URLhaus Database

You are currently viewing the URLhaus database entry for http://agxx.de/wp-snapshots/PPmt2KQDfcIgpSF9s9akZzq3E4kg/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:949184
URL: http://agxx.de/wp-snapshots/PPmt2KQDfcIgpSF9s9akZzq3E4kg/
URL Status:Offline
Host: agxx.de
Date added:2021-01-05 02:38:03 UTC
Last online:2021-01-05 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2021-01-05 02:40:05 UTC to abuse{at}digitalocean[dot]com)
Takedown time:6 hours, 22 minutes Good (down since 2021-01-05 09:02:18 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-05RO2JZTIZHP0Q8H73.docdoc d952d30c3ef25db2566e7fd14d90400901e586d5002d43cd3992b237e631675en/aHeodo
2021-01-058AOF1LG6WZVD9.docdoc 20c4e385c38815675f3a8d97965e53c8b8f55f5034eff90bc8847142f5a20ad2n/aHeodo
2021-01-057O1ZD5HT7.docdoc e243ac7c1ea7d9335bf414580bef9417d41b9e85f688cd22afff509c0c40db77n/aHeodo
2021-01-05V4JQ1BZN90Z3FT.docdoc 01d887453babfa19df36fb28b167d112a2155ed05f30a8613c55daeced863fc2Virustotal results 28.57%Heodo
2021-01-05MM81VM9Y8OHSI.docdoc fc54284371340d5ee0e9de0094b70280b063294cc1408866edeb19387215462an/aHeodo
2021-01-05V55FSXRSTH0.docdoc c89d8cf447d03687818fda76021467eb01ca57915644cc3516ed2b47d99b3eb9n/aHeodo
2021-01-056SV3A4HP.docdoc d67fe49fb7149fd2066f78aad02d737430236ddecb5374f6c7063dc3dc20b7c2Virustotal results 31.75%Heodo
2021-01-05WPU5BV.docdoc 70348b91afe7c847c52752d348500eb3958fde7742b44cb033887a6f88eacc41Virustotal results 33.33%Heodo
2021-01-05S1S9EE17UYMG.docdoc 555882aa0c70bf9f62ae71584a9e5e18353d6126de19390f8c2859c15693764cn/aHeodo
2021-01-057D9U4SA4I9YY.docdoc 21d709c68afb83cfb7a5f69689f848528b42c0d08eec7f1d0a073ffa35285534Virustotal results 32.26%Heodo
2021-01-05QN21K617KJNGPDV.docdoc f9adb0853fb3717234e033ffd51b7d5deb84a6336236334d672e02f9f80c3824Virustotal results 31.75%Heodo
2021-01-057I9T0958JID4X9.docdoc ce77e9e1fe235b5bcda9dd1e3db5ed575bd397a7e5f96da2775491ee0c23639cVirustotal results 28.57%Heodo
2021-01-058SD2W5F.docdoc bc60a50738caeabfcd59cfc7f355ad5fcb5ac7d0b57afd7d96aef09e6eca8b0en/aHeodo
2021-01-05Y2S9QM2ZPE.docdoc 6aa8822f97a4b8c6f94cfea8ac81f0deffe57554498a897a22930d98366a5599n/aHeodo
2021-01-05VBI2GFS.docdoc 6f31db5bbdffcfd6869ca287c54ab7010c4bdacc510e86fb8fbebc7999d8cdf1n/aHeodo
2021-01-05WLK30GCAU8M7H1ZS.docdoc 57573ae812bd40b5f1f02c9098899b026dbe071fddd98c0f39e979e542925274n/aHeodo
2021-01-05MVE8QTTO4.docdoc 062356944de62064252aeed4336f1416ec9ecd03ed618d6c27dbc0bfe8d168ffn/aHeodo
2021-01-05IR2LJM4QMHG.docdoc 2fce0e475493a78ec8132358305eaf611dad56e9f69186a6ba81488abe696ba6n/aHeodo
2021-01-05L7P2BW23.docdoc 7fdedf2abac344613c34295f9709038790437c77b65f72491def7dc2ea11aa08n/aHeodo
2021-01-0505IRIM.docdoc 47045bd8084c3a6d54f452d66db9d55f9af7413a968bde9ef5c0967bd5acececVirustotal results 31.15%Heodo
2021-01-0533GPS5B466L.docdoc 09292d51e8d353b88a500ab38de30d3aaec41733df7b368af869cf472bfef48dn/aHeodo
2021-01-05FX13TTGN91Q0249I.docdoc f04733633102448629503a0b0df30e77c694298c6e2bac53b89099f796a4a04cn/aHeodo
2021-01-053NTI0A0.docdoc 48e5d9cf1ebc2c615dc60b2f35595632cb1ebf25c2305ea31f087bbe8689a1adVirustotal results 31.75%Heodo
2021-01-05BOGZCDE.docdoc ec2aca363bea5e10495d5682f2c50b4a46c9ca51236fb795e7d87e41109ce790Virustotal results 31.75%Heodo
2021-01-05FNBRYGQIY9MQCZ4.docdoc 252656a16cf6ef7ede48d6dfbf08918fae477b4e2ed50a5b2dcb46a1d6240fbfVirustotal results 31.75%Heodo
2021-01-05C7G5X7.docdoc d156b4fc840034beae78f8d4c55226d4dd1771465d0b8f45322dcd63731bdd4aVirustotal results 32.26%Heodo
2021-01-05M391V3HCT68MSDK.docdoc e1ebbd14ee5b8c0e8f24ab2f32d70806cbad49852e703793b4235d8117dbf439Virustotal results 32.26%Heodo
2021-01-05VTHQSJKDI.docdoc d315e07599f48461af20a81347aae5972ba5aea6210a0e28244b902a18cefc78Virustotal results 31.75%Heodo