URLhaus Database

You are currently viewing the URLhaus database entry for https://test2.cyber.shn-host.ru/wp-content/attachments/eObm7XWgQ9rfE3ouKG/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:761705
URL: https://test2.cyber.shn-host.ru/wp-content/attachments/eObm7XWgQ9rfE3ouKG/
URL Status:Offline
Host: test2.cyber.shn-host.ru
Date added:2020-10-28 17:02:04 UTC
Last online:2020-10-30 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 17:04:04 UTC to abuse{at}s-host[dot]com[dot]ua,eugene{at}s-host[dot]com[dot]ua)
Takedown time:1 day, 15 hours, 6 minutes Poor (down since 2020-10-30 08:10:57 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30mes 20201030 TE7543.docdoc d59b87dd3d075643377a93c2c9a0a308993c94b60fb201e1b825c2ede0441f1an/aHeodo
2020-10-30Dat_20201030_8736213.docdoc d2586bfe71887b55049e481ba9900cf860e8bd1247f93938a59519db3581f374n/aHeodo
2020-10-30inf-2020_10_30-ON4651.docdoc 95aa8a69e7c6c6b1f3cc2933ac677f34b385e11fe581e7a539594002a656f3ceVirustotal results 26.98%Heodo
2020-10-30list 2020_10_30.docdoc 9c5b4f0d6c8c7b28d62d9b8ac13326bf4bb4bd938fea75a6ab10e0875b9b001bn/aHeodo
2020-10-30rep_20201030_83908.docdoc 6d0a8c70e1b65951bb1ca947a4b0ec574992b0e1596d88586fe390ec076ad1d6Virustotal results 29.03%Heodo
2020-10-30REP_20201030_05569.docdoc daa815f5c1ae1d3d8ac88d1b3cca4e505af9882245f70ef326204b77fb66e492n/aHeodo
2020-10-30Mes.docdoc 2527fdb5a964a6f8f9d27a25bed9c60092a9e563a5c916d22bbf950fb6a52dc1Virustotal results 29.69%Heodo
2020-10-30UNTITLED 2020_10_30 IQT075.docdoc 6f982323ebbee2d1dd34d9712ffd26cc99b3080b50d596d3da9ea7154c202958n/aHeodo
2020-10-30List-2020_10_30-PC014081.docdoc b7dc626a8e7e823095c0f88828b4754007514b125a249de6d0901e2d330a3388n/aHeodo
2020-10-30923580_20201030_6193.docdoc 21b03a75a5f8624dc73b7045c679c39af5b50c3d6c18f813b16f5f88cefb13f3Virustotal results 31.15%Heodo
2020-10-30FILE-20201030.docdoc 6c3e28e9d3fc3e6192e4e5dfe110ca2aeb96794d8dbed234856cf5ae32ac846aVirustotal results 28.57%Heodo
2020-10-30list_2020_10_30_663.docdoc 3f4f59102e324f4b77543d496b59f866b113dd2ee429f75c913abb0e6b42856an/aHeodo
2020-10-30ARC 2020_10_30 TZ91990.docdoc 8c9ac44890b02ffbaea952b81add0bbbc5d847772b7d872371aeda70bc170f50Virustotal results 28.12%Heodo
2020-10-30file_20201030_5142832.docdoc 460e2b185dd4b99708651d67d3d2be77e14ba999588607342ec8d00b0265a0ffVirustotal results 28.12%Heodo
2020-10-30409526 UB494.docdoc 05b836813780375ab027f2424e9846c3026e6340b097f3a74929e9381fdafda7n/aHeodo
2020-10-30Doc 357.docdoc b545e214876c467f0c8bfb4a8d398fb5d3703cc0926d54c97f16becd283fa548n/aHeodo
