URLhaus Database

You are currently viewing the URLhaus database entry for http://lexune.com/wp-content/T3yQz7oNDgYr5BcJJLfpp27/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	769495
URL:	http://lexune.com/wp-content/T3yQz7oNDgYr5BcJJLfpp27/
URL Status:	Offline
Host:	lexune.com
Date added:	2020-10-30 13:34:05 UTC
Last online:	2020-11-26 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU003043887 created on 2020-10-30 13:36:06 UTC)
Takedown time:	26 days, 20 hours, 7 minutes (down since 2020-11-26 09:43:18 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-31	Mes_NJF_100120_WCD_103120.doc	doc	858159295a83a85ce85a8e18a4398873eb02dfa32012325f963ab2de57c8c0aa	56.25%	Heodo
2020-10-31	93654944.doc	doc	4bab596233b6ee4131996d95b9d863e6833d285d6f87dd2bd841f2682b6146a3	n/a	Heodo
2020-10-31	AX3608642577OD.doc	doc	396b664fbdde301d1ebedd54f4beacf4726ef9fe1d0807a86fe0b00e0a71772d	n/a	Heodo
2020-10-31	FILE_NR1112682887EW.doc	doc	c21fd3f4bfb11db1fc709bca4079eb7f97b6001e5695a430566b61e5e630053d	50.00%	Heodo
2020-10-31	DOC_BIOR5B5L6RQ5LW.doc	doc	780ffddf2dd1fac9d6fc091c707c84751ea2180a253431c3b4700989bd3fc21c	54.84%	Heodo
2020-10-31	LIST_YB5563734398MH.doc	doc	0ab261e8e21a48f3423dbe6d18512f5e2afbd09fd31af5d5c45d2814c2c709af	53.12%	Heodo
2020-10-31	inf_NL0306413092LP.doc	doc	72cbfce2d1bb68f6583a651975d64056490779254d19bbf18636a754d88688c3	54.69%	Heodo
2020-10-31	doc_A3OEA6IL25K.doc	doc	6b199ce53786e4647258111798d4a9f14df4220415ed15639338c5860d98695a	53.12%	Heodo
2020-10-31	Mes_HSP_100120_FUJ_103120.doc	doc	3f1565ba4e9c93cf71b5b5a3f3b16869e7c6a7d86a837a32db34f1f0105e3aaa	54.69%	Heodo
2020-10-31	Attachments_GB7809321552XS.doc	doc	0406910d3c48dbd18d57086dcab9b4f73a8081dae9fac3010f0ae90b73c7c34f	54.69%	Heodo
2020-10-31	inf_PO_10312020EX.doc	doc	e054d39b0aac7c2b6c6b76bc40435c1d0ffca154764349deefbc46f9d6ba453b	50.00%	Heodo
2020-10-31	mes_MNKBEYL3HMNGQ.doc	doc	a914d86d2a97040bb1c91827828f9ec8e72e18d73ca90d884b5d385e4c9793f5	53.97%	Heodo
2020-10-31	list_JA27D0PT.doc	doc	9c96edb7b23fe316d7ea6705b137c283da2aba4f7dab4537a681e7e5d031b0ee	25.40%	Heodo
2020-10-31	N_BAZ_100120_NTU_103120.doc	doc	11ca328f60c6058bf42835808a9fe2b714662abe61af21015943c7628157d393	25.40%	Heodo
2020-10-31	Mes_OE1867236620PJ.doc	doc	e5cd96964e28663db382662eddfbd4bcd53693acaa9f14bf3c7382c61a16aff5	26.23%	Heodo
2020-10-30	mes_PO_10312020EX.doc	doc	66f30f7d40ef0e230f042cd6abe51971e49af52617515c3d0d99f3f365a59e90	25.00%	Heodo
2020-10-30	PO_10312020EX.doc	doc	14a8572928770f8d61fa05890c3e0a5cd4396bfde2ce2763d533e89d05120d34	25.00%	Heodo
2020-10-30	Rep_DK6ZUFTLBO.doc	doc	49931e499615a1dc36cda98151d3c406413f1c47504b38f2bb658631313c273f	54.69%	Heodo
