URLhaus Database

You are currently viewing the URLhaus database entry for http://klaksona2.net/_dump/BUyy0Zaa4VOb1rf8Ff0ABcgsiggRypyXBLFQAmlRXAG/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	948970
URL:	http://klaksona2.net/_dump/BUyy0Zaa4VOb1rf8Ff0ABcgsiggRypyXBLFQAmlRXAG/
URL Status:	Offline
Host:	klaksona2.net
Date added:	2021-01-04 19:04:06 UTC
Last online:	2021-01-05 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2021-01-04 19:06:02 UTC to abuse{at}fornex[dot]com)
Takedown time:	5 hours, 1 minutes (down since 2021-01-05 00:07:11 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-01-04	S7MVFGK.doc	doc	bf2f59ecb85a6029a908bdf90f5dae875e68196bf1987cf72959bd568355c702	31.75%	Heodo
2021-01-04	HECOOEUCSY58I.doc	doc	9e43571bf7a712feb6f6f6f2dbbef7876ee0a5895f2219bb76775b6809d98f09	30.65%	Heodo
2021-01-04	HKQJ999QRA6RCUSW.doc	doc	e2de08e5eefb901fdc1050f3870f4efc4d9853158f3a93a1db37b2f4b140459e	n/a	Heodo
2021-01-04	F4WWI7PINP0.doc	doc	145466e49f1ebf4ed38896709a64733353a2389bd676b7ef055c79637f53c082	30.65%	Heodo
2021-01-04	PDJEN7YZMH6KJ6S.doc	doc	bd71cb5216319d67b7163d101b227e46c1b8172480c96aee9172be8670c32fbf	n/a	Heodo
2021-01-04	36IKVECDSR3ZT.doc	doc	ec3397b618b0b92c5556cac23ae40686fe9fca8c6fb2097fe84de3909ae48e1d	n/a	Heodo
2021-01-04	ILFFRBX1QHGI2HVZ.doc	doc	70364c0d02f4a1d61a76caf33b3c7b6349e382fc465685ce6ff04f6b1f422b1e	32.26%	Heodo
2021-01-04	N5PYTA01X.doc	doc	6a61b4d6424c45621d9da70561c8bb5c1a28772e43241374ea706bb04cbfc058	n/a	Heodo
2021-01-04	IRVWA7TMH.doc	doc	7bb94464b3d84793306c5871494ec5b557815c2dee93f5ff5ba01e1fe7c85d88	n/a	Heodo
2021-01-04	T4SVVMC1MU2FZ29B.doc	doc	17c93d81b95f2b725804776e87495cb9c024cd0c25c389dbb1931bfe5b335824	32.26%	Heodo
2021-01-04	2H05HW8QUA3LN1S.doc	doc	8c09b7c7b59889f547395a4d9d2832a4b32b88e8d5e3bb22bb560842190c58d0	n/a	Heodo
2021-01-04	FYN91J.doc	doc	ee679637d75a8f5af5112158416276ace0f51e892a1b1bbf0987c2e3f8d366e5	31.75%	Heodo
2021-01-04	FQDBTZKHWG.doc	doc	e17ab8ab24888272311390fa534231d03447787b2c7f69a691c30b04f9c18c51	32.26%	Heodo
2021-01-04	64LTO3OO1Q.doc	doc	2cc7e1f0bd0691c4398e97ad98573985d7c28a85712210379e667f7573baad2e	n/a	Heodo
2021-01-04	6ZUOWUAS7325BM.doc	doc	49a4678f9b33879cb16662dd5d05bc7e7ec713bbf6a85741a81f9e1e0f3c37f4	31.67%	Heodo
2021-01-04	28KE8WU4LXI.doc	doc	bfb1730113cb5053d74406fb4fef94281848b94a36f77692bfa06724fb26712f	32.79%	Heodo
2021-01-04	ZYVHL48GB329LP0E.doc	doc	4ce9c1ba330aeca51cd7b8f6b7e1796c1ead42dde6868d7a5fd636b9a3a9f4f9	31.75%	Heodo
2021-01-04	T98IJJJVYFB7JT1.doc	doc	82d7ccf8a708facd6356a918e9930803db68740bffed556687da9891ebb7910c	31.75%	Heodo
2021-01-04	ZCMRM9G36AIP5Q0K.doc	doc	40977b89d6a6667e3e77e68d8a87500fb5461c61c6aaab7355550246e0f03cd6	31.75%	Heodo
2021-01-04	Z86P8Q.doc	doc	eaa2a7a6ead0fb817d96de5539291d86caf887cbba94836c246755105a7a1429	n/a	Heodo
2021-01-04	FUFK79T934.doc	doc	fea083de9b31b49497005d6f38cc508f73e1853f6563eb2775257b8a48b9ff42	n/a	Heodo
2021-01-04	AHA4DC3X69B7V.doc	doc	7e6a510852e8b5039c2dc9ea63d7420b5dc842c21c534cf29b343454d726a4bf	31.75%	Heodo
2021-01-04	Z1H7AGAWFV6KJGQ.doc	doc	ac2433d19823522a5239c92113bcd6b6e9bd92a56465ec572b75490cdbe14ea1	n/a	Heodo
2021-01-04	FBL30C2A2I0.doc	doc	6dbcc0255f24c2876b32acaea6ac383eb2995ef52d51806db60df781d4b15e54	31.75%	Heodo