URLhaus Database

You are currently viewing the URLhaus database entry for https://geekdeer.co.za/wp-admin/b3rlkflDgzReGyGZFiivLIKrd3y8C38MJJ6pQ3VfQzPF3x/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:937142
URL: https://geekdeer.co.za/wp-admin/b3rlkflDgzReGyGZFiivLIKrd3y8C38MJJ6pQ3VfQzPF3x/
URL Status:Offline
Host: geekdeer.co.za
Date added:2020-12-22 04:29:05 UTC
Last online:2021-02-11 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-22 04:30:12 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:1 month, 21 days, 2 hours, 38 minutes Bad (down since 2021-02-11 07:08:39 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-230Z5TT5KYCGDPDYN.docdoc ef1fccd54eea48427d2f6011fe8786cd9ae4f0fc4966130f9f3a99877c49dd04Virustotal results 23.81%Heodo
2020-12-23UWED4S.docdoc 8538d00638c32a97eac2e8a9e1766a39268d8effa55c28026d3b75fe114dbc18Virustotal results 23.81%Heodo
2020-12-23UKL6VVSLYP5WWMZ0.docdoc a73f829ec3af1cb01879498a3d3c485fc4af82f8214ac8a42e543f0e12fa3e45Virustotal results 22.22%Heodo
2020-12-23T0EYAZN4K1QM.docdoc d03bdc5b9f72efd01d6cb79bfb3a1a2abb46914234af6d3439f4879a1af9d35bVirustotal results 22.22%Heodo
2020-12-23LC5LELJ3C0YJO.docdoc 055f997b54c9f0fe5ab2c07849d8e88daae0adb0ff26458d823b6f7413f3ac72Virustotal results 22.58%Heodo
2020-12-23LPH8WDCOP2P5.docdoc 318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95Virustotal results 22.22%Heodo
2020-12-23NCSWR8YBZYW.docdoc 6083b405a5bfb099398dc2417486e1c2913bba82b96baff811a71ee6feb0884dVirustotal results 22.22%Heodo
2020-12-23BYAT5CJXADA1.docdoc ebfadd85753d033e248aedd9f9c5772331aff8dc35049d0842e8c423d64ea08cVirustotal results 20.63%Heodo
2020-12-23BA7H2OQ6WI341LG.docdoc c31a2ac228c882d72c112ad120473d012e0ba62c8d157e83cb7738293120eb15Virustotal results 20.63%Heodo
2020-12-23DBRUAW0YAQK.docdoc 3fbfd6e982d209b8a17b661954954d34ed049c93ae235bd736f558199b81aa94Virustotal results 41.27%Heodo
2020-12-23FT7WU8YMT6CSBV.docdoc 77476e25aa9034df5f54eb93a92ea7144c57945b92eed68b1956044666957d33n/aHeodo
2020-12-23QB6WD933OJ9JW8.docdoc e269c87f3edd655d2fa4f379bac4ddee2c652386ccd598daf260157b1b9c033cn/aHeodo
2020-12-23JJFK81H.docdoc b1094f6feb1a423a3b72309f5d023edd3d9509d5444912064029530fe0e8842cVirustotal results 39.68%Heodo
2020-12-23KU168M231T.docdoc cf2b33d88046f8e39c8299718c9132fc22247ef02bfe6ae6d404b0ca1c7c6119n/aHeodo
2020-12-23Z6GT3TPDEWUEXU3.docdoc 69c857ec1c8b113638e61d8da49ffbda13878a0785aab5d567bdc3fe251fd3eeVirustotal results 36.07%Heodo
2020-12-2310U21IAPM.docdoc b534c439ac7a89c6af82331ebd70e5b5ce5e13a2e871bb7ab122b00004605e97Virustotal results 36.51%Heodo
2020-12-23HCBEP6EE88.docdoc fd76c945ff05629b1e31b55378f97c543c8dce7496389385dae3fd4b8acfd12dVirustotal results 31.75%Heodo
2020-12-23JQW3FM96.docdoc 68e9fac6a7996f04c150777aec9f02864a62b4c0d59675625c1801a231461a0bVirustotal results 34.92%Heodo
2020-12-23EBR0HI.docdoc c80244df2388e37d8c799e9968c52c9ad8c72b789ad85a2a91c35f8c28b0afd3Virustotal results 30.16%Heodo
