URLhaus Database

You are currently viewing the URLhaus database entry for http://clicktrust-bayard-europe.brand.works/wp-admin/rv7A/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:939641
URL: http://clicktrust-bayard-europe.brand.works/wp-admin/rv7A/
URL Status:Offline
Host: clicktrust-bayard-europe.brand.works
Date added:2020-12-22 21:23:05 UTC
Last online:2020-12-28 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-22 21:24:03 UTC to abuse{at}digitalocean[dot]com)
Takedown time:5 days, 12 hours, 35 minutes Bad (down since 2020-12-28 09:59:32 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-23LQ8IVA8ZDE1VA0.docdoc 768f3c029cc79ae21d7c732487da93f0e8c7d19a83737f9ce7e107e3adc9054cVirustotal results 43.55%Heodo
2020-12-23L6ITVAS5.docdoc c8d4a144217b712971ade5a673650773aaa202a9836fdd8c3ae73ba08bd5398eVirustotal results 43.55%Heodo
2020-12-232RH2N6KGSECTKEE.docdoc 2baa7224260f2947c16ecfa457d8a36e37774ad2b29d341616d9e1f2a6d4b561Virustotal results 41.27%Heodo
2020-12-23XPKEFB.docdoc 7416386288f2b36c8a780f8bb2536f6322592a995fd19adbf86a919088563240n/aHeodo
2020-12-23VD1NA1C9K0YNN.docdoc 54ed122348f1eb4575e53cf51a436566a3a19e35d0120a52eb54ef53895f855eVirustotal results 41.27%Heodo
2020-12-232Q2NVPPUZ1N4K40.docdoc 0694e34c9b65631f74351ab2bb680c7d1ac6726bc4948a8897bc8bd62fd073a9n/aHeodo
2020-12-230NSATA.docdoc 0339f21444ef1ad35fc320d6879ea93b08d3aea53e25aaf3c5b841a2cdad855cn/aHeodo
2020-12-236JTVXSKEQ5YIS.docdoc 53607b62fc227216a0de7e569922ef170b8d25443b8839f2a77717fddeb43e38n/aHeodo
2020-12-23P1HE27U6OVA.docdoc 94d804683ab1c9195ece193461e872d75b4835c2ee0fc73886dcca02a89463edn/aHeodo
2020-12-231L5KZP2.docdoc 8aac323bb90b4aa43f663e31e58a2973cf36b32fc5acfeec8d40fca09a50a7b5n/aHeodo
2020-12-23CAY7PY.docdoc 2edf013ada24ea7a142b0844b980169d465e7f5aefdaf645b44ece962d10d74aVirustotal results 28.57%Heodo
2020-12-233P1K63DL8.docdoc 6a99fa281763f28746b1f915866c7f2897b69d09801f3b0ac0a61517f17d90e7Virustotal results 26.98%Heodo
2020-12-23LEU5GDBCQIT.docdoc a28b7c24587230e5ac5533afb0324572f1d1341d264eccba2aaf6b2a34e5ce81n/aHeodo
2020-12-23DAG3HZM.docdoc 8538d00638c32a97eac2e8a9e1766a39268d8effa55c28026d3b75fe114dbc18Virustotal results 23.81%Heodo
2020-12-23501GFEYV9U9AU.docdoc 59beb0cb64d142274d978c425b55fc8a7e7053f2f8840c09b9d751e56cd6f7d6n/aHeodo
2020-12-23TFXJ7HQG.docdoc 1b7862cdd7e11129f0b2efba625efa4a4298cc9610881f0e2ecfef4299a10afaVirustotal results 22.22%Heodo
2020-12-234FWAVAV.docdoc f989bb90fd752549af52988b47a9cf55638f97c26ea723457efd21cdab409da5n/aHeodo
2020-12-23NM9NYNP.docdoc ebfadd85753d033e248aedd9f9c5772331aff8dc35049d0842e8c423d64ea08cVirustotal results 20.63%Heodo
2020-12-232UDXRMDW.docdoc f0a4ee510f94aaef257225740c62c4a65b2da3ced23ca6b1513b9fbe11fd3cd8Virustotal results 20.97%Heodo
2020-12-23WD8YJOM5IIBW.docdoc 60029fa95c17ba479a9ed424abc3a3f684111997424360741b67de478d0bcd4dVirustotal results 20.63%Heodo
2020-12-2355AE6K1D.docdoc f2c16e9517e4e5e59a8640d99cda01c3078c6e7720f68f7f47a8a4d7b422b72dn/aHeodo
2020-12-23L0B7Q0FVXJ.docdoc 93901d975d0df11ab32c4eaf841b43684882ce002e1222696c629076b1b81792Virustotal results 41.94%Heodo
2020-12-23NTMWUR2S9F.docdoc 0b92e01b938b2941f4f0940c53a2f53da1f523d08ac18e2f8bc4dd9cc96b52a5Virustotal results 41.27%Heodo
