URLhaus Database

You are currently viewing the URLhaus database entry for http://bedigi.xyz/cgi-bin/fKci09A5TrmXN3f6ckgE2XQwQhiJ1/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:938773
URL: http://bedigi.xyz/cgi-bin/fKci09A5TrmXN3f6ckgE2XQwQhiJ1/
URL Status:Offline
Host: bedigi.xyz
Date added:2020-12-22 16:30:06 UTC
Last online:2020-12-24 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-22 16:30:28 UTC to abuse{at}publicdomainregistry[dot]com)
Takedown time:1 day, 17 hours, 56 minutes Poor (down since 2020-12-24 10:26:56 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-23K12ZLX.docdoc 768f3c029cc79ae21d7c732487da93f0e8c7d19a83737f9ce7e107e3adc9054cVirustotal results 43.55%Heodo
2020-12-23LQ06ELJF.docdoc 66e2a898e0b029a13f3091ffd91aa453888cf996011f8ecaf3b4a4439b68d413Virustotal results 41.94%Heodo
2020-12-23AKZ6Y9VUTG1ZND.docdoc e706341bc37bf712b1c9cde4133f7a479e41cb8e6f4b9e9fdd3e3eaa8dcb91c1n/aHeodo
2020-12-23UTS0Q2NK840W.docdoc 0694e34c9b65631f74351ab2bb680c7d1ac6726bc4948a8897bc8bd62fd073a9Virustotal results 41.94%Heodo
2020-12-23D2H4XKZLZN.docdoc debda494b0bad3be7b136c399dc6d16f1aa643cc3611c5fa3ffc9a4d32d2c808n/aHeodo
2020-12-23RYZ700QLSQ600H.docdoc 395efc9f98f81ccdcbfe6f9bffdd0e0ea5a2611e4542e43f1241c649713bf46dn/aHeodo
2020-12-235HH5Y7.docdoc e2f1be59a592252d8ca4e2fa82196b97ccb8967f41f6a7fed224944af38fae1an/aHeodo
2020-12-23DVWHATRF4FP0N.docdoc 2edf013ada24ea7a142b0844b980169d465e7f5aefdaf645b44ece962d10d74an/aHeodo
2020-12-230PSQLZZNLX0U.docdoc a7b7abb4d144045e42bf5e55e294d5b67850d11ccaac312734570ccca072851fVirustotal results 26.98%Heodo
2020-12-23DX6CED.docdoc 093e325f8e17124f9f181fc838f22a865b3b150c5cde9e1254345ebd6fb189dbVirustotal results 27.42%Heodo
2020-12-237A8F53RKYPICUW.docdoc 0149c806df64185dc66ee1fdc857e25ee93def1f7db847487674959d2b9306d1n/aHeodo
2020-12-23PL4TZ4LXEO.docdoc cb4f991bd4228ec60ab6af1bab6193e68f4fadf3a30b226e7ee9cdfe893113a0Virustotal results 23.81%Heodo
2020-12-23SP80XBIS5.docdoc 49f4475b4c4b63927d612bfcfc707d4a25237813c727333fbcb42fec441757dcVirustotal results 23.81%Heodo
2020-12-23VXLSOURSOA.docdoc 8538d00638c32a97eac2e8a9e1766a39268d8effa55c28026d3b75fe114dbc18Virustotal results 23.81%Heodo
2020-12-23TWRDJY0UD.docdoc 7e0f29831e6732a730d1b231a94cae3a27525976381cf6b97d15fe45c295f239n/aHeodo
2020-12-23IY8JIBQAP7VKV2.docdoc a73f829ec3af1cb01879498a3d3c485fc4af82f8214ac8a42e543f0e12fa3e45Virustotal results 22.22%Heodo
2020-12-23MV6314D22CQ.docdoc 15231bea81bede2d3149669c6501c6a8ee8338cdd374c53eb34c9737249b040fn/aHeodo
2020-12-23F9XW82Y67L.docdoc 241c359520f4cef1af1de9d4789bf620f8086c7feb5aa2deba772b87aef3d514Virustotal results 22.22%Heodo
