URLhaus Database

You are currently viewing the URLhaus database entry for http://document.magixcreative.io/ATT/5kVFcPEe0D_uOpQoBb8_lddcWZV/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:118772
URL:http://document.magixcreative.io/ATT/5kVFcPEe0D_uOpQoBb8_lddcWZV/
URL Status:Offline
Host:document.magixcreative.io
Date added:2019-02-06 21:02:05 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-06 21:04:06 UTC to abuse{at}vultr[dot]com)
Takedown time:2 days, 16 hours, 14 minutes Poor
Tags:doc emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-08myATT_02_08_19.docdoc2714ad8869eeadf94a4a03ae460a8e245b5af45dcb3a4bc86fb8eee1655dd319n/a
2019-02-08AT&T_Online_02_08_19.docdoca331d635cc6ea54cc90520e8f5d8007365a09eeb7484944049a8e3e9339a6978Virustotal results 22 / 57 (38.60)
2019-02-08AT&T_02_08_19.docdoca90d457236548ba86c6a7b1351942a2b20fad4fe0f19a2c61ddb51c30823f314Virustotal results 20 / 57 (35.09)
2019-02-08AT&T_Account_02_08_19.docdocd625818a5829b7d566ff44e3dd244123afbdce9980d6f68294c2847674a67139Virustotal results 19 / 57 (33.33)
2019-02-08AT&T_Account_02_07_19.docdoc8b34937814fcbb2c983c7119f789a6be5622f6ec292f43c29d66ede185ae2755Virustotal results 18 / 56 (32.14)Heodo
2019-02-08ATTBusiness_02_07_19.docdoc89232e0ce2f758bba708b8b17089fe80eac82201f1311f29e24976c86020e646Virustotal results 18 / 57 (31.58)
2019-02-07AT&T_Account_02_07_19.docdoc1ea02f40f79ad4c530c0bf0138d7b49d995977ad2187e7b231e0f89a020839fcn/a
2019-02-07AT&T_Online_02_07_19.docdoc9ea22e4299d15e87a1a3bcc03ae6e930cf89db5cb3c48cc65c3724744b17b03fVirustotal results 19 / 58 (32.76)Heodo
2019-02-07myATT_02_07_19.docdoc0e7fde1b470418d2ab15d6f087674cd7891c23d728349ee4a1a63b60101057fcn/aHeodo
2019-02-07myATT_02_07_19.docdoc7219a61d1a694060a5e95f025a5486f900cca6415745e0fa87bf9329e340d574Virustotal results 17 / 55 (30.91)Heodo
2019-02-07AT&T_Online_02_06_19.docdoc8895394638778b766ff4e0b0aae95a798736b1f36eeae2afe9c5c277727f8098n/aHeodo
2019-02-07AT&T_Account_02_06_19.docdoca2d2d05bbc194c0a4b423dd8e3e56a4b0c187294255cb2c043bdf2baa89a1392Virustotal results 18 / 56 (32.14)
2019-02-06AT&T_Online_02_06_19.docdoc8e2d48a299369f7e1b7ab2d5d41e1fe138b773b9ae4b64ed411cc56adf133f06Virustotal results 19 / 57 (33.33)Heodo