URLhaus Database

You are currently viewing the URLhaus database entry for http://magazine.yasmakhotels.com/cgi-bin/ZLWLWLoUK2CCqVWgWbYhasMmjA0mXtoDbdvAVJnUFcSLGScFpQPNbYSKOaej3325nxxK9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:763866
URL: http://magazine.yasmakhotels.com/cgi-bin/ZLWLWLoUK2CCqVWgWbYhasMmjA0mXtoDbdvAVJnUFcSLGScFpQPNbYSKOaej3325nxxK9/
URL Status:Offline
Host: magazine.yasmakhotels.com
Date added:2020-10-29 06:11:04 UTC
Last online:2020-10-30 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-29 06:12:05 UTC to abuse{at}cizgi[dot]net[dot]tr)
Takedown time:1 day, 9 hours, 48 minutes Poor (down since 2020-10-30 16:01:03 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30List_49140047.docdoc 6df2d95c19b3ce313cebc624934a89b12d1825460eede986255006aa3ad36e17Virustotal results 42.86%Heodo
2020-10-30LIST_983622094.docdoc c0b41e22e711cd0385c069a4c10ae102ca7dcc277460d218eecc4974cca8677dVirustotal results 42.86%Heodo
2020-10-30Mes_PO_10302020EX.docdoc a3ab9f9c38fe53b1cc2783eee98684350b85ff0bd94ade1766fae55e9de77827Virustotal results 39.68%Heodo
2020-10-30List_GNZ_100120_BEZ_103020.docdoc b86e09a5bdebde57bd67e1fa11ddbd3381e5972d091fdc61b68e34226fabf084Virustotal results 23.81%Heodo
2020-10-30mes_CU4S7X2AT3NYS.docdoc 7419637ce4e2a7bf1c8503dd9f1878136c8bc0e38e88521f6500c7c717524be4Virustotal results 29.69%Heodo
2020-10-30Untitled_24288024.docdoc b48b7231ac7d5bc0a2ba5883e7a634a557c606b06b97bf45b2842523959c4a37Virustotal results 27.42%Heodo
2020-10-30Attachments_25818093726469841133.docdoc a77843eba99adffde7cc22482865a6e64cd0217a4779ec035d11d060982996e7Virustotal results 26.56%Heodo
2020-10-30LIST_NLKXBXZF87BOFQ.docdoc 9c96edb7b23fe316d7ea6705b137c283da2aba4f7dab4537a681e7e5d031b0een/aHeodo
2020-10-30ARC_CKQ_100120_BUO_103020.docdoc 9918cf9fc52a9d19fe483b17d847fc7fa23d4fe150c5df91abb94e61e932cf1cn/aHeodo
2020-10-30Dat_XO3290386949IT.docdoc 1ce95602afd3133a2b2f7ac1df3290e233ba27b2f2b71d6a1b407cda2cb4ca4dn/aHeodo
2020-10-30Attachments_HX6040004424RY.docdoc 4a1ebe8938ac9ac6ae7b502c4561bf514bc47ccdb87abae9777a5ac526d6540cVirustotal results 23.44%Heodo
2020-10-30Attachments_H1EKCTLW1BSS.docdoc f7cd964fb73ef51565181df0b0bdc561fe166542fc297684546797abcbc24000n/aHeodo
2020-10-30S_1M40H5WW9KPU1R.docdoc 1e363452c2a67d40f01390488a99f68ce6fab805b45eab93ee2db2469bf1b05fn/aHeodo
2020-10-30rep_PO_10302020EX.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948Virustotal results 40.62%Heodo
2020-10-30ARC_746457197501687424568338.docdoc 81f0a17e652679d94849f61bfd6679f35308909ce08fcbcfdfbf2d6c59d62ae0Virustotal results 40.98%Heodo
2020-10-30doc_02436896.docdoc d4acc3a64623dfa14067c44c95b64430f606feb0c118b278da5747c1b0e52da0Virustotal results 41.94%Heodo
2020-10-30doc_301211216715722689263.docdoc f16118ebe3dbd05212ed3e350e3d509e02c403cacf34497532c50e1be09b7e16Virustotal results 39.68%Heodo
2020-10-30Inf_51310489.docdoc 6b88f01b98b04205fdeaca9ab7f387ea479efbb68e1e0a940c909d66e6ed092bn/aHeodo
2020-10-30Mes_45050765.docdoc 7bfa1640c072951be3fb17704054b151541525eaa8a22606d94fc2d037a6a663n/aHeodo
2020-10-30ARC_BLSBKS6N6.docdoc 8cb962ad1798941eefe7a5f826ea5bebc726304af0337e53e6e34d59a7715795n/aHeodo
