URLhaus Database

You are currently viewing the URLhaus database entry for http://homatalwatan.org/wp-content/uploads/t5Zc10ncLwB4xJLFM1KkiptluxDn1lpUbAPiYXhWsagzcBfGJMje8cba77s/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:937806
URL: http://homatalwatan.org/wp-content/uploads/t5Zc10ncLwB4xJLFM1KkiptluxDn1lpUbAPiYXhWsagzcBfGJMje8cba77s/
URL Status:Offline
Host: homatalwatan.org
Date added:2020-12-22 09:55:06 UTC
Last online:2020-12-22 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?):mail Yes (Ticket DCU003188793 created on 2020-12-22 09:56:06 UTC)
Takedown time:9 hours, 37 minutes Good (down since 2020-12-22 19:33:39 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-223NZFT97CCSIH3.docdoc 964002e25b6ff27acd3902a75ecc4293ba67968a23055e94748a0ba2c31c8d78n/aHeodo
2020-12-2212Z6FF.docdoc e5614cfb775d155e08d37cb94f971696d9f60791a83ac671d7e6929438337933n/aHeodo
2020-12-22X86KPADK0MKB.docdoc 636b5138fc52da9fd4cc02ade2b4dc4986baf4b8614fec61d464e4a55f8e7e22n/aHeodo
2020-12-22TXD3LR49IK.docdoc 53349be9f04bd91fc2896163434923295124f86d9f8cec1d0c6a244cc15bde9dVirustotal results 19.35%Heodo
2020-12-22VDGAPDF.docdoc 3bf3ce943eb3a98b8fb23de45f72f9eab5c5c7ea78a98aa07a8ba5cf0d190d1dVirustotal results 43.55%Heodo
2020-12-22UAN3X9ZA2PX9CW.docdoc f9cde2aedc4f7b8ed8a2795c97febd0fa0caf980946d9d19819e7ba870f2ac23Virustotal results 44.26%Heodo
2020-12-22GAWZY4JYLE.docdoc 6191dcfff06f36e7ae3ffab9272718d60482913bac94ce985ce8a5eaca930e26n/aHeodo
2020-12-22X44ZB17EI86VMV.docdoc b4c07579191b925b8d588484fde55e5ff1e83e7b82f482d041b8913d1f2d7485Virustotal results 42.19%Heodo
2020-12-22GUWJ2HYWHD90T3.docdoc 46d74826799bc3bea6197713c8b199ed1faed920028c4d3acc7cbcc186276b6fVirustotal results 42.86%Heodo
2020-12-22K6XQP2.docdoc af92a129d35b30bd55269f49ba230a5702cee5b9b18634c2f4829d052d208089n/aHeodo
2020-12-222TSQA75UUDX9AFUF.docdoc 6f31c56a8ea0949ade1a3cabc55e00d367bb073cfaf7f1b447258c79483910f4n/aHeodo
2020-12-226UKRUYL5Q.docdoc 0906ccd9d06e96d68c703f978adce40508265b51032f906a9d16c86e0194f779n/aHeodo
2020-12-221MIOXNI1K.docdoc a85281de5e12bffcd8f98cb6280e13cfd6223c6325cffc92d80ee618c167bc2aVirustotal results 34.92%Heodo
2020-12-22W7ZWC8JA.docdoc ff2954eadcc20b415743bd17518e46bff0bd81c42bafb57b28eba3bed664b041Virustotal results 35.48%Heodo
2020-12-22049CDNA2Y9NAMV22.docdoc d314d90e4d1d49a5c8c82aa438c7c5c4be663a4f68879244a87adfffe358f8b0Virustotal results 35.48%Heodo
2020-12-22RNBEDLT6G506HS.docdoc 86942bbcea50514ec00c4794847620c7ab3863657d7cc8119cf593ffb539cae7n/aHeodo
2020-12-225S3GNAGQ6.docdoc 65ee3709af3223578ca9630bd211afca9a02224398426e501095c895e24f7443n/aHeodo
2020-12-22W34S1FSP0Q8LMV.docdoc 7ec200a834392208ae8521c4804d11ff669137b4265b732a17660527ccf3cf36Virustotal results 36.51%Heodo
2020-12-22YSMHD1LU2.docdoc 0ebdff0201647a1df0ad578dcdfff8ca9e91c379b6183c53845de8e226b95c39Virustotal results 36.51%Heodo
2020-12-227T3RY6BJYHWNE.docdoc d1f80b7c07e821a23ed98aea9fea39b3cb0c0e9dd65fee3291a32c01a8086659n/aHeodo
2020-12-22LEJ2DA.docdoc 5d45aae2fb42f515daf99e0df859fe8fb728ded811e109bb5221a8b34bcaaed4Virustotal results 36.51%Heodo
2020-12-22C8I2O84BXY.docdoc 5859c620940889e8f706d72a664c360201c9ba13ef890968418d85e89488b940Virustotal results 37.10%Heodo
2020-12-22JDH7ZY6K.docdoc 7292c516ac9113d592f6b1c71e307b9f68ae9ffd6b43230a57356f3ebdc776e5Virustotal results 34.92%Heodo
2020-12-22JXOX80DE537.docdoc 1ebb0eb36a2dba1d5dd9648b8e96e8e7c03fb0cddae7d0060ad0aa7990f5dcefn/aHeodo
2020-12-2284WDT77086EE.docdoc f5c3a4835556312def47eec6b714b8a28021bcd8815fe1151f2f2a5097b20c9dn/aHeodo
2020-12-2280R9ODJ8B.docdoc 9720a3e0e322e5daf89a2d48916ae17a8d58eadcf34fdbddd7955ecf2d7007e8Virustotal results 30.65%Heodo