URLhaus Database

You are currently viewing the URLhaus database entry for http://thebestfikrah.com/wp-admin/uFHm8bj5DyJUbNBkPrJM9cEfEfi25LmwQo1LRGcsKav4/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:948897
URL: http://thebestfikrah.com/wp-admin/uFHm8bj5DyJUbNBkPrJM9cEfEfi25LmwQo1LRGcsKav4/
URL Status:Offline
Host: thebestfikrah.com
Date added:2021-01-04 16:39:05 UTC
Last online:2021-01-05 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2021-01-04 16:40:03 UTC to abuse{at}internet-webhosting[dot]com)
Takedown time:16 hours, 0 minutes Good (down since 2021-01-05 08:40:33 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-05OYMTM9JC.docdoc 44b5bc6f5c6c0c3821f5c1196971d8398ad15924739c4002fbb496522387ad16Virustotal results 33.33%Heodo
2021-01-05LMH9XPYA5J.docdoc f1ff8d81d84d73a186c72546b5efdc3abd4f4a91243d0f2bb537cc1418d8bdaeVirustotal results 32.79%Heodo
2021-01-0560S6AZEV76OL.docdoc c7edd153d2e8f2d93b8987a6337e38c1d65aeefb10e53ada3f082d13b906128cVirustotal results 33.33%Heodo
2021-01-05MBT1OB.docdoc 773a15b11264f83c09890cedbb7aedc943a30430f5b355d38e5625f2ebd3fb8fVirustotal results 30.51%Heodo
2021-01-05LM4WXL8G8SHCZBOQ.docdoc 269b7e9055041b22adcfd3f3d1d0a4711292eb08c8674a535071c2ccf27a31fdn/aHeodo
2021-01-05NUZYA4.docdoc 63162fe833789ed99b85cf9524ce3254d7f676c2a187f7e2c2ecd23ad59ac5c0Virustotal results 33.87%Heodo
2021-01-0591WHAO23ZT72.docdoc d4e6f646fefbec70addba05ff09663419b87f9639b77c91ed711cadebd38f1daVirustotal results 32.26%Heodo
2021-01-05XFTCUXN1RQLIV1Z.docdoc 76791e1b0ebfbf5081b8f6c4e3196ad92ca2d9904c48fc16d8e9d82b3585853fVirustotal results 31.75%Heodo
2021-01-04JZ90FFDOSMQU4.docdoc bf2f59ecb85a6029a908bdf90f5dae875e68196bf1987cf72959bd568355c702Virustotal results 31.75%Heodo
2021-01-045DNARL97.docdoc 9e43571bf7a712feb6f6f6f2dbbef7876ee0a5895f2219bb76775b6809d98f09Virustotal results 31.75%Heodo
2021-01-04Z3TT2S50PB0.docdoc c468614a769e571b1c2ca14280030b4c2ba662c84c293f1c8eba3013acedb1dcVirustotal results 31.75%Heodo
2021-01-046NNAF9RRFIJ.docdoc 0daffdebae76adc451e7450a0655b6cdb1755cf372b24c67e462531a3a535469Virustotal results 30.65%Heodo
2021-01-04TLBO2FQ95JGX.docdoc ec3397b618b0b92c5556cac23ae40686fe9fca8c6fb2097fe84de3909ae48e1dn/aHeodo
2021-01-04AVCPRHR528K.docdoc 70364c0d02f4a1d61a76caf33b3c7b6349e382fc465685ce6ff04f6b1f422b1eVirustotal results 32.26%Heodo
2021-01-04Z7IXIS2ENL9O.docdoc 335244fcbcc6009ad28d75a6dfe0349e05900474914247fa1170d8aa92d7e988Virustotal results 32.79%Heodo
2021-01-04DLB19F7HMRR.docdoc 436ca025416de5f2e4b98d6112bdcf6677f2c9398b8c7a2e1e644a5717916014Virustotal results 31.75%Heodo
2021-01-04Y30LMKR9.docdoc 8d5ceb6aec48a9b05f5d2ac3b7f32cc94adf04e2523d360c242f6122fba2c52bn/aHeodo
2021-01-043CRK9I6Y38QNX.docdoc ccde80473cea9997ac7cdd255a2e4dc5514bcd3ea8a57344a2bdb87ea785b34cVirustotal results 31.75%Heodo
2021-01-048YNN9E.docdoc 8eb70d010ca662e71b14616b3939c6b40722ef1e40c1b7822b972177150fb345Virustotal results 32.26%Heodo
2021-01-041CHEH1XGZH6.docdoc 79ec7021a000940cb40f6c4779aaf2cee64001b113a331794268252115a6c44dVirustotal results 31.75%Heodo
2021-01-04DZTVRO8MS.docdoc ff6be035d97b2eaa9f0907ae5f2077592fd9c2f8a46c8a9838e808e18ac2718fn/aHeodo
2021-01-04WZATDUBMXBOB0.docdoc 9c2c5917f69605a3c17204d2d1aa7c95b2e6cbd92840c85e52c6dce965b9ba98Virustotal results 31.75%Heodo
2021-01-04C0108Q.docdoc ff29f78746b1593b83e9da2fe4e32363c0cad0fb5c5d33137e46361f620f1264Virustotal results 33.90%Heodo
2021-01-04AYO5IU1LK89V7.docdoc f1ea126a0c503685ea34e79d17116734a1e64a1659ed52582186ac060322f8bfn/aHeodo
2021-01-04HF30GO2ME.docdoc 5a0b98b6783b527f402bd8a0f82bff142e9266222ca16d7992ccc8ec471db115Virustotal results 31.15%Heodo
2021-01-046ZJA1VNVMGH55FF.docdoc 601959d7b5374e4fea01fb19d5bfc6e47e206f475a8cb155cc07552e10cc62b2n/a Heodo