URLhaus Database

You are currently viewing the URLhaus database entry for http://gabeclogston.com/gkw/EfDwgF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	308965
URL:	http://gabeclogston.com/gkw/EfDwgF/
URL Status:	Offline
Host:	gabeclogston.com
Date added:	2020-02-05 11:40:08 UTC
Last online:	2020-02-10 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-02-05 11:42:03 UTC to postmaster{at}myhostcenter[dot]com)
Takedown time:	5 days, 0 hours, 14 minutes (down since 2020-02-10 11:56:39 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-02-07	Invoice-RFV500_86534715.doc	doc	06d87508fcdcf413a4b6e102327dc07384be53016d108b445368d47061e25b2b	n/a	Heodo
2020-02-07	Inv 585_965517.doc	doc	3078e9310437cd53e82bb9cc5679dcb71bb06e07a0113039114b9fb017590cf7	n/a	Heodo
2020-02-07	Inv U273_050962.doc	doc	00b524435a1e4b70e1783600f6ba01545628bacd15c00154b232bd464f1de19a	n/a
2020-02-07	Invoice_SONT9603_533372329.doc	doc	3a4cf3a7eff72f050b4414552de262c441eadb589af485908e301bf678534c9e	n/a
2020-02-07	INVOICE-VI1_12281283.doc	doc	da55d54edd3021ebaf41530e1ec8dd18fb5541bb09c3cc9d10c88e9da0351409	32.79%
2020-02-07	INVOICE 543_65764123.doc	doc	77815318e9f6226ad493ae32d374b61c54aee323314b8bca1d0caa7ed864e56b	30.65%	Heodo
2020-02-06	Inv-NJZD989_453866.doc	doc	092cafc5eaeb0e2d80004cf333e8e2d5898f25562f86323a3b31cbc1ec7b5d7a	29.51%	Heodo
2020-02-06	Inv-6_66676821.doc	doc	0d52884323396c99de2994a867ebe7ccb325a7a33a6ae3317f4290517232a3ed	29.03%	Heodo
2020-02-06	Invoice-496_0064949.doc	doc	fbccd622c1dd3d84621bbdc63975f6a57fd06bb79c310e15b469beed436acb64	n/a	Heodo
2020-02-06	Inv-58_6966142.doc	doc	af68f95640411edf06350ddc5f697fa63501dad1a427026652ba7a411e87c258	n/a	Heodo
2020-02-06	Invoice_PFS0_474412.doc	doc	08a17a2ca774e5d63d00d6347ab8569354e6fc33b9e65cd55db64f088125e77f	n/a	Heodo
2020-02-06	invoice-R480_3577473.doc	doc	72cf0e1c89a577b94531a7723c3d176dfd37839c0b19bc7878c49945f7dd7339	n/a	Heodo
2020-02-06	invoice-E76_1758998.doc	doc	b61644b4d4ea1d8856ff589c7017a16c5cb48d63a54cb1aa69aa19bfafc4dfb4	n/a	Heodo
2020-02-06	Invoice_PTI576_5141958.doc	doc	515c3515f3728002f957e469f6d30be479f3db347968856134e1f0287ad0438e	24.19%	Heodo
2020-02-06	Invoice CD89_770776822.doc	doc	be66dbd0df63fc5a8674655349f37bec9c2b0f5299fe8227dfae94c86d2ebcff	n/a	Heodo
2020-02-06	Invoice FEER0778_2007689.doc	doc	d8a98e712d6775091bbcdbe1e2b1ed30135d7fcb59a9ec4ce71bd80823438c5a	23.33%
2020-02-06	INVOICE_8581_26308330.doc	doc	a8c18ebbebf32d827afe272c7dea149e8ae38cfe2ff94043e2af6e82cad5a396	21.31%	Heodo
2020-02-06	invoice_01_1981232.doc	doc	67617db60beb8c4cce54db289e3d3a8406049516de95ccc8940b0d1735caa144	20.97%	Heodo
2020-02-06	INVOICE-I6515_13778737.doc	doc	12368c93f93b5feac92d01c7f620337dcbaab18dc50b27dfe2a50ebae513d355	n/a
2020-02-06	invoice Z55_28864074.doc	doc	5f1d9dff136888c71d8b157e91821d73a94faa92af1bdc04912d223b7b1de32d	31.67%	Heodo
2020-02-06	invoice_YPR86_10936972.doc	doc	4a620a4453c5b138b1c90c5bb3db067135faef7ad7106666379edaa77f38ae06	n/a	Heodo
2020-02-06	invoice-155_82371510.doc	doc	9eca08bea00fec73f8bdc769abf28f857d39de7d922c4d0dfd4017dc5981d2b0	33.33%	Heodo
2020-02-06	Invoice-AO8_233803062.doc	doc	f64c7b18189347af96b402b6f3cb3294d4dbbc7cad63748805727ac4d2a83997	32.79%	Heodo
2020-02-06	invoice-8002_708942.doc	doc	7eac21ec4810b17ae186a7cb7619660833006d22ffdd25ffa44769a9474a13b9	31.15%	Heodo
2020-02-05	Invoice_RFW8222_86705479.doc	doc	fbc7e227ec8bd45144bdd33ac13c8a9b563282ce2c47bed6f613e71ed22dea4b	26.23%	Heodo
2020-02-05	Invoice-KHMJ2_10794799.doc	doc	4c81ae4043b5ebb941a22c4511a4757a6a0ca5a842660b5c1ea31c57955800c5	26.23%	Heodo
2020-02-05	invoice-64_973335453.doc	doc	a16654e08b49b688aab6f059ee1349cdaa217e2a9035b9971ad725e145df3b57	n/a	Heodo
2020-02-05	invoice-XPC2_312651.doc	doc	0730eae02471503c7ab9c5f470a916f7f1578c78676c2c401ecd562214e25d37	n/a	Heodo
2020-02-05	invoice_XHS9909_474751.doc	doc	bac64a981e3fddb119868ac4b6c14005db9b3c64f608849911d6c08947267dca	n/a	Heodo
2020-02-05	Invoice RF6_91987419.doc	doc	86dcab95611cd3f691824d94d3910ca546323de58d60f9b04d0b7959d2759a75	n/a	Heodo
2020-02-05	invoice-CCKJ182_081644140.doc	doc	2592177b8fc2dad7890e1d568a33bde6b00c015fc0c96dbccf47299f5f0953b2	27.87%	Heodo
2020-02-05	Inv 860_23329767.doc	doc	6c2096cac174db584cb7ca993e635a23398f21b6513b2e690c2281f9d404f29d	24.59%