URLhaus Database

You are currently viewing the URLhaus database entry for https://www.naturalwaterresources.com/wp-content/XjR/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	769640
URL:	https://www.naturalwaterresources.com/wp-content/XjR/
URL Status:	Offline
Host:	www.naturalwaterresources.com
Date added:	2020-10-30 14:18:08 UTC
Last online:	2020-11-07 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU003044096 created on 2020-10-30 14:20:07 UTC)
Takedown time:	8 days, 0 hours, 25 minutes (down since 2020-11-07 14:45:46 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-31	vvQQ37TwR0jTtGbvEaI.exe	exe	a2fa4d8ae8b2f97b6f8b0a0c79962dddde0b81bf720c84cd5fc1a63905cec58c	n/a	Heodo
2020-10-31	PyRGeXJZv28CBzIM.exe	exe	72479c61b3aa1e73479fd864b4a52b1b4fdf8fa70ae91e5ae32eb65066389abf	n/a	Heodo
2020-10-31	CKOwMldb4.exe	exe	db62fc4f7c3986b72b16b35ea2f6920d343f507498f677d4f866ea252668193b	47.22%	Heodo
2020-10-31	sEEcojb.exe	exe	2195c62578bf6fc3b4e93d9d6fd54d89221f99780aa0b18df5063a3085bca23b	47.22%	Heodo
2020-10-31	DDr0z7epP.exe	exe	615d47819979b04b2c398f757506279ace7eb0ab380619af5389111764efd619	n/a	Heodo
2020-10-31	22sluJmHHQXGHDBPP.exe	exe	81466ae55baf1dbb7e62957407a508028d1dfe5c7e399023a9dd99d7666daad9	n/a	Heodo
2020-10-31	5Tv0uCR6SJsZytycj.exe	exe	ac0239bbe1513109ee7eb34e691ac6393dd8e1140573123119e7b690c9394960	n/a	Heodo
2020-10-31	ZmmkwhrFQ3Zz4yitkxj0.exe	exe	51cf42a4caae911a2ad5609bf9548ddd8a300befde41a10902188a735b635a1d	n/a	Heodo
2020-10-31	Gq2TcgIIM3Y1vqHu5HH.exe	exe	6b32032af99a78c109f17e8609d14d57742535b1c4c0bf887ed848185ae0f525	47.89%	Heodo
2020-10-31	FWuCa4UsM96xlZ5mI.exe	exe	e48a3f84a47b6dcc18702e30cb5fd7624243dc6a60e76fef480d3d8d757e88a0	n/a	Heodo
2020-10-31	dxTXRrH1jGPzEZXQ5K.exe	exe	5d4d501a02c89231d289992c0a8384ad155e77fec7cb8270a599f92b39c8ff9b	47.89%	Heodo
2020-10-31	fxHKlXDWY.exe	exe	59e7ab7ae88047d67d82b7c965e1037a067f338795f8e1705697fe1af486238a	n/a	Heodo
2020-10-31	4Ahmt6SEjZLXu3M8k.exe	exe	57c13326d9c72bf9cc514da99b9d5e81d4734e965386cf1bc8d0ef2a85c0b23f	n/a	Heodo
2020-10-31	g3iPAteSZgQ.exe	exe	14657910f694e87feee123dd96e8bb6c18d3e20c19b71d261ccf03060094b3c2	47.14%	Heodo
2020-10-31	nna1NSm9Oe.exe	exe	cf251d9a478e89182ed760852cff8371ed92a8f01577de4601e137bf7679ed43	46.48%	Heodo
2020-10-31	DyiQWlyum39w9OX0H.exe	exe	2adcc5dfcbe3531f7a594f50c2799e3ccc564c529cfde0700dd8cb90407c8b55	47.22%	Heodo