2020-10-30UNTITLED_98975579.docdoc 4cd342f5baeddb3b9ce82b0f360ee43411ce30c8abede6b1f2a8181ed08da110Virustotal results 39.68%Heodo
2020-10-30Doc_FL5179684237QC.docdoc b2312b8854268bd1ca23427d7f7aaf8b3013aa1c4ef1d7676e73a5667418b9e3n/aHeodo
2020-10-30Mes_5FD4T6E1E3DG1.docdoc 8f71742d1582c153a4011a49f8bf5ab9fe4129b6937832fba73d68bc0e95a438Virustotal results 35.94%Heodo
2020-10-30Attachment_PO_10302020EX.docdoc b2f80aa2efc9abdf137f78f830f2366b29e5bba74409138f8db1ed6163e25819n/aHeodo
2020-10-30Rep_PO_10302020EX.docdoc 08ccf72998255b13e254a272fd34c02fa515b00674da72aa51f9409c529bd80cn/aHeodo
2020-10-30List_12604820.docdoc 2fe61550011a52e12cb324aa8cd06faeece3d1f05ae42f1c51bb7e055a647877Virustotal results 30.16%Heodo
2020-10-30UNTITLED_26249578775780242617.docdoc 87582434c0b62f10bd24d5f8fe2636dcef3e0046373b8e05dadb27942be901f0n/aHeodo
2020-10-30INF_LZE_100120_RWV_103020.docdoc b3f4e1b87633e71363d9e97c4f845e09d36e833b8d170f184946c8764cfc8f12Virustotal results 30.16%Heodo
2020-10-30dat_PO_10302020EX.docdoc 9cdf4102c45c7f549ee4e0290a07d4f7783c6371b1a8fe35a6f1f04d56cd6857n/aHeodo
2020-10-29List_PO_10302020EX.docdoc a692ebd8ffaf553afe6a7e4b21ec46977dfc073877399130d26bcb1aac0ec33en/aHeodo
2020-10-29Attachments_456800650428714167.docdoc b716fa67c934451161c1be78e1587b3c68a53b5e219dc5452e9ea883d32a274cn/aHeodo
2020-10-29Arc_40490795033.docdoc aa9631cdb98dbe55b81b029660a0589039561664b34f249207dc0d83e273a030Virustotal results 26.56%Heodo
2020-10-29Attachment_OUS_100120_GMO_103020.docdoc c685520233b6d670ab20445051b6688bac6affb5c8b99a71213937d99ac9e380Virustotal results 25.40%Heodo
2020-10-29rep_20618027.docdoc 1fa65cbd054792ed8ce72d5729cb95a5810f1371e5b096b2f1a099416c193420Virustotal results 26.56%Heodo
2020-10-29TE_CZG_100120_QVH_103020.docdoc 168c46a9b7c3c72ceb572a447f6317e5b66aca4735ea8e096bc92f0d03628879Virustotal results 34.92%Heodo
2020-10-29doc_BE1763960486DY.docdoc 00f960f2c4dc8abaf471b3c55c877aad66b636338bd2d67a565393058b78c125Virustotal results 35.48%Heodo
2020-10-29arc_40331676.docdoc eb4e38eca100cc2ec56b63dcb64261e5267212ee4d3009b7a9bce98cd60bb50cVirustotal results 34.38%Heodo
2020-10-29Mes_59398541.docdoc 970feee22d30c517c525e36b3327903c843552de7138215c5fec184444b56e19n/aHeodo
2020-10-29Inf_254669963350879634.docdoc 0b74633d036ac8233bded3d64b518761e82b826a5fc4ed0e71485fd5d8560f25n/aHeodo
2020-10-29URT_100120_EHM_102920.docdoc b2d41822b2d89807592fd225c8450a8005e877760a656a6477ac0a28e3aa0250Virustotal results 31.25%Heodo
2020-10-29Mes_NHX_100120_XGR_102920.docdoc 633a628e9a364cb3bbd93ebdce10e5f23fb15370a584efb4fcecf4549c3b975dVirustotal results 31.25%Heodo
2020-10-29arc_AZWT6VW.docdoc 2d94f5620906f353b2bda6b6eb984695737cdecd6ddc88ca747fad5bc457d090Virustotal results 31.25% Heodo
2020-10-29Inf_67344826.docdoc c9bee872802f41154444cf83a87057e1caa72888e8b2c3901933201b9aa6312an/aHeodo
2020-10-29FILE_8JB53GM.docdoc c9c1857a6ae5a7ee50f6b0df9af96ab1f60e60df0bcc86caf0c561838b4eb20bVirustotal results 31.25%Heodo
2020-10-29DOC_PO_10292020EX.docdoc 837f8783d77afcf060f98f1a7e0b2ad270f9b42780812799d499b0d8c9af1f37Virustotal results 31.25%Heodo
2020-10-2924237941.docdoc 26116918df27572814521839a1d3ffdb544bc825e81c871aa514890cc6411d44Virustotal results 29.69%Heodo
2020-10-29rep_EFD_100120_FSF_102920.docdoc 97c76ac78999951c70f47dc20b137d6a5f843fbd9597f8a62e977d4b463e2c79n/aHeodo
