URLhaus Database

You are currently viewing the URLhaus database entry for http://nzndiamonds.com/assets_old/open-72406-cuGkEFkiYbYrJ/2mq4yl6ul7m-ywlpf-rGZXEMTo-VNfGctZG/pim1-t811v2ws463155/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	270894
URL:	http://nzndiamonds.com/assets_old/open-72406-cuGkEFkiYbYrJ/2mq4yl6ul7m-ywlpf-rGZXEMTo-VNfGctZG/pim1-t811v2ws463155/
URL Status:	Offline
Host:	nzndiamonds.com
Date added:	2019-12-17 17:49:07 UTC
Last online:	2019-12-19 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-12-17 17:50:05 UTC to abuse{at}odeaweb[dot]com)
Takedown time:	2 days, 5 hours, 11 minutes (down since 2019-12-19 23:01:35 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-19	Christmas-Greeting-Card.doc	doc	b4337452cf3ffe1357e1ff1e66c9fd7c17227925e0c759ed7ede1d87ec08b54f	24.59%	Heodo
2019-12-19	Christmas_ecard.doc	doc	ec1aee60b9bb5cdfbb56fef7d78c276ecc2ba6d82cffb0be83f61c4ea8b33303	24.59%	Heodo
2019-12-19	greeting_card.doc	doc	e4a6b6d906f970b2963c433b1cf85895a9c9f060eedc982f011c3199b7c9df7d	24.59%	Heodo
2019-12-19	file_54536531.doc	doc	2c122baed94846843fce1113133b49bd5bb711328ba94ff02f397031fe9b6393	22.95%
2019-12-19	317678107064.doc	doc	1ece83243915ea586ae4a29f471fcfe1dd339a8b1e405abc62319813288fcff4	20.00%	Heodo
2019-12-19	PART KXS561840435.doc	doc	61fe55be0a1c2a52426f90abfa9778eef565c849a24ae59e31c6c8ba403462e8	21.67%	Heodo
2019-12-19	12_19_2019 46621952395.doc	doc	f6757602163018e20a342c32add664ce6af3c4bb4a72b9568be734dd2809a38b	20.97%	Heodo
2019-12-19	scan-E96248750.doc	doc	048fea53ae170133018a1d94a7db94afcaea4b9484d446b6ab740ed74051247a	24.19%	Heodo
2019-12-19	1Y3508-44219148.doc	doc	3cb1650cac5770870949aeb67823e4c9f1b8bebc56fdec50beff5eac826f98fe	21.67%
2019-12-19	rep_75472636414.doc	doc	329e19d1556d04d8b0127c2a303bfe3df8aca28c95c3ac40ce8c8be9087f350d	22.95%	Heodo
2019-12-19	list-kkr9pk97q724.doc	doc	c15e005ca7af90c7fddc7fe79b646e5b520fa94946e4f62f4ace5de94b37887a	22.03%
2019-12-19	scan_7UD021097863370_52788067.doc	doc	d9c0dd65766e2d2c84672023f2b4e3103ca5d7a686bc06c84488092de91ff1e3	30.65%	Heodo
2019-12-19	12192019.doc	doc	cf65b38b2650623e1361a482d1e8e8781019d7a29cb757cf79c1e276583838a8	30.65%	Heodo
2019-12-19	copy 5FC3874497550.doc	doc	72ce3df7bd7da4208c97989fe0b93c23a8f3c4348ddd24adf59fa6539cd148eb	31.67%	Heodo
2019-12-19	AT915419648507-29401.doc	doc	0c45e14f368d59e03d4881e280642933dd8287a088108931f5c4f1425c442300	24.59%	Heodo
2019-12-19	release W0560819.doc	doc	39c1d85d9122a432fc48e0162b6720734ab8b31d97fad0dcac4d0d6f6517b6a5	24.59%	Heodo
2019-12-18	REP_DBA88760276-2884.doc	doc	14431f1c5a3c66befb90b519ffdd0824f1f13e5521823c31a679a5fe6dc58c46	24.14%	Heodo
2019-12-18	S895512819-081775.doc	doc	b1470fd56dc1adaf558a75b6ed75c32cfb5bd8d78e2280d9ec9df85512d9b7b3	26.23%	Heodo
2019-12-18	release-CKI2239144422_88880873.doc	doc	1346339fbbd2532f8056ed43a5b2bb6a8bf915699c01486898e81e56a1cdfffd	24.19%	Heodo
2019-12-18	copy 12_18_2019 7F301004206495.doc	doc	6302f4c3c6c8837a26f2de9afa4b33860c776d287277da92e2c2d1a21a361c53	23.73%	Heodo
2019-12-18	UNTITLED-12182019.doc	doc	5a6e80d3de706d7f9f0063468594063e2ba9ad2a0528629713244aa2b3416346	20.97%
2019-12-18	Untitled file 12182019.doc	doc	661c6e38c4c0089068eec2d5b60d67887e4ddd4c374706a0af0544e726b68160	24.19%	Heodo
2019-12-18	pk4o2nku8r.doc	doc	43c08049eabb097bd65da44392027b6626e52a6bd358485346f0517aa921806f	24.19%
2019-12-18	F748806.doc	doc	11b0ed5fd91147500dc80ea454121eb3a38bc73a789ff7ab2517eaeaa98adec1	22.58%	Heodo
2019-12-18	INFO-M23612230.doc	doc	a5c388ebbee623f26938d67427170bb063976b1dd0524f6ea18b402809afed4c	21.67%	Heodo
2019-12-18	12839879146 634689.doc	doc	a5e5e4716eda5cccc9d9b8a61517b4fe21e4fbfcc4ecabbd3d08fc89b0f33f29	20.34%	Heodo
2019-12-18	rep-7828.doc	doc	a9b41646ad51dd5bc762a07a0efce3c6f5d6f372281699b1ba4747ad29e74c9f	n/a	Heodo
2019-12-18	REP-Y46719822154.doc	doc	561126bfb39ff16fe82c097bf9150a1e4b4f4e5674359c8c07bd900befb3378c	45.16%
2019-12-18	file-2912164.doc	doc	96eeaeda0e8075bdc21431cfa17b07d5ebdedcd515b5073c4074b64202419735	n/a	Heodo
2019-12-18	VER-X37727186607_27047.doc	doc	992d05921516c9f141fca70dfe31a45a23b8eb4a1ed260bac73a3b5aa4c78638	41.38%	Heodo
2019-12-17	INFO-6X248832477126-637629.doc	doc	c5d5567a19f89c15c6f550ae1d8470b6b6d777dd2e8086d4aae4fbc8f63376ce	40.00%
2019-12-17	PART 12182019.doc	doc	9c29ae5f79bd5d369f2076bf196ee0b0ef5e6ad40e4bce2b367bcbf4a1f548bb	n/a	Heodo
2019-12-17	PART 0q5u5v00m2rqw0.doc	doc	babd2db09be571cf6283d08571375e65df5560d5af2bc50fe50621284f4b951e	n/a
2019-12-17	9860974436583.doc	doc	ceae4c14841343d702281180491e9442cbd7d06234492418f059381af8b54d21	n/a	Heodo
2019-12-17	Untitled-BW20675.doc	doc	b7c5359912e1c89f19135f60e2df6d473fa8a3b32c7dde466b65245bf8e20682	n/a	Heodo
2019-12-17	PART_59765846.doc	doc	e625597b09645a78579ecbf9e2d672d615cd877643f4cb1ff1fb9ffb587ee6b8	n/a	Heodo