URLhaus Database

You are currently viewing the URLhaus database entry for https://brownshotelgroup.com/cgi-bin/mx0ho-txuft-cufahvq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:192831
URL: https://brownshotelgroup.com/cgi-bin/mx0ho-txuft-cufahvq/
URL Status:Offline
Host: brownshotelgroup.com
Date added:2019-05-08 12:28:09 UTC
Last online:2019-05-09 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2019-05-08 12:30:12 UTC to abuse{at}hetzner[dot]de)
Takedown time:1 day, 2 hours, 6 minutes Poor (down since 2019-05-09 14:36:17 UTC)
Tags:emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-05-09005092415872DE_Mai_09_2019.zipzip 78d3550c26a372ffad34eaafd79bfc41ecb3f4b00ba0c961289e1a3ee41cf2e2n/a 
2019-05-09Rechnung_15346735136DE_Mai_09_2019.zipzip 7fe690aa6534da3218f4abcdcac178bf11a5f7c4e4868027780b0ddb2b03d0fdn/a 
2019-05-09Rechnungs_Details_182618688958DE_Mai_09_2019.zipzip c54bbaf71c16918e6098949113bf71eb1ddcdca4e2c7b879866b14e72eb92496n/a 
2019-05-09Rech_205997856527DE_Mai_09_2019.zipzip 3c18f1e1d7b6b308c107aeda84cec6189b8f7ee10a6f153077efc6b6991ce243n/a 
2019-05-09Dokument_1936794817DE_Mai_09_2019.zipzip 48be2c5e76c8aca53804ee50921b1a4c01a14251c5dbe3d6f73033100e29448fn/a 
2019-05-0999346655460DE_Mai_09_2019.zipzip f97d777e48bed431b309d463d01afd713e5378adaff7708ea0479e3294fc0abcn/a 
2019-05-0900910280379DE_Mai_09_2019.zipzip d2b675de81869b202ed6d4db337089163f5aa12248cb3819b6983c15b7825b90n/a 
2019-05-09Dokument_504840263286DE_Mai_09_2019.zipzip bc42fc11dbcae9be94b78288888597bdab323dcbd96acd9b11851e1ed481acecn/a 
2019-05-09Rechnungs_Details_480285379563DE_Mai_09_2019.zipzip 8cb565148fcc8b063f153d1905865a350ad97b7a1f7d586856cbc17ebfa5db53n/a 
2019-05-09Rechnung_3592377322DE_Mai_09_2019.zipzip 407a135b811c17370d83a95ce9cfb563e8900a819a34366f0047759d4292e3e4n/a 
2019-05-09Scan_6225087011DE_Mai_09_2019.zipzip 0aea9258322036a612e16343c45fff310ae09b213a9ae93ee4b129ed1770f74fn/a 
2019-05-099117601641DE_Mai_09_2019.zipzip b66dba648f3b5e791a8df65373273b5a24c4be3a338f9d980e08f7a48f4f5f10n/a 
2019-05-09Rechnung_0877433575DE_Mai_09_2019.zipzip a09964e9977e1ebbe8d6d72e2d5a7b93082d0500d8489d0a99b038fda36ea6e5n/a 
2019-05-09Dokument_2392907438DE_Mai_09_2019.zipzip 714f2f5b3d1b6634a890c98a3309a1d61f8092a417a5e97056be4b58b7285d85n/a 
2019-05-09Scan_53962671799DE_Mai_09_2019.zipzip 622a2f47d5339ed31b3ede27beddaa825537f5f2ff3a91c7349c864a9c50ba9an/a 
2019-05-09Scan_575959649487DE_Mai_09_2019.zipzip 8d8e0d29f144f47d2165e8478b159ade02d2c9664c14f5dcb295fc5db9cdae20n/a 
2019-05-09Rechnungs_Details_416228002548DE_Mai_09_2019.zipzip d49c4b355ac3c0daca00e150d63f3c4f7034cfef5a5f3d7ecda26fdfcf263ae2n/a 
2019-05-09Dokument_994779006348DE_Mai_09_2019.zipzip 67ee3963ed50907cc001043f7af43abcb68c652cc115639ac8d1b2497df38241n/a 
2019-05-094895558758DE_Mai_09_2019.zipzip 22f00ca0f6fa1e390159a3cb4344dae6ca1890caf7ac7a02a3c705d7a8e31079n/a 
2019-05-09Rechnungs_Details_3179392520DE_Mai_09_2019.zipzip d138f5d3cbe8101f11777d97fbe3cad9d473efc3a800c06093578606e97425ffn/a 
