URLhaus Database

You are currently viewing the URLhaus database entry for http://fitthemes.com/wordpress-5.3.2/L/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:766769
URL: http://fitthemes.com/wordpress-5.3.2/L/
URL Status:Offline
Host: fitthemes.com
Date added:2020-10-29 20:28:04 UTC
Last online:2020-11-03 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2020-10-29 20:30:06 UTC to abuse{at}cloudflare[dot]com)
Takedown time:4 days, 23 hours, 18 minutes Bad (down since 2020-11-03 19:48:07 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30List_5471398364061626569.docdoc 001aae9a58f6352962e2e1635ef52e5cdc08a8db7e51aacd096f41f9de8db0ecVirustotal results 42.86%Heodo
2020-10-30Rep_OZ6137179474OL.docdoc 12b4329a9b823283ea081ce2769d7115a1f1922106019611973ea41b4dae5fbdVirustotal results 42.19%Heodo
2020-10-30K9HVFWH5P.docdoc 4eea09772ca2174c6dee225349ae15f55b9e8a91ac3aed6f961a4815ea86f462Virustotal results 42.19%Heodo
2020-10-30FILE_7534040802754.docdoc 39b6fdd21b5a73ad7e7808470a008ce96abb75dc96787734f8778afaaab7e0e6Virustotal results 42.86%Heodo
2020-10-30MES_PO_10302020EX.docdoc b9fce7bf781b5fdc177dde9569e249b790be707e253d46e2fec89d8389e0c324Virustotal results 42.19%Heodo
2020-10-30arc_RWAP4S6EHS79.docdoc 9121a79689d2a88dad9bce32476217b48aa14ced73ea3ea2394760e2da314d15Virustotal results 43.55%Heodo
2020-10-30FILE_PE8974040148OU.docdoc f47484c61c7b2b0541690f5cfb219d2efe962b5204064435481f99e8ba92f95eVirustotal results 41.94%Heodo
2020-10-30Arc_115657311275390758011626.docdoc 17d5bfb8d831eb1b5f2defabb4f6b29c2c2f65bc90c0b310d7e0867ac11c125fVirustotal results 42.86%Heodo
2020-10-30UNTITLED_77635631405004742.docdoc 21d510dc43e2e064f6d94e3b502c483eb6fc1171828a5349dd22c43ccba66638Virustotal results 42.19%Heodo
2020-10-30arc_97272445.docdoc 2d3d4e0033829c37a82f24c6499a0786dc993903374e611aa94c4973a4066dfeVirustotal results 30.51%Heodo
2020-10-30Mes_PO_10302020EX.docdoc 0ff00e35cca1451486afc9af5f9ec922a120201c1ad664d440e5511c370bef3cVirustotal results 27.42%Heodo
2020-10-30File_OW1593477114WH.docdoc b6fe7dca5aa33eedca9590aacbb7a67d89dc6c1a98cee170aca2c47518e01ea1Virustotal results 27.42%Heodo
2020-10-30LIST_WIG_100120_FOL_103020.docdoc 60e4646ea5fbe72e1daf6f3d015b37205898569b303dcfc791e0d02a754c9bf1Virustotal results 26.56%Heodo
2020-10-30inf_229939399587365109590966.docdoc 6a8e52f8792ecae215c55e1f73b2895cc0b304ee39db3908356b71ac38722b0cn/aHeodo
2020-10-30inf_CRB_100120_MJG_103020.docdoc 1ce95602afd3133a2b2f7ac1df3290e233ba27b2f2b71d6a1b407cda2cb4ca4dn/aHeodo
2020-10-30Attachments_446137129995446872.docdoc cc0614f4e21c1d63a80e1ddecfd591353e15aa849f754be9d8b709cc6e9841c9Virustotal results 25.00%Heodo
2020-10-30DOC_MER_100120_RSJ_103020.docdoc fee7c3d92d847b227a0310837bdd5bd774db43c7793d9e83c31405a79a35b9cbn/aHeodo
2020-10-30file_VNFF8UNAFB53ZHO.docdoc 1e363452c2a67d40f01390488a99f68ce6fab805b45eab93ee2db2469bf1b05fn/aHeodo
2020-10-30mes_ZDM1VOPXPKVN9EX8.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948n/aHeodo
2020-10-30DOC_PO_10302020EX.docdoc a120ab7f12256c4b260034ecf26910f2eb405bb2c41ea9d1d78fcd2f529d2debn/aHeodo