2020-10-30inf UG439.docdoc 48229a50f7bb4368a0658ac1d5ae622b9907092d76d0140b7ae4b251c7f293cfVirustotal results 28.12%Heodo
2020-10-30Rep 107736.docdoc 0959eb24414ed4905b9b3ae4892e1489673cb1dcfda78853f7cd12bb8506984en/aHeodo
2020-10-30059B-J32301.docdoc 538ecba125327445286cd475bdd8e127668b28cf8cf6aa03ec12857650cb003aVirustotal results 28.57%Heodo
2020-10-29arc-20201030-HCB765361.docdoc f0560fe5e04420d7665dc216a6e034ed86b3f265475b2dacbec5257b95cf59a2Virustotal results 28.12%Heodo
2020-10-29DAT 4108.docdoc b259d446961f8e221ea21da155dc5a16bf3f4baeb15bf4e443f776608e5b74cfVirustotal results 28.57%Heodo
2020-10-29Inf_836.docdoc c08b98414e2b7a40fd6d51fd8f672669cf4cb667e078fda42550586d0779919dn/aHeodo
2020-10-29inf_20201030_LV55573.docdoc f6ca4cdead1cf4c5890ad087e9e980fe7c3deba7f95e71e8d3011aa8a7a7904fVirustotal results 29.03% 
2020-10-29inf-2020_10_30.docdoc 44c6ce314b449b89f7a357fbc6c94ed807300e8c0ddb975a73c7e0686d79d4a9Virustotal results 28.57% 
2020-10-29FILE-20201030-860.docdoc 823d83a26c3b5351909a1a303cacf77c15ba7d435824834d15f1b043423e5779n/aHeodo
2020-10-29Doc_2020_10_29_XLD80917.docdoc 5989ebebdba93ff92ec47e758b81593c8c33f5ed560f51d2c00f45159b44ff08Virustotal results 27.42% 
2020-10-29Doc_2020_10_29_XLD80917.docdoc 5989ebebdba93ff92ec47e758b81593c8c33f5ed560f51d2c00f45159b44ff08Virustotal results 27.42% 
2020-10-29Mes_20201029_ZDE3134.docdoc 749a637bdf40f86a5743764dfcf9c1654d7c1943f00127bf4cdf440d04412f31Virustotal results 26.56%Heodo
2020-10-29Attachment-2020_10_29-6670.docdoc 71118241cefbb12d8ed23ed111176158875709ca3064e880a12a6dde1368af05n/aHeodo
2020-10-29Attachments 20201029 A2443.docdoc ad1f4779a93e3bbfa4a51fce8f6797a5f10867a4c1029c87f88e5c59aec93a33n/aHeodo
2020-10-29REP.docdoc f452ebbb6a749f0cd58dd03de749ef6a2158119219902efa67d5f025461e96f3n/aHeodo
2020-10-29Attachment_NP109092.docdoc 7f63c3822b78af4b2df4d759b5342caa9e642f6906281dd19aa8b5570e60033cVirustotal results 26.56%Heodo
2020-10-29Q1307-2020_10_29-FNB987.docdoc 17aad9f175247945c507373641edce9a099ed686ef9766f2440001c66f0d2dabVirustotal results 26.32%Heodo
2020-10-29rep LW19604.docdoc 5c9357004aabdd59025b4e6cff228ddf6e9ef59b9bc97fffc36d36fe7ce8f421Virustotal results 26.98%Heodo
2020-10-29Attachments_20201029.docdoc f72dc65ff43a2bcd71bdb4e6f7241cb06691ed24bf9630379b104f9d414b8793Virustotal results 26.56%Heodo
2020-10-29MES_52286.docdoc f05eab6d981a4919d9782a275bbbe85a79c904a3cad417cfe7137d20c30aee63n/aHeodo
2020-10-29INF 2020_10_29 379.docdoc c9cfc3e36a4f9586a44a6e8cc924377e7f49cb6886f83b597dd188d9751ffd2dVirustotal results 21.88%Heodo
