URLhaus Database

You are currently viewing the URLhaus database entry for https://zenzhabitz.com/wp-content/themes/twentytwentyone/template-parts/content/gujhGibDWERgYgkejqBj7YBmhx/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:944093
URL: https://zenzhabitz.com/wp-content/themes/twentytwentyone/template-parts/content/gujhGibDWERgYgkejqBj7YBmhx/
URL Status:Offline
Host: zenzhabitz.com
Date added:2020-12-28 22:19:05 UTC
Last online:2021-01-04 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-28 22:20:03 UTC to abuse{at}digitalocean[dot]com)
Takedown time:6 days, 13 hours, 54 minutes Bad (down since 2021-01-04 12:14:57 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-303TRCSWKTV1.docdoc 7dbe3e3f4d5e95b69111858fc5e96f73c1b7f8284276a1280486ab64139324a2Virustotal results 41.94%Heodo
2020-12-30OVGC3670PGJRPD.docdoc 819ebcf8ac92646fe0337cfb241ea5ae4d5a04fcc9284cde8adad3f068c018b2Virustotal results 41.94%Heodo
2020-12-30P8MYB910YT62DVZ9.docdoc e561d015ba417615f931d69404149b840e6f30d937c6d1e8765462d08c33384eVirustotal results 30.65%Heodo
2020-12-30T8J5R174L9SICHVW.docdoc 8c39bdef7f9491fc985afb40906aa1f0d4427bb9cb2299ebacd5511b442e9982Virustotal results 30.16%Heodo
2020-12-30IFAGZXPI1JK17OPX.docdoc a2bee4290712595f0afb87e5a247cafe694d279fb7350e43bc163630e926aaa4Virustotal results 27.42%Heodo
2020-12-30DH3BWCZ77.docdoc 9828c9c819155af174adfcce8cc53b4dbc8e10db6f0f4b0661fe7225bb7f1b55Virustotal results 26.98%Heodo
2020-12-30N8MUJ6S.docdoc 0afd7a7406e620b8d1e0e1a2b63f5a0096fa9e3090973050b74736c876726964Virustotal results 24.19%Heodo
2020-12-30TVIZ9S6TBJGBU3U4.docdoc b07ef3318f6bcd869a115219403c874d5755c0993f2e62c40c6fd47f1110c1b0Virustotal results 25.40%Heodo
2020-12-30FTQUSU99OKD322K.docdoc 43def52a7d5d5aefd8b9f35b80d2fe898607d4ba78d92e44fa407571f78237d7Virustotal results 23.81%Heodo
2020-12-30JN1ZOFEP21CE.docdoc baa34a96181ff5e02ba132304415e8878a13ef640501db136dae73e64d3361e4n/aHeodo
2020-12-30CIBVBHX.docdoc 6afddcbf7a8a64702774f4bee529ef01e20567882777318dad0e184eadeb80c2Virustotal results 22.58%Heodo
2020-12-30X81VP4.docdoc 4cb4d883d7caf02989c2051ef4052dbf2fdca3d406219df8af1e4d5a5ba0f2f5n/aHeodo
2020-12-30XTGZXZ8T3DMF3UL.docdoc 9d1c6b80623e5e370ed018b95870675936022c4a9bf0ddc1378db520b304309eVirustotal results 23.81%Heodo
2020-12-307YTZPOXZ033DHQZJ.docdoc f075b561422f41b4412421cd0aa5bbcb988f960c4c632de46179b64e8467601cn/aHeodo
2020-12-30N2TTKDYHJLQO86.docdoc 57139c1429320dac20c68cf72ab1ac5dc7dc482d4e05be8b886967115fffea25n/aHeodo
2020-12-30SYP7YGIWK5ENV.docdoc 7f2ac6bb3023f707dd963cf571a1669902ce80a56951f95833fc670192acd2b3Virustotal results 54.10%Heodo
2020-12-30GM7WOTTP991JV.docdoc db7a9c5a90c3e6e449fb9375629b793c22d1eace5c4cc7ebdc3743769fa22f04Virustotal results 52.38%Heodo
2020-12-300FY9NR20HY2Z.docdoc e799e58726ad5d72644487e2fc47f0ddd22bba379bd0552bbd015e94680c70b6n/aHeodo
2020-12-305QC6X4PLI992C.docdoc abce05e21f89f137df460e5541600c3a71aec5ebf5c909a05edc6ad042ae2530Virustotal results 52.38%Heodo
2020-12-29R20WSDSKWITSKUY5.docdoc cf47feaaa13dd8578065c7ff33e3b1f716e4b71f679b8fe7d10fd33cf1ca8b70Virustotal results 47.62%Heodo
