URLhaus Database

You are currently viewing the URLhaus database entry for http://cassiejamessupport.com/blog/DOC/wZwKQlWAeaHEKWoSo/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:243224
URL: http://cassiejamessupport.com/blog/DOC/wZwKQlWAeaHEKWoSo/
URL Status:Offline
Host: cassiejamessupport.com
Date added:2019-10-10 17:42:21 UTC
Last online:2019-11-01 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU002000821 created on 2019-10-10 17:44:06 UTC)
Takedown time:21 days, 21 hours, 17 minutes Bad (down since 2019-11-01 15:02:02 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-10-12ICDXXOEQWTAW54_10122019.docdoc a85cc2088eaf316b8fcf3c7f33996b1acf93f99f820eaa9dfac83d0637adc9ceVirustotal results 29.31% Heodo
2019-10-12729698198032591_N_10122019.docdoc e2d82d020fd7232a66a9a6f7a2fb934b1a2d4a037f1dd4126babf91176510f22Virustotal results 30.19% Heodo
2019-10-125699265265212.docdoc 2a71168f233fba777e655c9dedd9ba4cdc2ec0c8c15e459175ef835196a4dcffn/a Heodo
2019-10-11QV_SPTAOJAA9H49Z.docdoc ca180a6decf05edb03c9aef8d56b1e8b545f38408cba5c5caf7c32e595d29f21Virustotal results 28.57% Heodo
2019-10-11OD_04019856598169551_C_10122019.docdoc b7fcaa27215595d88aa2993e3726d409f4fb5aff6d27385c5310460a73808100Virustotal results 25.86% 
2019-10-11BCF_4117940356923.docdoc fb061b509b6a0106c5449a238778280039d47483a92d722caddea5281015d945Virustotal results 27.78% Heodo
2019-10-11XRS_N47CMEHKGF2NBIM.docdoc 8bc9d6efabe570091d4541daaa54b9814b2d55cdaf155488f5286d9edca2df76Virustotal results 27.12% 
2019-10-11EBC_IPXRRRVHD.docdoc 5af4fcfe23eb4ce9738f9f72bbde073fe7ebd4ecfbfcd6bbf61387c173af2e12Virustotal results 25.86% 
2019-10-11RST_PLV27YQ5H55NMQ.docdoc ea6bc5ebef37957c7b126709b815f29dc69fb9c93da40df01f014ddd1cfa13d6n/a 
2019-10-11NWP_6491725716507983.docdoc 6125489453c1824da3e28a54708e7c77875e500dd82a59c96c1d1e5ee88dcad7Virustotal results 25.00% Heodo
2019-10-11ZT_14141749431396_10122019.docdoc a7e2e5e2b941f29920051158564b36acab5d8fe92b88bc48ffb6da6e770a9292Virustotal results 25.42% Heodo
2019-10-11EU_461961427407108.docdoc f4a09b29ddc5d848f3953849f26e8e7877c116b3771c13ed753c2c53b2574b06n/a 
2019-10-11XDX_541892375376.docdoc df77af17261de94aa26c119fe9d76373152aee880255da6f0d7ff873417b6043n/a 
2019-10-1167085407209786319.docdoc e18cacb96140723e9e564a2c6be2ddc1c25e77f97cbb4bf28db7e7f9b988872fVirustotal results 22.03% Heodo
2019-10-11CVY_818074276863660_10112019.docdoc c33af49e0ea81a8c764891fc8939d5b153201bb795013b4b3fb132757bdab59fn/a Heodo
2019-10-11HALSAQYEORKKY4_R.docdoc ac09b44ff4ed151a614ec4a9536d13cbdb632a604758f91494303647040f3799Virustotal results 21.67% Heodo
2019-10-1188424733867105990_F.docdoc 3857046a0c192e72845855c9ee3ccea8dc78488485bb00660c97d799344a5382n/a 
2019-10-113415086602.docdoc fb07adaeb148b28d5c804a4f9098931f9ff141b7bd1476b420d11ff22d904440n/a Heodo
2019-10-11OGX_629800144354_KZD_10112019.docdoc 979f9dfdd8eab83cd27da2bd8da0f7ba9546407c5fdf5c27b466a72c89c6b98en/a Heodo
2019-10-11KN_90557129071201_XIX.docdoc 019b7ef704a635b4853b98e67f10c7e6b607fb5b91c24d4d2b4e2c5459b61bd3n/a Heodo
2019-10-11334BZ8HO1SD3GQW_10112019.docdoc 9e1d7cd63b0edcb4b3c4b1c86ecf477245ba82b4291bf26484fe2dd6cd9d12a1Virustotal results 22.03% 
2019-10-11IXY_VPMO71KJOSRUWO6.docdoc c96e123865ea3b3cea184bd021ff5c2242dbc0a9b30cd2e916af7bc936c711ban/a Heodo