2020-10-31	8F6ci3Ennc55WY.exe	exe	6eaaa11790cdbc0dbc57c18ca6e52de999c1f51358a585d18b5cee8e137db51f	47.22%	Heodo
2020-10-31	q0aBYuVQ8UXcy.exe	exe	b0047f606beb991a204136864ef1706c9d67c58fc4c96de7810a634f32b72e7c	n/a	Heodo
2020-10-31	UHndaH.exe	exe	6ef10ca5f1c96c9bf35815f67450dc7c17d8d973aae44d117faae85d93991ea3	n/a	Heodo
2020-10-31	QaSSjE9ba0VOyD.exe	exe	dbf9253fd3a41952d5b42ff16c0ff8574d59f7ea8a39b4b86f3e0c8e2fbbe75b	45.83%	Heodo
2020-10-31	9x6a6tz9oDebyMQqb3s.exe	exe	d85b35d25b1f016e91a623dfbfada0af3ccdc98d72fd835cc8e4a58a0139af31	n/a	Heodo
2020-10-31	HKWLLFpvnHA.exe	exe	36fed41f263116a77f7c22553406cf22c87ad5b9cbb09cbec20970c841e144d8	45.83%	Heodo
2020-10-31	Ry41qCdCSc5Ktcpsq.exe	exe	549edcb12bfb9dec851f148ca739c38953d43d325bb193ff4dc2ac2ab8756776	n/a	Heodo
2020-10-31	ALXG.exe	exe	85b3d0f5a6d52e90e8bc873199a7d7340946f23280d8d7ece5dfbfc195df5954	44.44%	Heodo
2020-10-31	OLyaghA.exe	exe	527bfa4b02aa4d0a0046428c51bccaa8e46eedb0dc4cf74ce5ab72bce29cd405	n/a	Heodo
2020-10-31	k41ZTznuJNNiav7shGg2.exe	exe	55457b5b84b750928532a7c375004c2187bfb5c36ea9631508086d732dc9d06a	n/a	Heodo
2020-10-31	nS9aqCwmaNZyecrqu.exe	exe	64ef7ff1fb583db1b7293f358c792470fce160e593bb40bad5534c3f027af06d	46.48%	Heodo
2020-10-31	ny92JO00yI5x.exe	exe	a5f7e9223bee7143b0d01b04f5ac8212c530e920162e04edf2a532d0edfd5376	n/a	Heodo
2020-10-31	qg9E0oqkkJlTcTUcu2QLo.exe	exe	59d5e87432cdad42ecd2a80a24390fa2572659d3789e6870c197dc5c44140efd	n/a	Heodo
2020-10-31	aeWaT3.exe	exe	5a700ef7da6fbf8a53bd4f5439c064edede6249510bd4b36708dcda048bcffda	n/a	Heodo
2020-10-31	1J3giXqaRi0aLvWU.exe	exe	3e846535970d946c5d084ccafbb4286711e76cd9034b73b5e095146759a77530	n/a	Heodo
2020-10-31	Q9m.exe	exe	6cd1d313e737abf649aaa74df280552faba9468da45c3239d326f4b3615e6349	n/a	Heodo
2020-10-31	P1b6Gr.exe	exe	e26b3be7e0c1aa480a17da98290b8764d31dbfc40ffe29e1e76224db376e3f7f	43.06%	Heodo
2020-10-31	JjNllDMcbtTQN5IWzU8d.exe	exe	30c01f5b6fb597daae071f5bbb4efb753e0f83c6ca2cabe8bf9a55e3c06626c1	n/a	Heodo
2020-10-31	zeuA95WMaBB.exe	exe	e8176ce63dda4c361066a39ba1b8808a9079930dd7962f65966f0bad86776763	n/a	Heodo
2020-10-31	tkeygaVe.exe	exe	87435c9b8956c7d8b6285ebb1458705ff1c42a9c50068994052d350071b1e15b	n/a	Heodo
2020-10-31	uF81Kn5Y7PxQw.exe	exe	a20a44301207f39efd1879419c96d8c03ee68ecbb1ce814635a134792d3b5682	n/a	Heodo
2020-10-31	LYvXZ9diEo2708NBIzx.exe	exe	258962f4797e837f09ab114d1237f9315a4c66177d69db8609140c28a6f27054	n/a	Heodo