2020-12-297JRBHWLHIBW.docdoc 59aad32717a18d6e1b19cc6e0d4db78f962799b91b0a7773875964f47ef0fd6eVirustotal results 49.18%Heodo
2020-12-29YW2ZCNHVPALM.docdoc e7fe9ca43e289dc2bd9bf4266a4626a9383a283009072a247ecc6c1f84c45e0dVirustotal results 47.62%Heodo
2020-12-296MAE71F6C1S7KUQI.docdoc b74063353bf2fccaa3e2072c2e02dec2c760ab480f73a069277bc389ecd4c929Virustotal results 47.62%Heodo
2020-12-29XJRKRPSCPPLC.docdoc d61737a9f3206f943c7569e31f9ce318fc7f361f86b01309bc476a1e2c7571a0Virustotal results 50.00%Heodo
2020-12-299B59V4T.docdoc c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafcVirustotal results 47.62%Heodo
2020-12-29EXF6CC1H.docdoc eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691Virustotal results 46.77%Heodo
2020-12-2919N0AAWS3QZJL2.docdoc d26b56c0f262c97c839a9ed1f93996989f67c77c1ca52c3022a43d9a60c9b54dVirustotal results 22.22%Heodo
2020-12-29ZNG18LDHC.docdoc bd280d95e7a6a329e2f9fb97f9217a2d5ee84357ef7a229d862d596958fd00f0n/aHeodo
2020-12-290T5VLKXT57.docdoc 39acb7c6874eb1354cd0681868e35554b7f15ca962daa584ea76c4b5fc90f84dVirustotal results 19.35%Heodo
2020-12-29OZS8BSOD6N4.docdoc f80563634435c8f281978ef3d248fca600d52b19c3b1a74971d4d9fe94d722fbn/aHeodo
2020-12-29UFH9WOD.docdoc 47fb6b7547464e8215d692e454e221f6b886f549bcdcfaf4f1e8da4459b8a5c1Virustotal results 17.74%Heodo
2020-12-2965NDRJ.docdoc 5a26c268f63b3d8685293b71cf106e7ab1a6e2fe06604dac3aa24ed1bc0922bbn/aHeodo
2020-12-29KEKE9C2RWL9V1A.docdoc cd47947804cd66ca26d9c8df758faddba8ac6575fe2863e810a15237ff114fcaVirustotal results 19.05%Heodo
2020-12-2998CMPLHTTSWTMEJ.docdoc adb4320936098b1adbfcbf7c081d3b6a143d521ea3cc6eb2b5728d12097c0b95n/aHeodo
2020-12-29DGFWPNPO4J1ND6S1.docdoc 6caca0535793d2e1c28d77bf579d09c8a45b4dfdea071f5f5feb0010bc3c0e85n/aHeodo
2020-12-29JKT6SZRTJW460.docdoc 6fdb1c51ec98200db24b6697cef617c1ca07b13bcad79350260084ff45b85dafVirustotal results 19.67%Heodo
2020-12-29E0MDO5KW1QYE.docdoc 660ebe4624b0f448e353528689d88b66fcc2a5df505c81062beda32840a13c2fVirustotal results 18.64%Heodo
2020-12-29JA71QYH5JRNF1.docdoc 6648b51c5a828a4b145d0292f72e3333278e3c97b08ce2faa174a6513b4964e7Virustotal results 20.63%Heodo
2020-12-29Y7JXL1IHPFIWKV16.docdoc 21dffcf6ec0221098bdf3508c8badef4d2a347bd7e1e2f501824ccfb19e3353bVirustotal results 20.63%Heodo
2020-12-29RQDJEMKFE81MHLO.docdoc 3e74772e9bdd856ca6c3d6f86e9f7b83f73f245f45316370725d07276660e6b3Virustotal results 20.97%Heodo
2020-12-283CRAGCSYVAQEP.docdoc 20648a91667ad6547f61ad92bf6b7bfcccb4c3ecbafd54fae8cbcabf75cad1e0Virustotal results 22.22%Heodo
2020-12-28W5TSSNF1W.docdoc 0b30502c830f8cc7c87978637d0e47918353373f4b11cc38c90853f3c1aee639Virustotal results 20.63%Heodo
2020-12-28TZG5NK62CRJQOE.docdoc 65e63ccc66d2bbc248a0edd12d746099588e5cd8d215cd324c587c6621638e0dVirustotal results 22.58%Heodo
2020-12-28I2P2VEDVRPBIU28.docdoc d6e12b7a07cb86c0a9b5c841a738829e0a5159e745d93f3e0955e0e46754f774Virustotal results 19.05%Heodo
2020-12-28FDPZKL5.docdoc cae404af78e1ccf5ea32dbb545812c3f072d88a53b7489af336ef649539ea4c0Virustotal results 22.22%Heodo