2020-10-30	Attachments_09718082.doc	doc	61aa32a570716ce0d7c579186cd0cc291148bdeb623f0709c3a0b0b3f3d4d384	23.44%	Heodo
2020-10-30	Untitled_PO_10312020EX.doc	doc	5041a2eae4b04f23df9804031b3a30e815e0c2310bf42d82176cb89618617933	55.56%	Heodo
2020-10-30	arc_CE7636285292CY.doc	doc	cc0614f4e21c1d63a80e1ddecfd591353e15aa849f754be9d8b709cc6e9841c9	53.12%	Heodo
2020-10-30	ARC_93784592.doc	doc	d577446435b94d0af2a829f1160b594e95c8051f6b069400ff61fa38d151ba54	51.56%	Heodo
2020-10-30	dat_QK0289730472GO.doc	doc	fee7c3d92d847b227a0310837bdd5bd774db43c7793d9e83c31405a79a35b9cb	33.33%	Heodo
2020-10-30	X_OH6918615147NR.doc	doc	4f6d5190871bdf4ebad7eb4520c7a651e3a2f4d8def1ca783c0efb807bdc7ec3	23.44%	Heodo
2020-10-30	94319603.doc	doc	75ca20340c21dbd94ba3ec4c8eeb14f3a78e68a955701cbdc754c29163674a3a	33.87%	Heodo
2020-10-30	YMTR_HSF_100120_WSN_103020.doc	doc	6061326ca1f6965d9ff04a37eb1defb55b410556500c197c6d8c9207a4432fab	23.44%	Heodo
2020-10-30	doc_00176436.doc	doc	6270902fc810af901f9685bb0b3251f8cf96445514e9bd288b51d51156701665	25.40%	Heodo
2020-10-30	Arc_3188214445560866.doc	doc	5fc665986d6e0e5763554e4d9f9db9ccc61b2c20fc408e955d286a458f622f48	47.62%	Heodo
2020-10-30	Rep_PO_10302020EX.doc	doc	8cc9b34e2f5d86937d174dd238bb8b4e27adb981bb7b44078e619ad9a438d218	46.88%	Heodo
2020-10-30	DAT_WHT_100120_UOR_103020.doc	doc	877bcaa3bd3bcb6081fbcc746a0bc8b28f01961c1061adaacae5ae875457fb70	n/a	Heodo
2020-10-30	ODM_100120_XZB_103020.doc	doc	cd7af62b6cdbf35cdd60b11e87084e9e0c08ae9a790abe502c3a9d5a62c4e8d7	42.19%	Heodo
2020-10-30	UNTITLED_238254428969.doc	doc	9a17659cb7e22f812fa96258d3723eab73ea39ab9ba6b4d7ea0b25a3b6bed9b6	42.19%	Heodo
2020-10-30	Rep_UF5DBZ4O1BN5.doc	doc	c3a3c4b5fe05e1cabea15022173fa5a6f9fb05c83f0cb2d70441f0d415fb9405	n/a	Heodo
2020-10-30	02ND1ND00L3.doc	doc	4eea09772ca2174c6dee225349ae15f55b9e8a91ac3aed6f961a4815ea86f462	42.19%	Heodo
2020-10-30	list_PO_10302020EX.doc	doc	0b8a8e7a53d7fe5cfe16dbec4b9d21361ce7f6eb2f21c9ece0c5fdea89d09b74	42.86%	Heodo
2020-10-30	25332004.doc	doc	a3c09116b3564a812d894ab750990565e22b18b97a47c138b3b271f1e7e5f666	42.86%	Heodo
2020-10-30	R_HP1VR563U9X.doc	doc	4d83643d4185e914cd18600bc21014c76abe93f9cdc0373b88e65461ee279b80	42.19%	Heodo
2020-10-30	270171998861.doc	doc	17d5bfb8d831eb1b5f2defabb4f6b29c2c2f65bc90c0b310d7e0867ac11c125f	42.86%	Heodo
2020-10-30	FILE_IKETJH899W.doc	doc	a3ab9f9c38fe53b1cc2783eee98684350b85ff0bd94ade1766fae55e9de77827	39.68%	Heodo
2020-10-30	INF_YU9808581205ZO.doc	doc	1e363452c2a67d40f01390488a99f68ce6fab805b45eab93ee2db2469bf1b05f	22.22%	Heodo
2020-10-30	Doc_PO_10302020EX.doc	doc	c0e896c6e7521d6431ca692ef69c30c605ab7e599336d9c027721e573d1b2161	30.16%	Heodo