URLhaus Database

You are currently viewing the URLhaus database entry for http://bilhen.co.za/abante/mP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	938763
URL:	http://bilhen.co.za/abante/mP/
URL Status:	Offline
Host:	bilhen.co.za
Date added:	2020-12-22 16:28:09 UTC
Last online:	2021-06-03 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-12-22 16:30:25 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	5 months, 12 days, 17 hours, 49 minutes (down since 2021-06-03 10:20:20 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-03-26	HDWZGXPMKGP.doc	doc	abbe43b0919f2084a2f175ced0c30d01286782a6393b3689956a77c2deab1639	n/a	Heodo
2021-03-26	HDWZGXPMKGP.doc	doc	034c98dfa31762e7f1db596769d264a76717391137466f1ff8703236ab4b0361	n/a	Heodo
2020-12-23	PHRWINVA6.doc	doc	768f3c029cc79ae21d7c732487da93f0e8c7d19a83737f9ce7e107e3adc9054c	43.55%	Heodo
2020-12-23	YQVW76VB4.doc	doc	66e2a898e0b029a13f3091ffd91aa453888cf996011f8ecaf3b4a4439b68d413	41.94%	Heodo
2020-12-23	LVM9FX3YYX.doc	doc	6ed5539e92f43fcde23dc6343c4f41a93050576180fad637adc5014a49ed38aa	41.27%	Heodo
2020-12-23	R53IH1PLZ16AS.doc	doc	e706341bc37bf712b1c9cde4133f7a479e41cb8e6f4b9e9fdd3e3eaa8dcb91c1	41.94%	Heodo
2020-12-23	08YF64X2GZ.doc	doc	7416386288f2b36c8a780f8bb2536f6322592a995fd19adbf86a919088563240	n/a	Heodo
2020-12-23	BZSUJN9MX0X11.doc	doc	0694e34c9b65631f74351ab2bb680c7d1ac6726bc4948a8897bc8bd62fd073a9	41.94%	Heodo
2020-12-23	U10INLY5EFPO7W4.doc	doc	0339f21444ef1ad35fc320d6879ea93b08d3aea53e25aaf3c5b841a2cdad855c	n/a	Heodo
2020-12-23	DTZ097QX6LH6BL.doc	doc	883f2d94856edd7ee7d9ddefb4cb9c49b0300ad23fad3aa88f3c020d166b771e	n/a	Heodo
2020-12-23	I04MHZHYVC2W7.doc	doc	53607b62fc227216a0de7e569922ef170b8d25443b8839f2a77717fddeb43e38	n/a	Heodo
2020-12-23	02RR6M616V1.doc	doc	94d804683ab1c9195ece193461e872d75b4835c2ee0fc73886dcca02a89463ed	n/a	Heodo
2020-12-23	NWUL15S.doc	doc	e2f1be59a592252d8ca4e2fa82196b97ccb8967f41f6a7fed224944af38fae1a	30.16%	Heodo
2020-12-23	9QX6OR.doc	doc	63725aa4926dac422d6710c815b80ad10e66b882656195a75ef13b9816cf7c53	26.98%	Heodo
2020-12-23	0K323EFFL.doc	doc	e9df17a69800a02dc5484a6fc60d1e9f19f7059ed8f0ef9c7847beecc39968a3	26.98%	Heodo
2020-12-23	9DZEOLNN9GL103.doc	doc	0149c806df64185dc66ee1fdc857e25ee93def1f7db847487674959d2b9306d1	n/a	Heodo
2020-12-23	2X4FF9CPZXD4B0K3.doc	doc	a28b7c24587230e5ac5533afb0324572f1d1341d264eccba2aaf6b2a34e5ce81	25.40%	Heodo
2020-12-23	COBBE8IB5CI.doc	doc	49f4475b4c4b63927d612bfcfc707d4a25237813c727333fbcb42fec441757dc	23.81%	Heodo
2020-12-23	1DV2OWFILEY78.doc	doc	f8d8367d54febac27068bc20e25b1c3260b9bdc78d4874c00368e65ec2e37cee	23.81%	Heodo
