URLhaus Database

You are currently viewing the URLhaus database entry for http://mega-shop.paditech.com/l5xifq/gcgpo/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	298693
URL:	http://mega-shop.paditech.com/l5xifq/gcgpo/
URL Status:	Offline
Host:	mega-shop.paditech.com
Date added:	2020-01-27 09:52:05 UTC
Last online:	2020-01-29 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-01-27 09:54:02 UTC to abuse{at}digitalocean[dot]com)
Takedown time:	2 days, 2 hours, 5 minutes (down since 2020-01-29 11:59:27 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-29	INVOICE_627_03448675.doc	doc	7cf8f24d7e8b1e2f63bfa7a18cd420a03fff44126e80aed8cb90fba3c4e986ac	52.46%	Heodo
2020-01-29	INVOICE 990_611038167.doc	doc	0d59daa51eb7228797a0ca35d46c6419936ef4df01bdfe603db22aa45a7ad0ee	47.62%	Heodo
2020-01-29	Inv-OAA9034_40486129.doc	doc	ce585ca3bbc24cf3e93360b57e2f8f9574cd89823963cd35ae08bb6a252d682f	46.88%	Heodo
2020-01-29	invoice PNAF447_506009786.doc	doc	0a84308348fee6bbfe64a9ef23bb9c32cb319bcdf5cf78ddfda4a83dadea4b8e	45.31%	Heodo
2020-01-29	Inv_VW8_56691551.doc	doc	32753598f94412fe3dc382dc12dcf2edf7881d9f07814c82aeec36481b9362b5	46.03%	Heodo
2020-01-29	Inv-YPUH8_211732674.doc	doc	ea3a0a223474592635d1fb7a0731dd28a96381ad2562e3e064f70e2d4830c39d	49.18%	Heodo
2020-01-29	INVOICE_463_14381469.doc	doc	255b6d2d7740a61962ad81bf302187f984dcefe57edd825c67985e7c4425e205	51.61%	Heodo
2020-01-29	Inv-Y3_02613927.doc	doc	1fe8cea2fabc31ad37931e33bdba652c012489533daa90a699e3aee3b8d75b91	49.18%	Heodo
2020-01-29	INVOICE 498_220493.doc	doc	0d1de45954adee600bf2a41e5b1de25ba4ead4b3938d1c987f6bdf8e48fb9a42	43.55%	Heodo
2020-01-28	Inv BEZM578_6116921.doc	doc	f9a330484e52de8ab57a920eb93d6308dd150ba0001e7ba7cfb2a50edfec5ca0	43.55%
2020-01-28	invoice DD0784_26926424.doc	doc	9e9d8e60ea0a7b028513b69e3f41360a4d6a4be4ec05af3fae645bcbca37f827	42.19%	Heodo
2020-01-28	Inv M489_565762.doc	doc	b7109568a2beba7e63236e9fae5d014d43ea3164de3e4149790c89356b10766a	39.68%
2020-01-28	Inv_VMU871_446373.doc	doc	85e978955f2d5b46e50d3a259f837643be8e5b3e0c643465881342f1cc7f3d31	35.48%	Heodo
2020-01-28	Invoice KCMC9_93988846.doc	doc	e8c780bbb1f9fd071b00776b138b3cf27c3815c7203593068e78774d4dbdb36a	n/a	Heodo
2020-01-28	INVOICE-FYD9_1639507.doc	doc	b351412551b1d480fe50603de72c1d23a0afa22991461d2b812edbf5ad7d6021	25.81%	Heodo
2020-01-28	INVOICE VEHA175_716162244.doc	doc	ff71f06910cdebceb665fef3861262fbabd9f92ebd7285926a1b3d4ed3a7c166	26.67%	Heodo
2020-01-28	invoice LFB9_863662.doc	doc	a7cd0e0d4371256091f7a81ff6100974822424c0c06e2dd5e07956b1ab62c19e	24.19%	Heodo
2020-01-28	INVOICE MJVH06_200735151.doc	doc	9db28f01c7a26ba6a757542ddb44145a167395b639df0eac4d9f48a926d8f810	22.95%	Heodo
