedff10d91854bee6daf53c351b6ab3254895e11c0b77a9ea5c6433021a04ddVirustotal results 26.56% Heodo
2020-10-29INV_4355.docdoc ed51269c3602786ff6ddef3a808d8178d26e4e5960f4ac7af765e4bd642128ddVirustotal results 27.42%Heodo
2020-10-29invoices 738 & 7261.docdoc 7ae576917499bdb77da8f95dbec37ae4f819b800e62b5f467f0900d1dd716d1dVirustotal results 30.16% Heodo
2020-10-29invoices 6828 & 63793.docdoc 92ac003fb233443b86d9985f85bb50a56d64b8017e15191e8b5739c537f16802Virustotal results 26.98% Heodo
2020-10-29October Invoice.docdoc b08c46dc3723073450b41bd5ec1e98efeb44b2cd04b91ea57e9fe2f06a607616Virustotal results 25.00% Heodo
2020-10-29V2 invoicing.docdoc 9ee04def912bfe9d3a92492ff4f8aa8170dca54f97fb376a5c42bf5f3f2cda60Virustotal results 21.88% Heodo
2020-10-29invoices 53207 & 66173.docdoc 243d401473c9c8e65d9df4fc0d43598db5829380239183ad9460b684775dca20Virustotal results 21.88% Heodo
2020-10-29PO# 10292020.docdoc f55e4dc1405e6f36ed1bce409f373ae6aa7e6080e506ee0b8e7afb30193dedd8Virustotal results 22.58% Heodo
2020-10-29PO# 10292020.docdoc 8200214bee8f21c170b9173814cac8166b9f605ebeee543870d9facdefa73d76Virustotal results 21.88% Heodo
2020-10-29Copy invoice #287872.docdoc 26ecd84d3c7a3cb416d832a5695934324e8d2b2eb5d44a4d3103d0eff7a7dfd6Virustotal results 22.22%Heodo
2020-10-29O-100120 IMSF-102920.docdoc 0f34d0527521d358b1ac6aad3fb49b422bb06378891bf93065188f0db702bfc6Virustotal results 22.22% Heodo
2020-10-29INV #077084 FOR PO #00759831100.docdoc 3e84e096f2f889c271504b8dcfb1e9fb78a347087b984a219d7749a8a0839c31n/a Heodo
2020-10-29October Invoice.docdoc 65a1c1b8cbaeaa9098df96d462c765ec20c8d6acad74e0a0ac60e895d9468c06n/a Heodo
2020-10-29October invoice.docdoc 586002b2b5259558f6fdf99f8bfcf2e4292dbdf458258eb918efb751c35cef01Virustotal results 19.67% Heodo
2020-10-29INV_5904.docdoc d35618fba11f6c84539c7888912e7eb42799ab92025b7d9b15eb542b4b380d33Virustotal results 17.46% Heodo
2020-10-29October Invoice.docdoc 3fd72518ac42ac432f527ce749075e94491352332f622314aebdbe708750a8c0Virustotal results 18.64% Heodo
2020-10-29Invoice #8375411.docdoc 8744e383bf013444ed1f687f385d558ee1c4e2a153cdfe224250a02fd1eada2eVirustotal results 19.05% Heodo
2020-10-29INV #8400305 FOR PO #67966112.docdoc 2dc19d1576e1d7e5d43a3e0cf6ed690d3b66634515389ca782f0af0198069e65Virustotal results 19.05% Heodo
2020-10-28Form.docdoc 6c9191798758c5d2cb92a9f60c5d221a0e2d737aa467dfacb65c2a86c5781586Virustotal results 29.03% Heodo
2020-10-28Inv. 052970579708.docdoc 86864a725202d28c0714960226d68417581cd2a83ead755ce236d48a2884d1cdVirustotal results 28.57% Heodo
2020-10-28PO# 10292020.docdoc 6398e25e380cf00aa433acf528e8f0245fd02007338aa75df4deb5bd9eeefbbbVirustotal results 26.98% Heodo
2020-10-28form.docdoc 6904c547286eda2ac977185bbe3705732db4ca6eebc33e340e9ee9540909d671Virustotal results 25.81% Heodo
2020-10-28Form.docdoc ab327e3be9ef1ce4781f725c995feb6a13f6eaf1d1c31e894048e5be6b4e24aan/a Heodo
2020-10-28invoice.docdoc 5177894154a2ad0d67c6ea62534a27cdc18b7cfe9c73c8ec6071d72fb8c198a2Virustotal results 22.58% Heodo
2020-10-28Copy invoice #49661.docdoc 2a87f25fe351249b33ffc8d24f6310b9d8e1e3907a6b53b06e324566027dcae0n/a Heodo
2020-10-28ZE-100120 HECB-102820.docdoc 6c5d2dceb77aca3c35f72874bcb483c53950fd5f5aeb9dd9a66fed7341d3cd3aVirustotal results 20.63% Heodo
2020-10-28Invoice 001134752.docdoc e69175f1d0fc57715610220f59992ae3a56ac12d27917162e4626cd0ef2bfc30Virustotal results 19.05% Heodo
2020-10-28Payment.docdoc a489db63b3d5de10623868c1348ded5fa888b398c6c9ecd199dc5c1fe55ac9d9n/a Heodo
2020-10-28INV_729008.docdoc 6b556db13a6bc97a4628816c0d73e375e246ba9dcf0767a7ff38910b06976de6n/a Heodo
2020-10-28invoice.docdoc 80e850612ec841dad3f42d1b091ae46c3ff53ecbfef5686250c19f256e88c323Virustotal results 17.31% Heodo