2020-10-29dat_2020_10_29.docdoc 2a3f825aab34137f80278d609cc6daf04d4f3b44095a9223c87e74dbc98baffen/aHeodo
2020-10-29LIST-2020_10_29-134.docdoc 37e50a046fa6280356c31cb97f658bb8cef74e99ddc00227c2af8ce9cbcc64c4Virustotal results 21.88%Heodo
2020-10-29Rep-L63467.docdoc f9ced4f3230da05ce91d86336fbf75e2da5b320150500353b62b56d125fd288cn/aHeodo
2020-10-29Attachments 39037.docdoc 417db62b00619707b29b899cbbd3d7a9a424f0419cbdfa5cd9b047e7becf0253n/aHeodo
2020-10-29DAT-OTM5001.docdoc cfb52c66e67292539d9721550fd073880b1b437d5224e6f92704db503db8d2b2n/aHeodo
2020-10-29doc-2020_10_29-148812.docdoc ef4c809d5fff1ade631c5c6458f00c553ce632200146b30843dce3b001958e6dVirustotal results 26.23%Heodo
2020-10-29file 20201029 T170230.docdoc 28bac98a17d0c41c279c0e1869b2027e4c0f12c18f2cf2cd1ea9b48e1bbd3adaVirustotal results 27.42%Heodo
2020-10-29Dat-20201029-110390.docdoc d824951fa066087d975e4101f588cc0a8fe67b18a5463c70bce2d532ac799b5fVirustotal results 25.00%Heodo
2020-10-29DAT_2020_10_29.docdoc e84ed79c1be101e6bed71ff5e4af97ba2e2de483f32699bdd0932fd64f051434Virustotal results 26.23%Heodo
2020-10-29File-20201029-2715.docdoc d472d21f2a2427d54e15d5cf1691c96bb17d0e23627352903e75a456b82297c0n/aHeodo
2020-10-29Inf 2020_10_29 T932.docdoc e13e1b5db38b6d366f7ab841db3b6a383d28d78df1fbcdba3754178064563746Virustotal results 20.31%Heodo
2020-10-29doc 2020_10_29 69436.docdoc a51d388f6ae39ba6f4a899462c350ceecf71ab5e4c4d53cfdce159f8918d4896n/aHeodo
2020-10-29REP 2020_10_29.docdoc 40b5cfb07bfe07ef46227908b2100c029a89510b2163987903208888a7cb2b8cn/aHeodo
2020-10-29arc-20201029-8067455.docdoc 0e8b556a602f4d26532259ddd10eccca21792e58c74acf5a91c2835b53248f24n/aHeodo
2020-10-29Untitled_20201029_721514.docdoc 057ed5706fd71541b56c5e62a9bf9d0cbcef9138b26db689f40d599ba7c16cd4n/aHeodo
2020-10-29rep-20201029-816.docdoc 984473c63ce979671f89a4cba67e41d45803aae51ecb5a47e54d83e62c6aa448Virustotal results 17.19%Heodo
2020-10-29Attachments_2020_10_29_TV937197.docdoc dce51d790dc49f7793cd69276a7b5751266d5e3fa69a71432b97156ee0a4751fn/aHeodo
2020-10-29Untitled-2020_10_29.docdoc 7c080a645590c6a8bb0ea9d80b0657077422fd81bff535bc801918d7a7b7c27cVirustotal results 16.39%Heodo
2020-10-29Attachment_20201029.docdoc 55eb0e02ebab771718cafeb48d612d669d8abedd11fc9162a97450bef6b3d66fVirustotal results 17.46%Heodo
2020-10-29LIST 20201029 42936.docdoc d1a832173493be0e748656923bbc70e8e262d161b7addc8794be7beabe43b050Virustotal results 15.87%Heodo
