URLhaus Database

You are currently viewing the URLhaus database entry for https://www.confidentlook.co.uk/q/Overview/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	289479
URL:	https://www.confidentlook.co.uk/q/Overview/
URL Status:	Offline
Host:	www.confidentlook.co.uk
Date added:	2020-01-15 23:12:03 UTC
Last online:	2020-01-22 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (Ticket DCU002249074 created on 2020-01-15 23:14:04 UTC)
Takedown time:	6 days, 17 hours, 19 minutes (down since 2020-01-22 16:33:44 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-17	REP_PO_01182020EX.doc	doc	de952748c6ec69af07599737adcc6f274bd8c73dc723cb218c14b290d2ed6600	22.22%	Heodo
2020-01-17	Z_16702154.doc	doc	88ee00f1e6c6c5ced74872d12f95b20b3f01b44dea9b62ae7f846308c2d3d794	18.33%	Heodo
2020-01-17	BAL_73423143.doc	doc	375a0fa16bc113aeeb243bd94cf6b0c4acdb33b912e6ec48c0dc8222dd24682f	18.03%	Heodo
2020-01-17	SW_71121562.doc	doc	b1f490485294ca464fb35ae4e0a2b54246838c77f58ce26d8ca8b1748148e64a	20.00%	Heodo
2020-01-17	XB1117558644UI.doc	doc	f72d427128b9857b8bc971b8ee42f653135b7f3c6265a1f905d069b6c16642f1	24.19%	Heodo
2020-01-17	QFYGIDXWOC4ZBBT.doc	doc	7b953fc4e073ab1ecd94bcae72a74fdcb4da744f0173b344ce967648632dc020	21.67%	Heodo
2020-01-17	RP_98743703.doc	doc	0e202ecc222549065078b67361d40f9baa4b752aa3b1a404bf9757e45dc0b808	20.00%	Heodo
2020-01-17	RP_05956648.doc	doc	398c180bca3820858404f155f0050ec466519c6ad151414f5489e1e9f8395abb	22.95%	Heodo
2020-01-17	DOC_HLN_010120_WFN_011720.doc	doc	1cccdc74817414b1cd45f3994d81744f4c979dcc6017f6ea3f7b15b3c720faea	21.67%	Heodo
2020-01-17	BAL_PO_01172020EX.doc	doc	f1569c025b21d44c68867d142ebb944c3550240673430dceaed626e80acf386d	22.58%	Heodo
2020-01-17	V_ET4317596702MN.doc	doc	712635153fded897351d8f4bb96b5d4ecbf8f03e2fe48077a259c61e318a78a3	20.00%	Heodo
2020-01-17	HY3331714308NB.doc	doc	b341338022811ab111de218e305ca99facf3a53ac083bc122255f0c2c9b8fd79	19.35%	Heodo
2020-01-17	C_QPC_010120_DLU_011720.doc	doc	07eb461ea9aa9446ccfa96053f967790ce5075ef7b2190da2a04d08224f0e5d9	19.35%	Heodo
2020-01-17	DLYO141M9UM.doc	doc	26ba3fe65926140305a8fa605d09b8bd2fb8251648eac9b3165fb884a506e837	18.64%	Heodo
2020-01-17	BAL_48914069.doc	doc	9f81a80998e1d5cfbe2d86ae82851ec2ad75ba32e627e1e95f803a72e7d6647a	19.35%	Heodo
2020-01-17	REP_PO_01172020EX.doc	doc	b5b1a9c9342c9be2197fc3f9fc5c0a9138b052bfc06583f9719773397f567e34	43.55%	Heodo
2020-01-17	REP_646473884754120112828.doc	doc	9db035bd19c8d9db27e5c352d8e713cfdd13b9a155772e9266b18ec30d67fba7	41.67%	Heodo
