URLhaus Database

You are currently viewing the URLhaus database entry for http://weglamour.xyz/verif.accounts.docs.net/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:122918
URL: http://weglamour.xyz/verif.accounts.docs.net/
URL Status:Offline
Host: weglamour.xyz
Date added:2019-02-13 00:35:11 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Status unknown
AdGuard :Blocked link
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-13 00:36:01 UTC to abuse{at}phoenixnap[dot]com)
Takedown time:2 days, 11 hours, 44 minutes Poor (down since 2019-02-15 12:20:07 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-14eINVOICE_02152019091585.docdoc ce8d31d9414f0d296828b6c176fe23d1ad4f09c93774b6d4d49b115980232238n/a
2019-02-14eBILL_02152019997543.docdoc 21735a28dea318be302e52cdd1daba76404942057a3cee24bbb3a03f5b07e752Virustotal results 18.18%Heodo
2019-02-14eFile_20190215261459.docdoc c96c7ac1102b8ccbd02f7bb51c768da7e09e33830096718d2b33796e2cd9de7bn/a
2019-02-14eBILL_201902150674437.docdoc fdc58287932afb134d3fccb474c00fb6c5f5b71b6876f3a4171ebdfeb7737eb8Virustotal results 18.52%Heodo
2019-02-14eInvoice_0215201971525.docdoc 2b1229359899970d360bf063f96918306d07c7dd6e1d5d248f24c6ec36b55897Virustotal results 17.24%Heodo
2019-02-14eFILE_201902156203740.docdoc 46ecd52135b2b3f160cb28a9054916cc6d372ebde3700fe434666825877bf670Virustotal results 18.18%Heodo
2019-02-14eBill_20190214331617.docdoc b566280cea6f3390751f2799ef2a07fd2a5ae7b94affd01f5b344e65a9d5e663Virustotal results 18.52%Heodo
2019-02-14eBILL_20190214731764.docdoc d084730c3222a57b4ca69af66213b15fc808df800fcef09536125f2b8bbb3bfcVirustotal results 17.86%Heodo
2019-02-14eInvoice_20190214534068.docdoc 911d39e2220a0e142d8424f703e570041622c6d07d98114f98aa69382cdfc2ean/aHeodo
2019-02-14eBill_021420194758408.docdoc 15596c9bdbc21aad1b0070c760a7f61cfd03bfa1fa7d292f176ad75d99aa43ccn/a
2019-02-14eBill_02_14_1957558.docdoc 3ec752bd4f66b468951109a731f1e5870f661a0efcb0488985b927f71f024ae5Virustotal results 21.05%Heodo
2019-02-14eFILE_201902145927259.docdoc 9425b92dde2934d830aa29fdd33f54ed1c08ed4cf697a398de5fffee80dc37b4n/aHeodo
2019-02-14eform_2019021466342.docdoc a06622fb10a44bfd000fac55a5322031774c2c2500a558d77a4247708a69e4c2n/aHeodo
2019-02-14eBILL_021420190369.docdoc 6c8b0ea8d2d55c35cf9cc3fa713b805024eb5deb6194be5c7671339af18529aeVirustotal results 21.43%Heodo
2019-02-14eInvoice_2019021405498.docdoc d88a30cf3b32cda80940dc9883d43c514e1505f44c7a9e9ba5b3c85c3302d9e7Virustotal results 21.43%Heodo
2019-02-14eFILE_201902144190.docdoc 90c80207de6d6d9dcd42c5d71f3e2e4ce280e690623532e53a3d9bdab24c9040Virustotal results 19.64%
2019-02-14eform_2019021431598.docdoc 69b6d136530b5d3edd4f07166b54e8b08b320914dd5bd3e3081185bf6c75f09cVirustotal results 20.37%Heodo
2019-02-14eInvoice_20190214095643.docdoc 4f45707b07936c4a33037b0861fc6aaab24493b4372341deff8df56d6bac47a2n/a
2019-02-14eInvoice_021420198464.docdoc 869c7e5002cf4566c7b1331be7ce8e9847dc76570c2951b45cb831bf95c25d30n/aDyre
