URLhaus Database

You are currently viewing the URLhaus database entry for http://hefzi-pub.com/wp-content/zFg8uS6h4GYmANcO/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	948996
URL:	http://hefzi-pub.com/wp-content/zFg8uS6h4GYmANcO/
URL Status:	Offline
Host:	hefzi-pub.com
Date added:	2021-01-04 20:07:05 UTC
Last online:	2021-01-06 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2021-01-04 20:08:02 UTC to abuse{at}onlineserver[dot]ir)
Takedown time:	1 day, 14 hours, 8 minutes (down since 2021-01-06 10:16:11 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-01-06	Z3NTIZM.doc	doc	5cdeb766f37fabf36c2ba04b505360b64db16bba5291a143a43a631460461122	55.56%	Heodo
2021-01-06	61EYREK.doc	doc	1351078e3b8f61f970992d251978631ffe00132806d2a4eb152239ae111efb6f	54.84%	Heodo
2021-01-06	50D74IDUOIPHFZ.doc	doc	bd92faf6df467bcb52378dbfe1a9a4566e45340d72cd949662cbde48b67a7120	55.56%	Heodo
2021-01-06	WRUAW1IRQ4SAFR.doc	doc	b2f7bab95f522e14c0955cbcacdc6111b00c7073cd8f24d2e9a0ec5c721a59ce	n/a	Heodo
2021-01-05	LUI81Y.doc	doc	d46ba86119e2dd83214de690677f6a6804a514580f74a8b698bd9feba2c914a1	41.27%	Heodo
2021-01-05	NWP9P52O4HOU.doc	doc	6bc73ac4754a61cfd480d1b333cb576785fcae102111701e6461365d6b535105	n/a	Heodo
2021-01-05	5JS4M73T4WO9DTOM.doc	doc	15f23a4d0c6a15044c688746279a0a6afbc82b15d5c5bf6752ccffa01e9921f4	33.33%	Heodo
2021-01-05	AAGQ3Y7OFUKVC0.doc	doc	b7a15626391073fea818a17906f508b97f3ecc2657103fc17761d2868b5a65e6	33.33%	Heodo
2021-01-05	JUUZJAA.doc	doc	2651ecebd2aa9e16900d9bc9f07d6cb5086661d6458619a04dac9ae709f5a789	33.33%	Heodo
2021-01-05	Y0WTOBRN3R190PJ.doc	doc	616f225c95d629abcbed5b0326f80549cd8519f657ab6086a9fa79f009d02f9a	31.75%	Heodo
2021-01-05	C2801A4DKIZ.doc	doc	bd60ff7c004eabf4a4e1ec0d15c9df1c8500a909033be1dbf3b570915556d24a	30.65%	Heodo
2021-01-05	63IQ2CU.doc	doc	c4d979622647bc179ca385e15044d1a3d71643013b1413a46fe06f20bcd3ef44	30.16%	Heodo
2021-01-05	H4OVALIQ913.doc	doc	bf7cae6c920be51d01231f410c3dd16183c89f983509ea4d25e5cb308cab7630	30.65%	Heodo
2021-01-05	7QZRPC3.doc	doc	53231efc48f1632c1f692e3bf6a006c2b716de32ab681331cfb647dc4d55b423	30.65%	Heodo
2021-01-05	CAS3CX.doc	doc	17b8913da71ec65fdb142fcf094aebf599ed7bc7f86c01d049b23418c0c2df65	n/a	Heodo
2021-01-05	3O1VVR5R1100MW.doc	doc	058c74720bb5f6fef3ca515ad4071ad3414a08398134588b6a85cafca3723fd0	n/a	Heodo
2021-01-05	5X0MU64.doc	doc	bc31710591f55e8f19e5d9a0832dbac8685e577da94f44cb7efab1e17c730c09	n/a	Heodo
2021-01-05	ZYSB9UHA7V87F8VO.doc	doc	cbe19f76bfedc090a57dab2ddb7abca1880676f4614bad3f1f48a953f54d450f	30.16%	Heodo
