URLhaus Database

You are currently viewing the URLhaus database entry for http://www.naturalwaterresources.com/wp-content/XjR/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	771216
URL:	http://www.naturalwaterresources.com/wp-content/XjR/
URL Status:	Offline
Host:	www.naturalwaterresources.com
Date added:	2020-10-30 23:56:04 UTC
Last online:	2020-11-07 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2020-10-30 23:58:05 UTC to abuse{at}godaddy[dot]com)
Takedown time:	7 days, 14 hours, 48 minutes (down since 2020-11-07 14:46:22 UTC)
Tags:	emotet exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-31	vvQQ37TwR0jTtGbvEaI.exe	exe	a2fa4d8ae8b2f97b6f8b0a0c79962dddde0b81bf720c84cd5fc1a63905cec58c	47.89%	Heodo
2020-10-31	PyRGeXJZv28CBzIM.exe	exe	72479c61b3aa1e73479fd864b4a52b1b4fdf8fa70ae91e5ae32eb65066389abf	n/a	Heodo
2020-10-31	TngyjrmBc45YXO.exe	exe	598a659d6943d264f8be885bf80df5db01ddc86039ef4f4d4f436a726cd2bf11	n/a	Heodo
2020-10-31	HFmsDM7uX5xdv.exe	exe	ac5639c862e31b8ac7c5fd6dbf7cf8fcdf4636bfe03743fb5ff34f3ef0e0052a	n/a	Heodo
2020-10-31	0qAWbJ.exe	exe	9ad4e340fdf39fac555904a049f689aaf888e8171bb1e6025bed991d0902a9bf	n/a	Heodo
2020-10-31	8taKze.exe	exe	0419e96f1a43ea02f2a7989468231d550c009941d78e72349c2560c603763f72	n/a	Heodo
2020-10-31	22sluJmHHQXGHDBPP.exe	exe	81466ae55baf1dbb7e62957407a508028d1dfe5c7e399023a9dd99d7666daad9	n/a	Heodo
2020-10-31	ZmmkwhrFQ3Zz4yitkxj0.exe	exe	51cf42a4caae911a2ad5609bf9548ddd8a300befde41a10902188a735b635a1d	n/a	Heodo
2020-10-31	QExkqC8dM8nrgtlf.exe	exe	3c17f3072b74256a0dd4bacf876dbbcb6d16fa4677ca03b28d804b8e4cb2853a	n/a	Heodo
2020-10-31	AzQ25371iQ6OUMKPf.exe	exe	8829e0004befa444a42d9e9f721b8f5aca3e86053710672f3c7bc7e80c523732	48.61%	Heodo
2020-10-31	UqwnI1UVoP.exe	exe	04a1dcc286e521fbb322d44a2d0454ad0f24643d1da220ff49394fc48b062a93	n/a	Heodo
2020-10-31	rG4EIeT3LuRK0D1C50e.exe	exe	01b97f539f0793ca86417bb1a2739b02721ebce456bf1427be4002faf8e57a41	n/a	Heodo
2020-10-31	4Ahmt6SEjZLXu3M8k.exe	exe	57c13326d9c72bf9cc514da99b9d5e81d4734e965386cf1bc8d0ef2a85c0b23f	n/a	Heodo
2020-10-31	eyKqpQijFFnUu.exe	exe	e69c3f02afbc6245470f54b0af45ce49b561bb7e75b7666fd02de4efdb8857ca	n/a	Heodo
2020-10-31	xlGufi1A5jqhx1Ali.exe	exe	681a5c3763ce8efa14df57b6141bee3a2f0f7e3f65bd00a0017c575232889dae	n/a	Heodo
2020-10-31	FWOjqzSyGPU1C5r5jC.exe	exe	b8e25bddf25b028e6f5c1e413e6d90976b29a2c55c98088f741d0d6f41cd5a67	n/a	Heodo
