URLhaus Database

You are currently viewing the URLhaus database entry for http://markelliotson.com/css/z92gg-bgxb7b-qxac/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	173596
URL:	http://markelliotson.com/css/z92gg-bgxb7b-qxac/
URL Status:	Offline
Host:	markelliotson.com
Date added:	2019-04-09 05:43:04 UTC
Last online:	2019-04-10 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-04-09 05:44:04 UTC to abuse{at}unifiedlayer[dot]com,ipadmin{at}websitewelcome[dot]com,abuse{at}hostgator[dot]com)
Takedown time:	1 day, 17 hours, 52 minutes (down since 2019-04-10 23:36:44 UTC)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-04-10	4133978476_April_10_2019.js	js	26b5d6c8934dbf593f2cc541bacac6e7812d71ddec256eb7bb4e9dd61b9c13b4	n/a	Heodo
2019-04-10	0837730239_April_10_2019.js	js	7853439472ed9cd4358d92492c3abbb44d2ae46a2e3fbceebea2bcd858e4ebaa	8.93%	Heodo
2019-04-10	1973762073_April_10_2019.js	js	fded1345d0108bf6da569dbb8b00e143b393e89c87cb201965cd1da0631ad4a8	5.36%
2019-04-10	00862160317_April_10_2019.js	js	7ddfffb789cb316a55ff6f7c0dea5a703dbe3cbdd25d70cf6cc60481e90a057c	6.90%	Heodo
2019-04-09	70485283924_April_10_2019.zip	zip	d466eb3e585ef5c3c0beb55d541661089aac97cc60c1b21b4eae5a778e579741	n/a
2019-04-09	8611974758_April_10_2019.zip	zip	2e0b1eb0c1a1980ce16e59b4bb5ecaa09178b0514b216571725856dbc22c59e4	n/a
2019-04-09	85530403241_April_10_2019.zip	zip	65472d11b93e85e5f4758e6fc11dd9f6cdf526f96c792e510c46062dbc010ae0	n/a
2019-04-09	3372076263_April_10_2019.zip	zip	237b31dba8cc7f08454017bf1f0ee2dd4f046e8fd5bc1ae78ace7d46c7c261c7	n/a
2019-04-09	0268536997_April_10_2019.zip	zip	7bcb468a3635ab399ea0c94d319fc74c051952fc59a6160fa5ff4401eb78ee90	n/a
2019-04-09	325638473031_April_09_2019.zip	zip	2538590b2755d85a9647c8b71971c52802b6b70eb6781e6662cfe322ad9063d0	n/a
2019-04-09	08243818101_April_09_2019.zip	zip	a12655780a99437026e97d6a43ec331530b20c86259dab65a2244a8b710febb3	n/a
2019-04-09	04252818486_April_09_2019.zip	zip	4f57d75b5650fda4f55e1bbf559b8e48b5217e3dfdf2039fe6e122f6938b3f71	n/a
2019-04-09	85825142087_April_09_2019.zip	zip	ff435b1ee82e85caf4d5c78cc15b00d2bc734c62dcc1b1d446c97466d95fbd48	n/a
2019-04-09	599339572797_April_09_2019.zip	zip	645741ea8be59781a2120580745f32b8906be5d58a15ee5b65e8f8742c9d2fba	n/a
2019-04-09	1065344631_April_09_2019.zip	zip	8562663604a6ee323f5a75502e88ec446b0114b0cfdff3c0c26b0b830bfaf6af	n/a
2019-04-09	261784945873_April_09_2019.zip	zip	a9ffaf3d937659c1d6b34d9830c67f36838554cfd300c57ac5482f7f75c5df7f	n/a
2019-04-09	40314279841_April_09_2019.doc	doc	9efb03fce5fa761348c993c5b5fe23d0c9563c5d55e40c323ef05a26e4ea96f8	n/a	Heodo
2019-04-09	07093634547_April_09_2019.doc	doc	33613c7623f93844d0792236a7f21f3145434cc8d611a29060b6a9881773cec7	n/a	Heodo
2019-04-09	207757683088_April_09_2019.doc	doc	445bb685c5f0766fc0d2cafa048eed71712bf82730320a50cc531161df7a560e	n/a	Heodo
2019-04-09	73037599036_April_09_2019.doc	doc	76be863e92e0774d2a46a90cd1249a22f692797ff83297c78ff70aacd4548abd	22.41%	Heodo
2019-04-09	682875656492_April_09_2019.doc	doc	7d7c938b29923d7d03dc136173b89c706374f1b86488b125449e4e8a8d866871	22.95%	Heodo
2019-04-09	69816575045_April_09_2019.doc	doc	3c1cef7865984c52e42b2562cf0159b3c09bf0a384c7fa08c3ff92862b4da14b	22.95%	Heodo
2019-04-09	7285689725_April_09_2019.doc	doc	48172e9c6e67f30e18b821c1232b558184327dd6dad274ff70357426d3e984b1	21.05%	Heodo
2019-04-09	2181676257_April_09_2019.doc	doc	58a7c668443f637dde06c862407492a918a3c4aa019591316475233f4093c7b5	22.03%	Heodo
2019-04-09	9301272225_April_09_2019.doc	doc	7b1c9bf1ef30c27476121148fd481f8c5ab68e5d99b255632367f4197e751ced	22.41%	Heodo
2019-04-09	213594103487_April_09_2019.doc	doc	2de78bee39fc512251db275f95a32cdf5e5822d91ac6d0a0ba210bcdb2310e02	21.05%	Heodo
2019-04-09	0634262327_April_09_2019.doc	doc	12532f26d6430fba452cc8a6ce6f2b52f0a8470a2850f7b3cfe0aafd7a5bf7ad	22.03%	Heodo
2019-04-09	38682167784_April_09_2019.zip	zip	91cfcbf1dbe5111f474966d7ca5cdfa05ddc50e1184dfc96e676b51387c661c9	n/a
2019-04-09	958711995378_April_09_2019.zip	zip	b35d6975e17917325b801f686e89cff55b9a8f05bf5ef486bf572598396dfd18	n/a
2019-04-09	0953867629_April_09_2019.zip	zip	ff22caef8f01163126a2e1eb03e6e46e5d05f85d523d19b3007caabade22f7dd	n/a
2019-04-09	14120179666_April_09_2019.zip	zip	0b5aaae143668478f4ad895b01ac8d2bc6a8d7f7c0703c77197126da357b6635	n/a
2019-04-09	551647338079_April_09_2019.zip	zip	c4b7ceca7518744c5ab73db7ff6cb3a2aa3a1e15bd950f90e8f16c9a25f144a0	n/a
2019-04-09	19324227885_April_09_2019.zip	zip	4514c1d558774bb53604b3cb0d2ec2ff4016ab7c946962ef064903bb30310a4e	n/a
2019-04-09	34693656030_April_09_2019.zip	zip	db2db557fd7247df1b84ccaa4e27cf4dc99e1e6db27dbb6cdd7a30a7463786ec	n/a
2019-04-09	4223593121_April_09_2019.zip	zip	1e8a689ed6529104d8ed796dabff6ade8cf46ea354a61778bb2b366ba53ce34d	n/a