URLhaus Database

You are currently viewing the URLhaus database entry for http://musmanbaig.com/wp/esp/dvaDfUEekBoSaXjEBCVHcOWKDdMeW/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	196821
URL:	http://musmanbaig.com/wp/esp/dvaDfUEekBoSaXjEBCVHcOWKDdMeW/
URL Status:	Offline
Host:	musmanbaig.com
Date added:	2019-05-15 18:38:04 UTC
Last online:	2019-05-16 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-05-15 18:56:02 UTC to abuse{at}acenet-inc[dot]net)
Takedown time:	11 hours, 49 minutes (down since 2019-05-16 06:45:11 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-05-16	FILE_752671506969US_May_16_2019.doc	doc	8694de480619ef8cb16e017eeffd8039c54cd006039877cc654992e24a3fb419	31.15%	Heodo
2019-05-16	INC_1124564797US_May_16_2019.doc	doc	b2d91536744218551e478fdb93d8a95a00a7afddda74d896122b57ce4559dd79	31.15%	Heodo
2019-05-16	DOC_3320365057US_May_16_2019.doc	doc	47413a4ab923acaf1bb2ac8eccfd9a1a66d282fa0b3731ddf2d062bcc2b58f70	33.33%	Heodo
2019-05-16	INC_6518364191US_May_16_2019.doc	doc	09e81da7bfaa218857aa72793b86b2f3d3d4fd102e4282702bd524c45428833c	25.81%
2019-05-16	SCAN_87397859390US_May_16_2019.doc	doc	f825fb79d94da79bd9726eae75a01edf832f0135661517c7fcbaa5fe410af72b	n/a	Heodo
2019-05-16	SCAN_8799689953US_May_16_2019.doc	doc	f18a0f8516c937674a301ccfb5111a009e5621a31e4036af25ae97470626b3e0	26.67%	Heodo
2019-05-16	Document_151735589746US_May_16_2019.doc	doc	acec5b482ad5a4de84e5e7f3146c7e04131d0a04b6874d552f33a97812fc9e38	27.59%	Heodo
2019-05-16	INC_867406849009US_May_16_2019.doc	doc	400a5d6d21230c8fe91fed9cb2fa2ddae199cfa892462281452b106bd219a782	n/a	Heodo
2019-05-16	LLC_515560089055US_May_16_2019.doc	doc	d3d69226a3f6759d15a4b94a3ad99da3e20a28113194cff91dfe345c1696a7a9	29.51%	Heodo
2019-05-16	DOC_44233235974US_May_16_2019.doc	doc	942c724bdf60dba3fad9f8695be9b19d96df15a8314d35fd82055b62610f62cd	33.33%	Heodo
2019-05-15	LLC_765740641364US_May_16_2019.doc	doc	1d174cf281f20a5f318e24b5df536ff2d04d6ea854a81d8d45a519cf3ca60ac2	n/a	Heodo
2019-05-15	Document_17876112136US_May_16_2019.doc	doc	d29f6030fc82c182401170d9f7c16805011d26e3b2e6517be9329aac5f76eab8	n/a	Heodo
2019-05-15	DOC_63411085564US_May_16_2019.doc	doc	92628f8542e2c4f401c94d5fdb03d4ccade61a51becae5b7f9443d5dfc57f48f	28.81%	Heodo
2019-05-15	SCAN_291381612948US_May_16_2019.doc	doc	fdf0e5c1d38c12d7877c65b2bb16aaedf41cd907636554ef9eb7d372bd647fa4	28.33%	Heodo
2019-05-15	INC_0051619374US_May_15_2019.doc	doc	e61ecdeb7d0d5e709511bf3a05f93ec484b55209dab718cf51d22579be2d711a	29.03%
2019-05-15	INC_9728980359US_May_15_2019.doc	doc	04d4be108e974493c8202e5d8ee64d0108c07bf3518a0e3275045d88f6859936	29.51%	Heodo
2019-05-15	INC_8481295793US_May_15_2019.doc	doc	f90ceeea4c6b2a250b65dc3d9a32450dfd933dce742dbdc7accd95f0ab0c309a	33.33%	Heodo
2019-05-15	DOC_33834710910US_May_15_2019.doc	doc	fa4653f09cbefa0862e457cdc243982df3fae03f9722bf596ff74658394ea67f	31.15%	Heodo