URLhaus Database

You are currently viewing the URLhaus database entry for http://greenharvestrwanda.com/wp-includes/qKaxvr116lQfV8GbbGBTGs1r5mXUZYCTxbI5OzUs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	944784
URL:	http://greenharvestrwanda.com/wp-includes/qKaxvr116lQfV8GbbGBTGs1r5mXUZYCTxbI5OzUs/
URL Status:	Offline
Host:	greenharvestrwanda.com
Date added:	2020-12-29 18:17:05 UTC
Last online:	2021-01-06 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-12-29 18:18:14 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	7 days, 5 hours, 51 minutes (down since 2021-01-06 00:09:56 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-12-31	KMIPTC3Z9DKP.doc	doc	43af38ecd27585f00463abfee0ca7f492fb36fa862c8d215447d59be27652589	50.00%	Heodo
2020-12-31	1RNHDA.doc	doc	38bbd83de3da247dd96f8f463e73ebc76a9165bb783fc85432714e863675d87f	49.21%	Heodo
2020-12-31	TVZ4TMUBBDKF700.doc	doc	9512958c1e2d4c75ccf1a1da8963bf39ecef83838203ec92036630265afedfa5	n/a	Heodo
2020-12-31	PGHHUHM.doc	doc	c61912f98d4d7fdd3e6b5004bea7f430d33ab1d21d8c2c75f4b89aacbc79382a	49.21%	Heodo
2020-12-31	N6U68ZNMX.doc	doc	53b44961d059f2aec41bccc4a14a60dfffc9b9ff1dd8da85603ad5afa540ae05	n/a	Heodo
2020-12-31	Y5IWGSDO.doc	doc	f4ba2bce0a0fcc57183c73e46feb6f6fddfcac25d12032d47d93302aa9bb40b4	n/a	Heodo
2020-12-31	N24LPHP1M6CI2JKK.doc	doc	6c1e317361243614038a172a218b2050728fbcf3f6dc18937d02f92e1ff92354	n/a	Heodo
2020-12-31	4JISH3T8Y.doc	doc	2af797939c0c67519484491cd884c884c2a345daa208a6d1ba67e3917edc04f6	n/a	Heodo
2020-12-31	RZVOASM6U.doc	doc	92f3ec8ddadbace9623d6af0c230b651775947b4da83ae9b5ab3ea42f866a62a	n/a	Heodo
2020-12-31	5QOHSC.doc	doc	91086dde82b6ff0a38dcc4ceafee71808d2af326520ab5e0f610f0c2fc6637e9	47.62%	Heodo
2020-12-31	3ZN45N.doc	doc	18bb61d704aea3eb9f1d69649f16dad532c1236486dbb9891c0bf5054c63aa16	n/a	Heodo
2020-12-31	OSLNES.doc	doc	22c9b454977f772e641fd2d5d4c08fb9e124cdc9ec47c69ed037fed87bbf1abb	44.26%	Heodo
2020-12-31	YUBOZYUCA.doc	doc	12648728174c80a68b9992c8759df7e021f27fef6bbee5bed8af71b18a7fadd5	46.03%	Heodo
2020-12-31	14G2C8NVEN.doc	doc	6b85d222fb12df6466d8b1dae31bb6e7706463ec73fd86f85e46ef7867183df1	43.55%	Heodo
2020-12-31	TMTSLY.doc	doc	3bf59384c4c1a24eb5fef4453dd1fc63a75324f4aa6b86a62ba47de3393027a9	42.86%	Heodo
2020-12-31	QF8HV81VAT.doc	doc	0b9ad72f95097098c7273fc3e89e96d14537deadfe1570a2e36b8ec40bf241a7	41.94%	Heodo
2020-12-31	OQ5HH9R17L1.doc	doc	cd86c55218a19d3c739795e4da8c0c8b34a731b1d89fcc0685a5ceed2f3f8fee	38.10%	Heodo
2020-12-31	B8PJN6WA61Y.doc	doc	24b9b439815155d6b338c75f2ae2d92deb41c580a893dac9153f5042abc8b702	32.79%	Heodo
2020-12-30	QZAEGM.doc	doc	48cbbf0f9680ad78df8965f1b76d756f88912c653711968364b7f7eb3f5795b0	31.75%	Heodo