2021-01-05	J3I0PM.doc	doc	acd6aeb037c945b348d6d532eaa17f010487203cf741cbf1fb34f15da0f2476b	n/a	Heodo
2021-01-05	7KAC5FEHVMNWL.doc	doc	ad3dc27c27bc80bf2a3278162b1496149e0a2f7f4f9f109245bee9551974c518	29.51%	Heodo
2021-01-05	MUB1FSPWD.doc	doc	9be359c8e7dd9a3b5b245175a6f8dd0f06a45a9bacd216edd933572ca6fa3d52	27.87%	Heodo
2021-01-05	3ZJ2K6JE.doc	doc	8403254744e2730ba02b0edbbb2adab46acbd84388cfe7d2570f96cbac547b89	28.57%	Heodo
2021-01-05	17K3Y0UAR5QI7C.doc	doc	7a8f4252c28fcffe566860796d64593d45ed30f91dbccce25ea7047dac689ced	n/a	Heodo
2021-01-05	S3VCSN7ZT1KGD.doc	doc	3724b137d395a8ff9abcbe11e75553e699c89099a6f10f8b7c81b22214d5781e	28.57%	Heodo
2021-01-05	3HD87DZ.doc	doc	70aa5aae32738f7033ad0efbeac4d8975e3658753b1a58e06702bed88ac47de8	n/a	Heodo
2021-01-05	HI4MGAVQXXD.doc	doc	c34d5901f2fbc511b45bf5f763e9bc65bd50748300aa82fdbc054296ad9a22bf	n/a	Heodo
2021-01-05	XDBSFZPD.doc	doc	932733fb7f8065b6976771967d0d9b4d27db4c07c2b69334db798fe9581a12b2	n/a	Heodo
2021-01-05	1JKVAQ128MNBTNCK.doc	doc	15310009b3c2b7562ee76817135dba14165966eff11baa945341f1b5e162db74	27.42%	Heodo
2021-01-05	7U67E6CGMSE.doc	doc	a26ff62a2264180c03ebf68a26120cadbcee3f53a4cc6dc7ad00d97ffd029c85	36.51%	Heodo
2021-01-05	SZVGIUJCS6.doc	doc	44b5bc6f5c6c0c3821f5c1196971d8398ad15924739c4002fbb496522387ad16	33.33%	Heodo
2021-01-05	ZJEYZVY2N.doc	doc	d67fe49fb7149fd2066f78aad02d737430236ddecb5374f6c7063dc3dc20b7c2	31.75%	Heodo
2021-01-05	GQFTPFG8F.doc	doc	70348b91afe7c847c52752d348500eb3958fde7742b44cb033887a6f88eacc41	33.33%	Heodo
2021-01-05	NU2CWLEW.doc	doc	555882aa0c70bf9f62ae71584a9e5e18353d6126de19390f8c2859c15693764c	33.33%	Heodo
2021-01-05	6E4DN1Y96YV.doc	doc	fa91514bcf7bf7d49942a9540a1d515095c09cd936dae7f0073647dff6249c37	n/a	Heodo
2021-01-05	Z96IGHI.doc	doc	f9adb0853fb3717234e033ffd51b7d5deb84a6336236334d672e02f9f80c3824	31.75%	Heodo
2021-01-05	R5RW4DPICNH.doc	doc	ce77e9e1fe235b5bcda9dd1e3db5ed575bd397a7e5f96da2775491ee0c23639c	28.57%	Heodo
2021-01-05	LIBO9OA8.doc	doc	31098f25a636339c3e7b05faa2d9803b8ff4686479ceab5ee22ba257193992a8	n/a	Heodo
2021-01-05	H4TG1V5QFQOGLP8.doc	doc	bc60a50738caeabfcd59cfc7f355ad5fcb5ac7d0b57afd7d96aef09e6eca8b0e	n/a	Heodo
2021-01-05	FX9YHA9NMSQ.doc	doc	6aa8822f97a4b8c6f94cfea8ac81f0deffe57554498a897a22930d98366a5599	31.75%	Heodo
2021-01-05	CAZZLB24AE10.doc	doc	6f31db5bbdffcfd6869ca287c54ab7010c4bdacc510e86fb8fbebc7999d8cdf1	n/a	Heodo
2021-01-05	K0HTOGBJJ.doc	doc	57573ae812bd40b5f1f02c9098899b026dbe071fddd98c0f39e979e542925274	n/a	Heodo
