URLhaus Database

You are currently viewing the URLhaus database entry for https://uhawra.net/wp-content/nNIzunN55x8Oh7UE6XEjrw6D8qsXBHFXPXoHVr6lj61dDXFkMVTPlPNBkHtVhN/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:760516
URL: https://uhawra.net/wp-content/nNIzunN55x8Oh7UE6XEjrw6D8qsXBHFXPXoHVr6lj61dDXFkMVTPlPNBkHtVhN/
URL Status:Offline
Host: uhawra.net
Date added:2020-10-28 11:06:04 UTC
Last online:2020-10-29 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 11:08:07 UTC to abuse{at}hetzner[dot]com)
Takedown time:1 day, 3 hours, 20 minutes Poor (down since 2020-10-29 14:28:25 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-29ARC_68YR9DISZ7G.docdoc 29808c9db3a80e9ed46d4aecbe478dd8e57089d7e2977c916421cba71b0d6c42Virustotal results 26.56%Heodo
2020-10-29Mes_PO_10292020EX.docdoc 0cec6f211eea415989b964dbdbbf4da0f4d0dfc4b70990a7d27491cf154615e8Virustotal results 26.56%Heodo
2020-10-29Attachments_FR3NJN69U3.docdoc 4a66929263cee2a8c48e07dbf1fb484199f5d51da94f42703fff35d3213235d9Virustotal results 24.59%Heodo
2020-10-29PO_10292020EX.docdoc a536a1efba18ff7db257286623904f5d131c7e933b0af1302fec81dfca157b65Virustotal results 20.97%Heodo
2020-10-29arc_76212653.docdoc 12c570f649005ea1ae77c36167843e3e87252075b68b652c5f05b0d8e54b2ad0Virustotal results 20.31%Heodo
2020-10-29DAT_IP6698769995QI.docdoc af8373a05bb4ac069cb45da6f676db803e252cb4c3e378c3fe25375323c74db8Virustotal results 20.31%Heodo
2020-10-29Dat_01242314.docdoc cd49f6f6b2b1cbf28331a1eff67e7179731f34a790a1bb69c89b65ffcfc38e01Virustotal results 20.31%Heodo
2020-10-29FILE_HGC_100120_HDO_102920.docdoc 0ecd1fc385ec00c604b5f5f04953a2a13067c7e7fb0066c32e90c706e6a5826fn/aHeodo
2020-10-29doc_PO_10292020EX.docdoc c3c4c3d1a892c0244bc5d4911ad7533990556a3ed4a4561eaaf58379a82b3295n/aHeodo
2020-10-29List_2468882034313729.docdoc a943a1b78c2ddb8ea536ad08b2eaaec624c324079322f272f1e1a319b5603a28Virustotal results 20.63%Heodo
2020-10-29LIST_30639490.docdoc 585ab6cc0502c04dedbca9318f5d7d278050dcfbeb477a09e8fee5b66916e38fVirustotal results 42.86%Heodo
2020-10-29MES_ASSBVN6R87TY6.docdoc b9e189f0cb3064ede89dc2167eca309a64edc4ae42aeda9b8fab875c4906b5dbn/aHeodo
2020-10-29file_39447396.docdoc dd50631890eedb25005e6c54404ae0debc8cc80a8fd10b6e71c9251bf760c9a3Virustotal results 41.94%Heodo
2020-10-29Attachments_92716597.docdoc 203c3fd643e932d50df0ccb5aa112bf49bbf44dd16e722b4bdc67551bf3fb133n/aHeodo
2020-10-29list_72011168.docdoc 56f3eae5345bea46e4bef1bf2d828e721b2d40292d49fdb3b5ed293f393b8e77n/a Heodo
2020-10-29doc_KHN2F12Y.docdoc 8d2d6adef59a01ef18694e5a3d506ce951137f27e28405c64bb16fbb915266d2n/aHeodo
2020-10-29ARC_076210646082167656.docdoc bb6a910117fc42075d0f29a1d7f63f94814e7f787223e3af617ca5018180a77eVirustotal results 40.00%Heodo
2020-10-29doc_PO_10292020EX.docdoc e3a96d2e3adca1fc3dfea0ac14af9b1d4cec3a20d9d7c6874edf1c6fec60d90bVirustotal results 38.10%Heodo
2020-10-29ARC_DA5577642781JA.docdoc d82100bdd4168d98cf565f1b0d002d3c2c480cc6e350b09dd8484507384aef75Virustotal results 38.10%Heodo
2020-10-29INF_PO_10292020EX.docdoc c848e58e6eda265a519b7b901623769948e5bba84d9d240638af3bb235587028Virustotal results 38.10%Heodo
2020-10-29U_4242041041834280849638013.docdoc ed5a9cf9f1dc54e472bd41658cb3f19ec7eafcb34da7257c6407697b879a0535n/aHeodo
2020-10-29List_60101051.docdoc b97d2b5410d55c774746d336facb4fac9b81552a5f84073496d20901af3c5f71n/aHeodo
2020-10-29mes_S8HFSFZIUQUYYPEC.docdoc 22c6a7d49453bcc0cba779dde369eceffe882a0c338e712b6340a144e4697c98n/aHeodo
2020-10-293CXA2VNV5ZW2O.docdoc ab7a59b346e75d68ff9a689f85a0d2a96833a3048478fab68af1e8f1bd4d5905Virustotal results 36.51%Heodo