2020-10-29Rep 2020_10_29 ON6189.docdoc 24270fb4c86040fc76c47b44b96a282a7ca2c99cbc342ce7e2b5920d374d7409n/aHeodo
2020-10-29rep-20201029-OAA39305.docdoc b3c2d3a91a889b5271145af8b15f76ad478500cf875f2718bf94bac2d3932c7an/aHeodo
2020-10-29Untitled_2020_10_29_886750.docdoc 2f56e4b4e006d4a8f041d35ff77d86361d87edd52527268d2923a4c45b359174n/aHeodo
2020-10-29inf_2020_10_29_5433881.docdoc 482e01258fe56544a34ace754fe03cbfa10a36d59d118b80c6ade1f29af308b7Virustotal results 15.87%Heodo
2020-10-29list 20201029 209523.docdoc 3f1bf666dd048975ca222d08334193611cda440c56aa55c98f7ee69b65c28e95n/aHeodo
2020-10-29Doc 2020_10_29 075196.docdoc 6f6ac4df5dc7b2becdee67c23b92c4f95ab01ac73b08db24c2b4b811a9cbe55cVirustotal results 38.10%Heodo
2020-10-29FILE 2020_10_29 I661972.docdoc d06c24a09106daa1032a15c8cff9c4eb399881b463ccefee9a51744197fed53cVirustotal results 38.10%Heodo
2020-10-29rep-2020_10_29.docdoc cb164bd1cfa7c79b3d8040057da0737477aebfc35236cb707bcfa845e3f30c88n/aHeodo
2020-10-29dat-EH2874.docdoc bb9b42355cd9c3b2448099c344e24ceab8f54de4c5e7f3e68ee997dc8e1bc678n/aHeodo
2020-10-29CPT32142 20201029 4810335.docdoc 6dd8b8f7c8acd972e6fa7b0ebe0452b0f6ccb671e5c4ba12d156e8d376a542d2n/aHeodo
2020-10-29LIST 20201029 JF757903.docdoc e197171c4d9b129dce5753855173cdd09a6318e1c30f4e80a4a902183a9b4321n/aHeodo
2020-10-29inf-180800.docdoc 41ad376a9521ae341bd5a60e9084150f0745b92fb26a5b44001e11579d180316n/aHeodo
2020-10-29217_402.docdoc c47ec97cdbcd82f5d5421f8a0bf4638f3584477d987f37eb220f1117ff0a974dn/aHeodo
2020-10-29Attachments_20201029.docdoc 43ac0bbd19c8d0a845fa3ca8b23e7f2fe7c7acb071a288271ad08b3cbc9ed06en/aHeodo
2020-10-29rep W9837.docdoc 1760841f07035052ab44e29d6f475c361b1b2c60b6faeb2419abb262bbfd0e26Virustotal results 33.90%Heodo
2020-10-29list_2020_10_29_0438.docdoc 772b14f20e166cb1f21d538a8d1dd0c81dc22a2907ca07f299a1c90053c25d5eVirustotal results 34.92%Heodo
2020-10-29INF-U23709.docdoc 5b3acebc6baeb90c5d7a614bce180548fc26753571e87577df3d4a42529bde4en/aHeodo
2020-10-29inf 20201029 RNJ34487.docdoc c0351b2b65f42bb0e32e612db2f556a0daa8962bde4491a6f16275680833ddc5n/aHeodo
2020-10-29inf 2020_10_29 HEQ15829.docdoc 131c6bd5dfe6fa22b22ee9a089ef38bcbf255dfd62f14fd565acc4c2c65f5b85n/aHeodo
2020-10-29INF-6566228.docdoc 9dd6908210c962905a5deb44018484a4a572ecbffd1cc084024a5bc8e1a77b19n/aHeodo
2020-10-29LIST-2020_10_29-DF8975.docdoc d48fe2c423f6828cf8d81deeef3584dd4f1529f1666a4aaf306f4823e57af15cn/aHeodo
2020-10-29UNTITLED_2020_10_29_H5546.docdoc 1057624fd741f170fc4a05bb538ab9a3d863abf1ca31d713b1d13cd57a03e8c4Virustotal results 26.98%Heodo
