URLhaus Database

You are currently viewing the URLhaus database entry for https://www.germistonmiraclecentre.co.za/cgi-bin/private-box/close-067888847-EeIpmZm/c9xbNgRQ9GbU-g52eap6GtoNI/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	271767
URL:	https://www.germistonmiraclecentre.co.za/cgi-bin/private-box/close-067888847-EeIpmZm/c9xbNgRQ9GbU-g52eap6GtoNI/
URL Status:	Offline
Host:	www.germistonmiraclecentre.co.za
Date added:	2019-12-18 15:36:13 UTC
Last online:	2019-12-25 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-12-18 15:38:08 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	6 days, 19 hours, 52 minutes (down since 2019-12-25 11:30:45 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-20	GreetingCardChristmas.doc	doc	b0116bf90ecc8780541666fcc71cdbbd062008068a132f9ecec4ab5dcfc8b0b8	26.23%
2019-12-20	greeting_card.doc	doc	ba5df276a95a559d5660e2576bb1bd433d24bb16aff6d598f399c94ac0c1de12	25.81%	Heodo
2019-12-20	new-file-YW46208.doc	doc	cd7a55ac732ab54dfab8e759c6d2154fe0264126180f22ed51466a8a40ade585	23.33%	Heodo
2019-12-20	new_info-12202019.doc	doc	31184e22f3ea61819baf079c9d0c16f5104c21a5fc0c3891783b1478e4ade16b	23.33%	Heodo
2019-12-20	newest-module-63426.doc	doc	4fa69a6e2bd147fed055ce29ac3da808c8b02490daedce960863bf3bb908105e	23.33%
2019-12-20	material_HZZ73126460895 541027.doc	doc	4bd2c8dc9bcc707ac15c5f4e4c4b4bd48d0e12439bb372420ab3db92ca9ae92a	23.33%	Heodo
2019-12-20	newest-info_999760003884q9.doc	doc	a35d23968eae8e3f9825a4f02cf04ddeccba1700c9cd890ac37ede3ad01c9976	37.10%	Heodo
2019-12-20	adjustment-12202019.doc	doc	012e370200b2ab333df4115479217e6d82380fe1ac3740bf1375b4aca308c558	34.43%	Heodo
2019-12-20	last_part-12202019.doc	doc	27b25b36f565ebe1b9fa0450584e3e8326ee1e48bb32bc9618e2f87dfbcc63b0	32.20%	Heodo
2019-12-20	relevant duplicate_641mmn5o5m12.doc	doc	f7a9aed53666ef3cc5332683ad0d3fc575e9389228dac67f380b8445a55ba751	32.26%
2019-12-19	approved-material 12202019.doc	doc	ac9ba0e203a476c01aaaf83135bc6ea60113d473eb493a04cf01c6885c729c4b	32.79%	Heodo
2019-12-19	Christmas-ecard.doc	doc	8a2265802819dd5ca4f6613abde71b3c378f0ed75aafd74217c7c67dc6d9aae3	32.79%	Heodo
2019-12-19	Christmaswishes.doc	doc	d394ed6a30ff8bd2c2812675561d9662c72ea9d8c987dd329046f0ecfdeb9177	32.76%	Heodo
2019-12-19	Christmas_wishes.doc	doc	87561f05a6197737c413aa57e28b0b55b4bd0914a5e0fa8a7f58e979d6f984a8	30.00%	Heodo
2019-12-19	Greeting-Card-2019.doc	doc	7e9bfafa6878d22d466022f7e71714b61d537ceac05642c28f7fcb90dde2dd81	25.00%	Heodo
2019-12-19	Greeting_Card_Christmas.doc	doc	748a43d5b83cab52a934730c8417be7e1b8493619c108036e2e2ed7def80d1b0	25.42%