2020-12-23JRTKWMP9X3NL.docdoc 318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95Virustotal results 22.22%Heodo
2020-12-23CUSKAVZGNPH8JI4A.docdoc a8a5d52ccfe6f7bcc1ef7c99087ec90083ea7e3851e760b0653bd4189d54bc9en/aHeodo
2020-12-23D2LVAWPD03.docdoc 383bbcf6e40f5db6ccf0a07f33eb55614c381daaae647ebf0ed8db148d4ab7fbn/aHeodo
2020-12-233E7N3N7UB41YX4.docdoc 56355a08b488d103b9a4d6226e1cf2cac8bfdc7381febb47feec6b0eff3ac332Virustotal results 41.27%Heodo
2020-12-23BG1OGH0FV0.docdoc 4a6d02a3adc59903ee067a5abc702d78fb31c61deb56b7360fade2ec85195569n/aHeodo
2020-12-23QOTBIF1Q.docdoc 0b92e01b938b2941f4f0940c53a2f53da1f523d08ac18e2f8bc4dd9cc96b52a5n/aHeodo
2020-12-23OR0ENQ8E.docdoc cf2b33d88046f8e39c8299718c9132fc22247ef02bfe6ae6d404b0ca1c7c6119n/aHeodo
2020-12-23BZMMK3867X3JYYUV.docdoc b534c439ac7a89c6af82331ebd70e5b5ce5e13a2e871bb7ab122b00004605e97Virustotal results 36.51%Heodo
2020-12-23O7BAFXZNZ9WKTU6A.docdoc fd76c945ff05629b1e31b55378f97c543c8dce7496389385dae3fd4b8acfd12dn/aHeodo
2020-12-23FYEDVCJOR.docdoc 2cb1d46e5ca1af22841c4a613b16ee60be1c474065ae89053cc02c6d3740101bVirustotal results 32.26%Heodo
2020-12-238MU16VRUP.docdoc 525689f16129765cbfcab859edd5d99fbbec461ea04160605819b2f4b6150042Virustotal results 27.87%Heodo
2020-12-23HCVOPS9EDU.docdoc 4eba0fea9764ce2f90ad0ab87a752c374f7f33295336278b98cea9f8cf47255fVirustotal results 31.75%Heodo
2020-12-23J5JAGJP.docdoc 7d6eb358ac00135b897eab00b943cd207655aa43d509355de0969a65d0408a3cn/aHeodo
2020-12-23RXEJ713UPUNX.docdoc 1f0dd0263393040d067ed555d604d764634263e4eb014755feb5d319af9db68dn/aHeodo
2020-12-23GL0LUXF4.docdoc 64df2f4241becefb0876d62be5908b4d62620e2aeb97828cb2819d952d106f11n/aHeodo
2020-12-23S9SP2TFF8XD.docdoc c29f20dc33cf2304271a54734dc3746f342898284264bd66094dee544fc133bdn/aHeodo
2020-12-23MBR3ITGQFC1.docdoc 9c7952a624d186c2b830ab71d66e1e4369b998c0cfbf98bbc7530f5369530000Virustotal results 26.98%Heodo
2020-12-23F35SLDNK8ZK1VZJ.docdoc eeeac0e4068f95a8d51d268eb14efdb0158a4a538bd414fde6f64911091f8211Virustotal results 25.81%Heodo
2020-12-2368LHARHOYNIW6XNH.docdoc 1a0263e1f86a9148e3b7434c12cc232b3a3c92df63c0aa48641c627e87949106Virustotal results 26.98%Heodo
2020-12-23H8DH1ZBO75D2K.docdoc 31f327ab8307786ee50af20aaf5c4c2b6ecc974b69a584c78a2dce04fe5d327en/aHeodo
2020-12-23A5MOUD68Y2I.docdoc d4b572062438c3b6331322be310ee0209e104c180931c63dab258983c69f6dadn/aHeodo
2020-12-22E9M3G2.docdoc 000b049debe1595e96d46d2cb910795e269d9d3f1b3210bfa45901356b3b3b3aVirustotal results 25.40%Heodo
2020-12-22DUFOPB425.docdoc 54a40564f1605df3d177f233fb61ed59c38f1c8adea1284aab637fed81289a4dn/aHeodo
