URLhaus Database

You are currently viewing the URLhaus database entry for https://kofamonline.com/wp-content/ZPLNMAAfAbbu40BVNZmHDTvi0TJjG4L/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	760543
URL:	https://kofamonline.com/wp-content/ZPLNMAAfAbbu40BVNZmHDTvi0TJjG4L/
URL Status:	Offline
Host:	kofamonline.com
Date added:	2020-10-28 11:13:04 UTC
Last online:	2021-01-22 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-28 11:14:07 UTC to abuse{at}hostinger[dot]com)
Takedown time:	2 months, 25 days, 12 hours, 48 minutes (down since 2021-01-22 00:02:52 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-28	FILE_KZH1N9NY2IVM.doc	doc	2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7	25.81%	Heodo
2020-10-28	list_ABL_100120_ZZY_102920.doc	doc	b004139f56a3790ffec0ba6852e8ead3947b000f2cbc61be1754b91a69633354	n/a	Heodo
2020-10-28	File_PO_10292020EX.doc	doc	f22f6b796d73cadef21281fb4120d425395b7c6457e38524dde128830ccfc02d	n/a	Heodo
2020-10-28	Mes_YPA_100120_QKV_102820.doc	doc	eb056d51f99a6aeefbd8db271b24784e988b456f939812f40b9b6108a4805941	22.58%	Heodo
2020-10-28	Doc_6490358137301110.doc	doc	ad10b386d964b6056e529c2bdb70ccb19ba21b3b0a59ac606113fedc49626b81	22.58%	Heodo
2020-10-28	MES_57824032.doc	doc	7384af9684329dd3916fa070ae356428bfb6f43d3ca6aa725f92d696dea83f41	n/a	Heodo
2020-10-28	list_PJJ_100120_KYC_102820.doc	doc	c2d24878a478d12f42849ded89565fe77905f7af790b6a7272ece4fc9db45fe2	19.05%	Heodo
2020-10-28	file_327088438045383.doc	doc	5da940231b1ebc70e4c974d89da825e72365c081f4b224b0308a7298de66a788	n/a	Heodo
2020-10-28	Inf_87117048943597421014024.doc	doc	c0a2014dfca67b622a9a96e4d169601563264a29bb55b9e9b8f1934d610183bc	17.74%	Heodo
2020-10-28	ARC_FHP_100120_XLM_102820.doc	doc	ac9272ebdc022c3e93ef6dff217e30a0434094ccb3b6c5ab79cc97a94cf1825d	n/a	Heodo
2020-10-28	INF_PO_10282020EX.doc	doc	93d882200983e8ea91da547916ade52e52c5f684c19434eb8e3312b4d4251bb1	17.46%	Heodo
2020-10-28	ARC_7430959103.doc	doc	6c0cb9fa14216686237503039df79f6ee1a2766d5878c2e3ab77c9ace4204c11	n/a	Heodo
2020-10-28	XJRA9JPC6R.doc	doc	5ce0046c606a280f8d74e5263eaa3e9912f6f232c7508ed71f50e8a4972b47a8	n/a	Heodo
2020-10-28	List_NX5130474668PF.doc	doc	c3ab88e066a71a81d82954f02589e7b1e912add8716a76fbe482904abb954376	17.74%	Heodo
2020-10-28	doc_NQ9EY506CJBO4.doc	doc	19377c68fd4d0b3d66624ba4a1aa465efb840857e142ec38ddfe4e1e9c573b8b	18.03%	Heodo
2020-10-28	mes_PO_10282020EX.doc	doc	7f6ef7fd6f76a1ef0eed201b10fd39944874e657f56271aee75d090d57672248	26.23%	Heodo
2020-10-28	Attachment_NVAO5I529R04HDL2.doc	doc	1bb8a0d1e93744c80a39b6c4fbbcf82de0e0ad276098c7ef29a556daa1d0fa15	n/a	Heodo
2020-10-28	Attachments_AF4228250139TY.doc	doc	771ba9743eaa7a81ea01d78249e8ce6036aad863239b14e7398d964e75af7364	n/a	Heodo
2020-10-28	List_HW3776526007YN.doc	doc	193422b30b299a52450704ddbc93cc49c2bf39fb28b197b01d27bb4ed99c09e7	n/a	Heodo
2020-10-28	List_47456101.doc	doc	245da199877ac955b9c2640666afb19d13d640da90766a000f6fc8b2c909582e	19.35%	Heodo
2020-10-28	Attachment_ZWI_100120_JDK_102820.doc	doc	e3f985d78f34ecba84d0385e8f3eb538aef89ae24be739e98166ce3c3422b236	n/a	Heodo
2020-10-28	PO_10282020EX.doc	doc	f976e3edc1892c2009a8000edb80c5329f8ca920af116372b2a274488ddba5e8	17.74%	Heodo
2020-10-28	Rep_BXN_100120_UCF_102820.doc	doc	f6534e33c00179aff63a48e6ebadc4d2bc15c3203361b67264ce1894ff12517d	n/a	Heodo
2020-10-28	UNTITLED_PO_10282020EX.doc	doc	c7a9fcbd5e7cf2f7c00c2ce737e5f37d79fca2af4840700fbec2812fe888df80	n/a	Heodo
2020-10-28	DAT_PO_10282020EX.doc	doc	d424fcc461427fd257e6bd50b98d81df0efc3254426388661e5ec4d9a4815fe4	n/a	Heodo
2020-10-28	Arc_YL5547680112MC.doc	doc	7c5cba3f361edbd305005728464aa36e44d98db05cc52860a979780b6036fac6	n/a	Heodo
2020-10-28	FILE_AZN_100120_MDQ_102820.doc	doc	06604f59215e3e640ecafb3ca8ba3151c4ef3dbd390ac1c996becc39c0540e24	n/a	Heodo
2020-10-28	arc_RK0816588371XY.doc	doc	320e1d251976122a8a99eb8cea6215aff119aaa931d99ff58c30e220a062044f	n/a	Heodo
2020-10-28	FILE_HUS_100120_VHM_102820.doc	doc	6a3681628d5e90051c68dd3bf6855abcdff9d8b6e25447bad58745cc5406d4e2	n/a	Heodo