URLhaus Database

You are currently viewing the URLhaus database entry for http://germafrica.co.za/Telekom/Rechnung/11_18/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:93648
URL:http://germafrica.co.za/Telekom/Rechnung/11_18/
URL Status:Offline
Host:germafrica.co.za
Date added:2018-12-12 15:37:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2018-12-12 15:38:31 UTC to abuse{at}gridhost[dot]co[dot]za,abuse{at}webafrica[dot]co[dot]za,abuse{at}webafrica[dot]com)
Takedown time:19 hours, 15 minutes Good
Tags:emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-132018_11rechnung.docdocc472e9d526226fc4c9eaede772ab452dabe3c31446fbd67bc2ae546246bc9d03Virustotal results 14 / 60 (23.33)Heodo
2018-12-13rechnung_11_2018.docdoc91dd4be6abe4cf914d86fc33764a13d63342933bae146b368b9d5c441162191cVirustotal results 14 / 58 (24.14)Heodo
2018-12-13rechnung.docdocf46b7b5d33cf825b1fa2eaf6f6442fc7eeae41cdf3ff575be9ca226496baa978n/aHeodo
2018-12-132018_11_rechnung.docdoc0424926fd484b6c0c7c545567ec406850279dc8ecab71e1d4ddb69212028c1ebVirustotal results 14 / 59 (23.73)Heodo
2018-12-13rechnung_11_2018.docdocdb37ad102162222df58bf0bff85724dbc9f226716f99313b8cb65e69e2efcfa6Virustotal results 14 / 58 (24.14)Heodo
2018-12-132018_11rechnung.docdoce93dd861353e882a0f8818fbbb1eb493a1f5a3861ef80e9883be983dacffe633Virustotal results 16 / 58 (27.59)Heodo
2018-12-132018_11_rechnung.docdocc78c8eb870618dfc2da7c077942bc47e8ad4b235b0cb2259b8d0c49c26e3b520n/aHeodo
2018-12-13rechnung_11_2018.docdoc69525cd72d6eaf60802f35616ac60fd96847d2aa09c96bf7858c674e545cd1adn/aHeodo
2018-12-13rechnung.docdocb2f01cea0e17be4d633abf708a887e372f71e646f4d36bea37b52c072e6435e4n/aHeodo
2018-12-132018_11rechnung.docdoc5287feb27244d2fa5835a1730b9b49ecf1434d780c916ceecdb562158e7639afVirustotal results 16 / 59 (27.12)Heodo
2018-12-12rechnung_11_2018.docdoce66d5b668b2d8b431a715096d6b199be7b6ced7e163d06bcd8e64cc80cfce589Virustotal results 15 / 58 (25.86)Heodo
2018-12-12rechnung.docdoc8dc2f867b0438d3c4ee56aceace6157232f1a6659bf8834366123c38d5a4c65cVirustotal results 18 / 58 (31.03)Heodo
2018-12-122018_11_rechnung.docdoc4bb6554b1b95112ad05cec72da992f5dbe962ffa23f1a01f701ace9dc75a1991n/aHeodo
2018-12-122018_11_rechnung.docdoc72c0d03123ede38090f0e3ec953918db4f7441edaa38ab6622b70f50f2498d17Virustotal results 15 / 60 (25.00)Heodo