2019-05-09Rech_9310660194DE_Mai_09_2019.zipzip ed776d251fba6c1e6933d0d7874abcf267ae30efdba0b6c74329675a69557e26n/a 
2019-05-09Rech_974707083704DE_Mai_09_2019.zipzip 17a237330bebcae6cdfea2405363ec477d586cebfb50851f2515a49633e33480n/a 
2019-05-09Dokument_7371469274DE_Mai_09_2019.zipzip 5106dbf4039865da6abe7a9c488badb03d8e4e168fa20c30e8075d959506f2b6n/a 
2019-05-09Dokument_899182502264DE_Mai_09_2019.zipzip c71ed2ff8af6b922277a16b3363d8ab669a0501536a8addab67412cc4a7cb8b1n/a 
2019-05-09932326358143DE_Mai_09_2019.zipzip ef0dfa9fe058f39a4b20cf71d8fd24ddd6bce0a979eb2ff0f9ccb227953d8216n/a 
2019-05-08Rechnungs_Details_031569629102DE_Mai_09_2019.zipzip f522e48b41cf43a185153ed642fe8672b2884edba9d36a717bef00e1666644b2n/a 
2019-05-08181786065978DE_Mai_09_2019.zipzip e316d5cf7ac8ad4a4743289a271a3edcc3dadaddc36d8ba4ac2c74599e912bc1n/a 
2019-05-0837889655289DE_Mai_09_2019.zipzip 756e5c34be7c83d11a89bfceaa48e74ddfde0c9e12728514cb8756cd56069a3cn/a 
2019-05-08Rech_805935919040DE_Mai_09_2019.zipzip 4e94b09f2beceabc6f0d6660f97a2a1c1144bdd92773bc1eacc64944eaef8ac8n/a 
2019-05-08Dokument_12483233655DE_Mai_09_2019.zipzip 6a0500d5cec0b1191f4fbed0698ce4ce2c20ed61f53a02d7c89ba0e63a77a1b5n/a 
2019-05-08900015780152DE_Mai_08_2019.zipzip aa1b3396b79e999546d855955981ee05a3e65200d9eb849a48673c1f215fe55an/a 
2019-05-08Scan_63931821003DE_Mai_08_2019.zipzip 1a978eb562d4f8c14cde93cbfaa455f5c55b9a1e3624e3287c8556fd0007119dn/a 
2019-05-08Rech_12622748615DE_Mai_08_2019.zipzip 8df0abdc3da5989c494c460860250453531d8dd63eb1f3ffcca9dfd6a0a45464n/a 
2019-05-08Rechnungs_Details_96507412966DE_Mai_08_2019.docdoc 37390a65227c1c3d33a74d43898940cfd4690953cea047db95f39e191a20dfb2Virustotal results 32.79% Heodo
2019-05-08122061130531DE_Mai_08_2019.docdoc 8ea46d2e7b76e5d7298c7f8bfd87d9ae27ccc62f881caad23ff2bef3d898ed4dVirustotal results 32.26% Heodo
2019-05-08Dokument_1137547821DE_Mai_08_2019.docdoc 71185c9cc943c6cc503e108507f5cab7834203a833eb3597487f24a5cb3822c9Virustotal results 34.43% 
2019-05-08Dokument_018184783761DE_Mai_08_2019.docdoc abb657219fa4293bdb3ea83eef9701a8a1b8db399122ac9b78988d2d7670f05bVirustotal results 32.26% 
2019-05-0824736607530DE_Mai_08_2019.docdoc 141bfa7e5d4c145c77ee707866c3c14780bcf22b84220012170bdf50b6152dbbVirustotal results 33.33% Heodo
2019-05-08454232717034DE_Mai_08_2019.docdoc ccf713f98bfa24d4b3aaa4ac68b4b990b777b99c20b6bb61aa6ad25538f50bb7Virustotal results 31.67% Heodo
2019-05-08Dokument_00580587238DE_Mai_08_2019.docdoc e68497a4f031505d16b9c6c97077eafe011ca0b7a64f01baef10886dc8dbeabdVirustotal results 33.90% Heodo
2019-05-083628335828DE_Mai_08_2019.docdoc 7569c44f5d04fef27c5b9be4b22eee2f5f81edb46857e077255f4d593cf09d33Virustotal results 32.79% Heodo
2019-05-08016079979508DE_Mai_08_2019.docdoc a6654bf3a1dc1407b542532d1a9d11c30b84cdd9cc736abccfec742eb677b117Virustotal results 32.79% Heodo
2019-05-08Rechnung_6907655605DE_Mai_08_2019.docdoc 910b21b089dd8f21d37f4a08fb65efe7d20807abedda2a694bb1bc42dbbf4b90Virustotal results 39.34% Heodo
2019-05-08847344192955DE_Mai_08_2019.docdoc 56a81f054ec9d600f1085245e2cb9e6e88794c3c91069b4f088a764fa03e9021Virustotal results 37.70%