URLhaus Database

You are currently viewing the URLhaus database entry for https://mzurimamas.com/wp-admin/OCT/oPmNn7PNIiDqcE/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:764993
URL: https://mzurimamas.com/wp-admin/OCT/oPmNn7PNIiDqcE/
URL Status:Offline
Host: mzurimamas.com
Date added:2020-10-29 11:38:09 UTC
Last online:2020-11-07 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-29 11:40:10 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:9 days, 5 hours, 5 minutes Bad (down since 2020-11-07 16:45:51 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-11-06doc-54446.docdoc 612b66140b3b1ee1d77949fe254bb8348132d29b07fcbf108dcf5b85e98575b4Virustotal results 71.88%Heodo
2020-10-30file-229223.docdoc f881514d653635eb03167bd212cba9b6800fd2959014e5a10f52233a83b566b1Virustotal results 28.57%Heodo
2020-10-30Doc_20201030_359100.docdoc fbfd2528d920b4394d3df7f1e56f1fce101bcc715bd0d6201614e95c1a42dc82Virustotal results 28.57%Heodo
2020-10-30dat 2020_10_30 O912576.docdoc e9b7c94dee2c27b26623cc2a53d97da08f2dea09de379a1c3f8557b6254b0887n/aHeodo
2020-10-30list_2020_10_30_5181714.docdoc 6d0a8c70e1b65951bb1ca947a4b0ec574992b0e1596d88586fe390ec076ad1d6n/aHeodo
2020-10-30MES-20201030-EK50503.docdoc 7cebc56212904493aa409bd9d04980dc664c538e5795ef05836758e228709081n/aHeodo
2020-10-30inf-20201030-63258.docdoc 2527fdb5a964a6f8f9d27a25bed9c60092a9e563a5c916d22bbf950fb6a52dc1Virustotal results 29.69%Heodo
2020-10-30INF.docdoc 091deed14b5bf12ed9363d9252ff12388eb3aaf331490520e462d12823c9019cn/aHeodo
2020-10-30DAT_26787.docdoc b7dc626a8e7e823095c0f88828b4754007514b125a249de6d0901e2d330a3388n/aHeodo
2020-10-30Arc_2020_10_30_RM227916.docdoc 21b03a75a5f8624dc73b7045c679c39af5b50c3d6c18f813b16f5f88cefb13f3n/aHeodo
2020-10-30ARC-20201030-9650912.docdoc e575ae8cbd4ec306246f0ac64447c9bb8d72349b9ff05b944f8fc7748d38ea02Virustotal results 27.87%Heodo
2020-10-30Dat-024622.docdoc 3f4f59102e324f4b77543d496b59f866b113dd2ee429f75c913abb0e6b42856an/aHeodo
2020-10-30inf.docdoc 491808f80c7325dc185a42e1438b9fb0176566c67ed40ce43e771122822007ccVirustotal results 28.12%Heodo
2020-10-30List_20201030_015.docdoc f85dfdadc90127312e82fee2bec640f2f4a69cc0509f36337e0078bc603109e7Virustotal results 28.57%Heodo
2020-10-30ARC-6122.docdoc fba41fdd9a1e8b12844d2ed37a39199dbbc262040af00488032ca8dd37d99af8n/aHeodo
2020-10-30Rep VCO51138.docdoc b545e214876c467f0c8bfb4a8d398fb5d3703cc0926d54c97f16becd283fa548n/aHeodo
2020-10-30Attachments_20201030_5711204.docdoc eb5e7b9d8554e92b57e2560655716ddcb3e4a10c2769af68df19681e80692bc6n/aHeodo
2020-10-30REP-20201030-QYI79238.docdoc 57209365f4fe0becb469a7ff5bb5701651c82c8b3d576f486ca86ff872654785n/aHeodo
2020-10-30Inf 20201030 8590981.docdoc 34ebdddd214c6abbd22fc74af04fdf1d1af2b6ad1563f85e1d2c63ddd5f4be05Virustotal results 29.03% 
2020-10-29Inf LMZ639.docdoc 39aac454150ec504ceb483a99e30bdcb29a3725664a6ef2e1a02c37f57569e91n/aHeodo
2020-10-29Doc_QAL74904.docdoc 04994a1c8ed2e114ae0ae3ace2037a957983121aa110568738e22db0f364bd03n/aHeodo
2020-10-29REP_NA668.docdoc c08b98414e2b7a40fd6d51fd8f672669cf4cb667e078fda42550586d0779919dn/aHeodo
2020-10-29mes_EE32855.docdoc f6ca4cdead1cf4c5890ad087e9e980fe7c3deba7f95e71e8d3011aa8a7a7904fVirustotal results 28.12% 