2020-10-29Inf_01096851.docdoc 98de74a1b000e840bd188d7a4e35eb9150102a43f8c4fe5357bebae3ad586955Virustotal results 26.98%Heodo
2020-10-29inf_RK6504274331SM.docdoc 75df04fe2bbfe95af6c2ff3ad6beb372645597b0350f6cc16f995a09e27da829Virustotal results 26.98%Heodo
2020-10-29Doc_WRE_100120_DJH_102920.docdoc 6e992b163322df62793d0be6d3352fd31697d2e040bd8997df4f954ae3537494Virustotal results 28.12%Heodo
2020-10-29Attachment_RYO_100120_BCL_102920.docdoc 62a00d40cc12aa508ac276663bcf8a77077e394977dd3682be09139582ac29c2n/aHeodo
2020-10-29J_XP3704476112SG.docdoc 2d52e6dff2839f2f2b4c4e01290c96b9b924d0e8f276847481da31dfea122414n/aHeodo
2020-10-29LIST_0055497407399053454175200.docdoc dd1f36356c3a35bd4fa5c58dbc9798b01714e04d123539649c3932a8164288b8Virustotal results 26.98%Heodo
2020-10-29mes_CA6938463863EK.docdoc 5db58ed4308eeb76f9c66c885d4f1b53530d6c42eac9d755e67bf41989094087n/a Heodo
2020-10-29Mes_FZT_100120_QQJ_102920.docdoc 55604e57e8041f303ea78d94b02595b8feb3c1acc8811523c1b55b6e009b2dc1Virustotal results 26.98%Heodo
2020-10-29REP_IU2158544681SD.docdoc 1909a3514994e354da8e5abdfbb3b73173a1a6782a739ebdbfbacf098abf0fb2Virustotal results 20.97%Heodo
2020-10-29FILE_SU8BSAURHWTBAE6Z.docdoc 12c570f649005ea1ae77c36167843e3e87252075b68b652c5f05b0d8e54b2ad0n/aHeodo
2020-10-29mes_DPS7W7SBO.docdoc 3c06e83a34a8da9715ec0fb21f45160520d6058d9624263c4c2a585b04c7adb8n/aHeodo
2020-10-29Dat_36038656.docdoc ae454b06f63308de7e1a613281feea2eef089041c67af45e72ceec804482b526Virustotal results 20.31%Heodo
2020-10-29UNTITLED_88483593.docdoc 0cacb466a5cd54765f2b551a75b8b0880cd991d16fd662402d00efc578060da7n/aHeodo
2020-10-29UNTITLED_4141255742226459500042.docdoc 3a1dd7ec119b96ea68facb223082a398ff4c038e58e7d166c80d7a7d4a3758abVirustotal results 20.31%Heodo
2020-10-29INF_8284570477.docdoc 2427ee3cc0798fcee02c718a1fb58d735d9cf3b0ebd9bb10c14cb9326bb5e489n/aHeodo
2020-10-29Arc_QWF_100120_QKH_102920.docdoc 1e63648100763f7fe5822fa5fedd5b5b9c87d1bca425b6745c236e3bff92bd0cn/aHeodo
2020-10-29mes_GR8SGLZRV.docdoc 5a00d4a9d8e50c06f30007460af1dc4f73950dff8ef4d1966ec4098c16712bf0Virustotal results 42.86%Heodo
2020-10-29KD_OLB663YY2RTYS568.docdoc a68e38ba80539aaa99e4624f37df31a53410de47b3a76df0fbced21744a74d0bn/aHeodo
2020-10-29inf_ZYU_100120_XHP_102920.docdoc dd2f2115532ae0bb8caba1381ef917d6806c8770f15904b8be6e467eab40b1acn/aHeodo
2020-10-29Dat_PO_10292020EX.docdoc 613bf944597cf7f2300dcd8a24394ca5de6c6f85ae7e41d98b2a3b4fe59b6779n/aHeodo
2020-10-29file_FB4850076302TR.docdoc 6e9c088cbe83fb2b0f6c959df9f72eb6faa3316c7eaf8e1690f590a91e56974fVirustotal results 40.68%Heodo
2020-10-29dat_PO_10292020EX.docdoc 6da55a5f2284d9e01f507160640b2505607f31d11754ba830811661016ff1e20Virustotal results 39.68%Heodo
2020-10-29Inf_WMX_100120_JMS_102920.docdoc bb6a910117fc42075d0f29a1d7f63f94814e7f787223e3af617ca5018180a77en/aHeodo
2020-10-29Untitled_68348710.docdoc e3a96d2e3adca1fc3dfea0ac14af9b1d4cec3a20d9d7c6874edf1c6fec60d90bVirustotal results 38.10%Heodo
2020-10-29Dat_KBH_100120_ICR_102920.docdoc d82100bdd4168d98cf565f1b0d002d3c2c480cc6e350b09dd8484507384aef75Virustotal results 38.10%Heodo
2020-10-29Dat_07775027.docdoc 40e1e0d4ba67280ae17c0050feb66bf13f27e271efd4fc91413f8553dcf12a09n/aHeodo