2020-01-28	Inv_M370_958061521.doc	doc	a6b9f25b3f632a071e548d1e092d8557eedd074094e5e1a2dd684a724fb07fe6	26.98%	Heodo
2020-01-28	Inv_353_893093770.doc	doc	32a27468a4355d462e5de6e29290189f023ad6b51836d3134dcb19a74f615f51	25.81%	Heodo
2020-01-28	Invoice-JML4_116579.doc	doc	fcdf9154d769d5e1f3935355b39b57010d978fd2dc9ad24a1df12131f7d34155	26.56%	Heodo
2020-01-28	INVOICE NH305_316867.doc	doc	5de69dc108e73dca8473f765ae9d54df950da922d58d6950a7ee5a8d0470be85	23.81%	Heodo
2020-01-28	Invoice PDYC101_933072444.doc	doc	69e19219795fcc89a44dc863d7b1c970f92a785afb3c7bfe3923562119c32ade	24.59%	Heodo
2020-01-28	INVOICE-SFFF104_1861488.doc	doc	37f7008209b0cf19267afa8ccdab629b76f4bfa992d7f77ce2c098e5e473c8db	40.32%	Heodo
2020-01-28	Inv-HFSH9_858545712.doc	doc	fbe992a68ce37d101a4005da5062aee9e868e5885fe5b4c69e69c0981c8eeaff	40.98%	Heodo
2020-01-28	Invoice_X3097_77218259.doc	doc	6f7ef2942319a8f55b338d43ac0717e2999baaf867ba160e6cdc15c85b47a4e1	34.43%	Heodo
2020-01-28	INVOICE EZSL9_04646502.doc	doc	4732690cf746cecd8bd49d095d5514cf185703860490402cc2a5cfbb9e3fadf1	32.26%
2020-01-27	Inv_NF57_23368073.doc	doc	11c1f2089f30fba10c0d8e7a46d5b5a163acc645ae1ac899f9c1da16fd34d5cd	31.67%	Heodo
2020-01-27	Inv_73_39031581.doc	doc	cf6fc0c9b296a21a605c029d19eab5d466b785cdc4efb16d18963b598f82ccde	n/a	Heodo
2020-01-27	invoice_1_195968.doc	doc	b8234c3a29dfe136921812c6011604fac4f3860df104d73b44365fd690d34e17	n/a
2020-01-27	Invoice_K10_1094534.doc	doc	844e6dce32ab6c95097c5fd947761f9c4c47cd4a18f6f88e94b906eec219b073	21.31%	Heodo
2020-01-27	invoice-4_436762.doc	doc	b08e839fcaa91713751d0ce0fa1ed4f8bdd81ab3803347177886cfc3095440a1	25.40%
2020-01-27	INVOICE_LNVR0836_923353699.doc	doc	ff41ca3c8f2ec42a86f291c2cd1c4b023767b2b41782d20933cc96071bfb168a	25.81%	Heodo
2020-01-27	Invoice-17_832904.doc	doc	dfaa827439562eeff34e4ee725e9e1d19ecab21556134361ab102dbb7f41afce	22.58%	Heodo
2020-01-27	INVOICE-683_355399556.doc	doc	2f53ea6777ed917ddceaa0c9f0150b3650efe7639066b4f0ecb1776c09a356ab	n/a
2020-01-27	INVOICE_S80_723343.doc	doc	6cddcfd58c789c8db9ae41d6a91bf3070fa44d597a43db9d3726e6b7bf56a93c	26.98%	Heodo
2020-01-27	Inv-PBB7876_36122809.doc	doc	cd985cdc0263c68992ab45b3529e073a837632f1baeb93f3266229c38428ee3f	23.81%	Heodo
2020-01-27	Inv_LOGJ6_265339154.doc	doc	d4454c1408702289ee30645ef718fb792dc3c7c3a6473e97b2b608f40b8c6a63	n/a	Heodo
2020-01-27	invoice_2_583584935.doc	doc	e6b9b81ce547eec06c402e08fd665a7426c66e956a6f2cc5ed510072bdbb4433	n/a	Heodo
2020-01-27	Invoice_DED1_6562915.doc	doc	e5057bed23134edaa4a3dfcea7be4224621df200d63faddb53e0fb9a080cbaef	25.40%	Heodo
2020-01-27	Inv-B1_7503778.doc	doc	83426e4068af9c457cfbb6b5bca7101f39126d52c3c5ea49f9964115e224592f	n/a