2020-10-29MES-20201030-L983201.docdoc 61fe1f318088e3606d51b60f09ebe1de5f1fa0b55fc2c2b3185b2f255400a5abVirustotal results 26.56% 
2020-10-29list_73554.docdoc 450fac8b2c9b02b2a41f9415df499b2cf2b61aa90fd8f259d6af8e646087ff1en/a 
2020-10-29DAT_TMK15078.docdoc 5989ebebdba93ff92ec47e758b81593c8c33f5ed560f51d2c00f45159b44ff08n/a 
2020-10-29mes-2020_10_29-WT244.docdoc a5ad6fe2f4146407a19be9ce04e1e2aa46dd65ab18db2de33d685f6aa9e4702aVirustotal results 26.98% 
2020-10-299035_2020_10_29_C0717.docdoc 3f5d15e7dbcddd1368eb0c4b12da2e5c41802585fef0f305e66824dbf751d788n/aHeodo
2020-10-29List 2020_10_29 9678.docdoc 834950ebaa83980731c9c728c2aced8bebca5fa82aa7bc90a00253ba04a289ban/aHeodo
2020-10-29Untitled-4509.docdoc f452ebbb6a749f0cd58dd03de749ef6a2158119219902efa67d5f025461e96f3n/aHeodo
2020-10-29List_2020_10_29_DTD166220.docdoc 46d9e560db1a1d687d58d92ded82cd4ddc77a154a7c66bcc99d628f7386c97aeVirustotal results 28.12%Heodo
2020-10-29ARC 2020_10_29 127444.docdoc 2c6e4a74fc1b23c3c05b2e5717d495853be7408768a603493d3f7e104a3bc9c9Virustotal results 26.98% 
2020-10-29Attachment-20201029-JYM44199.docdoc 5c9357004aabdd59025b4e6cff228ddf6e9ef59b9bc97fffc36d36fe7ce8f421Virustotal results 25.40%Heodo
2020-10-29V042-084.docdoc bd4e1ee4cec944043a73a2dbf8ecadaa88266da7f4390797a8df29d23f0503a7Virustotal results 26.56%Heodo
2020-10-29inf_MPD4994.docdoc b6c6dbf739957462e2888c43c0f3380eba16593b2fe3bf0a587ad0a91a53785en/aHeodo
2020-10-291082040.docdoc c9cfc3e36a4f9586a44a6e8cc924377e7f49cb6886f83b597dd188d9751ffd2dVirustotal results 21.88%Heodo
2020-10-290448 20201029 7121103.docdoc bdf349fc3180f524a63fdff70a26cb706d3ccf903d84cb87b3ecf05b95c6183en/aHeodo
2020-10-29LIST-2020_10_29-317.docdoc 37e50a046fa6280356c31cb97f658bb8cef74e99ddc00227c2af8ce9cbcc64c4n/aHeodo
2020-10-29File-20201029-988.docdoc a483273254f87f95ec041ba1959819073bfbce8924360404f7a859eb4b092d19Virustotal results 20.31%Heodo
2020-10-29inf_4797270.docdoc 5597d783bf7dc649677795638f8bbd5f97676ce49e443df3ee1fd032008f5609n/aHeodo
2020-10-29Attachments 2020_10_29 PS432777.docdoc 4e45b134e67abf39dbc1201857ab7fce58ca646ffd5e29736a5267d1c41e549dVirustotal results 26.56%Heodo
2020-10-29LIST_0900.docdoc 64a2a43f4b113935ec4cf64a5e787dcd48befc91cbb8ce681c6740d8c021371cVirustotal results 26.98%Heodo
2020-10-29dat_2020_10_29_PJL29575.docdoc 28bac98a17d0c41c279c0e1869b2027e4c0f12c18f2cf2cd1ea9b48e1bbd3adaVirustotal results 27.42%Heodo
2020-10-29031CUH_2020_10_29_HFS65239.docdoc 87e61eb38a271e0eeccf7bf9094d545ac4834dc3046587fc236f34cb366336ean/aHeodo
2020-10-29LIST-20201029-S183468.docdoc e84ed79c1be101e6bed71ff5e4af97ba2e2de483f32699bdd0932fd64f051434Virustotal results 26.23%Heodo
2020-10-29List 20201029 CS890986.docdoc e4cd2a6cd5ddb6634b2da0db1a52078c670b59d8bc62fba342adc38d28bec6b3n/aHeodo
2020-10-2998963-TH153557.docdoc bd3531875b303e0395178fb8d3aa3dedabada2cb53d5b937c2d75d18aebd1ccdn/aHeodo
2020-10-29FILE-20201029-4155.docdoc 9b99d468b6dcb5431a52fd59d05e5984dc4718501c806681668cf3d8a2dcb599n/aHeodo
2020-10-29INF-20201029-N371.docdoc 40b5cfb07bfe07ef46227908b2100c029a89510b2163987903208888a7cb2b8cn/aHeodo
2020-10-29Attachments_20201029_898.docdoc 5c4dce3ebe2abed407cd3b5cf57bb8860cc3e9dc2b42780c8750687b1aba7e86n/aHeodo