2020-12-30	8J47GQLDN6YURE2.doc	doc	643eeead31f1c79f2a2d191699189bd671ca0169fff0feeb3824ff0b57281e3b	31.75%	Heodo
2020-12-30	YGMIWK.doc	doc	d700110437e868378fd668cf27a7df7611da72d285f7b9d7edfd2d08475a47b5	30.65%	Heodo
2020-12-30	IUW5P1GZ12S6AP.doc	doc	8c39bdef7f9491fc985afb40906aa1f0d4427bb9cb2299ebacd5511b442e9982	30.16%	Heodo
2020-12-30	RBBNZE7H.doc	doc	a2bee4290712595f0afb87e5a247cafe694d279fb7350e43bc163630e926aaa4	27.42%	Heodo
2020-12-30	OY5BZSBVME3HMKIM.doc	doc	b02db4eff71b9c4788273ae8bef5958210413d14e2f6704de106c437749aeeb3	29.51%	Heodo
2020-12-30	82KSHRS.doc	doc	315dce173e7c32092cf4b83b7d27b520156225dc90d11322b56244ac2b61810e	41.27%	Heodo
2020-12-30	S4KYPW.doc	doc	7dbe3e3f4d5e95b69111858fc5e96f73c1b7f8284276a1280486ab64139324a2	41.94%	Heodo
2020-12-30	29AUKG2TSE67G5.doc	doc	6aac95dd3f2a6b9cdc5ddfbda6e548ab8d93a61f48640d3a0a98a312fad42e56	42.86%	Heodo
2020-12-30	XPI85RX.doc	doc	48242492ae400d1b2e95ed96ed2298bc76c87036b1f79e92d38a07e5cb14712b	42.86%	Heodo
2020-12-30	GOZC49SX.doc	doc	7a1dddc29a6b87ff807093d52c2c2ea7139641511f39fa0a834c101bd431baaa	42.86%	Heodo
2020-12-30	7UKKAIB3.doc	doc	214c118a6ea6243f11f97d6a83c14ce0efa696dcf534eb46de221d4199cb7c88	37.10%	Heodo
2020-12-30	4MCXQ11Z.doc	doc	399701ae00f1f4e019e97b788362403c8323b417cd0f72fef7f9a39dd4ad4436	38.10%	Heodo
2020-12-30	FPCQDET.doc	doc	14b98f981681ea78e6511ba3a68c28a85fee9696158358876cd49a9ac1110bb2	33.87%	Heodo
2020-12-30	DAUCYDION.doc	doc	ebb494890c3756f3bd2d17fe15fea7443671ce48c7d22821b6f0e73920ab061b	32.26%	Heodo
2020-12-30	0UMFBJH1NEBF.doc	doc	fa91406d32a92c06644f1089b3184110a7e7238b70dbbb86098e77f7ce82ff5e	n/a	Heodo
2020-12-30	W0G6BMNOEQBM.doc	doc	e561d015ba417615f931d69404149b840e6f30d937c6d1e8765462d08c33384e	30.65%	Heodo
2020-12-30	2V2F6X6H.doc	doc	a3c7030635319611442140f4e775bd30cb0379b86a430e9b54df0ce366d7db30	29.03%	Heodo
2020-12-30	B0R2773ZJ5EXDNO1.doc	doc	2247e8d912eac0fe04e0d232db8ed716ddb81a5a2f24f343b03041e267bf3d7f	35.48%	Heodo
2020-12-30	UUO4DXBL8Y9.doc	doc	ea32c0e98b96ac84d67ce92162c923944c124e335e920f9a4fa6d5c18fd732cf	31.75%	Heodo
2020-12-30	5I2N3TY4GD0KX.doc	doc	b069777bc25c9afba5d6e9a7f25e8042c6de53dd0c82deff0df162c44c61a1a0	31.15%	Heodo
2020-12-30	GU47NLRMWD.doc	doc	bc7f4cd13c74dc42e2862078e4c814def5484f8cba7f2b61834770e2f0f0684c	30.00%	Heodo
2020-12-30	S12Y3VDF.doc	doc	63a9349a502e7e3e7a78488b5fef1649c62dd1fca5e72c79dd92e0bd89327105	28.57%	Heodo
2020-12-30	6ZE8DNC001HM470F.doc	doc	b5c06b0784cd3209d08f225a7d7d2386bbb90b93832bf6528d6c38904a5ce760	29.51%	Heodo
2020-12-30	V8YQI0QB4NYDE.doc	doc	0d90ca158eabbf8ebd00e4093c2ccbd118833f31c3c6902dc7cc079b6ad27560	30.65%	Heodo