2021-01-05	N4UAQ2IS9T.doc	doc	906f8cd4e47a854b5529ec1ba4e7af7a9429b6cdb09772e8cc661a0071cd46f8	31.75%	Heodo
2021-01-05	MOMYG2YY.doc	doc	2fce0e475493a78ec8132358305eaf611dad56e9f69186a6ba81488abe696ba6	n/a	Heodo
2021-01-05	FSJD61FKR6UEKV.doc	doc	771ac1b506fa360b405de6d3b6947b0fa3e32159b35dc852efaf0eabf8cf6b75	32.26%	Heodo
2021-01-05	H28XO8620SSBEVLZ.doc	doc	1b815075fbe2801ca89c6f4227c9ae2fdb2275698791758ef57f7073fd4d0d6f	32.26%	Heodo
2021-01-05	GSZP28G1BZR2NL7V.doc	doc	47045bd8084c3a6d54f452d66db9d55f9af7413a968bde9ef5c0967bd5acecec	31.15%	Heodo
2021-01-05	GZAXE0P089Y5A.doc	doc	f04733633102448629503a0b0df30e77c694298c6e2bac53b89099f796a4a04c	32.26%	Heodo
2021-01-05	JSKQHMRG900.doc	doc	eedc56307590cb415b9388656d7287000bf530c10ab8c8c1f8bf4875321c2398	31.75%	Heodo
2021-01-05	JXW67TJQB586H.doc	doc	4523e13280b2e95775c068a634c776ccbaa8dc00f4de452f485321b48c178872	30.65%	Heodo
2021-01-05	8SNMJXKNARG.doc	doc	6e9366c10b06f94a3e436527ed163f7b68c4a81f911d593d64e6312d7b0e39b8	n/a	Heodo
2021-01-05	NXMWXI.doc	doc	252656a16cf6ef7ede48d6dfbf08918fae477b4e2ed50a5b2dcb46a1d6240fbf	31.67%	Heodo
2021-01-05	U3CHFRPLG.doc	doc	84050cc58a43aebd78c85392869761e0772f48740c414f586b2716f6c5a09b99	n/a	Heodo
2021-01-05	QWJGYM7VN8.doc	doc	e1ebbd14ee5b8c0e8f24ab2f32d70806cbad49852e703793b4235d8117dbf439	32.26%	Heodo
2021-01-05	OO9CSYLLX1ZFXN.doc	doc	d315e07599f48461af20a81347aae5972ba5aea6210a0e28244b902a18cefc78	n/a	Heodo
2021-01-05	140HURCOLL5O.doc	doc	715302c7c5d571733456f11e19d6c7a066388ef318fb726b24578ae121f9bc20	n/a	Heodo
2021-01-05	H9ETKW8YY056.doc	doc	89f2c53efc4423c85870b7b59615a36152242f602d3c1269a2226f9331684aed	31.75%	Heodo
2021-01-05	WDPARG7MCWJ7.doc	doc	68f2889fb26be5dfaef1c55d3d1509e9a6b88f12ad89c8f869bf829d463ef59f	n/a	Heodo
2021-01-05	C5W2OUZZ15VG1T1.doc	doc	7ab531ffdf05ec65c076a06ea4a7e92a3c02ccb479f866db344d9fc4abcad342	30.65%	Heodo
2021-01-05	BOWZDJ3UI0HV.doc	doc	8488d087b6010876c2aef93e85bcd715e0698b8c09e7c58e31a655b3c4860f4f	30.65%	Heodo
2021-01-05	H5220CPFT52U.doc	doc	0dddfc149150477c5fae49dec6477c7936aaab52d827e85d522a6aca5217fcda	n/a	Heodo
2021-01-05	D1L070H2C3I161WY.doc	doc	c7edd153d2e8f2d93b8987a6337e38c1d65aeefb10e53ada3f082d13b906128c	33.33%	Heodo
2021-01-05	I50DBP.doc	doc	3d59c114c200d80ba97d2866d3b53aada9eee8b22a90c4bee3f60bbb254fe1c0	n/a	Heodo
2021-01-05	721VZP4TVOE6IZP6.doc	doc	328547d8fbddaf5087390a97bb4bd2032672e5ebda3e6c867bb5093cde59cb5d	31.75%	Heodo
