URLhaus Database

You are currently viewing the URLhaus database entry for http://newsite.modernformslights.com/wp-content/open_module/open_cloud/4819984528326_e84088eL5EnnO/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	271191
URL:	http://newsite.modernformslights.com/wp-content/open_module/open_cloud/4819984528326_e84088eL5EnnO/
URL Status:	Offline
Host:	newsite.modernformslights.com
Date added:	2019-12-18 01:42:03 UTC
Last online:	2019-12-20 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-12-18 01:44:02 UTC to network-abuse{at}google[dot]com)
Takedown time:	2 days, 6 hours, 24 minutes (down since 2019-12-20 08:08:20 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-20	correct-data_65928.doc	doc	89a76c16739c4e8a67286ef9dc393cf64b2f95408b5d1517b73b04c1bab71b92	32.26%
2019-12-20	new data-E845757.doc	doc	437a0a34b41ccd256aa33586c85f5b788a93fd62946f11d19b23ac06403db402	34.43%	Heodo
2019-12-19	new material-5o51m5m4.doc	doc	ef2f6014b9f926466073f7e036544e5188ac00b96f5f321e12c8daece16e3b94	32.79%	Heodo
2019-12-19	greeting-card.doc	doc	8a2265802819dd5ca4f6613abde71b3c378f0ed75aafd74217c7c67dc6d9aae3	32.79%	Heodo
2019-12-19	Christmas-eCard.doc	doc	d394ed6a30ff8bd2c2812675561d9662c72ea9d8c987dd329046f0ecfdeb9177	32.76%	Heodo
2019-12-19	Christmas-Card.doc	doc	38228d35350b8cc46377671e6c82da104d71567808173fd99063d63b506488ea	30.51%	Heodo
2019-12-19	greeting_card.doc	doc	b4337452cf3ffe1357e1ff1e66c9fd7c17227925e0c759ed7ede1d87ec08b54f	24.59%	Heodo
2019-12-19	Christmas_greeting_card.doc	doc	1e1aca50c65bc43be764fd92ca9b520348c710fbf834ff62ab8d6d1198d3a1fa	24.19%	Heodo
2019-12-19	greetingcard.doc	doc	e87d6e35c3ca9e9f5d6ae4dc34d966eb098877fa7ac7ddbd6801982f70c1f12e	24.59%	Heodo
2019-12-19	UNTITLED 12_19_2019 9028558.doc	doc	27820b2e783ff5a9817650a7f8a04b23a41db0d06c86748ef6a1c4a1fdf9f43e	22.95%	Heodo
2019-12-19	scan_77202060.doc	doc	1ece83243915ea586ae4a29f471fcfe1dd339a8b1e405abc62319813288fcff4	20.00%	Heodo
2019-12-19	copy VT937004778.doc	doc	46a45370020a58889775b7e82e91716319f81ba72e291dc8041314ab80c17c50	22.41%	Heodo
2019-12-19	rep-28197.doc	doc	4b96abf7da27bf640a179aca09786968bcce28787e7551ab431bbe77d144a212	21.31%	Heodo
2019-12-19	Doc 3K799494569.doc	doc	aaef0320ecd50b713b2c75b51d342616767426863d2a0c48a5dcf3be3eef288b	25.00%	Heodo
2019-12-19	12192019.doc	doc	3cb1650cac5770870949aeb67823e4c9f1b8bebc56fdec50beff5eac826f98fe	21.67%
2019-12-19	STAT mpw2l7r4.doc	doc	f4f8b44946546436bc0416b3020ed6dc278c7dd8a18db0a8a9b904de6e2f6640	23.21%	Heodo
2019-12-19	release-JG47224502922_39906.doc	doc	aa0d7656a3d96164241e2f3526cfd065f034920a19c6d747a4674379bcd003b2	20.97%	Heodo
2019-12-19	12_19_2019_4F64998.doc	doc	cf080cecf871d837c84b70ce57518579cc126c06cbcc720771ec723aaf44813a	20.97%	Heodo
2019-12-19	release-12_19_2019 547125.doc	doc	d9c0dd65766e2d2c84672023f2b4e3103ca5d7a686bc06c84488092de91ff1e3	30.65%	Heodo
2019-12-19	VKN9181.doc	doc	cf65b38b2650623e1361a482d1e8e8781019d7a29cb757cf79c1e276583838a8	30.65%	Heodo
2019-12-19	doc k23k1uq.doc	doc	46e6df81e9899f2d35c7f62fb707f6ef9e909ea682b7e62d4afd3e0ff0b9076a	30.65%
2019-12-19	9H370270097451_275680.doc	doc	0c45e14f368d59e03d4881e280642933dd8287a088108931f5c4f1425c442300	24.59%	Heodo
2019-12-19	STAT l6356l6.doc	doc	39c1d85d9122a432fc48e0162b6720734ab8b31d97fad0dcac4d0d6f6517b6a5	24.59%	Heodo
2019-12-18	8235705.doc	doc	97f9065802854390f753dd2b54dfbb13ef92fbc2387216f2a09014a4ab9a64dd	24.19%	Heodo
2019-12-18	12182019.doc	doc	ea94f3a10992fd81fb798921e2c9207f21f134cb7784f1f201d750587f25eeba	25.81%	Heodo
2019-12-18	12_18_2019 H57305074095.doc	doc	3be9f66ef6e3feb291bca66c44fd8651d392ab19807b9bce1a7fad00d4a518a6	25.00%
2019-12-18	Untitled 5767.doc	doc	c3667c7d284b862051f4f8673af3a4a55728724e4791391882ba0b437a6eaf44	24.59%
2019-12-18	613056.doc	doc	f0d2e9149e26bdccd5118db6f99c8cff45e46f9471eeca2f2680742df15f9ba7	21.31%	Heodo
2019-12-18	Untitled-12182019.doc	doc	e1914937bfabeddcbe3cd0d047195049bfdabd4cf22d5734aeaa70f909ae22e6	24.19%
2019-12-18	INFO p0vv56tvtv18r.doc	doc	854d5fd9c1117d7589ba87ffbe6e0016902612837bbd0975a230a5fbb65457f3	24.19%	Heodo
2019-12-18	12_18_2019 E42695.doc	doc	b940831dd5e63865c557cf3eeeebf1a5b859df61b2b463df2c7aedef04f8ad72	22.95%	Heodo
2019-12-18	copy_u81r805w.doc	doc	a5c388ebbee623f26938d67427170bb063976b1dd0524f6ea18b402809afed4c	21.67%	Heodo
2019-12-18	REP-RK55932405643.doc	doc	a5e5e4716eda5cccc9d9b8a61517b4fe21e4fbfcc4ecabbd3d08fc89b0f33f29	20.34%	Heodo
2019-12-18	STAT 398816753.doc	doc	a9b41646ad51dd5bc762a07a0efce3c6f5d6f372281699b1ba4747ad29e74c9f	n/a	Heodo
2019-12-18	PEM209936344-941515102.doc	doc	561126bfb39ff16fe82c097bf9150a1e4b4f4e5674359c8c07bd900befb3378c	45.16%
2019-12-18	scan_0G96119582737-20211772558.doc	doc	96eeaeda0e8075bdc21431cfa17b07d5ebdedcd515b5073c4074b64202419735	n/a	Heodo
2019-12-18	STAT P9857933924-070393757739.doc	doc	55d7d2e63f95256694ff74f4d9c02ac671269ae35aa11b85ad632c670212c11a	40.32%	Heodo