URLhaus Database

You are currently viewing the URLhaus database entry for http://everandoak.com/css/trust.accs.send.biz/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:170388
URL: http://everandoak.com/css/trust.accs.send.biz/
URL Status:Offline
Host: everandoak.com
Date added:2019-04-02 20:23:07 UTC
Last online:2019-04-05 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?):mail Yes (Ticket DCU001167545 created on 2019-04-02 20:24:05 UTC)
Takedown time:2 days, 19 hours, 8 minutes Poor (down since 2019-04-05 15:32:35 UTC)
Tags:emotet link heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-04-042019_04___BIZ_90684955166518259___9818442307805566.zipzip 6d754188c59593332c62e4b8116cbfb5085c53d9e01e510bd3626627e8fd02c6n/a 
2019-04-042019_04___RECH_3785158191463408086___44207622419247303.zipzip a21d80a1d22c8e98be0c82a933674645a1cd2fa5bea63702fd86228fff7e0abfVirustotal results 46.55% 
2019-04-042019_04___RECH_365110002___73775277761624120.zipzip 516ce49477d4794cac3f9a4d08fa136b61427320e3cd77b095b6f15716352977n/a 
2019-04-042019_04___BIZ_26616455787521700441___914614379193.zipzip ca2d88ca43be08f6c6f6b795cb0b2d34282be830dcc132bd8273397215b93e05n/a 
2019-04-042019_04___REC_14388973563___450096518274430837.zipzip 4f528bf209070c13b4b01cffd785df35ed1d9814a483e4ac5d486c5693eba31bn/a 
2019-04-042019_04___PAY_13884836648___5067579453.zipzip fd03bff23fdacdeed60840000ee923fcfd19a7bd4d6d6b51d2ba86bc8b4ce9e7n/a 
2019-04-042019_04___PAY_021476765248___42180579678927079.zipzip e38d9e9219688ede02b63862283acfd2630db80c24e1b6208a928df622a7c86en/a 
2019-04-042019_04___BIZ_97479163519___47762732423510546189.zipzip 530d434720c4cacedd29e2116380abf0ed54bff6f4959bc0bc1de13c28728c52n/a 
2019-04-032019_04___PAY_104248997896803512___72286389342843063.docdoc ffa74fa9f3179e512e23e879b2677f51c9fd09dfc57c05ef73c3d68d0eaddb82n/a Heodo
2019-04-032019_04_INSTR8255505535668___606703643858041256.zipzip 193e4f86ab86cff8a294f651eba3d40ef0ebc6d94d151f7285aaff10d5ec59a1n/a 
2019-04-032019_04_PAY0885285585415___649976203080778254.zipzip d56655726bb19c2e6495519b7c6b091f90e4c5b83025b26e13e5889cd9bd1e87n/a 
2019-04-032019_04_ACC333161859957411___18844440704.zipzip d9f37daf6d75536c34b5195705536c4367cad525e223bd1a34ab31c1582a7ed1n/a 
2019-04-032019_04_US887473113698294___3748169799205143047.zipzip 02c23d96e2a50b268d94d7cca0c7a73704ea09a64b8730d06d1a610a8cf96596n/a 
2019-04-032019_04_INSTR900599888___1106722439229.zipzip a85a6b9f614c5a4157e7f4bb2914a6a9558d1a56bac79a7cd23d9a13a608d563n/a 
2019-04-032019_04_PAY97073270207004___3482264445.zipzip 8b5805ba6660bc4defb4dd445efb6e5addf967bc447124e041ea3c5c4e413416n/a 
2019-04-032019_04_BWCY864432672060705___06649219965.zipzip 3fc86a31552c5270a0738ab01a89ca7f0de60d2683472a2513a7c74edba15483n/a 
2019-04-032019_04_US746309829___36133317598.zipzip a90d3da5aa4b98cb53f976a5a7e4e9a5f61f0445c46e0fed9a915eb95c3dc355n/a 
2019-04-032019_04_INSTR865294991___95959898535644476.zipzip 33d73f3c8796d24d696c465efa013f94a4fc4d2eec405b82b3c0122d93ac6d10n/a 
2019-04-032019_04_INSTR52497440736___864003810426857054.zipzip 7d76b68e791188cfcc060f96ec2cf2c4162c486f905acb5401f816e424417a82n/a 
2019-04-032019_04_PAY364221614___957974292.zipzip f54ad291c3215f54b918efc0af10dd1f27d1ecefa2fa2b5ab6fce1655e3b9b63n/a 
2019-04-032019_04_PAY4945675209125___7387401884092242619.zipzip 382641e843af043bd473d9d52915709e036ab95dc2c22d9a674141f2843a5ed2n/a 
2019-04-032019_04_PAY6680154094___332328488759357.zipzip b462013d22ff4365c81c22b8f97905e233cc3fe576ddd94753929a2288ee0f15n/a 
2019-04-032019_04_ACC99884363921888148356___136597670.zipzip 19863a9d1c5b0d9338b2dba91778b206bde0330b9e6e5d227a53f4a15e806b9en/a 
2019-04-032019_04_US27621433624944___05636795024165102.zipzip d5b63eadb14dd1d73a489a4251b06676e828dadb395fe7497e2e85bc14b6abf5Virustotal results 18.64% 
2019-04-032019_04_3900327476219874___5989170857569.zipzip 71530e4a195e36645288a6fb78cda1a7b7e33b23866955ff000b9bb924346752n/a 
2019-04-03NEWFILE_B1_63-96_0295.zipzip c9226d4fac5f9774cbc539654fb4b56747b27824c22e2f12ecdf83b8369587a0n/a 
2019-04-02eINVOICE_FILE201904_F9_9-25_T9336.zipzip 55d667421f94b4dd5fbf2c3975cf28f7c870d76bab50971a6d4ab7c5b1e3728dn/a 
2019-04-02NEW_INVOICE_M7_8-41_49958.zipzip 28c06939ae5cb2d5aaa2ec57c207fead965218d15ea159c6b0f37a7ed263465fn/a 
2019-04-02UNTITLED_FILE_04_2019_C7_0-29_R735.zipzip 682d60e802dfbef09764f2cd2985a351ad95df3d553b09774cc70946eafdc833n/a 
2019-04-02inv_num-04_2019_F3_9-27_X779.docdoc 599f040cb8cfc92eca900081f1425baec21c4ec5513e0e98a44cfcd5a006ffc4Virustotal results 24.14% Heodo
2019-04-02last_invoice-04_2019_A8_93-32_W435.docdoc 330ac5989479e19256c3ef7616081e51be0baeaa6d8ccae7630de7e27f189b4eVirustotal results 25.45% Heodo
2019-04-02eINVOICE_FILE04_2019_Q2_08-78_M860.docdoc 05da7d14296a52e96b68f8d72908320cac098cdc3ee9ed91901131de7b962b94Virustotal results 24.56% Heodo
2019-04-02J9_7-08_V242.docdoc 4cb9a461380191292804b8d0531290e094831e5b46c7d66e1a9d3144be025a2cn/a Heodo
2019-04-02OPEN_INVOICE_042019_Q3_1-45_0875.docdoc 48d9dc0e71c860f8221db3840fe583a6186da087d7c9061d48df333c0c30b5b4Virustotal results 23.33% Heodo
2019-04-02INVOICE_DOC_201904_G8_5-44_C956.docdoc bdd207421a3db80ff0023ea6514d22bc6daad504362f16f2b240bdd413076859Virustotal results 24.14% Heodo