2020-10-28arc_WFF_100120_RBT_102920.docdoc 2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7Virustotal results 25.81%Heodo
2020-10-28inf_0T19E2QCM9XNG2YF.docdoc ff451db73672e713a3b5a30084d42b5d09a39ca3651cbb1b3c15ce4b18234592n/aHeodo
2020-10-28TYWS_PO_10292020EX.docdoc 6e663577a7ba709bc7fb008addc85b8177361cb8fe92f3c79ab88bcecd10783aVirustotal results 25.81%Heodo
2020-10-28Untitled_KY38VS3WGJ.docdoc 146747a5fe14e9c8f3de53906c757ebbcd932487aa7e6e1da69baf9ebca99e58Virustotal results 23.81%Heodo
2020-10-28dat_PO_10282020EX.docdoc 0a8f0b82ac6ca359057a79405255027ce1c2e1de5493d655a55b0374727e32baVirustotal results 22.58%Heodo
2020-10-28rep_8KSHJT5EE.docdoc aa5e7414db596bbbac651408e85b19557a2415a2e42a4a2689cf37c1f3dc1c10n/aHeodo
2020-10-28Rep_08514697.docdoc aa4fa922d7e80e83494ebc5639c0549754860e3de9ffd6b8f4f455a8ef6f8a2fVirustotal results 19.35%Heodo
2020-10-28PO_10282020EX.docdoc 688e87c580badf94b1e0ce02b5b6bd709d6e779abdf22e193209fc7f45946e30n/aHeodo
2020-10-28Inf_3SIL4EVTZD21S.docdoc 290d99668c637b392210c43c77b9672357db0df908a2cee8c6c84399c0f3dc55n/aHeodo
2020-10-28PO_10282020EX.docdoc 72bb45f25da9afa46d5e326089675c0a79d3ffe30eade356cd8114e74b2e58e9Virustotal results 17.46%Heodo
2020-10-28N_EKM_100120_IBG_102820.docdoc 3e40a7defd105440e12f2955234fba81780b20f1dbc188417b1381f6738ab15fn/aHeodo
2020-10-28F_MQQ64F58E9.docdoc 7d38c4d98d05cd3a7a0fc6898c9d86ef1c29cd8dcfa3403d0222ff508843a325n/aHeodo
2020-10-28Untitled_4111552969.docdoc 8abc1a41fddc4a3a107138900b0401334fddf0298fa9fe0ec4e7e1f4fede979an/aHeodo
2020-10-28rep_PO_10282020EX.docdoc ddcf5630aefa8de831c95d68479b3d2b92bae966f6e994b16ff7c9821a227c21Virustotal results 18.03%Heodo
2020-10-28Attachments_NR6818279151FE.docdoc de6aea23d0d0c49a68ce1e1762c71c2976fefcbf72b8b2676fec3c065edf9b47n/aHeodo
2020-10-28Mes_GWO_100120_VDP_102820.docdoc 560dfd8d4f9642e08df6182f046002538246919e100717f57b5f918211a7e95bVirustotal results 26.98%Heodo
2020-10-28PO_10282020EX.docdoc 1bb8a0d1e93744c80a39b6c4fbbcf82de0e0ad276098c7ef29a556daa1d0fa15n/aHeodo
2020-10-28DOC_82721070.docdoc 771ba9743eaa7a81ea01d78249e8ce6036aad863239b14e7398d964e75af7364n/aHeodo
2020-10-28Rep_PO_10282020EX.docdoc 3731935385f3f9940df18e1fe2a5efb5ff5dc256f1a9fd33882b58ba8b50589dn/aHeodo
2020-10-28Attachments_DFA_100120_TPO_102820.docdoc 53fa42ca6eee828e13b26f79efca50367e1863311520bc82ec6d97b0c7268845Virustotal results 19.35%Heodo
2020-10-28list_PL9378242813BH.docdoc 67f89ed6526c25c2f57566767057b1cc2be2463adc0002791a3bfcdb25158029Virustotal results 16.39%Heodo
2020-10-28Untitled_690411591943393060035.docdoc 8d7bfba7aa5d45dfacce4f1d01bd73c49ac08a57ca60560244f8e4d9220ca53en/aHeodo
2020-10-28N_UE4167260116MO.docdoc 6059ce335049c1b4200290f042fabd903bf0081c4677138bf256636f82e81c9cn/aHeodo
2020-10-28DOC_HRS5LK8QBR684M.docdoc 3d35425c0243bcacb09bd4a67640d70e492da4f0a81abc46dc0af3d6bb4c2818n/aHeodo
2020-10-28dat_PO_10282020EX.docdoc a35f0fa4b2082b66755f87c30fdb12e922d177ae2a22ea0289e2e292042817edn/aHeodo
2020-10-28dat_MFL_100120_QUZ_102820.docdoc 778c2b97449426c3f3827a8041a05fcbb0e648267612cde21370c9f152bcf255n/aHeodo
2020-10-28Attachment_9439146701155182478.docdoc e225005a6da2c501109a5d73599e7697179f449c42e91f675b4fcb81e49bda29n/aHeodo
2020-10-28PO_10282020EX.docdoc 320e1d251976122a8a99eb8cea6215aff119aaa931d99ff58c30e220a062044fn/aHeodo
2020-10-28INF_990763010477435823571.docdoc 6a3681628d5e90051c68dd3bf6855abcdff9d8b6e25447bad58745cc5406d4e2n/aHeodo
2020-10-28REP_9847700827775930898634.docdoc f557390768f97bbb354c11917ec9e1ae3447832fbc09b34625656d8cb3db0931n/aHeodo