2020-10-30file_HI0874885230WV.docdoc 3416748dde8336e8081847df55d2ef61d1081a8bd9d76faa5922683231da8c94Virustotal results 43.55%Heodo
2020-10-30dat_04835534.docdoc 8c5ec7de8acd87d586e9bf7a74458c2a96f88ddbeacbde0ae3791d84594cc983Virustotal results 41.94%Heodo
2020-10-30A_PO_10302020EX.docdoc 248dc97004f5088a900ec8be3559432f63cfe88eb7d2935c5161846dc778d1faVirustotal results 43.55%Heodo
2020-10-30MES_PGL3YLZG55CYH3.docdoc c5464029a0c6ac085492b9e9e1380d0304bd195c8de6e1dd71b51d4c9f8a5433Virustotal results 42.19%Heodo
2020-10-30File_6319185857351374844356.docdoc ceac47b63a26dc75f489b8882600b4a6ffee7b0c5b5dca3ef7732746cd3ec229n/aHeodo
2020-10-30rep_FR9448126736FB.docdoc 4cd342f5baeddb3b9ce82b0f360ee43411ce30c8abede6b1f2a8181ed08da110Virustotal results 39.68%Heodo
2020-10-30inf_894933544894815314793.docdoc 0b7f26dc76b83127cdf687f818e652f050a9b3726aa76bc30947f94e4e25ffd4Virustotal results 39.34%Heodo
2020-10-30mes_193000993.docdoc e4c4aa874feb371209199ddd6b159ed4a677b94568dfe6b09351807263dbef9bVirustotal results 29.69%Heodo
2020-10-30Arc_06162532003834244064320.docdoc 635a74416fba185c2d901ad6c437ddc2258d061fb43e420653cb07f071e62075Virustotal results 35.94%Heodo
2020-10-30mes_PO_10302020EX.docdoc a51d194ff7cccab7defe2f64127934a4ff3699de37c60019b40dd62d631baf04n/aHeodo
2020-10-30Inf_75565452723.docdoc 3faba02f0eb970ef25a2a874736e4f758dd3424cdba2637795ada41385024679Virustotal results 31.25%Heodo
2020-10-3022475186.docdoc b33622a59cee3ca443a74701f86f58ee524e9901c05d359270575f52d7d37380Virustotal results 31.25%Heodo
2020-10-30Rep_XH7451166417HD.docdoc c2d7ed25c4c34f44dc293833d3ea302d281d24981385c437e411a50ede35e72bn/aHeodo
2020-10-30DOC_8606263524.docdoc 785620ae5f3c011f3939803b6f7da0f097c81d008495ba545b805d7edf1fd707n/aHeodo
2020-10-30LIST_PO_10302020EX.docdoc 2bd445000ef12b82a7dbb15a89578a71ad17a82cf8b2f19239fa60afb2ba84f3Virustotal results 26.56%Heodo
2020-10-29mes_WJI2552ZSPL.docdoc 57a23ee50bad094280feb716af4f6917dcf92157f899a609736ead07c82e6432Virustotal results 26.56%Heodo
2020-10-29Doc_AF9616216722RA.docdoc f69a365c0b551ac35010e98b64364feedecc32dae4284fb4afe62ced4b5d17ebn/aHeodo
2020-10-29arc_3857712319.docdoc b34a20ab0c628d52b55717ab15189662ec1a17741a542a9270fc3dd3db80e0a5Virustotal results 26.56%Heodo
2020-10-29List_46219284.docdoc 1fa65cbd054792ed8ce72d5729cb95a5810f1371e5b096b2f1a099416c193420Virustotal results 26.56%Heodo
2020-10-29Inf_PINWRLPIJC.docdoc 785ca4b8a3e573d7bb977a2f180d8c717b9867bbf38583aa08b4a96fa4803c8dn/aHeodo
2020-10-29Dat_KR94FNQKXX.docdoc d28ab268249104b8e40b88f99670cb44f0cc8c440b22b983193c4e6fa4e0ea95Virustotal results 26.56%Heodo
2020-10-29DAT_FGNA7W7MI.docdoc e5ee1bc6b5f6544f1d789848862c6469f2f32c20627bb4e410a1bc21f0005817Virustotal results 34.38% 
2020-10-29MPOX_PO_10292020EX.docdoc 970feee22d30c517c525e36b3327903c843552de7138215c5fec184444b56e19Virustotal results 34.92%Heodo
2020-10-29Doc_51735107.docdoc 6f9552836a90ddea2d599b100ecf6a8cda08714d1f8f7f848cf6684ab9ff6b78Virustotal results 34.38% Heodo