URLhaus Database

You are currently viewing the URLhaus database entry for http://ledyroz.ru/De/ECZEUHDTX2212341/Rechnung/Zahlungserinnerung/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	97736
URL:	http://ledyroz.ru/De/ECZEUHDTX2212341/Rechnung/Zahlungserinnerung/
URL Status:	Offline
Host:	ledyroz.ru
Date added:	2018-12-19 11:46:03 UTC
Last online:	2018-12-20 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2018-12-19 11:48:16 UTC to abuse{at}reg[dot]ru)
Takedown time:	1 day, 0 hours, 24 minutes (down since 2018-12-20 12:12:25 UTC)
Tags:	emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-12-19	this-site-is-virus.doc	doc	c2e393ff568f4a87ce48011f10664138e569710f56ddc0462aa7f36bdad5ecad	0.00%
2018-12-19	2018_Dezember_16_34_14_Uhr.doc	doc	b1860aea8f9db8d2b56563cc583ff86d1614e9f0833630a6f66f71b01b4e99db	24.59%	Heodo
2018-12-19	19_Dezember_2018.doc	doc	ac17f5bd46ca6bfa6459703b1cb3a425fffb75f70ad5ca614271e1324660a6ce	28.33%	Heodo
2018-12-19	2018_Dezember_6999903555.doc	doc	84aafbf9d47a7a0ae083e19095bd77adbe89cbac7654a1b2e06287149630017c	n/a	Heodo
2018-12-19	19_Dezember_2018_15_08_41_Uhr.doc	doc	50632d251a7b1de4f23848e4d4acb8eb7c486bf1836f1b28bad17c39f5d00e61	26.67%	Heodo
2018-12-19	2018_Dezember_1412203754.doc	doc	7f46994c46c6bb7e3fc1db32374ece7c4b995e862dc0c77519bb60f39892f71b	n/a	Heodo
2018-12-19	2018_Dezember_7423244071.doc	doc	aceaca2a5b483f991c93162935025122fc98d3063e213cf95d8d218f4d8c273e	31.67%	Heodo
2018-12-19	19_Dezember_2018_4441805060.doc	doc	b28e8f562bda44771dea997e5faac39f0dc9a0130297ac78f0da2d7186e7cb7a	26.67%	Heodo
2018-12-19	19_Dezember_2018.doc	doc	a49659834b434c6d7c056a9b23b1ae424f6057c9c558f575c44e2c77f03c0be2	29.31%	Heodo
2018-12-19	2018_Dezember.doc	doc	c5dc38fa3afdd42c38e195f36a1e854a9a7b6349a9c6886bca1c648b197ad494	27.12%	Heodo
2018-12-19	2018_Dezember_1208393507.doc	doc	7f6e6b81e6ef353cdb4fa2fdb301217967423523198023d84f02e1065f926547	27.12%	Heodo
2018-12-19	2018_Dezember_7635268420.doc	doc	c2245d89df0a0f4fdd164a942fcc25c93de8b71e0bedbe3ad75d80fa43b85c69	28.33%	Heodo