2019-02-14eFILE_02_14_199669.docdoc cf04da964014299d991218169315bcd5d6d77ae67c6211bcf95158c4a461bf2dVirustotal results 19.61%Heodo
2019-02-14eform_20190214959013.docdoc 4278120c2c57403b97a72dd9418855af55e61fdf51f89bd855ee1c9373525ebaVirustotal results 19.30%Heodo
2019-02-14eINVOICE_201902145329.docdoc b8e0b48e201b235ec1c198affa74a700964ece5a470f04c678dc48d037958916Virustotal results 20.37%Heodo
2019-02-14eFILE_02_14_196532772.docdoc 445b280bc2685430bdf3f9e6996c83b36d5b37921db1d8a56ba5f34999de0409Virustotal results 19.30%Heodo
2019-02-14eBill_02_14_19995719.docdoc 1ffee6ebb026a98cfe0ba910f228c562a7d93807c5b1c76c4651af578f9bddf5n/aHeodo
2019-02-14eBILL_02_14_197630422.docdoc b9c00ae1710ce68e605c52790689b1fc5c46a2069c795bedffbe50a38f532011Virustotal results 18.18%Heodo
2019-02-14eInvoice_02142019700352.docdoc 8d43076c22683e1d574274a00a990bfedab48dd1015fd6c5aafb44cf7632f2edn/aHeodo
2019-02-14eBILL_0214201945177.docdoc 90a497b432bc14ae7ac9016f868a72ac74ac4d31a2b4619ca2be1f5d1f2d6950n/a
2019-02-14eFORM_2019021493162.docdoc b7e66cf6b9746084770347e1766e227e536a88892530d6f8db193a485e681bf3n/aHeodo
2019-02-14eBILL_20190214686017.docdoc 1be52ba66b2db0ac87508c275933d270a8cac113d1e7ba48fbbbac5c06fd20c9Virustotal results 31.58%Heodo
2019-02-14eFILE_02142019607906.docdoc 8aafae60bcbdbdbdf877093104370bcf096a650c308fbb38828eccac6ee0a795n/aHeodo
2019-02-14eFORM_02_14_197883473.docdoc 842bd4ab9f785215fc55ed7291f3d404549d88218dde171150421bce4061f251n/a
2019-02-14eInvoice_0214201914482.docdoc fb2cba6b4c4b890a1a32cf2fd63be332e63375af7bb32fb43c6fcd1c8b27aed0n/aHeodo
2019-02-14eFORM_021420190228.docdoc f596bdd66454e9d2f00391920394679dacc80ec65d77e5cacfb01f73b3fafb8dVirustotal results 32.14%Heodo
2019-02-14eFILE_02_14_192562.docdoc cebe799eb13204e363f9d18a0be2885e4668ca32ffbe1bcbe0d6071ddc5fe541Virustotal results 31.48%
2019-02-14eInvoice_201902147383.docdoc 02733ad79a16b0fb62e4dfe438aaf227d6a456fe60445aa595cad125d72c9294Virustotal results 26.32%Heodo
2019-02-14eFILE_02_14_190475497.docdoc 4941777a3a7e4899df063ba472ea528865537ce43178b5db6aed072e61bc500cn/aHeodo
2019-02-14eINVOICE_0214201956392.docdoc 21efd9ba28b1813c2703fc87c58e1aec248d98417bcd25f6eef30321794d55fdn/aHeodo
2019-02-14eFORM_201902142134.docdoc 9e59bde0e624352a96df24f41cf11136837b60e61c4a954bc2d41784c1710e77n/aHeodo
2019-02-14eBILL_201902140964091.docdoc 48cad76efb958c7d247a27f4636d464536d78174b5379f744c86be9b22020fd8n/aHeodo
2019-02-14eFile_20190214094072.docdoc 30af6a16431fa52b727d75db674bec79d21b4687876ee26f57c137dcaeea5ca1Virustotal results 26.79%
2019-02-13eFile_20190214926848.docdoc c72ca32025175570b30d91669466db659f84b9b910498b3d1b8ff673feb48213Virustotal results 28.07%Heodo
2019-02-13eBill_02_14_198276.docdoc 8b2d47e5a73549627b750060ba8486001f834e5897e948a33c761e824a194d7aVirustotal results 17.86%Heodo
2019-02-13eFILE_02_14_1958724.docdoc 8a4710cbc3d8903fa8870fc77945590b9f173bca15aa4726dda2a90cf824ac4en/aHeodo