2020-01-17	IRQS_SKQ_010120_DRV_011720.doc	doc	f3f139df5bc086f20c3615226f506ba9b565e31921ad9184f0f9df71be52f78d	40.32%	Heodo
2020-01-17	KM_PO_01172020EX.doc	doc	48844b331c7b74aac980dd55bd8d8388d187e2d3041712303c59644ef3fa16b7	36.07%
2020-01-16	XAQ_PO_01172020EX.doc	doc	37b0389ffe84107582dcc9d62fc7091cc3a71915977dc69f605fb398902b3ce4	36.07%	Heodo
2020-01-16	SW_RTZZ2H2D8HFSRU.doc	doc	58284dd1bedbf2c82204eb15cdad07525a70b52ff1729e051ac101c066531ce3	37.70%
2020-01-16	NF1159640772BY.doc	doc	bdf804364dd192c13674bee97bdb5581aa946b7a6e0797cc0fd5d81f717f26ad	36.07%	Heodo
2020-01-16	L_462960057037806278733520.doc	doc	a9c48a4f2a96384b1fe947448cb44eaadeb7c0a7754cd17a6899c7f6ae31f2e7	32.79%	Heodo
2020-01-16	PAY_PO_01162020EX.doc	doc	6dc7f5025f0a9ba2abeb82a8db9a479f41a3a3ec8b558455b930d54029108638	30.65%	Heodo
2020-01-16	1252707608298889031883.doc	doc	d2ce1838da599f490397183272a746696999155f408cdd5da5d82c3ae1df24fa	29.51%	Heodo
2020-01-16	GLJI_HPN1G8KKIH4IL.doc	doc	8bf5586fdf5c09bd987b2246b8a60988842d2b3ca683a4fdd6f0a698d17909b0	26.67%	Heodo
2020-01-16	PAY_WO8076681822NL.doc	doc	0e0dcd97d94a05bf1cf56067a564fe6ba5666bc00fbb808c44bb4c17a5bd81a8	26.67%	Heodo
2020-01-16	DOC_HNE_010120_GXT_011620.doc	doc	e01f0d1e2f3493dd4ae4dce4cb3f9756c92ad2d7d28ffa495fd8abe649418e4c	24.59%	Heodo
2020-01-16	FILE_D3E7ZZG5IZKPCDH.doc	doc	2fab2f5e3f28d6a81ba72956df8ac00de3d7dbea09496ae791fd20a7954fe1ec	26.67%	Heodo
2020-01-16	PAY_PO_01162020EX.doc	doc	cb14f2d0b46d275f3d060cb7b30c4818b33aa25ce6fef05b7aab90043c79039d	24.59%	Heodo
2020-01-16	PAY_922173400844.doc	doc	0380f6335cd6139d31d45caa6a9fb8b005cacf5c7e59ffacace9958c98a7ce2f	21.31%	Heodo
2020-01-16	HCD0RVLVT16SD7.doc	doc	b56a6e25f16b75f974d90ac920bb38757ba86412909d0844c3195a7b0a04c757	43.55%
2020-01-16	REP_02495290.doc	doc	fc68dd9971f85e873151fa2dae765c3406a74e35a608879a7b46cc250986b63d	43.33%
2020-01-16	INV_XZD_010120_KCC_011620.doc	doc	b758015808994a07ab2679e890b5885dcd70e61dbc895b3dd9e7f1a76f94e7c4	42.37%	Heodo
2020-01-16	RP_795G5CVB3PU9.doc	doc	64d6c320d6a3e05f96eb9698bf82b3e289b9bde6b689f34fbcc5866ea66b7bb2	n/a	Heodo
2020-01-16	O15LZFW1CJK5R.doc	doc	29916c2fa0ca57812fb8b9b6dbfdb974ae74eaef21c58a6c98d6d118b8a1d132	n/a	Heodo
2020-01-15	PAY_PO_01162020EX.doc	doc	e763d67d538e1928f4e54ed83171e2b9495156d4c51598d1ef77162faecac2d8	40.98%	Heodo
2020-01-15	REP_PO_01162020EX.doc	doc	5f8fb3e89882fe52e7857c0ff6014577d02175fef1cc1b1aeab6fd3bf9c5d454	40.98%	Heodo