2020-12-23	GSIKUF1N6.doc	doc	7e0f29831e6732a730d1b231a94cae3a27525976381cf6b97d15fe45c295f239	22.58%	Heodo
2020-12-23	8DITVOFYN7E1Q.doc	doc	a73f829ec3af1cb01879498a3d3c485fc4af82f8214ac8a42e543f0e12fa3e45	22.22%	Heodo
2020-12-23	DPZQP99NCSWR8YBZ.doc	doc	d5231db757615d38ce982ea1272ef281efc93dc8105418c890e8f9e59d76ef0d	22.58%	Heodo
2020-12-23	3W1A2I.doc	doc	318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95	22.22%	Heodo
2020-12-23	C4IQPOL.doc	doc	6083b405a5bfb099398dc2417486e1c2913bba82b96baff811a71ee6feb0884d	n/a	Heodo
2020-12-23	3FB54AOBRIA.doc	doc	ebfadd85753d033e248aedd9f9c5772331aff8dc35049d0842e8c423d64ea08c	20.63%	Heodo
2020-12-23	QZEET02DPZEX6SAH.doc	doc	60029fa95c17ba479a9ed424abc3a3f684111997424360741b67de478d0bcd4d	n/a	Heodo
2020-12-23	WLHL9L0U.doc	doc	cf2febee508b7992d107d1a46b3deb724fff5b3905e1b7208ed0b5106c2b63ba	n/a	Heodo
2020-12-23	7EJRSXPPIL.doc	doc	ba9ea1c4a35b426bb909eae9b8b40a6acdd5a80c1cea10d8a336338a7b282522	40.32%	Heodo
2020-12-23	XV0GOS.doc	doc	77476e25aa9034df5f54eb93a92ea7144c57945b92eed68b1956044666957d33	n/a	Heodo
2020-12-23	XWWJSUR.doc	doc	93901d975d0df11ab32c4eaf841b43684882ce002e1222696c629076b1b81792	41.94%	Heodo
2020-12-23	PKH78BTCBO.doc	doc	47207dfadb642d35013dc02b38b9dbf49b10333f7447728b8471863fc9ca568f	n/a	Heodo
2020-12-23	I8QHIGXZHMMKH26.doc	doc	70cd2d38d41ecad15addac25c6e09641cce2f946161ecf261e639a09576ecb8b	n/a	Heodo
2020-12-23	4MZAWZ38D7.doc	doc	b534c439ac7a89c6af82331ebd70e5b5ce5e13a2e871bb7ab122b00004605e97	36.51%	Heodo
2020-12-23	2VXM2NO8A4DO4.doc	doc	74ca579457b696e80799f7acb8b3caa43a1a05be7c10a42fdfa94b1013490c07	32.26%	Heodo
2020-12-23	W00GCSAZ3UVFKM69.doc	doc	2cb1d46e5ca1af22841c4a613b16ee60be1c474065ae89053cc02c6d3740101b	32.26%	Heodo
2020-12-23	L2GAPT.doc	doc	cd26f4220386d91ffb1a0233ece99c207f4335aab6a4c6227d64756f16500ef7	n/a	Heodo
2020-12-23	H584Y0B65V4LT.doc	doc	4eba0fea9764ce2f90ad0ab87a752c374f7f33295336278b98cea9f8cf47255f	31.75%	Heodo
2020-12-23	GT13YEBAX00CESO.doc	doc	32485683a42778008538745c1475cd3abc5d9ec4f8cbb3210100d448b9eec74e	30.16%	Heodo
2020-12-23	BXSQIBWKMHTDM3.doc	doc	6983d0de072547b29fe27502cd474096e7831a387d6980280fd1519c1cd86025	n/a	Heodo
2020-12-23	5E19JEBME0B.doc	doc	1f0dd0263393040d067ed555d604d764634263e4eb014755feb5d319af9db68d	n/a	Heodo
2020-12-23	RIVD7JC79C.doc	doc	c29f20dc33cf2304271a54734dc3746f342898284264bd66094dee544fc133bd	n/a	Heodo
2020-12-23	Q023QPFA27LV5ZU.doc	doc	158e3c1a9e0f1942aec57f44ff4569d2a576bad56846a77053f5b4f726c14258	n/a	Heodo
2020-12-23	S9Z2RG.doc	doc	eeeac0e4068f95a8d51d268eb14efdb0158a4a538bd414fde6f64911091f8211	25.81%	Heodo
