URLhaus Database

You are currently viewing the URLhaus database entry for http://lusterconsultancy.com/unexterminated/LkWEBnuQ4kvXZE/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:940670
URL: http://lusterconsultancy.com/unexterminated/LkWEBnuQ4kvXZE/
URL Status:Offline
Host: lusterconsultancy.com
Date added:2020-12-23 08:01:04 UTC
Last online:2020-12-28 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-23 08:02:02 UTC to abuse{at}godaddy[dot]com)
Takedown time:5 days, 7 hours, 3 minutes Bad (down since 2020-12-28 15:05:47 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-23F9DFS41BZPW.docdoc 768f3c029cc79ae21d7c732487da93f0e8c7d19a83737f9ce7e107e3adc9054cVirustotal results 43.55%Heodo
2020-12-232POFDA2V66.docdoc 66e2a898e0b029a13f3091ffd91aa453888cf996011f8ecaf3b4a4439b68d413Virustotal results 41.94%Heodo
2020-12-234XXDGX425A.docdoc 6ed5539e92f43fcde23dc6343c4f41a93050576180fad637adc5014a49ed38aan/aHeodo
2020-12-23XWXDU8W.docdoc 3e9a6799e7ba70727573d5d792394849b0d94f95a6d0d51e46c3a3340314f764Virustotal results 41.94%Heodo
2020-12-23NCGPMYCJDT6I2.docdoc c5681e7f73b34c33d33ebf5aa9e920a9bb1e0af9f6d3260ba9d49ced57a4cde2n/aHeodo
2020-12-237PYMYIWVJXYM.docdoc 883f2d94856edd7ee7d9ddefb4cb9c49b0300ad23fad3aa88f3c020d166b771en/aHeodo
2020-12-23TIA5TCKZO9R.docdoc 53607b62fc227216a0de7e569922ef170b8d25443b8839f2a77717fddeb43e38n/aHeodo
2020-12-23VA3NW0NB.docdoc debda494b0bad3be7b136c399dc6d16f1aa643cc3611c5fa3ffc9a4d32d2c808n/aHeodo
2020-12-23VJPPVROQI1.docdoc 381a05910438bfbe38d8cde701cbbf020f0e303a1be1a9825df6087a8071b37cn/aHeodo
2020-12-23BJL0I9EQ.docdoc f8863f5eb2872b1d2fa17f58ad4121bb0be5a292c832b3f58a674d3ed705b656Virustotal results 29.03%Heodo
2020-12-23KCZ848M1X38AMD.docdoc 2edf013ada24ea7a142b0844b980169d465e7f5aefdaf645b44ece962d10d74an/aHeodo
2020-12-230PV6ICB80V.docdoc 63725aa4926dac422d6710c815b80ad10e66b882656195a75ef13b9816cf7c53Virustotal results 26.98%Heodo
2020-12-23LB3QUKZD6P29.docdoc e9df17a69800a02dc5484a6fc60d1e9f19f7059ed8f0ef9c7847beecc39968a3n/aHeodo
2020-12-23LUTVECU.docdoc 09d5de04cf0dc8dff51dd2315b237fa491d213f8496f1c361a7ef2efbbe15932n/aHeodo
2020-12-23MOJWLE63C.docdoc 9bba6813a6a0d038afc8a8bf8cd4e5beb879a954b0789d4d4e02cbd54d5c3795n/aHeodo
2020-12-23HRTKMPLQEMR84BR2.docdoc cb4f991bd4228ec60ab6af1bab6193e68f4fadf3a30b226e7ee9cdfe893113a0Virustotal results 23.81%Heodo
2020-12-2370Q55OYSVKEX.docdoc b96bdcbde5a864db016ff0e5d071c9ab68331ac9c87debcf6e019c901fc8678fn/aHeodo
2020-12-23AYBIWMS8HL.docdoc 49f4475b4c4b63927d612bfcfc707d4a25237813c727333fbcb42fec441757dcn/aHeodo
2020-12-234ZAUEO2R4U6MVM08.docdoc 7e0f29831e6732a730d1b231a94cae3a27525976381cf6b97d15fe45c295f239n/aHeodo
2020-12-234F3PYKQQN6PU.docdoc d5231db757615d38ce982ea1272ef281efc93dc8105418c890e8f9e59d76ef0dVirustotal results 22.58%Heodo
2020-12-231E1THJ.docdoc d03bdc5b9f72efd01d6cb79bfb3a1a2abb46914234af6d3439f4879a1af9d35bn/aHeodo
2020-12-2378QAR8Z83KOJF2Z.docdoc f989bb90fd752549af52988b47a9cf55638f97c26ea723457efd21cdab409da5Virustotal results 22.22%Heodo
2020-12-23TDS9U7EF.docdoc 318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95n/aHeodo
2020-12-23IA5ZBJZ9SAQZX6KN.docdoc a8a5d52ccfe6f7bcc1ef7c99087ec90083ea7e3851e760b0653bd4189d54bc9en/aHeodo
2020-12-238UVOMOCFZF.docdoc ebfadd85753d033e248aedd9f9c5772331aff8dc35049d0842e8c423d64ea08cVirustotal results 20.63%Heodo
2020-12-2376ZS3TJ50.docdoc 87de984c9ce216b3c4c6ca196e51a042d9a5cd438c4968e8ae070b6053106556Virustotal results 20.63%Heodo
2020-12-23GNTNAGZ07YBO.docdoc f2c16e9517e4e5e59a8640d99cda01c3078c6e7720f68f7f47a8a4d7b422b72dVirustotal results 20.63%Heodo