2019-02-13eINVOICE_201902140895845.docdoc a8935cec25cba6087f777d981084dbe4f8b1dce2fecdf8e7c16d9aeb21ce339fVirustotal results 18.18%Heodo
2019-02-13eFile_2019021421899.docdoc 2c37b028750583ce64e4d72afa37e0f78524f01fe712ba5987ebecce445941a7n/aHeodo
2019-02-13eBill_2019021403999.docdoc 19eb33287c0dbe81fd1cd45b926a1d1f8370c86737febf340ddfd2d6227efda1Virustotal results 18.18%Heodo
2019-02-13eINVOICE_20190214508283.docdoc 2a560c34218a2891c42ec9f98bfed13ca5943807645c75c842ad4ac439ea8d8cn/aHeodo
2019-02-13eBILL_02142019023826.docdoc 1dd4c9b26fd12bc6d730c0577b64ff7b0efb12551a6ab1795dc3ca82055d2357n/a
2019-02-13eInvoice_201902131250.docdoc b1967a5b9cba0bb2df20e4f381230e8ca57a625360352119e36480dd6f7d2028n/aHeodo
2019-02-13eFile_201902135329044.docdoc 6af30cba9d84c8ab311b99a2da7448d8c52590f6353a57aa2a16190bf6289fbbVirustotal results 18.18%Heodo
2019-02-13eINVOICE_021320190860624.docdoc 719dfd9b9d878b7a562166d34e3d8cf6e5f37ea40ac9148b7a464fad51adcd61Virustotal results 18.18%
2019-02-13eFile_021320195246636.docdoc 852042bbd9f6779ff384cfac5945167b3137d7d42cc8da117e11b924e4a6bee2n/aHeodo
2019-02-13eBILL_201902133628.docdoc a530577fd77b89e6a3c3c864ad573c30558ca3f3d9d461328858d920b5f8ee3dn/aHeodo
2019-02-13eFORM_021320190626.docdoc 85b5a781fc3e37715e678e6c60fdb2fbe32488a2e08bb7d5c5789ae67b87b8f4n/aHeodo
2019-02-13eFILE_201902131345215.docdoc dafee22b05d007a79529c0c13386d9cc1cbd3e877ddf40136687e85b701ba0daVirustotal results 17.54%
2019-02-13eFORM_20190213647611.docdoc ea31594f27362ee525951c5a3d47a94b66cdbb51a7227c4381d622df57c7c7bcn/aHeodo
2019-02-13eFORM_02_13_197645.docdoc c2e4b54a7932b96ca2075864c85597912d2ffcaaa405bed657626dc77b576c9bVirustotal results 23.21%Heodo
2019-02-13eINVOICE_02_13_198642340.docdoc d4b7e7faa885f62f12103a9eae627ee1ad46f68d726799be8a45f1e7eaadad8an/a
2019-02-13eBill_0213201944947.docdoc adf4a20c7d15365bb9ab64eba58030602afb74ba8e191326a9250aef4fcd9eebVirustotal results 17.54%Heodo
2019-02-13eINVOICE_021320191650.docdoc ac4371a326d988ed75aaf306330a54f5ef77372649be421149ea0936febd603eVirustotal results 19.30%Heodo
2019-02-13eFORM_02_13_192990.docdoc a21f14cf5dc2d8c7935dbca6445bcca1a9897996bc53643c70711405ea59fd50Virustotal results 18.52%Heodo
2019-02-13eFILE_02132019722111.docdoc fbe47ae3f19c47b0491937eae4a5e1a7f3d9045eee380ccaae2dc5ee6d009663Virustotal results 17.24%Heodo
2019-02-13eINVOICE_0213201976270.docdoc 51af1bd9c9be21faa36768d9b164fecdb1804cd56ea8b8098cd5efa963849e42Virustotal results 16.36%Heodo
2019-02-13eBill_02_13_19498113.docdoc 762010819aac35827bd1a7c75b41cdcbe005b0930bd382f44b95a716fc3abb03Virustotal results 14.29%Heodo
2019-02-13eFILE_0213201929001.docdoc 6752d12b102e5a4d1659d124985edac7cca933abff7deee38e0902e21353718eVirustotal results 18.52%Heodo
2019-02-13eFORM_20190213346109.docdoc 00f03991dafaaae758848789831086c742aa81845ee5fb19a83ecabd1c414159Virustotal results 15.52%
2019-02-13eFile_021320192726865.docdoc b72540e462c1c4fa30f17c1c31003d63e1d772435f20cec49e17c01587b39106Virustotal results 18.97%Heodo