2020-12-23CD9RR1.docdoc cf2b33d88046f8e39c8299718c9132fc22247ef02bfe6ae6d404b0ca1c7c6119n/aHeodo
2020-12-236F3TUDR6TSNHMMTB.docdoc 70cd2d38d41ecad15addac25c6e09641cce2f946161ecf261e639a09576ecb8bn/aHeodo
2020-12-23YJZJJDUV4Z8E.docdoc b534c439ac7a89c6af82331ebd70e5b5ce5e13a2e871bb7ab122b00004605e97Virustotal results 36.51%Heodo
2020-12-23W0JPAE.docdoc 74ca579457b696e80799f7acb8b3caa43a1a05be7c10a42fdfa94b1013490c07Virustotal results 32.26%Heodo
2020-12-23IMUL5B3N4IF0SLP.docdoc 2cb1d46e5ca1af22841c4a613b16ee60be1c474065ae89053cc02c6d3740101bVirustotal results 32.26%Heodo
2020-12-234AAM421PP.docdoc 525689f16129765cbfcab859edd5d99fbbec461ea04160605819b2f4b6150042n/aHeodo
2020-12-23ZMQBSFDZICJ.docdoc 810ffc95c449b426c6bfc03c98c5e10cfbecbfff7858f10cd9c1c5ec29e2216en/aHeodo
2020-12-23LS6Z6TNHCWDFFZ.docdoc 57f57ee9a02ff9b2983b7b3110a0269f0ac9cf44c8163805edac226aa6a5cc01Virustotal results 30.65%Heodo
2020-12-23KCG74SOKB1L1NNV.docdoc ef1b1013a1aee1aea1889ea4f3f736bac21dca5f8d940f13dbd2c332a8c8ac69n/aHeodo
2020-12-230J42UO4EDF.docdoc 168fe6ffe9e78f01a7f784833ba9306ef1edad3ccea334df35937424ef0220bcn/aHeodo
2020-12-239RKW8SZC5LR8G.docdoc 05c767b8eb10af233636947b37552012edd704f98de99f200ed4774e8c9b736en/aHeodo
2020-12-23GNR0O8QYT.docdoc e56e47b889fb43e8b9f183ee7abca3a349cede2826008e189de20df4b7bb481cn/aHeodo
2020-12-23KVKSMQ5D.docdoc 158e3c1a9e0f1942aec57f44ff4569d2a576bad56846a77053f5b4f726c14258n/a Heodo
2020-12-23IB3U9WSS7CEW8EP.docdoc eeeac0e4068f95a8d51d268eb14efdb0158a4a538bd414fde6f64911091f8211Virustotal results 25.81%Heodo
2020-12-238P27PGGV.docdoc 1f5a0f7a62383b576ac6f661f97a2c035e72d6f054e5b63ea53123ed9081dae6Virustotal results 26.98%Heodo
2020-12-23BIXO5HFKJVXRG.docdoc 47a492a3a0bfd3d8e0e6c5b72d0594fc8f387d657c457da34d5b7c097f8ab9deVirustotal results 26.98%Heodo
2020-12-23DEADI3R.docdoc c693baac5d3227d362a0fe99ad187c18cde1f45a404c94c881d424023303a744n/aHeodo
2020-12-232Y282Z.docdoc d4b572062438c3b6331322be310ee0209e104c180931c63dab258983c69f6dadn/aHeodo
2020-12-23HL9NBB9.docdoc 996270116a72e21db7ce889a1caf3633d3f42aa2f51aadcec31112c5a590fff2Virustotal results 25.40%Heodo
2020-12-22499ZPUT.docdoc 5c4cab29ee87b07eb6a57ccad782631b9281fa4db8f0a1b12d2672584426ccceVirustotal results 25.40%Heodo
2020-12-223CT1IIIJ.docdoc 32dbb92d892c9f50e99fc70db5b9f3efe0721a6464984a3f84e6592cda81684cVirustotal results 24.59%Heodo
2020-12-22A0W8GQV9RQK8N.docdoc 54a40564f1605df3d177f233fb61ed59c38f1c8adea1284aab637fed81289a4dn/aHeodo
2020-12-22DGB7BPJDQ2IER.docdoc b88940065daeda56e1e49c0db60c1e275b39e435f83b785742242104d173a57an/aHeodo
2020-12-22NYAOV254D6R5DMG1.docdoc 6db84ec96bdba956f2a1aaf37771903b47d79d69fc01b53e33ba039b8e7669adn/aHeodo
2020-12-22I2OWCJ.docdoc d4f5f3aaeeddc099dd63c275bdb2ae1bfcb6c3232c75e93fa0f670eecb36e518n/aHeodo
2020-12-22RKOAARPLPVW.docdoc f03c5a8d271acc63d9646bb77c30ddbb5fae5ad755449342e6c34b5ca71a6980Virustotal results 20.63%Heodo
2020-12-22GQCH9KD.docdoc 9da1b2de73b87188343a6af1fb13673f844abdb2a7396f528f08b6498cc2d4c5n/aHeodo
2020-12-224JJQXAD.docdoc 29d2dd0591e75e000a0c6b8b889a9a1cafe79ce1f5b6a3468d55e31d7a820490Virustotal results 20.63%Heodo