2020-12-233T4NUARZRUWR.docdoc cd26f4220386d91ffb1a0233ece99c207f4335aab6a4c6227d64756f16500ef7n/aHeodo
2020-12-237DNV4MB3JIQV4.docdoc 168fe6ffe9e78f01a7f784833ba9306ef1edad3ccea334df35937424ef0220bcn/aHeodo
2020-12-23CU1BJBD0J.docdoc ba96b09e7eeac72b4363f7b0749f36b0f3b68ecb4b3c40462d0f9d426b4cb483n/aHeodo
2020-12-23EC2LWQGCU.docdoc 80eec607b84d6c759ebbb5743e91d1ce1581bb83128c11b70467d1dd2e4beff0Virustotal results 27.87%Heodo
2020-12-23DJTNU6I7S8D8Q.docdoc 158e3c1a9e0f1942aec57f44ff4569d2a576bad56846a77053f5b4f726c14258n/a Heodo
2020-12-23WYQXBH9FU.docdoc 9c7952a624d186c2b830ab71d66e1e4369b998c0cfbf98bbc7530f5369530000Virustotal results 27.42%Heodo
2020-12-238CBO1FJQLQOA.docdoc 31f327ab8307786ee50af20aaf5c4c2b6ecc974b69a584c78a2dce04fe5d327en/aHeodo
2020-12-239WAG17WFJ5.docdoc 9d2ad424f8d1a39e1cf83b8d64131bc94d8b8ecf787b626e1118e348fc967f10Virustotal results 25.40%Heodo
2020-12-238QV0FQ016EHHQ.docdoc 64e04bddf27b3d535ea895f4dc08267a98a4c401edadc68e3caf7f6f850c4f64Virustotal results 25.40%Heodo
2020-12-228YHF3F3RU8NH4UIH.docdoc 000b049debe1595e96d46d2cb910795e269d9d3f1b3210bfa45901356b3b3b3aVirustotal results 25.81%Heodo
2020-12-2231HQ73EV.docdoc 32dbb92d892c9f50e99fc70db5b9f3efe0721a6464984a3f84e6592cda81684cVirustotal results 25.40%Heodo
2020-12-223700FCIDL347B.docdoc 05c57f48c8b1958bf16f64a292f9aa05a43f6185d02c54a0d8cf03b2fbc56ab5Virustotal results 25.40%Heodo
2020-12-22JV7D3C9DNH.docdoc bc80ebc602752fe60bc486b8620ac2692c2cf2f368e79cecd3a281ce807855e8Virustotal results 20.63%Heodo
2020-12-22DUGAE3P.docdoc e2e85f53c26daaa6cc7e1fe602e51f272ac256cc0c23725350d37b4a5a888520Virustotal results 19.35%Heodo
2020-12-22X3GNIULI.docdoc f03c5a8d271acc63d9646bb77c30ddbb5fae5ad755449342e6c34b5ca71a6980Virustotal results 20.63%Heodo
2020-12-22EH3LSCT1ZZM51T.docdoc ac4a11a17747f0db974bbb343bdf32d636c82bc667c3223c23567faab4377eccVirustotal results 22.58%Heodo
2020-12-22CNC5XKJF689GSS.docdoc 2b3c9804804fdcc11bb7fe3e0d269d644f968eae8f77d314ab1e8e700529d5e5n/aHeodo
2020-12-22EJ6W8B9U.docdoc ffce79e8ecfa61f2f82aa9b40d611c100e6cd68cde6fc34b012ebbd21750908dVirustotal results 19.05%Heodo
2020-12-22EYFFTBD.docdoc 1d5cf0fff53e0485bae46b34b71fc4b886376d458e91b8eb88a04296f36f9aadVirustotal results 19.35%Heodo
2020-12-22G0L87SJMY.docdoc 755b0648467884ea407cb2be70ee59bdff597edec6e149816e553134e25aaf54Virustotal results 20.63%Heodo
2020-12-228Q50HDEQ0JNSHP77.docdoc 73132ef9149825650cd15e4cc30adc5672a95f12f241a676c2887d1af9d205ecVirustotal results 20.63%Heodo
2020-12-223C5ZQ4ZA43HFH.docdoc c694552f75318998b6225a21646a9893f1a581109b151e283b09868cc24424d8Virustotal results 19.05%Heodo
2020-12-22UCWMFD99O.docdoc 636b5138fc52da9fd4cc02ade2b4dc4986baf4b8614fec61d464e4a55f8e7e22n/aHeodo
2020-12-22GA64GX4G0P.docdoc 3cf79aa67b9b74d228fd5e8d25633f13d2282edaa63d6ebc02bc95d05ed4ef45n/aHeodo
2020-12-22674U6PTB5.docdoc 488f8395eba5921015765418ae513c78b43c6d199637c8f1df754431da65cb91Virustotal results 42.86%Heodo
2020-12-22R9FT3ZQJE2.docdoc dbd081ee503b65669b9a1a61dac9d5e95765bd9376783e784d2dae26751309cbVirustotal results 42.62%Heodo