2020-10-31	RlhVAPmTVe33cWQz3iGIW.exe	exe	1a52daa9966a5f5cb0d7119aad2b63f36c85f97a2caa557a51fa54537cc9e9dd	n/a	Heodo
2020-10-31	FbTYf8pFFS.exe	exe	9dc1380afd4e6ae9ca4f0e9524e1e5aeab51560a57c66cc1032a17c3c0cf3939	n/a	Heodo
2020-10-31	Xp4p3Lnv9lqJSr.exe	exe	652f358e45e9c2e7f9dce6b7e39b44c980d71f90d795cae00439a25afe2d432b	n/a	Heodo
2020-10-31	5y4415RUadwkRcRdJ5.exe	exe	49ac27eea351865eb525c92d1c3cc82c03f39bae38378b28aed0974f24b504c6	40.85%	Heodo
2020-10-31	qOnQ8eEgyAA.exe	exe	141f6d57d69c7cab3dcacbc6d9a4190cd4267106dc1063769f271fea7bba8937	n/a	Heodo
2020-10-31	5k6YHHVYd.exe	exe	02b372f878b23f91b5edba3baceeee5480825a708aaf9cf38a4b77f63b07ce6a	n/a	Heodo
2020-10-31	W2N0qqvH.exe	exe	e65d84c38ae2ed88af64739eb8233313c30fadd1a317bf8008d2cc8bcea5b908	n/a	Heodo
2020-10-31	OxdKzCcupjH.exe	exe	32d9787dd679a7d8c853b98f58d0797bd284574869cb7d494c30cff67c407be8	n/a	Heodo
2020-10-31	FE3Ae3Um37J96n9Qqp.exe	exe	988b0dee4058143211946330c004828a30755d395e29a8994490bc148821f8e0	n/a	Heodo
2020-10-31	8MC7yxgaAcMR.exe	exe	7d01bf23816a0dc9c827bf8e9e2bd9d1173f34da5ca9637ce8d10ce6825a62cb	n/a	Heodo
2020-10-31	bllIBr0BqVmyqw043L.exe	exe	abe2f84848b79b1d411485ea5a03652e887e6fb8ff48c290dfacb5ff5347ef9e	n/a	Heodo
2020-10-31	92iK.exe	exe	8e46d9d34cbe6af362f6dd050c58451a48f5c088e0f8f3b5093fc3f5ddde78cd	n/a	Heodo
2020-10-31	XTTZWHQ8K1j.exe	exe	69ea0c4bd91868bef2ce98a73ce83702759f9286712839fc7f0831cc9c9e9bfe	43.06%	Heodo
2020-10-31	MBhkNbkETRfJSIjQ.exe	exe	84370d65b178e54b5881e63356b542533dd4ede34b4634840d21e2e5ed37dfaf	n/a	Heodo
2020-10-31	WZgSCeo3ui.exe	exe	f199f5040144a283767c20daefedea661d1f0a49976896bcd7dd7cf0396ed868	n/a	Heodo
2020-10-31	z7h8retBP.exe	exe	adc8a2be727b5f60dd5d8b3ceb676c96eb83399f0642f7cb296c01c1081d9d56	n/a	Heodo
2020-10-31	VEq7syIRDdovvPv9X.exe	exe	de2636a4718e29a545f6fcae7d737058aaedeff41f283279f4748b4a61ac43dc	n/a	Heodo
2020-10-31	kMJO9t.exe	exe	5bae95fbdae01d5c97efea7d6f2edb60a20c43b90e1fb6aa3ef7f79822c7b64f	n/a	Heodo
2020-10-31	Q4eFhc.exe	exe	7662c941caeeb92be41e8255afc2a2c444764cbf7b5d7fb46f30157690b4affe	n/a	Heodo
2020-10-31	G6lKBASAGDV.exe	exe	67623dff1a885bfa472eda7da40f685fec5514b615385298783c1b6a50c1b716	38.89%	Heodo
2020-10-31	PxzoiF5eTed.exe	exe	e2d3b4049d137c2485e117d570b8731ca2a1b7e8d9a8ecd9c4bc7259b885fa37	38.89%	Heodo
2020-10-30	OrBdxqnMxNNI77PSq.exe	exe	389344f97efbdbca75646339a29fcd04ece53b9e605f9598c54bd37e219ad07e	n/a	Heodo
2020-10-30	uMdVqBt6jolfP5.exe	exe	1def247b54448dab0190460a87ec2f54d188015eb846e8b745afcae6db07b076	n/a	Heodo