2020-10-31	8F6ci3Ennc55WY.exe	exe	6eaaa11790cdbc0dbc57c18ca6e52de999c1f51358a585d18b5cee8e137db51f	47.22%	Heodo
2020-10-31	mysiZcHukH.exe	exe	0f7cab9f89c08ed43f30eb3a3c9cd8e6110cf4ffee9299487f4d2ab089ef432c	47.22%	Heodo
2020-10-31	UHndaH.exe	exe	6ef10ca5f1c96c9bf35815f67450dc7c17d8d973aae44d117faae85d93991ea3	n/a	Heodo
2020-10-31	aCuFAPWcq8dGTDDx.exe	exe	da584ae5cb2876f7a4756b1c6e062abc5d0ebfe8caeb8745fb36ed891aa9c4bf	n/a	Heodo
2020-10-31	9x6a6tz9oDebyMQqb3s.exe	exe	d85b35d25b1f016e91a623dfbfada0af3ccdc98d72fd835cc8e4a58a0139af31	n/a	Heodo
2020-10-31	LuTBXZuX80Yv.exe	exe	b45267faca5d656ea5f8a88ebfd95c4c67bbd8a015fcf2486410ff9fea106789	n/a	Heodo
2020-10-31	SLVmOOfW9dFAn2.exe	exe	c3876e3e41c378114e0f761e00bee1d7ce16f538e862a053f6852b22702cfdb0	n/a	Heodo
2020-10-31	vWpKQb4zPSqI.exe	exe	7f2e3f9b4efa698d8f98b04a1808303981268b4aa4409ab637f21bdc78f6245b	n/a	Heodo
2020-10-31	uKoVDNNeFtq5vz.exe	exe	5dedaa670ff2b4addc1d4e6e4976ada3d4dc454d8fcdba099ab0959eb04fbc4b	44.44%	Heodo
2020-10-31	5KmX1MzsN.exe	exe	9611b7a66be6df758420501d352fe44e3f173db28aab08371a5c9d6a5f6c6e04	n/a	Heodo
2020-10-31	nS9aqCwmaNZyecrqu.exe	exe	64ef7ff1fb583db1b7293f358c792470fce160e593bb40bad5534c3f027af06d	46.48%	Heodo
2020-10-31	vijMLbCjB0faEHvS9msSo.exe	exe	cccc257ba9088f2fd1e6cba872fff79700becb4b75c8a8f4d2a63e12a433414b	n/a	Heodo
2020-10-31	9FGyZvqM35udd6JJLG6kJ.exe	exe	3cd27ccdebe199ebd24cb330c0b3131bcc6d7adfc221028b2f947fdf021be720	n/a	Heodo
2020-10-31	qg9E0oqkkJlTcTUcu2QLo.exe	exe	59d5e87432cdad42ecd2a80a24390fa2572659d3789e6870c197dc5c44140efd	n/a	Heodo
2020-10-31	n1E4kc0mcdQukmhXDN.exe	exe	436aeaf4a11a555dd1f18ec1c862a628f2a195cc4c893597be37902718c5276a	n/a	Heodo
2020-10-31	U3eHHSz4YN3qF.exe	exe	b8875d667ced6a15705790fa3da6dfedf4bd43eb831ec98e482bb61646ea2f35	n/a	Heodo
2020-10-31	l5Zfp.exe	exe	f49ece1dd3fd1f7381653e38a43492c15c1c398a847918dc3a080ebf097c5519	44.44%	Heodo
2020-10-31	Ce82KnkLzPjvHw.exe	exe	6baef21209558e0dfa6bbc20bf5f7bcc73f36ebd31152dd8c39f1a203a7b42ed	n/a	Heodo
2020-10-31	zeuA95WMaBB.exe	exe	e8176ce63dda4c361066a39ba1b8808a9079930dd7962f65966f0bad86776763	n/a	Heodo
2020-10-31	tkeygaVe.exe	exe	87435c9b8956c7d8b6285ebb1458705ff1c42a9c50068994052d350071b1e15b	n/a	Heodo
2020-10-31	rPEIP6.exe	exe	426ab3d9e7a11064008ec67a1a91b15b8a8831c69fdd3e3e7c8f3915bc700359	n/a	Heodo
2020-10-31	viDRtrT3ow.exe	exe	ccca25206d7a5e0a4d2c0d6e4fcc53eb45629f3116e33fb743f9dcd2ede86ebf	42.25%	Heodo