2020-12-30	DHW2CWRD.doc	doc	84e47bd673a96f1f41735c34d4bbdf415b8f2c39e7a833fe5cac69d38b979f5f	28.57%	Heodo
2020-12-30	PHJJXU29R8B8ECJU.doc	doc	ff851095aca5969d1f70e5be1a645bf840e10b191b9037c50da8be304f5c01ba	29.03%	Heodo
2020-12-30	JSHAOU4DS.doc	doc	038ce32c78cddd37592b182971d0c98b8c1d4dc9b398b593a5d28aba6e947b2a	29.03%	Heodo
2020-12-30	UPFVTVUWMKWD.doc	doc	62e5f85a3afbef81f4dd4d8281a0fe697d0dfdb6e714ade5175a0f2b68d40083	29.31%	Heodo
2020-12-30	J4OSYD9T0CRD7.doc	doc	5e9e5d0c36a1395a73be5fc2a97167d451ceaf649ed3c72992238710edcf31ea	29.03%	Heodo
2020-12-30	7EYRIMJWD1.doc	doc	ec3994399031e9c03729b9c51069c839dcfefc07707959021f85d8250286ff43	n/a	Heodo
2020-12-30	TP8FV7F.doc	doc	bd913e9c89867c5d668cbc999e4044f62c9efac8f02e6be4066845c3bd2d7171	n/a	Heodo
2020-12-30	LJDNFL2K0PQM.doc	doc	be2287f06352c21f4412b81411c76a2e3c23bc99bfd67a39549574e6f0143ec5	28.57%	Heodo
2020-12-30	3KJAONRWGBL3VZ23.doc	doc	39e24a73656d38c94f1c4abc67b93be532659af2fa07966c372424780e54cb24	27.42%	Heodo
2020-12-30	HJ10AHGWT.doc	doc	74bf5ffc4f0fbbcfa4decbf40f781dcd4dbe1a409c1fdb581d1f92e368f251fb	29.03%	Heodo
2020-12-30	7GW2XVHMGF.doc	doc	f986e45721d272af5712ecebae797be7ecd2410bc63161d05c9e899f6e107af4	30.00%	Heodo
2020-12-30	NA3JXHRFBG.doc	doc	3c2ed9471901c2a6ecb559a6af4a9ae579b9e6e93ffd08595f002d8b0ea1afd9	28.57%	Heodo
2020-12-30	RXAWBS.doc	doc	d51c4a95eb3b358e31b75d0f3e4fbd9f4ac62785f48019f6552ef3fd40f75a6d	n/a	Heodo
2020-12-30	Z1I7HZJPII.doc	doc	b819a59c6a40ff2d03eb14a692706aefd3ea6587a10d13fb8027ce1f57f3f95d	29.03%	Heodo
2020-12-30	VKUYQ7J9.doc	doc	c0081661fadf165b64870df68fca809bd6335c93f1038ddc339f88abef91d61c	n/a	Heodo
2020-12-30	8T9K56UPXMPS.doc	doc	61b5de9bb6347eccd43cffef6ac55d594b32e785232e21ef49eac3c70f3cd582	26.98%	Heodo
2020-12-30	0YJMUBIK1JK.doc	doc	9c22bfd1ad2f398e3014c41d31582d8e2c886c6fd376836b72aa02dbb6c5ef71	26.98%	Heodo
2020-12-30	46B66AD1CM1QWFM.doc	doc	5ff309e15ed409297bf10da249a2d68038b70b8032f305f43310e8930cc7d606	n/a	Heodo
2020-12-30	YXDKP4G.doc	doc	e9a7000b6216e1cdd6280e0d3b11b52bfa0cfc1a49f3eb8488ebb26b6f0852c5	23.81%	Heodo
2020-12-30	KIIZ41FB79.doc	doc	43def52a7d5d5aefd8b9f35b80d2fe898607d4ba78d92e44fa407571f78237d7	23.81%	Heodo
2020-12-30	W01GA5WZKPP4T.doc	doc	6ea37605aea5591d5271248f640a3dbeb9edec2ae1fcef4954213d025a812d4e	22.58%	Heodo
2020-12-30	NDZ8XCXZV.doc	doc	6afddcbf7a8a64702774f4bee529ef01e20567882777318dad0e184eadeb80c2	22.58%	Heodo
2020-12-30	JKBI1TSS6V2LB1QL.doc	doc	cbf2fe0231f079d952671879c0b8c938067f5c5dea8bbd0e17508a3855416c64	21.31%	Heodo
2020-12-30	U6KXRIMCPW.doc	doc	c67e6b627484a2883191b35e4db1994df75620dffa6ce55f960a11a2280be3e0	24.59%	Heodo
