URLhaus Database

You are currently viewing the URLhaus database entry for http://desite.gr/rglxp-2s4lh-ytetxsc/secure.accounts.send.net/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:159808
URL: http://desite.gr/rglxp-2s4lh-ytetxsc/secure.accounts.send.net/
URL Status:Offline
Host: desite.gr
Date added:2019-03-15 06:10:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Status unknown
AdGuard :Blocked link
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-03-15 06:12:18 UTC to abuse{at}hosteurope[dot]de)
Takedown time:1 day, 20 hours, 59 minutes Poor (down since 2019-03-17 03:11:24 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-03-15Receipt_03_2019_4998133785.docdoc 60683e4d53f06d4fa4501753e6fc6068adce1da7e23903635406e85bbd299607Virustotal results 34.48%Heodo
2019-03-15Invoice_032019_1939875.docdoc c4fbe1560255335c1841233e59cb2311a29a0c8e9fa048e5b9c17d63229a9af2n/aHeodo
2019-03-15Receipt_032019.docdoc a5509b36a9b9f001b6ec7abf32474ea8f71e3d79df8567e19b2bb3b30009deeeVirustotal results 35.09%Heodo
2019-03-15Invoice_6629709869.docdoc bf14aedaf97ce161aa6c05eb12a9d956ccd320a333e7df811eab261657efaecaVirustotal results 35.71%Heodo
2019-03-15Invoice_032019_320600557.docdoc 348012b3621f020c6f410c6305b925cde374a6c3eeede6fa3002a29741261c2cVirustotal results 35.09%Heodo
2019-03-15Receipt_032019_7050860.docdoc 6a1a7e4618a1803fce47331915610ffacc49abf261ee5783ef409e20b78c8e6dVirustotal results 33.93%Heodo
2019-03-15Receipt_03_2019_8599344.docdoc dd98ba51e60c6208b445fa6bbfcfa758762387c292698ff1bc3b19bf4c4d2460Virustotal results 29.31%Heodo
2019-03-15Receipt_80324566.docdoc 555a4d9d27d754c07ff182e3ecc1f68310479ea5a6cb30303bcfba232d49ebe0Virustotal results 24.56%Heodo
2019-03-15Untitled_03_2019_116784.docdoc b663ef80f6300005b31579ac18d5525c3958535989acc1b8776f5fe5d10418ddVirustotal results 25.42%
2019-03-15Untitled_03_2019_95093844.docdoc b55863a00d9d824499a8fad46cf881168e4d242ec955f49017aecca185bc11baVirustotal results 25.86%
2019-03-15Invoice_868408.docdoc ab6b15a847a89156226e33725e55831fe2fe05979901233036adc218a9c33cb9Virustotal results 25.00%Heodo
2019-03-15Invoice_032019.docdoc 21af84f4b453bf740bd23fd90d43f3f3c135895f04f838a9ddcbc50bcb7f3754Virustotal results 24.14%Heodo
2019-03-15Receipt_201903_9286014402.docdoc 531d1d9c1f88f2f4608df5714cded69207e27052a9efa757a95da6007a790dc4Virustotal results 25.42%Heodo
2019-03-15Untitled_201903.docdoc aefe7bc9669501aac86e7657da9bee8eae28002b3e1744cdcc1710a242e1fc5bVirustotal results 30.36%Heodo
2019-03-15Invoice_201903.docdoc da8c3f7530bd78692ddccf4acc9f5d2fe679e80df6af930f7950e3e8ff8ded5aVirustotal results 26.79%Heodo
2019-03-15Invoice_201903_8936425.docdoc 2931f22ed1ea9b8ce4617a6e56d11b0c991b0157ef3b7beaa52971aa961b6dfbVirustotal results 26.79%Heodo
2019-03-15Invoice_03_2019_49508394.docdoc 286cc43239929ce7dfb691be87777b0e90de21ff13d098d5cc0c9c333fb3899bVirustotal results 24.53%Heodo
2019-03-15Invoice_201903_0511738219.docdoc 159fea99bc86316d12bdebbc878569a8c861e1eb4c22e49515c3a3c849de1a90Virustotal results 24.14%Heodo
2019-03-15Receipt_062745412.docdoc 94a03f9c183473a1192dc0ff84564257d35da3a78e4a1d8e65e10954be09b156Virustotal results 25.00%Heodo
2019-03-15Untitled_03_2019_32319894.docdoc 361eec42c87c66770fa6aa1a378108bf75eea4167272f7ab80ec0dbe89170ff7Virustotal results 24.56%Heodo
2019-03-15Untitled_032019_338439709.docdoc 873c8022389ef6de529d43d977be29e3c393625c37fa67a8f4532213f1331514Virustotal results 26.32%Heodo
2019-03-15Untitled_032019_70410104.docdoc dfee5f473f99ca078a95349aee169b4b6d2268e1e633da68853360dce4ebc398n/aHeodo
2019-03-15Invoice_03_2019.docdoc fc6cf2505aca62987c807a24b10ad5aefd2f6be9ee41f765daf93e6d59716be2Virustotal results 24.14%Heodo
2019-03-15Receipt_03_2019_475782940.docdoc 8eba6abedaa89bd0bcefdb2bffe458b1c87210890aa7a82870cf6537f5dbd52eVirustotal results 23.73%Heodo
2019-03-15Invoice_03_2019_4217796646.docdoc f2bdad40e4c32b6595b4f39c03906c6c2361dee4b15d458940a1b60572ff60efn/aHeodo
2019-03-15Untitled_03_2019.docdoc ea952c143ad267a71ff1325bde9c87b1458bca74a11e4e7299e9562edc82ccedVirustotal results 23.21%Heodo
2019-03-15Untitled_6404694131.docdoc 42d21fa68553d21d0f3e96bbbbd346212d1f139c78c5933ff6ae703368418ad6Virustotal results 22.81%Heodo
2019-03-15Receipt_201903_560293360.docdoc c9007a2fb68a440060989bfd3d03b9cbffe0464449abf6d7430d2d674e3f3022Virustotal results 22.41%Heodo
2019-03-15Receipt_005018.docdoc 7e58edccd30c16b70d77a727ad07a7acb7f4757cd6d65ffe627098b33d793953n/aHeodo
2019-03-15Untitled_032019_84060965.docdoc d6f3a24b6c396907c2e46a8ef0ccca59dffe1007613db69e0d285644036371d0n/aHeodo
2019-03-15Receipt_201903_612105.docdoc 1b8ebfae3f67ae9044fa15c079c2fe6834611c94d3847e5a340499e6688a7a5bVirustotal results 22.41%Heodo
2019-03-15Untitled_032019_45908991.docdoc 00c1ed0fb173c266b5a3135fb548b3280477d5f712dcf8ee6a6030927d804270Virustotal results 36.36%Heodo