2021-01-05	VP3PE2.doc	doc	dc9236f8bdf3716d6ad5bd3fc91beab4505cfe0585682cc68064718e9680c53f	n/a	Heodo
2021-01-05	S00FRJMO0M3BKWZ.doc	doc	dd827cfba8fdccb5a71c530cd9d1711b0d01c1fa3933347d729ca9fb3d4bd98f	31.75%	Heodo
2021-01-05	3LLIW50KJ.doc	doc	76791e1b0ebfbf5081b8f6c4e3196ad92ca2d9904c48fc16d8e9d82b3585853f	31.75%	Heodo
2021-01-04	6Z8J3GFILINHTIE.doc	doc	3a7192ae0a86e22de203cd0bd9c3b2ddae45e918207d4ad84f4cfe6b1d975c95	n/a	Heodo
2021-01-04	T9276LPLXVWQO.doc	doc	7d5c8462f4e878f3bc69fd37546aa5db52e2eeecc72664ee9f9f56f9228fe853	31.75%	Heodo
2021-01-04	HW6KTW8IF.doc	doc	9e43571bf7a712feb6f6f6f2dbbef7876ee0a5895f2219bb76775b6809d98f09	30.65%	Heodo
2021-01-04	YEZDLK8WBG4.doc	doc	0daffdebae76adc451e7450a0655b6cdb1755cf372b24c67e462531a3a535469	30.65%	Heodo
2021-01-04	0YFBVN0S978.doc	doc	5f524f83210cb14f613d46f3f38da1d4986603056494361ac8ae9386e92a678e	31.75%	Heodo
2021-01-04	97HLV1APO78.doc	doc	145466e49f1ebf4ed38896709a64733353a2389bd676b7ef055c79637f53c082	n/a	Heodo
2021-01-04	KMVQYOT9D5.doc	doc	a5510a203c4d4cc423b2e4a321e9e2fd2a9b9afa62195780841d60cda74614af	n/a	Heodo
2021-01-04	GKCEPNQM0T9.doc	doc	6a61b4d6424c45621d9da70561c8bb5c1a28772e43241374ea706bb04cbfc058	32.26%	Heodo
2021-01-04	7MQB25UJ0MR.doc	doc	f5e030f99b3221f7b2d8b52bce2b0b913b2d183c3f7bd5016bd17ddbfe0be793	31.75%	Heodo
2021-01-04	ZA8U1P1BXTZUT27B.doc	doc	335244fcbcc6009ad28d75a6dfe0349e05900474914247fa1170d8aa92d7e988	31.75%	Heodo
2021-01-04	B4BX8N9CSFYGX7JP.doc	doc	17c93d81b95f2b725804776e87495cb9c024cd0c25c389dbb1931bfe5b335824	32.26%	Heodo
2021-01-04	2QW57CMD.doc	doc	3d566983c8d1eebeb69ceafa423e493e04f3ca7fa686084e2c2e064a363a9d07	n/a	Heodo
2021-01-04	LB9KPQ0IZUIQ.doc	doc	59d432f6a9a6ae545627150d20e18ee5b8184da41df3aba0397cb1868cc3b618	n/a	Heodo
2021-01-04	RBFSQ4QER53UKACR.doc	doc	ee679637d75a8f5af5112158416276ace0f51e892a1b1bbf0987c2e3f8d366e5	31.75%	Heodo
2021-01-04	SUMDFCG49P.doc	doc	8b75f1269fbd186c0d2bf5ef7e604d7aab3f93be1d5dbbf83bb16a8d407bc7aa	n/a	Heodo
2021-01-04	6PDIKGOCK8UFVD.doc	doc	a4ee94729b7d72887bd48e1d2c06d88cdc624f878fd079085fa6713200e712d0	n/a	Heodo
2021-01-04	KQFULH4YH8YXWH.doc	doc	a4aad5f9fbf0297950767fdd56e60306ddd25957d0f787ab3400f0b089edf97f	31.75%	Heodo
2021-01-04	FYU23L.doc	doc	141775cdc589d1b9f0fe3a80d1385dc5b8f4ee9953379a3022bef1cacbf64630	31.75%	Heodo
2021-01-04	VEQHU4GSLCNA.doc	doc	4ce9c1ba330aeca51cd7b8f6b7e1796c1ead42dde6868d7a5fd636b9a3a9f4f9	33.33%	Heodo
2021-01-04	HIAQPWT954W3L.doc	doc	dc7402e4f4e6065329fea3c892ee177a617798028d65439d253b4a64674a6d6e	32.26%	Heodo