URLhaus Database

You are currently viewing the URLhaus database entry for https://www.immowert-htk.de/wp-content/tUlmR2tr88U/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:936387
URL: https://www.immowert-htk.de/wp-content/tUlmR2tr88U/
URL Status:Offline
Host: www.immowert-htk.de
Date added:2020-12-21 21:54:04 UTC
Last online:2020-12-22 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-21 21:54:41 UTC to abuse{at}hosteurope[dot]de)
Takedown time:11 hours, 27 minutes Good (down since 2020-12-22 09:21:49 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-224JE3BGTF.docdoc ff2576fe2ef3d0e73e1b95e7283535cf0d6874a1da73b31c6c320f25ac2a4245n/aHeodo
2020-12-226QNS21.docdoc 02170586397abeca0120b55a547fd80c877eb800f02d55c6aad2473b369f0a3dVirustotal results 31.75%Heodo
2020-12-22YLN08XRR1LYX5LT.docdoc e18f34fd2b761c5ff699a3bb1e6bf4fa2f9d43f91cfc0ff44794e8ae7e4ae926Virustotal results 32.26%Heodo
2020-12-22JJ1JGIXJPEM.docdoc 227f0020c011b4ed270fee166cb3427d282fb03559ba3fb44597f260ec70873bVirustotal results 31.75%Heodo
2020-12-22MNVTU9OXGA0EEA.docdoc a920635eb94e7e0d4add7880d523b5d55170d97bed0841dfc32e8ee4657c6106n/aHeodo
2020-12-22REW9IHQ0Q0E9P.docdoc 7c7bb9a49435ab8c1bc07689750d6853d406473e512b9d4720330b8489a35a2dn/aHeodo
2020-12-22JPA8XNYY2W.docdoc a442c1871b5de54fb33fa28cd9a9f5b898ba0490d6bd20f09259b15bb81f9ad8n/aHeodo
2020-12-22B2GSG9CB7RI.docdoc 5678fb2398f8ae050763eeb8ef6b94b0c43560105c301b6db5c453c84c7e6aa0Virustotal results 50.79%Heodo
2020-12-22H078Y3GF3.docdoc 16435a7bc02d8c0ebfeab05878d59be715c385a0d646258abd2ddaa498800d30Virustotal results 49.18%Heodo
2020-12-22FSHHQQ5WUNM.docdoc 99791db1cb487d25ca3160836589adcad5fc57a1dceecd3cdc82ecbee51716beVirustotal results 47.62%Heodo
2020-12-22MPEMF9D7HJIHE.docdoc bbab6187c511a9ba4756bd3c521c97474ced9d06588b917d285dd457b4f590d9n/aHeodo
2020-12-22Y37AVZ2.docdoc 2e2845f894af1842a98bb01b55cf68757e6c573d1d97c11cf41818de4a70f82bVirustotal results 50.79%Heodo
2020-12-22248ZT4X.docdoc d841f4da05bdada1458017cf1fb3029d311ce6c10ba7f8e0787f663dffd2600eVirustotal results 43.33%Heodo
2020-12-22B6KOCIJYAJYREH4.docdoc 6adf12a084ccf2eb6dd19a35742a35f03bcba878416ef83b9c520e17d55ac329Virustotal results 50.00%Heodo
2020-12-22UNZ9ZLOA8V1ZYEX.docdoc 173291cf73cc4f82f9a217cbdcc192f4e0b7557e7068133ce2231a023a47ad28Virustotal results 47.54%Heodo
2020-12-22ZK3MJBV.docdoc 6c26774c4763bbbc05c970dbe0b96045fefbdffc80c2d7878e8ca8089f0215c9n/aHeodo
2020-12-223WT9MHAMN.docdoc 200414fe067c46610fc5739841fdbd2c50b2c19b65693fffa9e8999c094b45feVirustotal results 47.54% Heodo
2020-12-22QRHTUQRFYYY8.docdoc 0c2c97f9c94b970cc23cc8f11be9fcbaf1630395d13060ca289eb0d9284b4a7dn/aHeodo
2020-12-22U3O14904.docdoc 97f5f7f2c37a21e2f3934ceabe0df7eea42d7925f1b3a4e9a194fa005509dcc3Virustotal results 37.10%Heodo
2020-12-22YKSY7LEZFTGYG.docdoc d272b679a600f9e255a18bd559dcd64aaaf1ced9173cfb1fa5d848629921852fn/aHeodo
2020-12-22W81B32.docdoc 4be32fc9457cb3575d9f59665e4d11c4625dd3bff4cc13ff2f25aa739753173bVirustotal results 45.16%Heodo
2020-12-22ITD8BXDPHQF3HYBN.docdoc a02591c24d3c86f54be79271c7ec7e679141ae9245b3ac62da5d6f382edc0880Virustotal results 44.44%Heodo
2020-12-21158W4J8W1V.docdoc 47fb863700031a20e693b095a8cdb17ee3304a8e6db9ddee52b8b003d707cb4dVirustotal results 38.10%Heodo
2020-12-21ICWUR6.docdoc 6a7525a409509ac4ff33649e2dab4cc9580795c516cf135dc3a0b5fb5ad0003cVirustotal results 38.10%Heodo
2020-12-21REXN2J.docdoc 304df861b9a54bce9054f0401652f3fde7dfee32bd8da0bfc3c18c48c2ac4a52Virustotal results 38.10%Heodo
2020-12-21ZWKYMGAWLGO9.docdoc b00dccc179d09341ac62fb1fc736df75c2e8b5cd6afe6eeef1d1a460caffe3c9n/aHeodo
2020-12-212YDGD5MTSB5GWH.docdoc 199329cd5b35fa9650fa7ddb3597cc3c1c1e88242b94558bda89b7aa7bd6c463Virustotal results 37.10%Heodo
2020-12-21446CQG2W998L8M.docdoc 64db024b0457fea3b182aa36675d4e6049ef7119c4eea836b295ccc90c3a4301Virustotal results 38.10%Heodo