2019-02-13eBILL_0213201918461.docdoc e3192d0ad18c7bfd98e879c8a40afb3496835792aeedf6032572072f278967c7Virustotal results 15.79%Heodo
2019-02-13eBill_021320190660.docdoc cfe381fcbb5c0d45a7f40822df5d5967cab21cc454387f9469a7bba8c503aa4aVirustotal results 18.18%Heodo
2019-02-13eInvoice_2019021304452.docdoc dfc2e982f50d7df16be5e88f9f9901cbb318490167f7669e20c262ffd8f87ce4Virustotal results 16.36%Heodo
2019-02-13eFile_02_13_193206418.docdoc 8a320256d039685389a6d124c1e6990c21812f75b7b77f89dc2a2160810785f7Virustotal results 14.81%Heodo
2019-02-13eFile_02132019613484.docdoc 69cd78eec9c073bf2910b3ed4abb675908adc820e25c3e33ff0b154158c96641Virustotal results 15.79%Heodo
2019-02-13eform_021320199686066.docdoc c7c93c7d3d849010ad878a938d2b2adc9e8c9b5ec8fa3a9e2f96a733a6b00f44Virustotal results 16.67%Heodo
2019-02-13eFORM_201902131084552.docdoc 72c87c8eb43ed965400e91aa64820f564ea8756ab7744fd415261ed8d064ce37Virustotal results 14.04%Heodo
2019-02-13eBILL_02_13_19813630.docdoc daebac726cb32acadc0768549242a41e6571532abd94cabc363fad589a9394d3Virustotal results 15.79%Heodo
2019-02-13eBILL_201902137845018.docdoc b1e225ebae83ccd9d734b479af36b360c89376f19db90eaad428da585dbefdc8Virustotal results 15.79%Heodo
2019-02-13eBill_02_13_1963143.docdoc 1b78380dc87da33f1be03698c6fb1c97047fb83b0869db614ad78af739d239e4Virustotal results 34.55%Heodo
2019-02-13eform_02_13_1946137.docdoc 0d782eae48a64d70cf4a4c87db6d0d0f5410f894b0babeaf927352d4e2574029Virustotal results 35.09%Heodo
2019-02-13eInvoice_02_13_194008.docdoc ab09084e5321b552445689d057851b4f551c58506dbced9576b1856aa0517c39n/a
2019-02-13eBILL_021320192045967.docdoc 6c1710a1a3c916f3bc8ca4eee0eab976c39fb0b24b520e8a4e9ca7e9106c84f5Virustotal results 33.93%Heodo
2019-02-13eBill_20190213788489.docdoc 821b71c9fd3b62272475c4311e1f54cde3a467e2a9d618a3c0657dc9da1c8000Virustotal results 33.33%Heodo
2019-02-13eFORM_021320195351.docdoc 618dfc008bdb3a3382b14ac227b0fea281aaad41f3ebb38d6596bb37717843a6Virustotal results 36.36%Heodo
2019-02-13eFILE_20190213729466.docdoc 4a3ade44ebed61b0b5c86ced8d1e85ea3ce21981a7f365a0d8d1c25c014e2ffan/aHeodo
2019-02-13eFORM_021320192036511.docdoc 4458ae6f0ddafefff59ae71480e104dbe486a205219695877e2652ce3865b933n/aHeodo
2019-02-13eFILE_021320194220458.docdoc 35fc2c38e0e4afb2068daf99019495b9264f8c44d5db3ba6b6aec5d389f7207fVirustotal results 33.93%Heodo
2019-02-13eform_02_13_1964233.docdoc fc6cb533a710fa5bdaba2a06f103a8147b78911613d5ec0520bd0c4282c49acdn/aHeodo
2019-02-13eform_20190213385122.docdoc dcc6711a8116b1e24aec79e5066b4aa738c2afce77656c5150bb3326aaf8579cVirustotal results 33.33%
2019-02-13eInvoice_02132019597374.docdoc a05e4ab8c16c70515ea939a15cd9498e94cb939b600326d18937aa515e3fe8c2Virustotal results 33.33%Heodo
2019-02-13eFILE_021320196626.docdoc 0e7f4733841d308e03be632e980133f37432ec209e5f755a6f2f4365153279fdVirustotal results 33.93%Heodo
2019-02-13eFILE_02_13_190951.docdoc 76cd96db24625e3d9ae47f7618ac30591f6c15e7b4a3446d57c03f586737373cVirustotal results 33.93%Heodo