2019-12-19	Christmas-ecard.doc	doc	e87d6e35c3ca9e9f5d6ae4dc34d966eb098877fa7ac7ddbd6801982f70c1f12e	24.59%	Heodo
2019-12-19	k6mt8v4rkpw3rnw.doc	doc	e581d3331bfeec39fd6e89149603c8640b527cfe0e152aa9d799dd8a8b860df5	22.81%	Heodo
2019-12-19	REP_080153511.doc	doc	df0c6477bbad003cae5aa4c6d82e9b322fc079c3cd62e7a96f52aeeca677d402	20.00%	Heodo
2019-12-19	289490564.doc	doc	61fe55be0a1c2a52426f90abfa9778eef565c849a24ae59e31c6c8ba403462e8	21.67%	Heodo
2019-12-19	T45522824848_9030584206.doc	doc	5324e7e2922c5a28faea5704e5b985ddf3d864b0b427c57fb0ebc707b68c5bc5	21.31%	Heodo
2019-12-19	Untitled-S094255192809.doc	doc	abd47e8575d8b4b0c11b6c4f6cf32e49c57785b48a2ef08cf1a0c99dc4fe6c4c	24.19%	Heodo
2019-12-19	v2ptn7p13m3.doc	doc	44fb08d52fa2f1a7c756b47e280321e6939e78133de074bbd357e39360262f88	22.58%
2019-12-19	scan-12192019.doc	doc	eae0820fde3b8db1aeea5a60e3c170bfdfbd698767b422583a04b8cc67a41008	22.95%	Heodo
2019-12-19	rep 12192019.doc	doc	05a8a3f3f3dca19f1acc974e96a89516094169ba8aab2298558f2252b084018e	22.95%
2019-12-19	file-12192019.doc	doc	139113f465022b7336c3cfa9e2ea54952d56825d295a0ff62dd3e8cc09483d24	21.31%
2019-12-19	DOC_YOD92692733145_7023950486.doc	doc	35b833827dbc56f1fa4b6720b9771c3e7b27459bcb17bc1214c0acce11dc940d	21.31%	Heodo
2019-12-19	STAT-3088539.doc	doc	51e2372fa861af972c7f0b7735c82cf27679b45c951a5e59242c550b95be3b1b	21.31%	Heodo
2019-12-19	8465482118.doc	doc	efa5656199e7633e1cf7656adb85cad8e309a8c45bf8f8f1e01f4759224c798f	30.65%	Heodo
2019-12-19	0u550uok.doc	doc	72ce3df7bd7da4208c97989fe0b93c23a8f3c4348ddd24adf59fa6539cd148eb	31.67%	Heodo
2019-12-19	info 12_19_2019_524563.doc	doc	e3b8b39aa821af3e0c5ff412f47631916e45f432148625981509b7be707054c8	24.19%	Heodo
2019-12-19	STAT-10288.doc	doc	29b09a38dd8a80d4166fa0bd02fc00380f70cc097cffc0eeb9d33e8af35e8b62	24.19%	Heodo
2019-12-18	file 12192019.doc	doc	2096aeb29e7f19f81c094a0ef93d2fb2a64ba7a29bf972d94e1b469ecf5968d8	24.19%	Heodo
2019-12-18	COPY G306348936014 61359482434.doc	doc	ada9a250e413c354d4b1fb15274d450482b8cf4928bd4cb9bacf4b8675b2a323	26.23%	Heodo
2019-12-18	rep-12_18_2019 216718712317.doc	doc	a486b0b06595433c39abd78d5b6d61bc12d9ed8445732328a0b3812b9003967a	24.19%	Heodo
2019-12-18	scan_12182019.doc	doc	c3667c7d284b862051f4f8673af3a4a55728724e4791391882ba0b437a6eaf44	24.59%
2019-12-18	doc_9B09219-93272.doc	doc	f0d2e9149e26bdccd5118db6f99c8cff45e46f9471eeca2f2680742df15f9ba7	21.31%	Heodo
2019-12-18	rep_F976892993 3162047337.doc	doc	caa090b360b6e3c71db80f8b2d1d3020613c21c862f38150f50f638afd07f3bb	20.97%	Heodo