URLhaus Database

You are currently viewing the URLhaus database entry for http://gslegno.com/De/MYAUGF0391792/Rechnungs-Details/DETAILS/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:122277
URL: http://gslegno.com/De/MYAUGF0391792/Rechnungs-Details/DETAILS/
URL Status:Offline
Host: gslegno.com
Date added:2019-02-12 09:07:02 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@spamhaus
Abuse complaint sent (?): Yes (2019-02-12 09:08:02 UTC to abuse{at}ovh[dot]net)
Takedown time:2 days, 5 hours, 50 minutes Poor
Tags:emotet link heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-14CIUW5707170697154205.docdoc a74159acb83e97eca7da81b6f5d45772bf2a30780b05254b62abc4927f7a4b3bVirustotal results 21.05%Heodo
2019-02-14VW0761668381995043477_2019.docdoc 0f7e4cab166e73185419c68705af588afa888719fb64944b616077419ad0d319Virustotal results 21.43%
2019-02-14201857791993595047_2019.docdoc ac52355aa575ef353526ecf3cb232601dc8f53adc27281e02655de6b5a758b56n/aHeodo
2019-02-1463774758342.docdoc 9aba8a13a65140590ddd44505e2062ef0abd7d237597df171a5580fd3dd88583n/aHeodo
2019-02-14K6802815194387355.docdoc 6f8babc146a8c3a582cabed6ef91731c2987f843e3a4623c0d951c0de13ee213Virustotal results 22.41%Heodo
2019-02-14RWUD93778419240.docdoc e299f7a1b7b7de00850d383f989bc12f1c16b06f6b1646f0b375fa1a452811fbVirustotal results 22.81%Heodo
2019-02-14244463806693367_2019.docdoc f12c3d3147732dd1837e14f342cfd70c082708124d97558c9c5caf20a100bd3fn/aHeodo
2019-02-143338468102179605533.docdoc ff3f4879e17cd72486722d1712cf26a8d7a8f2d1f307d927a7940ed9e5be5330n/aHeodo
2019-02-1416008417324516663434.docdoc a965da800c5e4ffe753e22557c1746d63c01ba6c08280b853bba4a0e72e779fan/aHeodo
2019-02-1417760354532092_2019.docdoc 139d633d16933b0d389164796f9ea35f965376d38e39a304440c7b9a4c245dbfn/a
2019-02-14ZYG980557921323_2019.docdoc 8ddd163ef158c0f5ea2c1b50029b1462088e5a98805449045d8d25e2cf6fe207n/aHeodo
2019-02-14GOFD961330134385179.docdoc c4d5eb16e247de7d862e97622bfc7f1c37ddd21e73ba80e706cc7d10a5dc29bbVirustotal results 18.18%
2019-02-14MX671505324910298_2019.docdoc 20fbb46e90f174bd6faab4af0d756c30e92baaf3b333926007a24434dec69035Virustotal results 19.30%Heodo
2019-02-14506145192867512244_2019.docdoc 78bb21dd9e0b70ad08bea194f26daead7af712907c64edc89e1632a0aea41c4en/aHeodo
2019-02-14726017179621139_2019.docdoc cfe4efa103f660717a0fd3af9af97b5cf08fcb120c19a869c0f04d71a161114fn/aHeodo
2019-02-14NJW30852607220.docdoc 5072a0de55aa41713827fe476ba832c622bb5fc412b1ffc92fee45f5c3237e29n/aHeodo
2019-02-14304026538674.docdoc 2d4d7fb923bca4b57f355c1e99ccd3f3057be2a7251db9c910b2f025187d0a56n/aHeodo
2019-02-13263969943_2019.docdoc 5c87d337b594116ce60ae86b48c1c3ba52729bbaf2ad104966efdcf4060d73dbn/aHeodo
2019-02-13S4342049490326_2019.docdoc 23a64e615308d625887475fe88e312dc5587298739f7ef3a2747ec7169a8e5edVirustotal results 27.27%Heodo
