URLhaus Database

You are currently viewing the URLhaus database entry for http://globalmudra.com/js/sites/02lkvhwzw/vz3cz2x-8978-5413391-1uymd58is-rrgmb/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	267974
URL:	http://globalmudra.com/js/sites/02lkvhwzw/vz3cz2x-8978-5413391-1uymd58is-rrgmb/
URL Status:	Offline
Host:	globalmudra.com
Date added:	2019-12-12 23:49:05 UTC
Last online:	2019-12-16 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-12-12 23:50:04 UTC to postmaster{at}myhostcenter[dot]com)
Takedown time:	3 days, 16 hours, 51 minutes (down since 2019-12-16 16:41:48 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-14	PO_ 12142019EX.doc	doc	b2b546978e67f0508a9d9f19d4b359d30fc69e07a5251bd0a4ded52c24581fae	32.79%	Heodo
2019-12-14	946994121164871.doc	doc	edf46a3c5e5b9fce1515b85f8422f9446b208826820c6dbd95a2865e3b961bc9	31.15%	Heodo
2019-12-14	REP_FXV_120119_WSQ_121419.doc	doc	49f902036fefd2f5b1c5c0835f950c0e8d923ba235b799a8841f00663958f2a5	31.15%
2019-12-14	W_PO_ 12142019EX.doc	doc	9512f1e1abe3815938c6adcde6f24756f5598bbb66c3e60be4d0e32ee80a52c2	31.15%	Heodo
2019-12-14	B_96441744200897191.doc	doc	7e1c5673c56ecdac1d8680eda112c2fa815373a9431c240ceee34803b37c5941	32.20%	Heodo
2019-12-14	FW1486514636XM.doc	doc	2480836ffc3ee63c1e3608927d8ff5c84492069de63a9eb02eba2123f4890355	30.00%
2019-12-14	3AJE082NUZFF9.doc	doc	02f800e5fccbe66d6563a9c6ff9c5246849a724263676a653e91e98de3c48e0e	30.51%	Heodo
2019-12-14	REP_SDY_120119_NCO_121419.doc	doc	1d9957c1d96dfdd492bed36d0047e003992c9e5b0cc423c99028bd21ef536892	33.33%	Heodo
2019-12-13	54044791.doc	doc	1188e99ff2231fd14aadb0b89be226f17b04a94be62b7d8270e838947e93fb50	31.67%	Heodo
2019-12-13	S_PO_ 12142019EX.doc	doc	a579ce3d2d15e8816850a60dcc22eee820fa6711c258262ad5802c2f6e1a1e44	31.15%
2019-12-13	DOC_DVW_120119_UDK_121319.doc	doc	bb14b2b318d9fa3adcc85909296d1b516d2e60b73b4c3347cfcf2bbb2448aaf4	n/a	Heodo
2019-12-13	S_XM3319157621EX.doc	doc	aadfdc82f050fcb2e3002a14f3982fd8c46af5fc8967eedf28f8f8444dc43d7c	28.81%	Heodo
2019-12-13	O26HW2YU8QQ.doc	doc	848735c57e1a6435289594c80b894ae30009e92a9735261b256d15baf27b4cab	26.23%	Heodo
2019-12-13	FILE_79191879.doc	doc	f89538264a7e22ccebc45894ff55f363d10a82e0c70ab9cffab2758cf787ebb3	n/a	Heodo
2019-12-13	13371053.doc	doc	ec0e70c7355494d17949475109a1d6693d27a72cf686547f8f7c94634f49a492	28.81%
2019-12-13	REP_ZG8505168458AM.doc	doc	0d51f69191db5f98bc093dfef0ff0dc2241e910395d2993ab13da4e7ef4c297b	28.33%	Heodo
2019-12-13	QK7359012005QD.doc	doc	2328329f003f62be7f0fbfc6b8438cfec2f2d6c9aee19dc127579b1153798e22	26.23%	Heodo
2019-12-13	FILE_32273933.doc	doc	e6c50efbc57df66b0be7c45a8c043db17ce0c404570c3b2fafbe6ffa46d9f0d0	29.31%	Heodo
2019-12-13	5393404585178881.doc	doc	507875ad75bfefcfedca478bc7338807630f05b37a971f14ea44687a54847aa1	27.12%	Heodo
2019-12-13	D_PO_ 12132019EX.doc	doc	25283c249c93d624f6710bdaec09efc08ff9d1db27aff59e7c05e431fc7fb4a2	27.12%	Heodo
2019-12-13	PO_ 12132019EX.doc	doc	eda8376c2ad315c1bdf0d8397403e250bc41f34e271317be68331f466b199e0e	39.34%	Heodo
2019-12-13	DOC_5979468544.doc	doc	e2e4f606a0781b7e7a32ffce6227f92e4016ef6f3d5e27a8986014ed27e741f6	35.00%	Heodo
2019-12-13	CQP_120119_RXZ_121319.doc	doc	606eff1c3113bfbc02655fd1e36856d58457957a0115ce49a3ab3ffb1064af9f	35.00%	Heodo
2019-12-13	V_PFR_120119_JLY_121319.doc	doc	acc7ea43de61e6d7bd1a88fde0e40ca54f4dc2d0ababd3ec2d68cee4cc7c4100	35.00%
2019-12-12	WK_332891451803395941.doc	doc	81968bd2f3aba5dabe1fa57e078665bbb12af3f779b3bb015b03c90ce2feb3b0	35.09%	Heodo