2019-10-11JUO_530728132190_10112019.docdoc efbf4355ea2b430cdd94e8320aeb3f84e2c3ffdfe053d292b1ac3d6a463ec2f1n/a 
2019-10-11WED_13704675084940848_10112019.docdoc 0c7c14abb4d1bf673ff07c232b994279e316a77465b4b4ef041fbe17d51bde96n/a 
2019-10-114410439153548_L.docdoc 0c8bbc97828005bee9e7a2cf4887665e56a4a6755983424cc087a3a3ff58c672n/a 
2019-10-11CYS_A09CJ2FZ76YU2M.docdoc 76a62f7e63606a966378d9f3ba8fcec5a7cbb1e67caf749a9cc77e20092aed08n/a Heodo
2019-10-11EWE019DLB6_DY.docdoc f0f7d091da00472f4f35e70fc23317cab77d70076e94a9239c6d4d476f197ed8Virustotal results 20.00% Heodo
2019-10-11FLS6WJ0S9E4OQ_A_10112019.docdoc 1f08e5bd06d1bde318055f626dff14677005ec9200c533c74a98cc68ff1b648bVirustotal results 25.86% Heodo
2019-10-11MH_914IQPKVTH8VBZ_10112019.docdoc 4166fabbbd12ded7de1561c3bb7cc3eda1889562bb268ffaeca0eb828379bca2Virustotal results 23.73% Heodo
2019-10-11243675596883325.docdoc 4e91a37ebd2c6b0aad3b1aaf1d2d09c0d4187e7c3d0fff94327c30f72572825dn/a Heodo
2019-10-11RGW2LRUO30.docdoc 9caeb7939d720620791e0977ce3b7331d59e39672b647a479c12f50c23001ca7Virustotal results 22.81% Heodo
2019-10-11RG_787961531796107_10112019.docdoc 069e184bae8a676d584ca8df23ea4ba998ffab0b067d031cdac1df7a041a6bbcn/a Heodo
2019-10-11SE_040894532874.docdoc c92ed8fad0f453c7460aadfd8bf687d5cf99560115dddacaad75833aa40e0b6eVirustotal results 17.50% Heodo
2019-10-11FT_750684146025598.docdoc fce3cb5ebf184419ddfb0eec24a4a0eefa9b581366ac8a6ba9faa8308979e401Virustotal results 22.81% Heodo
2019-10-11INC_924190858926_B.docdoc 7bb9b68f8f2c198f14e3d91780d43c593393fe8034f433553c9f06af24c015c7Virustotal results 34.62% 
2019-10-11BL_OF68TUI87U1F5FW.docdoc 1805c5e9bf3e64f88da5011beb039fecdfedb527c2626c7e4177d0da307b720aVirustotal results 35.59% Heodo
2019-10-11FA_4953431169_IP.docdoc 75eae2ead8febffb89de4e0e64e3d9c9218cdcf88f83c46f3e1324277fc5245dVirustotal results 32.20% Heodo
2019-10-11BL_32535732235809.docdoc edd0ab17a61f95c20b02d9c7b58ef29911fc287846fdd80d6804d7e325e6b4e5Virustotal results 32.20% Heodo
2019-10-11BL_MMETBW94CIAS_K_10112019.docdoc 33bd1e5d97265753389685d400934b69456479b92137b4b4ff0457e83e7aa8cbVirustotal results 33.33% Heodo
2019-10-11LLC_ZNJU5GCFJHJGW_FP.docdoc 69fa6b2b52312b8aefd0c77695a215245b8eb499b0904bb31e1f9ede0153fe74Virustotal results 32.14% Heodo
2019-10-10SCAN_17969961993266144_HX.docdoc 51de13d18a23740342f1c681de4cb6c2baf116f2a4df4730c5338439d05823e4Virustotal results 35.59% Heodo
2019-10-10DOC_004829833957809.docdoc 47cad341e26f67d00adaf1c4e3d0adf77eafd64d24999e35500e364f046361ddn/a Heodo
2019-10-10SCAN_WXOG9WO5J_10102019.docdoc 7a8a800c29c6e9dbf732d98fd5eccb9e78078101fee30d287dc534e83e58a22dn/a Heodo
2019-10-10BL_NN9CXB1A1797Q_K.docdoc cc88b6c2e36692379df13967b38df23ea41e6e39403ea6da5bd20097c74d4142Virustotal results 31.58% Heodo
2019-10-10RE_WBOK7IO7S0U5J9O.docdoc 2edaea083ea39aab08670d19867627d5516f1f78efff05973e3524c3f897a4c9Virustotal results 27.78%Heodo
2019-10-10FILE_259287304814_10102019.docdoc cc4e1646b1d94db4dae3f14ca2a85a2c46fc3ed193833e0913959b4a07904e64Virustotal results 30.51% Heodo
2019-10-10FA_A0JMHQ7ATND0.docdoc 8a55de0566e608798651dff59eaf776fc3a270c09091862fe1e0a089a9a68122Virustotal results 30.51% Heodo
2019-10-10DOC_HSLYNIAOD.docdoc 705e55a252475b5ae7fa7258eb04be795347a8eeaa929dabe7660e33ed392264n/a Heodo