URLhaus Database

You are currently viewing the URLhaus database entry for http://cassie.magixcreative.io/En/Inv/HBwR-Boe45_ciLLIBQC-eD/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:116855
URL:http://cassie.magixcreative.io/En/Inv/HBwR-Boe45_ciLLIBQC-eD/
URL Status:Offline
Host:cassie.magixcreative.io
Date added:2019-02-04 14:56:25 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-04 14:58:16 UTC to abuse{at}vultr[dot]com)
Takedown time:2 days, 11 hours, 43 minutes Poor
Tags:doc emotet epoch2 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-06PAY49792450659637811794.docdoc74e3e09003508c39e9cbc525064ea8894766d038f7da169a40d87e000e8105a2Virustotal results 19 / 57 (33.33)Heodo
2019-02-066768648795729.docdoc2e227a6c7c396e553dc2b482d490945eaf33d574aeebafe74970350563d95e58Virustotal results 21 / 57 (36.84)Heodo
2019-02-06T1948128770135010998.docdoc78ded88599c7203003267d3ceba8db2a960919c62f2ca667b7c528b6cb6b1b50n/aHeodo
2019-02-05PAY66312646605858.docdoce47b52622cee32242b7cb0ba73f2e6945527208eab888607f87c16627cdaabf1Virustotal results 11 / 58 (18.97)Heodo
2019-02-05US97019267894718.docdoc7e48b47dcf3ab0727fb2e373e1b72f5e048a8eae619aa5a4e60450044d4adae3Virustotal results 16 / 60 (26.67)Heodo
2019-02-05067840985988923.docdoc04c0728abfab49dca780c1165d7c99912dcc2c1284a43a67abef9114bfc9accdVirustotal results 16 / 58 (27.59)Heodo
2019-02-05VYV5024448246.docdoce8e7df3ab22e1d35b08087d4e6cbb5954c232af7a1f2a4421f1897e1962a1533Virustotal results 27 / 58 (46.55)Heodo
2019-02-05G731842935336.docdocb557c7e1d652e663ee95c73e58c7101fedcbed6cf64b933465ba93fe9aad1d4eVirustotal results 21 / 58 (36.21)Heodo
2019-02-051411688891708.docdocbcc6cc5bb459d3ad027df948e059cc816e142d7fc5c3529dea4435ab22ebf0e8Virustotal results 10 / 58 (17.24)Heodo
2019-02-04PAY335235000436.docdoc891b6d3fa5e4edbfd412dd92f5e48241109bd926dffb1ee56f21adfe78629b02n/aHeodo
2019-02-0401104300498949587504.docdocf1123efcea7e25b54b5a996bf2c48940403de5cdff4da1eea0e165b43ceecdf5Virustotal results 11 / 59 (18.64)
2019-02-04US324826352.docdocb9cbad9b3cd4a1f08c3284d479ff40093454e9f76d23783901087cd0add5d468Virustotal results 11 / 59 (18.64)Heodo