URLhaus Database

You are currently viewing the URLhaus database entry for https://www.confidentlook.co.uk/wp-content/kIK/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	287178
URL:	https://www.confidentlook.co.uk/wp-content/kIK/
URL Status:	Offline
Host:	www.confidentlook.co.uk
Date added:	2020-01-13 16:30:06 UTC
Last online:	2020-01-22 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-01-13 16:30:08 UTC to abuse{at}godaddy[dot]com)
Takedown time:	9 days, 0 hours, 4 minutes (down since 2020-01-22 16:34:22 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-15	INVOICE-CS13_5688.doc	doc	abc61f312162f9df332438a4bbeec7b50ee4294b7ba314212f0b549bb14c08c8	27.87%	Heodo
2020-01-15	invoice X466_80.doc	doc	010d4daa4dffe83b54b6d3f489493476cf3de236ff55914f90d2750df262e52d	24.19%	Heodo
2020-01-15	Invoice_ZPA563_7217.doc	doc	ff25de613a694810c4fbe525825171ac6e62d0485038503e971f87fbdd2049e3	n/a	Heodo
2020-01-15	Inv-Q39_9958.doc	doc	b7d6a9d883ceb3098ae6e82cb15a930133fd838486587f4f1fee1145cfc87b3e	22.95%
2020-01-15	Inv-V73_19.doc	doc	b0fe1c13c4769acdbb0ca4f5e4811be6e1c74664f6b09081af35c1be907f9424	18.03%	Heodo
2020-01-15	invoice K38_77355.doc	doc	1c92f6d57d35ffced912a250f5ffbd56a68d192c7cd7f61f551bdaede3d1271a	18.03%	Heodo
2020-01-15	Inv_PI03_40.doc	doc	19a39820518f91c2a3d45a04e39658511d9da11c6285cd43830d62534fb62b2f	17.74%
2020-01-14	Invoice-Z005_88.doc	doc	c912fbd5e3979ce3299c6cab4db775c4d86fcd1c779d4c2b402931f558484d99	16.67%	Heodo
2020-01-14	INVOICE_KT685_8531.doc	doc	9b812d6f768e7de4be8e12a32a010e64596ea5c583a830f8ef344e00df6e1d20	17.74%	Heodo
2020-01-14	Invoice-QNP841_21943.doc	doc	5d9da74a6dc0774b2b16363d6b66d0096cfac919d1ff46d45a4a1e374bd19234	18.03%	Heodo
2020-01-14	Inv_ZC33_372.doc	doc	c088977bf0174e3632493d2aef08b77a3aa0d3fe40c4ea66ee38f8bd96a6e6c6	16.67%	Heodo
2020-01-14	Invoice-C42_043.doc	doc	88d703fe59f728817d930aefece5014cd75324b02568f6d2a9f69efae7915871	16.95%	Heodo
2020-01-14	INVOICE LEP88_8945.doc	doc	75eb88048fa201b46d96cca9fa12f4b4917232c3d963596554a6970d007a639e	13.33%	Heodo
2020-01-14	invoice-S67_814.doc	doc	04899f2e89a00a9e6b019c7af86a24dd72d98328c91a7ba3a1a4e99d59f41e85	12.90%	Heodo
2020-01-14	Inv_LPA208_8669.doc	doc	e0497171057aba4456da107b3417ba144848cfbc081b00d4549d78f7a2062233	13.11%	Heodo
2020-01-14	INVOICE_NPN595_4474.doc	doc	d50fb4d2b5aeca55182160f95f244527af5d00d92c8e760906394e338cfbe992	n/a	Heodo
2020-01-14	INVOICE-SUQ094_376.doc	doc	bff484c3a259993eded74499820830eb2da53828fcc763b8f600261572c42b98	n/a	Heodo
2020-01-14	invoice_B239_6060.doc	doc	67f8c63d4fa5c53c9fff164f962b16abe128d2b038e10f5bcacafa2e446788ff	21.31%	Heodo
2020-01-14	INVOICE-T927_94.doc	doc	61ef44b898c732da0b07cc34493e971778b8835edd28386161473dd228025581	18.33%	Heodo
2020-01-14	invoice_AI31_956.doc	doc	9f430cba9753330bd2dda6221bdcd057c6e188e12c984e211d0d1eee54636c51	16.39%	Heodo
2020-01-14	Invoice-Q63_43.doc	doc	fae7e292b443e97b48949f711e94e1ee3c23e5e01cdcb3d890bb6c20d459d756	38.71%	Heodo
2020-01-14	Invoice-MKP016_6179.doc	doc	b39987017e022d0ba9deb280486992ee0ee0338e50e564915d25a97a777af0fa	37.70%
2020-01-14	INVOICE-FUV75_551.doc	doc	798e683b42e879ed7745f11f5aeb1347ea9e66f2e64dd97e32d0b489332d1195	31.03%	Heodo
2020-01-14	INVOICE-DHV91_191.doc	doc	bbec91babc2513939b05530c6c50549b7d096c7bbd57e557b07d145f9d2c66e8	26.23%
2020-01-14	Inv_KOM934_63.doc	doc	18b7a070ad16b8cfff48c011226af98c8df66202cf67b83d9229cad680bd053e	25.81%	Heodo
2020-01-13	INVOICE-VPI59_82.doc	doc	b096f29afe1925988127c55e6888cd8ef0c2a0f035841e7297e82ba223d66663	n/a
2020-01-13	INVOICE-UY70_727.doc	doc	0cc8aa9425011bd359ce2f1c6436de0f9c496296266a11741a4898687aea2fbd	35.48%	Heodo
2020-01-13	Inv-L18_857.doc	doc	54de04a123af1f40755c6d8b9d5122c17a752c1e49e4fd235cd0c5490c36c5bd	n/a	Heodo
2020-01-13	invoice_W825_394.doc	doc	9b05c4b5d80df78be11361e5b04e0b47af0f8541579f2e3355a71a0632226041	27.42%
2020-01-13	invoice-KFC783_3841.doc	doc	df487029853ea205c71f810ca04288a35413e5fd7bc5bf9e30063e9b3c05eedf	23.73%	Heodo
2020-01-13	Inv_JFI81_47.doc	doc	415acb605008ad5f82adb6179e0c716fe92009610adb883ec1efc38a5eb38fbb	21.31%	Heodo
2020-01-13	invoice_XJ34_78.doc	doc	7f4523806978cfddddb1ffa0006796e88cff4c0a605ad3d99e23f765286d3836	18.33%	Heodo