2020-12-23	QC7CDU40.doc	doc	1f5a0f7a62383b576ac6f661f97a2c035e72d6f054e5b63ea53123ed9081dae6	26.98%	Heodo
2020-12-23	AFHQXJXY.doc	doc	c693baac5d3227d362a0fe99ad187c18cde1f45a404c94c881d424023303a744	27.42%	Heodo
2020-12-23	79Q9WXGRIYT.doc	doc	d4b572062438c3b6331322be310ee0209e104c180931c63dab258983c69f6dad	n/a	Heodo
2020-12-23	RVNLH9OK.doc	doc	9d2ad424f8d1a39e1cf83b8d64131bc94d8b8ecf787b626e1118e348fc967f10	n/a	Heodo
2020-12-22	HPSG22SOHA2BSO6.doc	doc	000b049debe1595e96d46d2cb910795e269d9d3f1b3210bfa45901356b3b3b3a	25.81%	Heodo
2020-12-22	DNL6V59.doc	doc	80565ed0ada236540991976a90ebc0b137d35995ba34993db276fd2808832950	n/a	Heodo
2020-12-22	LJNF1IR8GQNZM.doc	doc	05c57f48c8b1958bf16f64a292f9aa05a43f6185d02c54a0d8cf03b2fbc56ab5	25.40%	Heodo
2020-12-22	VVDVX8E72L.doc	doc	b88940065daeda56e1e49c0db60c1e275b39e435f83b785742242104d173a57a	n/a	Heodo
2020-12-22	YG8O0T6BPUI.doc	doc	bc80ebc602752fe60bc486b8620ac2692c2cf2f368e79cecd3a281ce807855e8	20.63%	Heodo
2020-12-22	8RJ2B2UBRHY.doc	doc	70325bb19664b06520c37b48c9b0deaa5232904551fa5d01a82ac5a6e735a626	22.22%	Heodo
2020-12-22	E7RVYLODADPM8780.doc	doc	3a6a1a101ff166519b8b881efee09a67e6b3fdd9de23e64eb8811d52604d9923	20.63%	Heodo
2020-12-22	ASFD05K4MOY.doc	doc	3a7e77468332deeec16a5228c4b955efb118e0b0d576e638a7a71ac7be04a5fc	20.97%	Heodo
2020-12-22	PIQADDG.doc	doc	ac4a11a17747f0db974bbb343bdf32d636c82bc667c3223c23567faab4377ecc	22.58%	Heodo
2020-12-22	MHUQ8XPS7OW73U.doc	doc	44b69ab822ea1d2cea11bde2cbf85cb033e753dcc8b5e30dc49cb042d3310aad	n/a	Heodo
2020-12-22	A94E5BTSVSKTES.doc	doc	79b2694e59e609ca6d7fcb4ae72e5c099d9da1a40eb352edeed9d7032ed5c9d5	20.63%	Heodo
2020-12-22	K37K3F1K.doc	doc	ffce79e8ecfa61f2f82aa9b40d611c100e6cd68cde6fc34b012ebbd21750908d	19.05%	Heodo
2020-12-22	OT3IFC124FIB6EV.doc	doc	1d5cf0fff53e0485bae46b34b71fc4b886376d458e91b8eb88a04296f36f9aad	n/a	Heodo
2020-12-22	HT6F2WI9.doc	doc	755b0648467884ea407cb2be70ee59bdff597edec6e149816e553134e25aaf54	n/a	Heodo
2020-12-22	IEQ91UBU9FPY.doc	doc	8d0a380012f874d975499d45632b01438dc0e7a4d6bdf4791c400e375b02acb4	n/a	Heodo
2020-12-22	6IOLFT4H.doc	doc	fabd2798310f1b90dc1321bffbfa1ee8c41695839459d40fd6e32618d3df7ccb	44.44%	Heodo
2020-12-22	X5AHIZ8KLFFH5.doc	doc	d86732f28284b8dbef93bd8eeee3150fa2696a1ccc22d520bd82a2a53c58c32b	42.86%	Heodo
2020-12-22	5TTS9DDB6H275S64.doc	doc	7f7cfdf40853bbfed2268dc75e4981abae04045ef5571e0de2bb61f69578991d	n/a	Heodo
2020-12-22	V8TZ3JKUQHLH4.doc	doc	b0116ad85e9336df147a793ad30d615386ccf2df1095c8cf30ada653b5349f3e	42.62%	Heodo
2020-12-22	SSHQ2T3MT.doc	doc	5961f5f44cedfac8a1de3568cdad7e244f181b87395cdcc5f31e7d102457cdc0	n/a	Heodo