2020-12-30	ER3CV3EY7E6.doc	doc	3f58aa984c9e26aa906d9f4371ea2d31b00ca6c6eecd9dac7fcf4dc2b19caae9	n/a	Heodo
2020-12-30	JEQSCJ3ZN50H.doc	doc	88c899df2c9e416f30c397ab61bb5a59f504445197488f4ee362c410fb0d9d76	n/a	Heodo
2020-12-30	TCH0CW.doc	doc	98434e35b67922ba13789c603c7e90797ae599f7458b281dae2823eb14389296	n/a	Heodo
2020-12-30	TI8YSQOMZOMHD8H3.doc	doc	2ed291cc9976df382951483bb2c77fe908b724d01b6360d1e61ee698f052ab11	n/a	Heodo
2020-12-30	EXAJ2D9QJOGOX.doc	doc	4b7778c74f084c7cbe57205e56c590730227816f7212231df1ac32dc21e18c71	n/a	Heodo
2020-12-30	OX4YXDWT8V52MSWH.doc	doc	e799e58726ad5d72644487e2fc47f0ddd22bba379bd0552bbd015e94680c70b6	n/a	Heodo
2020-12-30	VBJH9YZ.doc	doc	fa5aa91755a36f8142bfa74818a3aa61264edc65cf4aa9fb8d4bec28f6faadb0	53.23%	Heodo
2020-12-30	UD5XIKL96JE1.doc	doc	ef18f9ad5834b882d4554fdb6b709c4fa3782704b22dc9e7a535b40f2fb4ddb5	n/a	Heodo
2020-12-30	H2WIVPZVO7M7UT90.doc	doc	161c83286b69307edded6f1105481cfdc65bc36aab3773a365af1972dfabc3ff	52.38%	Heodo
2020-12-30	Z7NLB4K.doc	doc	b5f5bab1debd9fd60535f3a992c4f90f462f3c42896c05138b18e67c36d111ed	n/a	Heodo
2020-12-30	1HO6U6RMSBRN.doc	doc	a015e402908723d20de5ce0e32b55d2dc47b10b36619d08893cf6212a5bf9957	n/a	Heodo
2020-12-30	ZTBLDULL7AB.doc	doc	9a9706902460c2e3ac9e44ed6aff62a001ce31641d96c49072c4750106c3de50	n/a	Heodo
2020-12-30	OXZTR63X.doc	doc	74f1385297f1e0abe566a9e2eedddb41b97279a2043c11a88b08c05304331390	n/a	Heodo
2020-12-30	3IRPZ5WO5V7QEA.doc	doc	e0ea0fe16907efa6fba0c7da966c01d5e9c2a7f4024db84c8113a51b22b3a110	n/a	Heodo
2020-12-30	780NSI.doc	doc	fc88d7102891698ce09ee38c1af90b8e225c496491ddaee1b739a12f1a2eaf33	n/a	Heodo
2020-12-30	IQARWV4OE9TNS3BK.doc	doc	41e784f18168ae902f8bd265907c8e6e15b3cffde32a299bff675ee4b6902a03	n/a	Heodo
2020-12-30	4JO9DBO0J2.doc	doc	59dd64819d5e4347530f69b1a854607289d93c950a746580535cc79d8ee373c7	50.79%	Heodo
2020-12-30	XU47DKA23S.doc	doc	400265d4687c120a0f5ac2f335dfa97bdae5a45c2dab4f11ba4ea9309b55f550	56.45%	Heodo
2020-12-30	ZJYDCJ.doc	doc	4a03b5e095f8e4303740cf67df82c3491eb1b3545de5256870aa1bcfffda1e54	n/a	Heodo
2020-12-30	Q94TYILUT.doc	doc	c18cbfc2d84a1436acef501a8e605966ab35af260f8a6c86f24e5b459c87bc19	47.62%	Heodo
2020-12-30	ZBL2GQMKDQ309CK.doc	doc	add8349cc360e174c38c2d36277412b334744b3af808d91097b5b9e9c9834f3f	49.21%	Heodo
2020-12-30	AM0NLJ9XIU36ZVC.doc	doc	fe615d9510f8a8a4f2392eb1dbaf75fee4054136fc2da4a69d52c6e1b8c696c9	49.21%	Heodo
2020-12-30	1BDK3VLF62C3Q8M.doc	doc	16a0fc95c6217d4542b0a02200d26987e08d41c709ba9c36b9830993b2b4c6c4	n/a	Heodo
2020-12-30	KXE104.doc	doc	0bd4e7dd4ab7c8f023e4df01d0012cb40b1ee9d7fb10353779eaf1fd47d53c04	n/a	Heodo
2020-12-30	AGU6BLCD1O44Z.doc	doc	a3553d4da88c65554d145c8efde7312447904dd78f21dc173354ef0b3257e555	n/a	Heodo