2019-02-13UHN023872299551.docdoc 14879556eb8860a2715d97c72784359bbadff250f88f23dd04d4cccdac7dc007n/aHeodo
2019-02-1384545748846776660251_2019.docdoc f6ae9d88d9b1a62209b3c09883907169d8b2e7205b301ce148969fa9a5ac5eb3n/a
2019-02-133785579907311488.docdoc 305728b912ac45e6f9bd2dc0e4341038faf9c4db0beda74a9d990202984f42d6Virustotal results 23.21%
2019-02-13NHS6203207060696162_2019.docdoc b8d030c7d0228870de8bd65d62b13804dee44269065314ccffce1a4bede371e9Virustotal results 18.18%
2019-02-13MSM73247684226740473267_2019.docdoc a0d4bb6f46609ea18344a82ea724601abff30aabd93ecaf7ce5bf4ae7348460cVirustotal results 14.55%
2019-02-13EIG871754998232144_2019.docdoc 9f51918746416b2d8b1d6062030afc723ea45f65a97b29737aeb7fa0004ebb2an/aHeodo
2019-02-13742448232556206635_2019.docdoc 21bb40ec221b915e0740c9505c1ef227f4d17d80b0cd4c4666b68d00e760a814n/a
2019-02-13998427256227500709.docdoc 14789fb215cc2d03e2758deeeb8f0e96f64ebd5b097495e32109f93104d18c00n/aHeodo
2019-02-13K53551593911842021885.docdoc 8f79767fe9ce914eaa39d59b9909c3be5c026953415c7d8e926f8801414522eeVirustotal results 16.36%Heodo
2019-02-130598453537401.docdoc eaec15b385dfbd29a26ab5e6f58a85662c3e1c0f3d7c862779836b30083ec1a4Virustotal results 15.52%Heodo
2019-02-13A75118507453115.docdoc 59b3060f0d64fe6309dbe03e038f2718b0f76007f2bb5fbd1c62bc4216668cadVirustotal results 16.98%
2019-02-13DJDY3340813558282.docdoc 276a772e34632e0f02997e45c48dd161335d9c1bc0bf1a98e4117d9aa719ef0fVirustotal results 15.79%Heodo
2019-02-13LT70412243227125.docdoc ed6b61fd97fcf29a9b548ce5028328766a45b30980f8a24c7ddf201a9fe304bdVirustotal results 15.52%Heodo
2019-02-13IUZJ325435571886523059.docdoc 09c144d073586057a18a9c3726acbee30d98f513645c4bb723aab94092120b9dn/aHeodo
2019-02-136254634242897874442_2019.docdoc a32cca9e83cc5f3e7366b9eb313fc5899a8acba8cb34b2ee404763a5952f89ccn/aHeodo
2019-02-13BSIM301019180.docdoc ddd96ebe81d58702ea97e05d70d537b7c8fa8338b0333bfe31adb59c9beda62bVirustotal results 16.67%Heodo
2019-02-13DQE8516826859909563_2019.docdoc 6ae677a4163ad569ef8976ef0c53074ec56260578ed742d05343928f84254fa7Virustotal results 16.36%Heodo
2019-02-13ID630975493772.docdoc 285a9bf1915a90e289f32fe471c023d4524fd96c990eb759f8985a1396d9e8eeVirustotal results 16.67%Heodo
2019-02-12ERMW61392533337863925.docdoc a5394b843f84949178acbd4d4533c08009ad11e474e3ebdf9b16e251accb2ecdVirustotal results 35.71%Heodo
2019-02-12X07386106969864_2019.docdoc 1d341d716fe5ce577b3cc061913f8f1dd133263d654d3810764864b389023e3aVirustotal results 34.48%Heodo
2019-02-12QJ482892323495_2019.docdoc e9cbc12b2fa25b7ce54fe396128f702718fd89c3b7ed3ec6ae1f3b5c17467a98Virustotal results 33.33%Heodo
2019-02-12VV236119098498_2019.docdoc aa8f85055234a1315feef510b177289ea9ab9417f287040fa9fc5eb99d0d8a30Virustotal results 31.58%Heodo
2019-02-12E6006549388251_2019.docdoc ef8df1bdbc4be0f037360baa4c719be4848018cb76dc85e6c298b7e5c0c8708dn/a
2019-02-12L3215845994115_2019.docdoc 481931d27496fe2ed1f13af908e7eb1917429c43a7ab2db6177cdbbb5601e902n/aHeodo
