URLhaus Database

You are currently viewing the URLhaus database entry for http://taskremindment.com:8088/css/Invoice_796027.xls which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	1472685
URL:	http://taskremindment.com:8088/css/Invoice_796027.xls
URL Status:	Offline
Host:	taskremindment.com
Date added:	2021-07-22 05:47:12 UTC
Last online:	2021-07-23 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	AndreGironda
Abuse complaint sent (?):	Yes (2021-07-22 05:48:08 UTC to abuse{at}digitalocean[dot]com)
Takedown time:	1 day, 4 hours, 53 minutes (down since 2021-07-23 10:41:41 UTC)
Tags:	Dridex

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2021-07-23	n/a	doc	bbc2027fbc71bec72db73e84c3aa1eef192dd4bc76ab02ed6a8d2789d4760741	n/a		Dridex
2021-07-22	n/a	doc	8afba4540337ace3822367cbf66335e01f27b8d3bbc3183a618ee203adc4a0c7	n/a		Dridex
2021-07-22	n/a	doc	599bf5179000eeda20ed5de6d6cbf905050b9ce7370d2c67dad7a410ff09d760	n/a		Dridex
2021-07-22	n/a	doc	7d28e0a647556d28e7ff12614e0d6018d3a67bb76a901cb665f65384cf4990ca	n/a		Dridex
2021-07-22	n/a	doc	4669d1154fb3e07a9a1e0c9379e61ac70d4d1a633c96d73e4d56e2478a8deea8	n/a		Dridex
2021-07-22	n/a	doc	cec0b3adc28ee1fdc306dba5d557174b0e4505d20358c4ba925cd52ad9540bb8	n/a		Dridex
2021-07-22	n/a	doc	45c4fbd09a249a0811a2e3bba5e829cf5baf79c6c60aeb591cd240f2f030c971	n/a
2021-07-22	n/a	xls	c0e6e403cdd0be86ab48d7bb16f28a65d9ca32f921fd374a39d4e71280faa5d8	29.51%		Dridex