URLhaus Database

You are currently viewing the URLhaus database entry for http://milbaymedya.com/wp-admin/jng1h-mggbe-553539/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	287094
URL:	http://milbaymedya.com/wp-admin/jng1h-mggbe-553539/
URL Status:	Offline
Host:	milbaymedya.com
Date added:	2020-01-13 14:26:21 UTC
Last online:	2020-01-15 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-13 14:28:08 UTC to info{at}nosspeed[dot]com)
Takedown time:	2 days, 9 hours, 28 minutes (down since 2020-01-15 23:56:56 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-15	Inv_V860_133.doc	doc	78a310a044510fc979e903828bdc3831844a04b5c01b34397e52e3bd62c96674	20.97%
2020-01-15	INVOICE-YU175_820.doc	doc	b7d6a9d883ceb3098ae6e82cb15a930133fd838486587f4f1fee1145cfc87b3e	22.95%
2020-01-15	Inv_Y47_4836.doc	doc	d5ee7e221d580c943b2a379a582e48ab6fe09cbf674cef6fb245054930f8bf03	17.74%	Heodo
2020-01-15	Inv-W83_1233.doc	doc	0be95290124a09aa4fb39e3c9069ee6c8078349d8fedc5694c2bf8e6291b4839	n/a	Heodo
2020-01-15	Invoice-CT25_881.doc	doc	5b756c518849d27a96d0e8bfdbcc853ff8f2d03089dc6c297c2a6282d2539413	18.03%	Heodo
2020-01-14	Inv-FPS254_711.doc	doc	c912fbd5e3979ce3299c6cab4db775c4d86fcd1c779d4c2b402931f558484d99	16.67%	Heodo
2020-01-14	INVOICE-NR675_9652.doc	doc	13d193730643fc99a4fea46ccf55f8083cce38c2af110decdfddb59a598d7be8	18.03%	Heodo
2020-01-14	Inv JRW58_6047.doc	doc	5d9da74a6dc0774b2b16363d6b66d0096cfac919d1ff46d45a4a1e374bd19234	18.03%	Heodo
2020-01-14	invoice-M58_8943.doc	doc	c088977bf0174e3632493d2aef08b77a3aa0d3fe40c4ea66ee38f8bd96a6e6c6	16.67%	Heodo
2020-01-14	Inv-GJ453_36.doc	doc	e19211b7c079fa51a4c909460ad266587c4ac771648c802cb4af537d71e215bd	16.39%	Heodo
2020-01-14	Inv-T57_80.doc	doc	d68256788a82c628777bd3cb72c9c2f8819b44d898a9a60f0647d1237532ce5d	13.11%	Heodo
2020-01-14	Invoice T50_5360.doc	doc	acdd619085efd823893ebf5d4e5b0d5dfc93c1d3b1b7c6ba339aca6d99f8ad49	13.11%	Heodo
2020-01-14	Inv_NUM277_84.doc	doc	e0497171057aba4456da107b3417ba144848cfbc081b00d4549d78f7a2062233	13.11%	Heodo
2020-01-14	Inv R353_4664.doc	doc	c663135bdc19e292ad9e3168fe8889a909057799f7e0f143945192b54ff40c07	16.39%	Heodo
2020-01-14	Inv-TM055_575.doc	doc	bff484c3a259993eded74499820830eb2da53828fcc763b8f600261572c42b98	n/a	Heodo
2020-01-14	Inv-LX832_59.doc	doc	67f8c63d4fa5c53c9fff164f962b16abe128d2b038e10f5bcacafa2e446788ff	21.31%	Heodo
2020-01-14	INVOICE-FAF43_06211.doc	doc	3b5ac9f579199b0f1b16c0e87e29015bf591fa8570f0edfd6c1c2682dec4470f	18.03%	Heodo
2020-01-14	invoice_RF262_77.doc	doc	a23d9b67a7511a6e6aac0ab8c5e30422cc1c25e8c1f66f6427f47cb812057f44	16.67%	Heodo
2020-01-14	Invoice-PUU290_04.doc	doc	fae7e292b443e97b48949f711e94e1ee3c23e5e01cdcb3d890bb6c20d459d756	38.71%	Heodo
2020-01-14	Invoice_LM49_9261.doc	doc	9427cb3c1887e2cc11cb0d76cee4ef64e589f831750d8a6719ae0eb62e535760	39.34%	Heodo
2020-01-14	INVOICE-IQ842_240.doc	doc	b39987017e022d0ba9deb280486992ee0ee0338e50e564915d25a97a777af0fa	37.70%
2020-01-14	INVOICE-D324_37.doc	doc	6384027a4dbfc0dcd5712a79436c9ad2cec5de14f6986091c07ce25b32e3d802	30.65%	Heodo
2020-01-14	Inv_TD620_7454.doc	doc	bbec91babc2513939b05530c6c50549b7d096c7bbd57e557b07d145f9d2c66e8	26.23%
2020-01-14	Inv-B21_89.doc	doc	9644bb0480418f78fc71cfa7c29cd94e7dcfe937d2c9d44a30d28f82473e7bab	25.81%	Heodo
2020-01-13	invoice W465_81901.doc	doc	4aefe00954db74f1af15ce84c91567c239d1081b3c8bd1b08477da705db7a5f9	38.71%	Heodo
2020-01-13	invoice CDC314_85514.doc	doc	0cc8aa9425011bd359ce2f1c6436de0f9c496296266a11741a4898687aea2fbd	35.48%	Heodo
2020-01-13	Inv VC41_3240.doc	doc	df4907b3acd116e3d8a1fccc1a623dc9ac951bb1c6a4d7abdcff04b072c0fdb2	29.51%	Heodo
2020-01-13	Invoice_A76_24.doc	doc	9b05c4b5d80df78be11361e5b04e0b47af0f8541579f2e3355a71a0632226041	27.42%
2020-01-13	Invoice_UFH291_946.doc	doc	fc55f4d81409fe974c3bfdc57bf9ff1f30a2807efe5fcf64bb51dcce2ac747c0	n/a
2020-01-13	INVOICE LLG175_40205.doc	doc	7b80caf3c87b61f514b0ece641046c680f8e42e9ef8eddd6acae45ff13be06b0	n/a	Heodo
2020-01-13	INVOICE-EG77_6048.doc	doc	a3b16bc4ee1c0f6ce38d0e1a076ccc93cfd1f495f0df4f02678b7959ae8a0b7c	19.67%	Heodo
2020-01-13	INVOICE SZD04_39433.doc	doc	5c6939d472acec788948658a6eb77e6c72030b031242af9ec47f6d14c136e66b	n/a	Heodo
2020-01-13	invoice_LT198_8150.doc	doc	791b830a674d5b31a3fbc0d6eba08524a52265a1ccb489cc601aec64c7650450	n/a	Heodo