2020-12-22T0WIJMQTS9.docdoc b4c07579191b925b8d588484fde55e5ff1e83e7b82f482d041b8913d1f2d7485Virustotal results 42.19%Heodo
2020-12-22IL2VUX6X2QZWD12V.docdoc 728cc49d103c584545f023a8f2ad931bc7748e3f2aa6e21af0f70705b034df80Virustotal results 42.86%Heodo
2020-12-22PALMR6SD.docdoc 0bf21df6643e15a9eadc034f6e7bb35aa9d1b1433bad331c1944fe60418e23b7n/aHeodo
2020-12-226NDOS7CLW7K.docdoc 6f31c56a8ea0949ade1a3cabc55e00d367bb073cfaf7f1b447258c79483910f4Virustotal results 38.10%Heodo
2020-12-224LKI0YFY8Q3U.docdoc 87cad8283d151d96c90fd747887dabd30d0012320be4132f2143deeb69c9c4e0n/aHeodo
2020-12-22AOF3OB9G.docdoc d314d90e4d1d49a5c8c82aa438c7c5c4be663a4f68879244a87adfffe358f8b0Virustotal results 35.48%Heodo
2020-12-220FHN27RX.docdoc f1d7afa9f6fa472313a13e477f62a40c8a9bd241db908f877589ba665eb6fbdbVirustotal results 34.92%Heodo
2020-12-22CP1QUASCOOIBB7L.docdoc 7ec200a834392208ae8521c4804d11ff669137b4265b732a17660527ccf3cf36Virustotal results 36.51%Heodo
2020-12-22IWLCCI6.docdoc 0ca72ce4d6b45d4c63a514d52e63ef5d16506801e86c1580e6196848f66577d1n/aHeodo
2020-12-22XIEKY9QM50KJYMM.docdoc 2eb890f47074a802abff73fabb722541ca607ff36a0139e4d236e875191e0078Virustotal results 36.51%Heodo
2020-12-22GNTCXGU46VIL91.docdoc 551910c092733b7324c377351583667a6389e76f8e36f1ee73c82d354f970cbcn/aHeodo
2020-12-22H8NHV0JVZ0F.docdoc 7be2388880d2ad20b0cfa616a726d7c91d2904da8f3f8ad4d2236d3c79e935fcVirustotal results 36.51%Heodo
2020-12-22333UJ3D8NI.docdoc 8d81a91518edb9064843167a920609e56978183e85642ee805484047d2629808n/aHeodo
2020-12-22T7RCO49YVVN.docdoc 44567a5fc7455899c29966d8b05b823a60aa48487ed47b4ee9262fbd73bb6a1dn/aHeodo
2020-12-222MDOG57NF1GW7.docdoc 6e64c93e0929da5ff396df56de2ba50ef16098d90feea49e0a1973edb6dd4238Virustotal results 31.75%Heodo
2020-12-220F86V4SKSBNRZHM.docdoc e48eb9cca61adb1998120f5444bee783433127651cae6b81024a94d30d219652Virustotal results 31.75%Heodo
2020-12-225I1ZXPZAGFO40.docdoc 3ffaf475cb8655c59598f2c4591efaf0b153a52173bfb3a63c238008edb72201Virustotal results 32.26%Heodo
2020-12-22I2IO69FCJPNSO.docdoc ff2576fe2ef3d0e73e1b95e7283535cf0d6874a1da73b31c6c320f25ac2a4245n/aHeodo
2020-12-2222C7FABRYYQWUTX.docdoc 0e2b9eed3b9232305b458a002be0af92bdaffd6da9b891db65a9469bd5d8d8e0Virustotal results 32.26%Heodo
2020-12-22AW4ZNNZVME1BL6.docdoc f35ff4dbefd6f9c8e60845a5843f71173fbdf6a04d17fa9c0603651b860a523bVirustotal results 30.65%Heodo
2020-12-22FF6YRJO5QOL2OJ.docdoc 40662dfab1c2354498969010dcf09c1998267de262631c1d19b8b7596278d92bn/aHeodo
2020-12-22B733I8K.docdoc 676ba746091154d8c359580e500792f3b421e5c71ce4a42acc39ad450b612bd0n/aHeodo
2020-12-22CGNKE91L6DIAPC.docdoc 776b2b58c63e7f8a7fb02fa5b3417b23424f00e19b62cc13de945804930442b3Virustotal results 29.03%Heodo
2020-12-22O28I0DQ.docdoc 330855c6fb6887b109239e67fc7ddf99aa7173ca57731eea0aa95aa901dc099cVirustotal results 47.62%Heodo
2020-12-22E71O4ODW8OYUS.docdoc 419de57605bb9474687edcff1207a053c0da9c08c58d7ad4671981603cc08743Virustotal results 47.62%Heodo