2020-10-29Untitled_7095.docdoc 697d945ff47046f421017a4ececab19494f8ec8b9d59abc54fd159fdaf1bfcafVirustotal results 25.40%Heodo
2020-10-29doc-20201029-SN235832.docdoc 9f69df62156f924a3ebb07f523ae55f5b4df5682fbb6a211b5b71efa94a8766an/aHeodo
2020-10-29Untitled.docdoc c59b1b726a72aa7b4df2f72a8eb97bca6345ce1d1400b6cbb7896bd8bf41a27cVirustotal results 26.67%Heodo
2020-10-289055CI-0738523.docdoc 04b243a2efe01d1aa2571e0e152e721d4bced5a7f0f115c64b84ed77f2c27be8Virustotal results 26.98%Heodo
2020-10-28UNTITLED_20201029_288.docdoc 97f0a674f47ff4d4c21cce81b3a4d50ac0ac5c76c3c14fdc55a266e9d2845236Virustotal results 24.19%Heodo
2020-10-28File_20201029_59001.docdoc fbe22d60081f70647f77db615e20d8220e62f4dd7beed3df10be288db8158609n/aHeodo
2020-10-28Untitled 20201029 WFA2498.docdoc a5371e1aeb4a9cd992cb7701ead18e8443fbb575c273b54e83507e7c1ac5d9aan/aHeodo
2020-10-28mes-20201029-RSS1347.docdoc 7b186e0ad6e521be2f711bf336ff752300505614522e0cd7b2865e6c3cffc611Virustotal results 23.81%Heodo
2020-10-28Rep 2020_10_29 Z51960.docdoc 719b1a49ff1d13812a9e888638b0fb56a3b400ede4a73e446b00a06005a502d5n/aHeodo
2020-10-28UNTITLED 20201029 R234855.docdoc dfb997f9fdd6bce4a529d774cdc304bea58ee316f9f55fc2bc1606cd7ef4784fn/aHeodo
2020-10-28REP_2020_10_28_0211.docdoc 63e7ee325c79ea137e6cf1af5f7b56ef6767d20edf1d67283a46f0ec1dac902dn/aHeodo
2020-10-28Untitled-20201028-DCI2939.docdoc bfdb8171decc8e7ad5149341f75743afdb39ade60e09e7afc3d3f8f4daa057bcVirustotal results 23.81%Heodo
2020-10-28inf-2020_10_28-6108915.docdoc f8737856e31ea2ffdca500aac02bbc42ddfaa94bc5f2e1676be6dfb42092413fn/aHeodo
2020-10-28FILE YBG1451.docdoc 8f43c8b43810e2ccbb80a555c115fbc81e758e2b687ab205b92ea93bb0544a51n/aHeodo
2020-10-28Arc 20201028.docdoc 390ed8e89795b54ef9057527e8d1c53b76155fb2299146e1d42364ee2de62aadn/aHeodo
2020-10-28INF 6329.docdoc e3a9e508c613147446da86b994ce780c55edd7287415439f759ca4160071c17fn/aHeodo
2020-10-28LIST_20201028_PA359.docdoc f78ddbfe49622d2665ae93802a40fb32c0c2887d1ee2451e9d753de7fc2f0751Virustotal results 15.87%Heodo
2020-10-28Arc 2020_10_28.docdoc c52d7a70e6ae1edec10a02951f1668f6442e8837619245733d206aa4f669bb2fVirustotal results 15.87%Heodo
2020-10-28DAT.docdoc fc1b6ab8e7c3ccf173d0bc6d16116aac495b7f348ce2744164028f6dbb76576dn/aHeodo
2020-10-28MES-20201028-24052.docdoc 1029a93c4312651001128b1973e428ac1a6de1dd4b3ed70391fa7f308743abbbn/aHeodo
2020-10-28INF-331041.docdoc 9da6eb2364862ba76d440231317e334b003147742cb8e75f2dc79f96bdf4c0ebn/aHeodo
2020-10-28Arc-20201028-C7936.docdoc 4e3ea1f4f816b37d16d5c9ffec4e403b581d1582352586740f3e93e09d25ed56n/aHeodo