URLhaus Database

You are currently viewing the URLhaus database entry for http://bobvr.com/jNKNUhf/DE/Privatkunden/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:86709
URL: http://bobvr.com/jNKNUhf/DE/Privatkunden/
URL Status:Offline
Host: bobvr.com
Date added:2018-11-29 01:25:11 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Blocked
AdGuard :Blocked link
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2018-11-29 01:26:18 UTC to sales{at}dfw-datacenter[dot]com)
Takedown time:13 days, 5 hours, 37 minutes Bad (down since 2018-12-12 07:03:57 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-11virus-for-you.docdoc 51727a94ebd0dc8d24fd8ab602220aa6a6fe07cb1ed02ac4b2cd98cd5ba59d4fVirustotal results 27.12%
2018-11-302018_11Details_betreffend_Transaktion.docdoc edd3e74bce343ce5364ec1842cd8f650ca6a7d5316f9db76a6bbaf3c97ffc4bfVirustotal results 44.07%
2018-11-302018_11Informationen_betreffend_Transaktion.docdoc 5fd05e7184dd9f5f57f55045f913857c8ba685e6f7437eb4f686b698260e4563Virustotal results 45.76%
2018-11-302018_11Details_zur_Transaktion.docdoc 053abf76599484cc6227db5682d32c117bc75fe5bad4ddf6f4ec151a3241ff2eVirustotal results 37.29%
2018-11-302018_11Informationen_betreffend_Transaktion.docdoc 62adf5828ed7b54df6ed9c0e96c7e665f80372aeca6678ec874b15947e5aad7aVirustotal results 39.66%
2018-11-302018_11Informationen_zur_Transaktion.docdoc e447bcaa90e4f3db4965ed59e55af92bf6f3c04c085dd0984192fdb5ac6450d5n/a
2018-11-302018_11Informationen_betreffend_Transaktion.docdoc 6c717c9b10a58103e52b5bbc32e9487942732c2e2ee70606ecb1f5db6fa6faa0Virustotal results 36.67%
2018-11-292018_11Informationen_betreffend_Transaktion.docdoc 36898538bf6a588d12f24df31313711fb26ce9da29facd3115f3b1b76a53e1deVirustotal results 26.67%Heodo
2018-11-292018_11Informationen_betreffend_Transaktion.docdoc 2b1c0c05d34f81c4c0ad1413a002cdd3f1d8d772f6fb32e736a7843507b477c3Virustotal results 23.33%
2018-11-292018_11Details_betreffend_Transaktion.docdoc 3719f74e13249e6c3e366f97812c5fb5d1c3198bda1aa703fe41c1005cb6b870Virustotal results 20.34%Heodo
2018-11-292018_11Informationen_bzgl_Transaktion.docdoc b08b72d570139625787523f88badee9b0c09d2a539c738287ab8222841c24c56Virustotal results 22.03%Heodo
2018-11-292018_11Details_bzgl_Transaktion.docdoc 68f11b75182d6e23bd24a23904a7a67d7f0160a61a1c43aacf5f0cd95c0bba87n/aHeodo
2018-11-292018_11Details_bzgl_Transaktion.docdoc 6e4426d0b509170954d62979cc981ae4a1bce0fb5011ff60ce2e7d8b1068f0c6Virustotal results 25.00%Heodo