URLhaus Database

You are currently viewing the URLhaus database entry for https://curling.ee/wp-content/DOC/z8zXDOG36m/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:764884
URL: https://curling.ee/wp-content/DOC/z8zXDOG36m/
URL Status:Offline
Host: curling.ee
Date added:2020-10-29 11:17:04 UTC
Last online:2020-10-30 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-29 11:18:04 UTC to abuse{at}zone[dot]eu)
Takedown time:19 hours, 50 minutes Good (down since 2020-10-30 07:08:57 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30file_20201030_B676747.docdoc e4649f0ee5354ff5857c31cb9edb642663fffa6b960201a7a10ea3adb8e877deVirustotal results 26.23%Heodo
2020-10-30inf.docdoc 1d155be37cf38fd0b848877f9e628c9b5ad554526e058dd105de59785af38597n/aHeodo
2020-10-30LIST 2020_10_30 DM475.docdoc 7f27ade3a8d4c793659b9993cfbf4f87ee77c25c5638f9a778917351bb592f70n/aHeodo
2020-10-30REP-YD477.docdoc 49c26c43eb2d1a6902e08ac9fb28d01e2bbbb280158487ea75354dc80be59e31n/aHeodo
2020-10-30file 20201030 65260.docdoc 72502fab1f404078984874bd71e560d05f4c4f87d71dcea75dfbd7108fe9e0f6n/aHeodo
2020-10-30Inf.docdoc 068351509b9061097a69bcc4a9dd1b063b4e8fc965d7b6c8fa427fe0590caf06n/aHeodo
2020-10-30DAT AR514198.docdoc b7dc626a8e7e823095c0f88828b4754007514b125a249de6d0901e2d330a3388n/aHeodo
2020-10-30P9760-2020_10_30-82767.docdoc 21b03a75a5f8624dc73b7045c679c39af5b50c3d6c18f813b16f5f88cefb13f3n/aHeodo
2020-10-30INF_20201030_TK18057.docdoc 5e85d638260191bd2081fa7d7c9f0e45ac098acd5b2080e7535ed59823864599n/aHeodo
2020-10-30file 20201030.docdoc e575ae8cbd4ec306246f0ac64447c9bb8d72349b9ff05b944f8fc7748d38ea02n/aHeodo
2020-10-30Mes_2020_10_30_513.docdoc 93e8b16cacfbb8457fed832ae2ef52797f09e3e852a03f043d365ac83013a71bn/aHeodo
2020-10-30Mes_2020_10_30_GE627.docdoc 491808f80c7325dc185a42e1438b9fb0176566c67ed40ce43e771122822007ccVirustotal results 28.12%Heodo
2020-10-3019824MXN 065.docdoc 62b438f1aa3f77084e934f91334751fa1ec4e661d03cdc927e0ea7343fb53a1bVirustotal results 28.12%Heodo
2020-10-30Doc_48447.docdoc fba41fdd9a1e8b12844d2ed37a39199dbbc262040af00488032ca8dd37d99af8n/aHeodo
2020-10-30Inf 2020_10_30 988921.docdoc 05b836813780375ab027f2424e9846c3026e6340b097f3a74929e9381fdafda7n/aHeodo
2020-10-30Doc_20201030_90833.docdoc 3407fbd416d6c637eee3972fd3c1f7444488d18862e846dbf1d9e68a9e5d0727n/aHeodo
2020-10-30REP-2020_10_30-MQ118.docdoc 57209365f4fe0becb469a7ff5bb5701651c82c8b3d576f486ca86ff872654785Virustotal results 28.12%Heodo
2020-10-30mes-0926.docdoc 34ebdddd214c6abbd22fc74af04fdf1d1af2b6ad1563f85e1d2c63ddd5f4be05Virustotal results 29.03% 
2020-10-29list-2020_10_30-ZLK9295.docdoc 538ecba125327445286cd475bdd8e127668b28cf8cf6aa03ec12857650cb003an/aHeodo
2020-10-29arc_3939422.docdoc 04994a1c8ed2e114ae0ae3ace2037a957983121aa110568738e22db0f364bd03n/aHeodo
2020-10-29Attachments_20201030.docdoc 1c802678220f65ea3b50e82874a9888689aec3c069499e2941f3bfc7d001c726Virustotal results 27.87%Heodo
2020-10-2998048TB_20201030_2930395.docdoc 7b19aba09ade5a1a352093300d08d794bfff64bd05e26c013716aff4f94986b3n/aHeodo
2020-10-29list_2705949.docdoc 61fe1f318088e3606d51b60f09ebe1de5f1fa0b55fc2c2b3185b2f255400a5abVirustotal results 26.56% 