2020-10-31	eBEu3.exe	exe	35757fe4d7f8de1e32ac2a70a91a7e68515ca55aabd5c572c50aa541f301bcc1	n/a	Heodo
2020-10-31	JdHv1XE0qhH6C6.exe	exe	fd0eda364919fecde06d5cf5245974a2acdc2addaf0ee131b04ca9bd6f97325c	n/a	Heodo
2020-10-31	2HDNOOG1.exe	exe	569f202897ca77916c9ee72f65d6318c666c312c800b33cc4b1786ca934b2b83	n/a	Heodo
2020-10-31	S6fkeFFHMHQICKh4.exe	exe	bd9abbb23078167528cee5336f115a21a9de49cbbb9862c722d7385312c805f5	n/a	Heodo
2020-10-31	0rM8VbUD9Dk.exe	exe	a47d9840f71deff4c1a05b0c958bb67c5a621c7b4e80a3d4947bac30a3bc15a2	n/a	Heodo
2020-10-31	5k6YHHVYd.exe	exe	02b372f878b23f91b5edba3baceeee5480825a708aaf9cf38a4b77f63b07ce6a	n/a	Heodo
2020-10-31	3UAwU2GusWhc6r.exe	exe	be5b035ddc91fbcb744014a5b5114ea8f5391aedb32d0e8d2e9d488935381fe6	n/a	Heodo
2020-10-31	OxdKzCcupjH.exe	exe	32d9787dd679a7d8c853b98f58d0797bd284574869cb7d494c30cff67c407be8	n/a	Heodo
2020-10-31	CoAd19vRXjrnthMIBMt2.exe	exe	47d710cadff253151f4fb5ad0feab9c29cc0cbff2eaa19cf1764a63af0a41f7c	n/a	Heodo
2020-10-31	bllIBr0BqVmyqw043L.exe	exe	abe2f84848b79b1d411485ea5a03652e887e6fb8ff48c290dfacb5ff5347ef9e	n/a	Heodo
2020-10-31	7IYLV.exe	exe	a26256d6d469031b36a68ee6cabbaee776eb193b4707acabacf496ccc047f206	43.66%	Heodo
2020-10-31	s039.exe	exe	54a1a60ad1c32ba56059940cbf2e5c7ac8d03f50bc6b03397340e9afda906b7b	43.66%	Heodo
2020-10-31	MBhkNbkETRfJSIjQ.exe	exe	84370d65b178e54b5881e63356b542533dd4ede34b4634840d21e2e5ed37dfaf	n/a	Heodo
2020-10-31	q964yLP.exe	exe	d26af3da76f6aee623f001aebde77e3b2f8510369e27168615dfbba4c5d39a19	n/a	Heodo
2020-10-31	z7h8retBP.exe	exe	adc8a2be727b5f60dd5d8b3ceb676c96eb83399f0642f7cb296c01c1081d9d56	n/a	Heodo
2020-10-31	Kvd7DOI.exe	exe	67382f37ba06a2c4ecaf265ff7acbf767dee5caf43f340eb8574a96015a84316	n/a	Heodo
2020-10-31	DcmS6zdq.exe	exe	5c05002ae87f299dfcf493caace2d88aecd6e8c827b6cea919ad0ca19f61c1e6	40.85%	Heodo
2020-10-31	kMJO9t.exe	exe	5bae95fbdae01d5c97efea7d6f2edb60a20c43b90e1fb6aa3ef7f79822c7b64f	n/a	Heodo
2020-10-31	oGOpFiU87NYuQaIa.exe	exe	48ad21b32cfd3e6d6eb64e474df38876223bdbb48c9430c47daf76e94f475568	n/a	Heodo
2020-10-31	G6lKBASAGDV.exe	exe	67623dff1a885bfa472eda7da40f685fec5514b615385298783c1b6a50c1b716	38.89%	Heodo
2020-10-31	PxzoiF5eTed.exe	exe	e2d3b4049d137c2485e117d570b8731ca2a1b7e8d9a8ecd9c4bc7259b885fa37	38.89%	Heodo
2020-10-30	efQWT9rM.exe	exe	0bce1a130a0127aa355cd49cd8157847f41736b49a998f0058a788177f9aea01	37.50%	Heodo