URLhaus Database

You are currently viewing the URLhaus database entry for http://gurtekinler.com/wp-content/Uc7ze7iephRBkO6tvQRa0qW8Mj5JSe/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:937888
URL: http://gurtekinler.com/wp-content/Uc7ze7iephRBkO6tvQRa0qW8Mj5JSe/
URL Status:Offline
Host: gurtekinler.com
Date added:2020-12-22 10:34:11 UTC
Last online:2020-12-23 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-22 10:36:29 UTC to info{at}veridyen[dot]com)
Takedown time:20 hours, 59 minutes Good (down since 2020-12-23 07:35:58 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-23BMUJJ4SI.docdoc 000b049debe1595e96d46d2cb910795e269d9d3f1b3210bfa45901356b3b3b3aVirustotal results 25.81%Heodo
2020-12-22459J1S.docdoc 05c57f48c8b1958bf16f64a292f9aa05a43f6185d02c54a0d8cf03b2fbc56ab5Virustotal results 25.40%Heodo
2020-12-22CTC22PYV4D0N4.docdoc 893d0822b033e0d5ea0484d9a61ce0354833603684cfb54e8e493f2740641784n/aHeodo
2020-12-22KCK0QUMPD45YECG.docdoc bc80ebc602752fe60bc486b8620ac2692c2cf2f368e79cecd3a281ce807855e8Virustotal results 20.63%Heodo
2020-12-22BDDL1YE8U89UK.docdoc bdfab9675a34c6da34487f2c70f297960002e6c3c2a8e6fdc60ae7edbe67101en/aHeodo
2020-12-22IJ8JFKG881.docdoc 3341a695c836613d9bba02fa005f2413c407d48a7fd940180b6d4c38788fa592Virustotal results 20.63%Heodo
2020-12-22E7DKYYAOJIO.docdoc fb2dc7dac3bf88b2407c132ee3640a68b2eec868b255245d07b6b88306065203Virustotal results 19.35%Heodo
2020-12-22KVU95HUQH3PC5GU.docdoc 29d2dd0591e75e000a0c6b8b889a9a1cafe79ce1f5b6a3468d55e31d7a820490n/aHeodo
2020-12-22PBL6ADMM.docdoc fdae3e00f4bbdb0f496d2b32042e4e5ceb4c10422ae4c809777f5677e0f4a2eeVirustotal results 20.97%Heodo
2020-12-2252CLJNKEZFJE.docdoc 2b3c9804804fdcc11bb7fe3e0d269d644f968eae8f77d314ab1e8e700529d5e5n/aHeodo
2020-12-22T452ZX2LK.docdoc 38c88edd4794af1b22aa61cf3280125279349dbe7040742abea9ad97b8bbccd5Virustotal results 17.74%Heodo
2020-12-225UK83F2TYN.docdoc 1d5cf0fff53e0485bae46b34b71fc4b886376d458e91b8eb88a04296f36f9aadn/aHeodo
2020-12-22IWNLN15IUN3LQX.docdoc 755b0648467884ea407cb2be70ee59bdff597edec6e149816e553134e25aaf54Virustotal results 20.63%Heodo
2020-12-2275TEDD.docdoc 4b89dfb2fe2832ee2b48fda59db6b7394a32e427c0363058b6d9caa2eb21d3b6n/aHeodo
2020-12-221MTQGOC3O1AP.docdoc e5614cfb775d155e08d37cb94f971696d9f60791a83ac671d7e6929438337933n/aHeodo
2020-12-226V99T418HD.docdoc 2e0385f5241c415bb29b64085cd40afd6761d486a6c196a29fdc5ba314112960n/aHeodo
2020-12-22DGYGWJ.docdoc fabd2798310f1b90dc1321bffbfa1ee8c41695839459d40fd6e32618d3df7ccbVirustotal results 45.16%Heodo
2020-12-22WNVO2ZDP3.docdoc cf6c363eb34d0c34ebdf5b4e79c44e7bbf6a2831b189f929102e3da045fd0b26n/aHeodo
2020-12-22NP0BA9ZBUCPNT.docdoc 5090cb025d9c5cabd2334cee809b16b5121574b65d9b9a288e165c1cfe95d03dn/aHeodo
2020-12-22AGBLGIWAC8.docdoc 40a6e4fc5788a8fe8d3ae1e732c5f4ac0ac13a1bff111aa979d857b4a82ddfaeVirustotal results 42.86%Heodo
2020-12-22Z3IIH6JM.docdoc 46d74826799bc3bea6197713c8b199ed1faed920028c4d3acc7cbcc186276b6fVirustotal results 42.86%Heodo
2020-12-222WOU0FT371TML7E.docdoc f263f7f7759848e0f9900bddc71fccc212d9432b745154fb9529ec701034a945Virustotal results 38.10%Heodo
2020-12-22IHZB6QJJUPUUOBW.docdoc ca93317d1d526ec7ad19a487cfff9df808e5ca37aefd09b481f17cb982adf0ben/aHeodo
2020-12-22WF4XY1K0GHDTN91.docdoc be0dbaaec3415c76acd2fa6e9c3969d8bf86f058be7e69e357518e173ba4d246n/aHeodo
2020-12-22IRB10HZIJ0.docdoc 02da530f198d747d124f0554938c6718e94f78528286171a3a3298e4eee488a4n/aHeodo
2020-12-220ANYOU.docdoc a93bf1dae053588d5f7174c570551c0345f3aa682c6ff34789661370833c6c8en/aHeodo
2020-12-228ZERJZT.docdoc 30fcb0b638fa78c9ec712cfdde89641c5d6a6ae28c3bd1fa75b29f9b78855721n/aHeodo
2020-12-22RWLSFHG.docdoc 6e80cf87bd4ef21287958848ca5250a78cf17cf17f09a9b1b11cd37a01a24202n/aHeodo
2020-12-22NNCZQEST78W.docdoc 7ec200a834392208ae8521c4804d11ff669137b4265b732a17660527ccf3cf36Virustotal results 36.51%Heodo
2020-12-22T3KYOXVKF44ENN.docdoc 0ca72ce4d6b45d4c63a514d52e63ef5d16506801e86c1580e6196848f66577d1n/aHeodo
2020-12-22E8EYV7.docdoc 2eb890f47074a802abff73fabb722541ca607ff36a0139e4d236e875191e0078Virustotal results 36.51%Heodo
2020-12-226053XZ.docdoc 5d45aae2fb42f515daf99e0df859fe8fb728ded811e109bb5221a8b34bcaaed4Virustotal results 36.51%Heodo
2020-12-22R0WEB5IL.docdoc bcd43a28292c3b23ddb842d173e09e82095f9de58af9eb9feec0035c916e8156Virustotal results 36.51%Heodo
2020-12-224L1XMKIDS04PR01.docdoc c36ccb44ed8e4738a008a47a2f239b959c43bccf182812765cb32671cbf943bfVirustotal results 33.33%Heodo