2019-02-1285418812919630869499.docdoc 248bd5ff6a4d44f8e54b69789a8a322e89fece8e81d0b703695198e24b4b18beVirustotal results 33.33%Heodo
2019-02-12U95923701747616_2019.docdoc 4243d427a13e1d07448aab7d8ad2c31700bdd002c5e05d81e9602c32877ed2a1Virustotal results 30.19%Heodo
2019-02-12JTR6069028473_2019.docdoc 4e41e9af78f6883063e2adb3569a6016e9b3e05e01abf2267426e0c24f97345eVirustotal results 30.36%Heodo
2019-02-12170235432_2019.docdoc 5efa7772a4b59015846e9673ddb16b75245e43e7e561080aedeb4962271245cbn/aHeodo
2019-02-12CW1397109287115.docdocx ceb007931bb5b6219960d813008c28421b7b7abfcc05d0813df212ddcfa5b64fVirustotal results 19.67%
2019-02-1267804920440007_2019.docdoc 2e69abb5d7d5e1c333a0b69a36dc9c64e8dd76cd3b3d9db0c0b907e6616718a8Virustotal results 29.82%Heodo
2019-02-12JLJT525871944_2019.docdoc 647542e616202019869da8d1c46464b0a1677e7cd809d71c12e4d9f15d92ef15Virustotal results 26.79%
2019-02-1276860800978056.docdoc 8be846317fa0deec67c07cd689b59ba7231c4244b490329e6dd4b74ab9fccc74Virustotal results 25.00%Heodo
2019-02-12S24009726264427_2019.docdoc 319e696035318ad81de588cb10ae0540adb5a0c841549d3726c72715c6540026Virustotal results 28.07%
2019-02-12YNZB3114339637872_2019.docdoc 9e500ad2ac11e0f355d7966992ecb085244e777b278f5d8d13568cc4b256e089Virustotal results 25.00%Heodo
2019-02-12LBG56700221734792.docdoc ec841b5a6810a726a78d53afac2e809bd0be8758248ec41dfc49424654f45ff7Virustotal results 27.27%Heodo
2019-02-1207358330236362601_2019.docdoc 53eca122ec298ea4f73562092ce57e2c8809f9ac46ee2b331be21fab5ac39d90Virustotal results 23.64%Heodo
2019-02-12790399271702037_2019.docdoc b5a0c38797bc6759adb5a0f83f9082f753996e6afd68959d4d49e2efb0e8243bVirustotal results 24.56%Heodo
2019-02-12644894898906923282_2019.docdoc 2fa71247c8825a9732ab1f9cbb884b16932ac72a89c4e786809862b3caae3791n/a
2019-02-12210963192363181367_2019.docdoc 660f59af3b4995bfcd65aa162e38adb7f017a89f1215a0e5e59bb415750a145bVirustotal results 26.32%Heodo
2019-02-123638808714081319470.docdoc 67ad8f8c59359d0fe14ff3bb37b7a1b8087c13a2845ced8322e816447f187ca2Virustotal results 26.32%Heodo
2019-02-12X869154450712.docdoc 0d20173df64fdc23a85ab3a0af60c6cecbe277e28988f8f069e22cb7b7e4a9c2Virustotal results 26.32%
2019-02-12UT784866615118088_2019.docdoc 233b98ead2663e8a2f9b16daeefa134cb0b4f34a83efc98203d50bee258344c4Virustotal results 26.32%Heodo
2019-02-12C703485888.docdoc 83244c85d4d7759b679274ea13747a43cd68716c6f5203e6912007a4b0d5eec1Virustotal results 27.59%Heodo
2019-02-12B73162614699981770_2019.docdoc c68c32b90b04710d7c9cdd124a1dcb2039197933d5f50657562845257a7e94ebVirustotal results 26.79%Heodo
2019-02-12F9051433309235839.docdoc 38b3d3c9d5a1fca3c1d52bf5cea0f12dbb6eed43161014a9ece3b36547fc241aVirustotal results 26.32%Heodo
2019-02-12UIYV208015209420428.docdoc a5115626a3b164103bcd78436a5127b8283cf41f72eb88bb8a8faf8dc87a75e3Virustotal results 26.79%Heodo