2020-10-30	Y2n0M.exe	exe	8cd5f2e1d2dc396e29c6573406b5074ed9f3cd435f66f0e609635833abd5b400	n/a	Heodo
2020-10-30	cGbo2DKaRu87KG60YyF.exe	exe	fd9bfae7f7787fe9c3413f721ebdc64a848505dfb40be8f486cb1dd2a7dcc24c	n/a	Heodo
2020-10-30	SwfEmm99QT9H0mr0.exe	exe	febccd44ef625ac507104e0e7a12a17f58562f81513bf010f2ae642c715928b7	n/a	Heodo
2020-10-30	FJKdPLlOo3k8yHLQV.exe	exe	210a384f6551654a7aa78cd503f90d602ad72e78dd65e2e654d6ab0f1687dc43	34.72%	Heodo
2020-10-30	2yQK.exe	exe	0e181627e56d8bba033b56ac9486a1dbd6f8d3c3d21aa0d5dd1faa09970dad74	n/a	Heodo
2020-10-30	1Rcj1egSfR.exe	exe	0b0186b075a61cb0c440b512422d3adcb826ef24118d5f4ea15c52bb30b2f3a7	35.21%	Heodo
2020-10-30	hHF9RaN1TTk.exe	exe	972f3a40030fb439c5014fb000db1db97f4f19a3c018b1dd6609b0e4a6354c36	n/a	Heodo
2020-10-30	AdQ.exe	exe	dd5e2506a4116aa9c72c328ad5291ecdfe7428204712566c55d258fd5a852834	n/a	Heodo
2020-10-30	2DLWiAyjZGsD7sl6L.exe	exe	c2c394f41d952986ab5cfd1d262db692afb96d30176539579b868b7965450e45	n/a	Heodo
2020-10-30	oEKK4YQYpNWgd1.exe	exe	d827cc4f56aae852ad6a84e2f9b78cd92f9e1c5c6d5209bfb2270504d2415df1	n/a	Heodo
2020-10-30	GxDvKwDjloH1LA9bkG.exe	exe	7e5e572472d6643012cdf9746a43c4422e4334dd0a13e31260a56c57c008a5fb	n/a	Heodo
2020-10-30	fxNo6DJuwI3G.exe	exe	47a480ec7942e4761c3938584e81e4824934c087576f04a5efdd2e0b57bafca1	n/a	Heodo
2020-10-30	0o1lWy7uk3mrekBm.exe	exe	35d0b0082cf8c8734c20dd412f7b62b7d4678d59056a24a43eca4f3bcd0efc7b	23.94%	Heodo
2020-10-30	0wCEFKAp5TEPY.exe	exe	faca67201fc314922d901d1bca1267d6f34503307384fb8447384f3536a5b922	n/a	Heodo
2020-10-30	Wv8jO.exe	exe	e369959cd51d8d12d192f1abee133383a2d8f298f410ad89ce1ea0c7168ae69b	n/a	Heodo
2020-10-30	kYjfyhf.exe	exe	3639cf1d55e7c41c47639420afb712798f1f00721c54326baff187b103ed9441	n/a	Heodo
2020-10-30	RRAZKOKmjF97JoQe8C8mP.exe	exe	cb0cfc1a0f756965c2d44deaf3afadd0afac3a4991d6b4930e0a75d8ed5d11b4	n/a	Heodo
2020-10-30	JajrGxiPVcq.exe	exe	080629f555ef15f08a90d492aadd4e6096488e3fb419c7324e639ab902a0d97a	n/a	Heodo
2020-10-30	fyPvQikxzz82sIyDXjc.exe	exe	6d686f80f468529bafb60f70358ae6ad7576ab331a2b33637f85e698931da131	n/a	Heodo
2020-10-30	AsiOD.exe	exe	8fb53688d782470688b005af109a94cf8eb224f43393208beb964edaacb973e7	23.61%	Heodo
2020-10-30	xb2ml.exe	exe	82725022a3612964998de6682486344595cd9a64a9ce5ec9901272fb1bc0c247	n/a	Heodo
2020-10-30	EwJLbvVaPNbZog.exe	exe	c6d2a1ab8ae167323a29148cd2d87a13896d3c3bc1ba65f17ca6a7dd1a1c291a	n/a	Heodo