URLhaus Database

You are currently viewing the URLhaus database entry for https://www.hair2mpress.com/wp-content/p2-fpbk-6215/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	299897
URL:	https://www.hair2mpress.com/wp-content/p2-fpbk-6215/
URL Status:	Offline
Host:	www.hair2mpress.com
Date added:	2020-01-28 12:09:07 UTC
Last online:	2020-01-30 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-01-28 12:10:04 UTC to abuse{at}linode[dot]com)
Takedown time:	1 day, 21 hours, 19 minutes (down since 2020-01-30 09:29:59 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-29	INVOICE-V429_979517.doc	doc	5452b9448c3310adaa86f6020c32d6ae4727fce5049f613ad9242e2f35e94eff	22.58%	Heodo
2020-01-29	INVOICE-IEED1_562950.doc	doc	b82cc27d4efc099b3f0ddfa40b78099e3185deb087ab2d9528c5ef61c063950a	33.33%	Heodo
2020-01-29	INVOICE-BT6_81568862.doc	doc	bd1eac417a2f82f5ed9f7dc86783678343738758322a16a7d21d77cd587a4f55	30.91%	Heodo
2020-01-29	Invoice-003_740725.doc	doc	70b79f7a9104113770865d6b9495150c39a6d3f9a5f98750ea69871f38ac5566	29.51%	Heodo
2020-01-29	invoice-D590_8907540.doc	doc	d965b7c533614e4ad1f1a9090edd5e83a4f4aae50a67b1ab1158ceaa31cfe7c0	29.03%	Heodo
2020-01-29	Inv CZLC975_6117980.doc	doc	d799161c11a9fa5cebf813d7e231b0eccef0ef32baed2c1fabe5f0b250449c79	26.56%	Heodo
2020-01-29	Inv-KOCL0199_19846884.doc	doc	9ab92e41150dd1c132be3b79097a4b4fff2a151a9a5d77bd3e0aaeb41a5b862b	26.23%	Heodo
2020-01-29	invoice_FIL772_7560068.doc	doc	6eb3be35a52b1bbd297eec41d1d5871bb1f27a225f381a75a1040eea80a20ae4	26.56%	Heodo
2020-01-29	invoice-57_964017.doc	doc	b14d70827d5d668aeb31e94be512fea9fb38ead8ec12cdf7617616801c76b6e9	32.26%	Heodo
2020-01-29	invoice-RWOF9_542441960.doc	doc	b9b47debd4d9fb932401d580847e8c3f82b770c5163dbc7d405aefb5cc704a1b	31.75%
2020-01-29	Invoice IZW43_74831494.doc	doc	7cf8f24d7e8b1e2f63bfa7a18cd420a03fff44126e80aed8cb90fba3c4e986ac	52.46%	Heodo
2020-01-29	Invoice_F6761_94871408.doc	doc	3a7a8518b41dd6c05289a08974c95a0038be4e5d1b0588edfd0589fcf22b0c8f	49.18%	Heodo
2020-01-29	INVOICE-YNNC582_28619845.doc	doc	b34f4ec4ae8d66b030f547efe3acc2a71c9ab564f78aac68719ec91dab613bb3	47.54%	Heodo
2020-01-29	Invoice-VX30_785902645.doc	doc	bdcef0f16c70086414ff95b69fdbbe7eb0c9814308d3d60143b6c04dfc077257	45.31%	Heodo
2020-01-29	INVOICE-H1937_684436437.doc	doc	f6879431b901df789082452c1c4ffa29e857d247886e421df6dda5fb3d81ca5e	46.77%	Heodo
2020-01-29	invoice-DUL060_44075615.doc	doc	ea3a0a223474592635d1fb7a0731dd28a96381ad2562e3e064f70e2d4830c39d	49.18%	Heodo
2020-01-29	Invoice-VAQF3004_2279038.doc	doc	255b6d2d7740a61962ad81bf302187f984dcefe57edd825c67985e7c4425e205	51.61%	Heodo
2020-01-29	Invoice-NR8631_154107275.doc	doc	c25db0a6d33ba3de2ea0ea992b98117d92ef8cc0a1dc6d9ff79788db6ce7e06e	47.54%	Heodo
2020-01-29	invoice R5_748109.doc	doc	0d1de45954adee600bf2a41e5b1de25ba4ead4b3938d1c987f6bdf8e48fb9a42	43.55%	Heodo
2020-01-28	INVOICE WE80_41315113.doc	doc	2670e2793f3201f878062eec012e75339c95dc6a1227841ef1bf5b4d75f80525	43.55%	Heodo
2020-01-28	Inv-Z6_557115966.doc	doc	cbb70b343a501720d8750b792ce9ff7bc424725205f02f2f7a68ff00f8064229	43.55%	Heodo
2020-01-28	Inv-WP945_277515623.doc	doc	9dbf7690bf328942e99f61b0eae8db502e74c272b7499da4342e6ee7d915bda2	40.32%	Heodo
2020-01-28	INVOICE AQS8357_1795334.doc	doc	85e978955f2d5b46e50d3a259f837643be8e5b3e0c643465881342f1cc7f3d31	35.48%	Heodo
2020-01-28	Invoice-QJE364_1009924.doc	doc	c7cb9ee0e45ecd798bc137a11e3cb9dfd67a8bae6a113d98ce1c818c6abffe4b	n/a	Heodo
2020-01-28	invoice QVE0_761680.doc	doc	d80cc40dc2af9e4f0c87702489aba0b6bf27f427d7e9de82423689705678f2f5	22.58%	Heodo
2020-01-28	Inv-J54_842596.doc	doc	ff71f06910cdebceb665fef3861262fbabd9f92ebd7285926a1b3d4ed3a7c166	26.67%	Heodo
2020-01-28	Inv_YC4126_523625843.doc	doc	c72d3a18baf0023ac80353b06452c4fd43e003247f97c3aa98cee47b2f4bc27d	25.81%	Heodo
2020-01-28	Invoice BG7_045545394.doc	doc	9db28f01c7a26ba6a757542ddb44145a167395b639df0eac4d9f48a926d8f810	n/a	Heodo
2020-01-28	invoice-JIE69_587588.doc	doc	58cd4f0ffbd2cfb01f153efd0e8560a2475bc3f98abaf8ed787f8fe17166524b	n/a
2020-01-28	invoice-G06_9868522.doc	doc	a6b9f25b3f632a071e548d1e092d8557eedd074094e5e1a2dd684a724fb07fe6	26.98%	Heodo