2020-10-29Inf_2020_10_30_88075.docdoc 450fac8b2c9b02b2a41f9415df499b2cf2b61aa90fd8f259d6af8e646087ff1en/a 
2020-10-29Attachments_20201030_74393.docdoc 7d0c55cebdf8bd8b64ba720554bba314c54f8bc5c66c375fa99748b7976910b2n/a 
2020-10-29File_2020_10_29_K616565.docdoc a5ad6fe2f4146407a19be9ce04e1e2aa46dd65ab18db2de33d685f6aa9e4702an/a 
2020-10-2968738 UHA898.docdoc d3b7602fbabfbe5f4e8541ebb6badcc12190ae2addbc480908fc63ec43b4ab67n/aHeodo
2020-10-29Arc_2020_10_29_ZU34468.docdoc a9adf996fc16c172ac4f9b304cd5bba6914adfff11025c697e9c0ade0193e353n/aHeodo
2020-10-29inf_2020_10_29_E87659.docdoc 8d9d4d850d036b687ad9c840d4b9667d172fcdc5cb3e7d303b95bbff842ecf42n/a 
2020-10-29file.docdoc 7f63c3822b78af4b2df4d759b5342caa9e642f6906281dd19aa8b5570e60033cVirustotal results 26.56%Heodo
2020-10-29Doc-20201029-1892735.docdoc 2c6e4a74fc1b23c3c05b2e5717d495853be7408768a603493d3f7e104a3bc9c9Virustotal results 26.98% 
2020-10-29file_20201029_3317.docdoc db4adbabd6f727da5581e4a10dc40afc618d3a078cf821fbcfffe33f3ca374a0Virustotal results 23.44% 
2020-10-29Rep 232079.docdoc cf300f01e5fd6f34d4eff599446f34e0ab90a7d9978e36b4870cfade6fb9eabfn/a 
2020-10-29Arc_2020_10_29_366.docdoc 44a47e47b640ab5d71d5ae413ebc86b147b0bd561434c6b431e3106c8197ce4bn/aHeodo
2020-10-29Inf-20201029.docdoc 12785e4d508a88f8ba6bbf31b2e115fa181f62e19a0a6fcaf9f61f5e41b0c806n/aHeodo
2020-10-29doc 92536.docdoc ce869158de875fbc33001bdbb7b68789e1eb568ea293d4f62d20382987e1566dn/aHeodo
2020-10-29Rep 0960949.docdoc 35cfc30ee33e7eb03d137ab3213c99f84c77f31a53101a9f5cb34fd913444d8eVirustotal results 20.00%Heodo
2020-10-299415RAG_2020_10_29_696326.docdoc bb453ade805cc662372ec39bbf3c4fbaf380f553da42115361b4b4f76a53d73bn/aHeodo
2020-10-29Inf K348.docdoc ba3d044d8eefa455a680c9805ad9679c2d0475fc6d4de4262c04da718e3f9764Virustotal results 20.31%Heodo
2020-10-29Arc ZB241.docdoc 4e45b134e67abf39dbc1201857ab7fce58ca646ffd5e29736a5267d1c41e549dVirustotal results 26.56%Heodo
2020-10-29arc_LNR724.docdoc 0ec7ec7738fa46b80ed212bc2301a122bdeb4f1f8449304c0ea2f627e3382c6eVirustotal results 26.56%Heodo
2020-10-29Doc_65245.docdoc bdcb71ec27665fbb3870945b48b17aa001acc93025d4b298ec3fef80c784e746n/aHeodo
2020-10-29Arc 727.docdoc 87e61eb38a271e0eeccf7bf9094d545ac4834dc3046587fc236f34cb366336ean/aHeodo
2020-10-29Inf.docdoc ac83cacfe12a917ff503b86b387287b4ff2318ebe6aef0c60c43e2c5a2860b95n/aHeodo
2020-10-29Mes-20201029-21279.docdoc d472d21f2a2427d54e15d5cf1691c96bb17d0e23627352903e75a456b82297c0n/aHeodo
2020-10-29Attachments_20201029_276336.docdoc bd3531875b303e0395178fb8d3aa3dedabada2cb53d5b937c2d75d18aebd1ccdn/aHeodo
2020-10-29LIST_2020_10_29_8268933.docdoc 9b99d468b6dcb5431a52fd59d05e5984dc4718501c806681668cf3d8a2dcb599n/aHeodo
2020-10-29404284_2020_10_29_D189.docdoc 40b5cfb07bfe07ef46227908b2100c029a89510b2163987903208888a7cb2b8cn/aHeodo
2020-10-29Arc 2020_10_29 99266.docdoc 1778c955898be00113baae7f7b12b15e347fd8ffaa006b5052d31f7a62316987n/aHeodo
2020-10-29Arc 20201029 3154.docdoc 90d7c48b4b9e02a2abbc448e9cc410d5bbf87e8280c47699e6a3654c4555c2f0Virustotal results 17.19%Heodo