2020-10-28YP-100120 PCIB-102820.docdoc 7e7bd61af07906f31a4efa5442f7cfda98c0047ef70e15f64e37c5d4882917b2Virustotal results 17.46%Heodo
2020-10-28Inv_7504.docdoc 24fc98fb4608b0e6216b4bf1a61772268c565b9b40cf66c95011f32d64591333Virustotal results 17.74% Heodo
2020-10-28Electronic form.docdoc 08d832a1ff20d74ba37553d0ac28f94bc54d7463e392873c34faf6bb44d47afdVirustotal results 17.74% Heodo
2020-10-28Payment status.docdoc 10bc06dc05769972ecb24dd4e1bac275a4cb33e846d292361500fe1ed7ac0930n/a Heodo
2020-10-28Payment status.docdoc b251dae8df2d623a2a0e9d710e34ed18d85891d8120725c2c7cd794c094950ccn/a Heodo
2020-10-28Inv. 0076822.docdoc 0031e60e9810b98f42bf12765fba57f45b0b41b41dff5216823e74ec607fcd89Virustotal results 17.74% Heodo
2020-10-28form.docdoc 569a317cc807f72c221acf953d5db5dfba9b51ca788884f24da3dce85e93459bVirustotal results 17.74% Heodo
2020-10-28Invoice.docdoc 5a9c040e67efe0446aaaeff9b0dacd2f668516484cf5487449360cd489ce268aVirustotal results 17.46% Heodo
2020-10-28Invoice 7654691.docdoc 9819d665344dae10323a62049a4b5193c88afbdd1792f6d8ad80b7df403b6c73Virustotal results 17.46% Heodo
2020-10-28October Invoice.docdoc f104662c93957cb9de8b8b5db529dcd6dc40bd62d362d375d4894efba21b8c94Virustotal results 17.24% Heodo
2020-10-28Form - Oct 28, 2020.docdoc 8d628c60fb8a3dcaf40f3ad332715bef982f7bb08b77223501bd663299bb719dVirustotal results 23.81% Heodo
2020-10-28XL1 invoicing.docdoc eb7342e956ea7f0a234e89063bf36cbdb9e2bf4d6478141379a0eaf2efaf711fn/a Heodo
2020-10-28Invoice #982316.docdoc cf5066738d5862bead47940e22a0cab26d7236c22d450506b045f226bfbf624cn/a Heodo
2020-10-2800274755.docdoc a4d1178f3a923b023599d331b6772e92a0728644f27f4ad372f74a28b6a5a096Virustotal results 17.46% Heodo
2020-10-28Invoice.docdoc f973018352488fe6ba623919161c5b4387f67d9aca131af19480684ae2740544n/a Heodo
2020-10-289845817789.docdoc 5a559e7ae73b3dfc7c7dc4894ad3be202468c4531516315cdd9b18c1ffca464fn/a Heodo
2020-10-28PO# 10282020.docdoc c63a8f44f5c09d698549f09ef33a6a724157ddd8fba5517d9ef6fa58f76a8ea2n/a Heodo
2020-10-28Inv_91243.docdoc 446e21090ce1bf05d7b94165ffc64b219bdaaa820ef729fafc816d0e7d602e0dn/a Heodo
2020-10-28Form.docdoc 8a5d45742906d99f6a25870884036c29e1df4a190ada0ad3af81feae44092f1cVirustotal results 16.67% Heodo
2020-10-28Payment status.docdoc 0154a4750dce40d832cfd268e3c3b0d9705c85493ec31a263add92380e2cebcbVirustotal results 17.46% Heodo
2020-10-28PO# 10282020.docdoc 753c4521e07dab9a1de57a156021942b8e1019f48da5659b28dedbc848c3d013Virustotal results 17.74% Heodo
2020-10-28Inv. 567103301.docdoc 484ae53bf0192a40df9a49b1a34ba687a1551905b56ec1ffbcf77930b1a5d1c9Virustotal results 17.46% Heodo
2020-10-28Invoice 000738.docdoc c156c19120c201216fa1ed0db10ae8afd1c2d5b162e885dc69af1f7024a53cb8n/a Heodo
2020-10-28Form - Oct 28, 2020.docdoc d23212065500f67a2aa4bbd042ad99075d511959fa1be07d964146fc5cfd618eVirustotal results 15.87% Heodo
2020-10-28Invoice.docdoc db1575e9ed5edb424eb7142501e0e6e35fce135e7730d60e63ba53c2d3d2489cn/a Heodo
2020-10-28PO# 10282020.docdoc fc885504c2ffed13a395bc94f32335b3dc5551a0b0a843536c8e6016ccac8ee9n/a Heodo
2020-10-28TS8487951970EM.docdoc 91bebfd44fc5f09905c3f3e2f4bbd772dcd181b4b7983e5ad87db305ba5d7965n/a Heodo
2020-10-28Copy invoice #57601.docdoc b32c2fec5281836178821881b4d53133bfdf5f7745bc4f8a2aa8f4ade55e5d7bn/a Heodo
2020-10-28form.docdoc fdf1b5a6b9317e5f404c7a5441fbff20d73fe80a0c213441f2c21e02ff717a6bn/a Heodo
2020-10-28invoice #55034.docdoc afefa823336f768cfa29c0c274bc7043d6f1d89f6a068f93acb1b22844c42a71n/a Heodo
2020-10-28October Invoice.docdoc d43cadfad58e74565b6629f25e5364e7266d223dfd97fc0eea5acd5665a438acVirustotal results 18.52% Heodo
2020-10-28Payment.docdoc 9fee8929b36a06e948d6a56d3de1466b9d102bf2e686ad5fb293f485490ff976n/a Heodo