2020-12-22EMO9SYFCHFH7F2OE.docdoc 893d0822b033e0d5ea0484d9a61ce0354833603684cfb54e8e493f2740641784Virustotal results 22.58%Heodo
2020-12-22ZOGQS3J4U1N53.docdoc bc80ebc602752fe60bc486b8620ac2692c2cf2f368e79cecd3a281ce807855e8Virustotal results 20.63%Heodo
2020-12-22MZRMLT1K22.docdoc bdfab9675a34c6da34487f2c70f297960002e6c3c2a8e6fdc60ae7edbe67101en/aHeodo
2020-12-22UD21KQRSH2NAD3.docdoc 2d523850bbd1d5abcaf76fcaceba272f038d954a97263941a3375c3301a1e2eeVirustotal results 20.63%Heodo
2020-12-222F9WAJ.docdoc e2e85f53c26daaa6cc7e1fe602e51f272ac256cc0c23725350d37b4a5a888520Virustotal results 19.35%Heodo
2020-12-223OC3AAO3FHN4MY9.docdoc fcb9b90dfcd26f2ca098e3e522a02a70f160942e0da538b33aec3bf419384a7dn/aHeodo
2020-12-2204YKBXO0T.docdoc ca5ed41e13462908c3e7441204044d8519693a667e88e9ffff1cc566247f915fVirustotal results 20.63%Heodo
2020-12-22Q90JVCC1P4VOUVNJ.docdoc ea9e0d2591e09cdea3ac66cbd5410ca96f9bbb033f240fd580c71854292003b9n/aHeodo
2020-12-22Q7HPKFJVZLE8.docdoc 9f7aad87f317746b7406ba4aca0dd08523157fee59f582eb3e1022e92fad7f73n/aHeodo
2020-12-22FU04VAF.docdoc 0e0a8e32415a80ba95b8af747d13f3b6312498145d1677df7641ba3c9cf8e9b6n/aHeodo
2020-12-22ZQAAMI5R78ZLF9L.docdoc 4f5599c715d0f5df48a422eccd4a26ea4241f806855c3ef36fcc7db874c976d6n/aHeodo
2020-12-22MH5RV5A6N8.docdoc f7c7d960892c6eceda47d8b21609311323d84eee43e2d6fe065c9c770204941bn/aHeodo
2020-12-22G3SCDAGSOD.docdoc 1d5cf0fff53e0485bae46b34b71fc4b886376d458e91b8eb88a04296f36f9aadn/aHeodo
2020-12-22EEZTU3TFNY.docdoc 3e85ec8cb82ca5f5fe148bbee44739d915ff8413a23e4deb32326b4b57b68d8bn/aHeodo
2020-12-22293UFQGBK.docdoc 73132ef9149825650cd15e4cc30adc5672a95f12f241a676c2887d1af9d205ecn/aHeodo
2020-12-223J0YCZF.docdoc fe3fc65fb1e96044ac8d1bc675d4abb6956734dc2e446aa2d073c2808365f6a6Virustotal results 19.05%Heodo
2020-12-22GA4DX6KS82.docdoc c56452bc0ff9abfcda3df47210eba4e178e55a49d0673f42c9d192ce0234ca64n/aHeodo
2020-12-22AAYGG276O.docdoc 7502643f790e60f6929633b08e891ff81ad310001525c345b9dc2b448c1373b0n/aHeodo
2020-12-22NFP6WT.docdoc 53349be9f04bd91fc2896163434923295124f86d9f8cec1d0c6a244cc15bde9dn/aHeodo
2020-12-2220RPEDX2.docdoc 4665b18e5944f23543e9221d4726aac54759376ebfec0ef20574655e71d77076Virustotal results 44.44%Heodo
2020-12-2269WY74Y60SOQQV.docdoc cf6c363eb34d0c34ebdf5b4e79c44e7bbf6a2831b189f929102e3da045fd0b26n/aHeodo
2020-12-221QSZMS0.docdoc dbd081ee503b65669b9a1a61dac9d5e95765bd9376783e784d2dae26751309cbVirustotal results 42.86%Heodo
2020-12-22UW9C0E3W5UV5L0VO.docdoc 40a6e4fc5788a8fe8d3ae1e732c5f4ac0ac13a1bff111aa979d857b4a82ddfaen/aHeodo
2020-12-22YGIEHDZWX9CVLABY.docdoc 5961f5f44cedfac8a1de3568cdad7e244f181b87395cdcc5f31e7d102457cdc0Virustotal results 42.86%Heodo