2020-12-30	8A4VZI.doc	doc	c1c222eea5baec06081295edddf806c2bbd101f35d5c554d3f3b63aabe8fb576	n/a	Heodo
2020-12-30	UWPG76GP.doc	doc	b0286fc6b2b0354bf5bb297ad8f8f81577bb23a3568133181a5daa3eb75954c4	47.62%	Heodo
2020-12-30	JOJCX7.doc	doc	270178887f55fd612338733257bcaa9750d9f7f1dd3ad0ecf1e55222c3f5d834	n/a	Heodo
2020-12-30	TKOPQU3.doc	doc	fb536ddde6cab869be41f798e99515c6ee28c45eabaceabb3ac1ca568fcfd723	47.62%	Heodo
2020-12-30	SX2OBBQC.doc	doc	8034186046c4b68f988ed2c9589699ffd59443ce8573ebc96551cccc435a6723	47.62%	Heodo
2020-12-30	66QAONQL.doc	doc	59e6703b24b53065555efb55e63e6f368ebd67451d4ae4aeed9b1a59f04a9947	47.62%	Heodo
2020-12-30	GPB6Z4RR1N1K.doc	doc	33483667c69c712c22eb8cd4c4d68c7405a8fd2ebb78aff4bdf518b997d17d4c	n/a	Heodo
2020-12-29	L2B6YFY.doc	doc	1b4a340a7d7925e5635152af5c56f1fd2e77b9088afb6fe33eba7a03009f5df9	47.62%	Heodo
2020-12-29	IC72I121LE.doc	doc	2ac4c55baa15d3719031c845766adf59717598fe67e7434f595f28120c916528	n/a	Heodo
2020-12-29	HOSY7D00.doc	doc	487b15fce52676130b3320631eed9f16eeeffc6e11fff1aa6b6a4aa4f694315f	47.54%	Heodo
2020-12-29	W7ZQGY27.doc	doc	cb5d63f90240367ececfe0c32a70c72082527a0040fe434a6f463bd4574d4157	47.62%	Heodo
2020-12-29	03BT3P8MAFD.doc	doc	cf47feaaa13dd8578065c7ff33e3b1f716e4b71f679b8fe7d10fd33cf1ca8b70	48.39%	Heodo
2020-12-29	94WYY2L.doc	doc	004ffe5fdd488817ced5a47937acb4d2e3130187329de56fdb5920a56d3118a2	n/a	Heodo
2020-12-29	2CPTQQN3JFRJ.doc	doc	5ede6ac6d693be37c6eccad46485cb39e33d1cd99649329d0424215f3d404cc6	46.77%	Heodo
2020-12-29	343E6N.doc	doc	59aad32717a18d6e1b19cc6e0d4db78f962799b91b0a7773875964f47ef0fd6e	46.77%	Heodo
2020-12-29	BLWZQOXA.doc	doc	b74063353bf2fccaa3e2072c2e02dec2c760ab480f73a069277bc389ecd4c929	46.77%	Heodo
2020-12-29	JDPJGF1XURM2A.doc	doc	1efd0a1981dc07034aadfa6bdade3e26e49a389a09a617831eb51802201e5bc6	47.62%	Heodo
2020-12-29	FCD09V.doc	doc	c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafc	47.62%	Heodo
2020-12-29	E9QBD74A.doc	doc	59d3ff3d4c70d115ce2c6d6ee0b71174c04ffc9a3f483fe2590b91d2eaca4518	47.62%	Heodo
2020-12-29	P0HJYRGVG2.doc	doc	eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691	44.44%	Heodo
2020-12-29	0BAGFYL7H87SU6X.doc	doc	d0cee85401b2a011867a851ba5d4fbb7c3242e1cb3476d2f78bdab764bbdc408	43.55%	Heodo
2020-12-29	C7S9PRDO.doc	doc	e96e98276e75a582f1e8d7624c1ba2bf9de1ca4b28ba1f7483a2c6a1114c2aac	41.27%	Heodo
2020-12-29	M3RBFANCBNI.doc	doc	4ce448dc3c0b2a786f0f0de325a7955364c6b13783c5dd27f2f721496bc783cc	41.27%	Heodo
2020-12-29	S4H8YCYA.doc	doc	bebd8b69fdc463522ae3279b65b75959d443315eb96d862429b1aee2c217c8c0	40.32%	Heodo
2020-12-29	3LPFF3VM8.doc	doc	abff62bfa148c0606f2b0f545934c0ddaf4b00cc13c5f3c051a22f8d53b089ee	41.27%	Heodo