URLhaus Database

You are currently viewing the URLhaus database entry for http://www.gjhnb666.com/wp-includes/multifuncional-zona/3962478-YWhxvcqW-3962478-YWhxvcqW/2893292494547-aYG3f/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	308967
URL:	http://www.gjhnb666.com/wp-includes/multifuncional-zona/3962478-YWhxvcqW-3962478-YWhxvcqW/2893292494547-aYG3f/
URL Status:	Offline
Host:	www.gjhnb666.com
Date added:	2020-02-05 11:45:10 UTC
Last online:	2020-03-11 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-02-05 11:46:04 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:	1 month, 4 days, 21 hours, 25 minutes (down since 2020-03-11 09:11:14 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-02-07	OFERTA-2019307874.rtf	doc	d9834046d1f79189ebb14322348405d8b7cfcb81941f153cf633e1ce4e20349d	24.19%
2020-02-07	CONTRAT_02072020.docm	doc	9f2b441a576b8b1d1a2af975d5d53633a4000ab8ca1f6df2e88312e175a47595	n/a	Heodo
2020-02-07	OFERTA-02_07_2020 7B06556.doc	doc	b78604080c721c59f488c01bc4ca9e86ac375242397666a738689216dccf54c7	n/a
2020-02-07	Oferta ID11515617528 5377864.rtf	doc	8f3a0e19e00397efb39708dacfd129d2722146fa6d169e6a7c601c0cc02a1359	24.19%	Heodo
2020-02-07	CONTRAT-W1695985052.rtf	doc	5480139ad1a7d156879a92736b3feda1f6e9bb49c6b7bd8b92471e76e92fa60f	43.55%	Heodo
2020-02-07	OFERTA 02_07_2020-BC313661.docm	doc	9951501742064080cf457664bc03bf61c293b063e8afcb49dd126c13217ccb82	44.26%
2020-02-07	OFERTA L82738735835-89136344.rtf	doc	60a2db35f6a200f89387811492bf70f40551c72578c80be36bc21dc7abbcce67	43.55%
2020-02-07	OFERTA m4n378o6992.doc	doc	ae0dba6208040d7656556bb876279d0ee3708e7cba62fdf3777e81466021bcee	n/a
2020-02-07	CONTRATO_02072020.docm	doc	951c41a81d18a2577f97934a32f1a28463dc7cdf7b4118ed040c35ae62864843	35.48%
2020-02-07	CONTRATO om271n14461p.rtf	doc	be0c63afc0d72cd11f7b036943c4c4db9acca7652db8ae5dfbcac19a3b074710	32.26%	Heodo
2020-02-07	Contrato-86073718273.doc	doc	0b77f417fffce47f34544803d4fd268dff1609253941fc9281331f4366e54de6	30.00%
2020-02-06	OFERTA_5m26039p83.rtf	doc	2ab5454468bf092401bb674e12f9577b0102b97450e07cc6ffdbaec61eb40953	29.03%	Heodo
2020-02-06	Oferta 02_07_2020-CG3255.docm	doc	76ed65f4166ab70a504fa0c58b5fa4d5afbbdf92c3b7770185b137ac87aa37ed	29.03%
2020-02-06	contrato_719713.rtf	doc	0f9546ef0fe98af36e43a06ae58080335e7051c19f85fa72157d75d7e85f12c1	26.23%	Heodo
2020-02-06	contrato_02062020.doc	doc	903eadc1bcff1ede5e8a4887d539b907837b35b6ae79a1b7cd200ec455cee00f	27.42%	Heodo
2020-02-06	OFRT-692439393318_17068752.doc	doc	e62205f9ad8ce110e6f628a4622e7f12d9db3b4c2cc100e1d464b06f2a2b0afb	n/a	Heodo
2020-02-06	Oferta IP79585_33726664.rtf	doc	cddfbd7b249d0e0ebb3f68697690544c6abb69af1cb46f3b74c24cae2d3e528b	29.03%	Heodo
2020-02-06	oferta_5E2213248635-387851778.doc	doc	3e2e9332429ca46e97d6d5b2d39864b216599b31498ebda448a3fc2adfc78a0d	29.03%	Heodo
2020-02-06	OFERTA A726726 94948.rtf	doc	33b5e2a31a3000b7a3251be5436e451986568c1a93ace24fab40817786f5a2e5	27.12%
2020-02-06	CONTRATO-7174.doc	doc	464e3fbff2832e347b5bfa5fd0151fbfc4f3107cf97f74b7addcbc2984b60143	26.67%
2020-02-06	Oferta-1064496073401.docm	doc	80f98a0cc63cfcab0ab3cd556448bab9023036aefdebd2eeaf9239f3df354bc4	23.33%	Heodo
2020-02-06	OFERTA 411202131337.doc	doc	6b1d90ff1212f95e6fb72180e90a64d316ee24b22f2803c46dedaca64ca09914	22.95%
2020-02-06	oferta 681288419072.docm	doc	5c65f21a3869e1e15433c2263d8dff3827f622520c972b12f4686250b8e68018	23.33%	Heodo
2020-02-06	OFERTA-LW6272.docm	doc	54d44a585a5b93e5478ad5ec770d9c665bee492e4f228946b91312637444ded4	22.58%
2020-02-06	OFRT-2551662.doc	doc	27a76dcb201fe799d3a072e18e4fd972ce044a7c3cd53dea83b8215ce7fe22db	21.67%
2020-02-06	CONTRATO-02_06_2020 3A489418054.docm	doc	81c986bdada06772697026b8a6f1840c87cfdb1ec5d35dacd095dc65ddb09e54	21.31%
2020-02-06	Contrato_K591039 0693132277.rtf	doc	fa37e0cba4786db4ba847c2e4f9b4ee78aedbf0eea4491228705fc00980af4e8	32.79%
2020-02-06	Oferta_TX3483356.doc	doc	346d01cf657414934f8c87af6f0ae07d23875f613db84e483f2174b6353ab405	33.33%
2020-02-06	contrato-82073847.rtf	doc	84e6bb18fc4d5994987feb9edc02eaaec7cc0988b27845fb8735d3c45591e5cd	31.67%
2020-02-06	CONTRAT-0A89416-306604318988.docm	doc	9e7490ea59c003826b03252f70bd3fc3a4c910d44aa5c1cf377a0cb24491118e	33.33%
2020-02-06	OFRT_HRJ938525.doc	doc	9005832cf404bc1202dcad8865b5250a9826f2fa18a6e23ee0a7e705c1d63ab0	33.33%
2020-02-06	OFERTA 02_06_2020_9531389.rtf	doc	74491fc6dd7ba85729f150a091baf5019a4a9cfcfa8e7bb6d450c9edf7762fb3	32.79%
2020-02-06	Contrato-60986115.doc	doc	77016ff9da8e219908f060ccb135597a6d365ce13a53cb4f40e13ec91bbc37b3	n/a
2020-02-05	Contrato_02_06_2020-GD3070.doc	doc	061b77c1354bff1d5cafa4e10d903ee5feb16bb91c295298444e056ffefd1370	26.23%	Heodo
2020-02-05	contrato 02_06_2020_A4B311088.docm	doc	85d825b74358c12b84824b2d46cf048e3dfe836a8c320d88d301331a46e62ec2	27.12%	Heodo
2020-02-05	contrato-Y288874430.rtf	doc	23f4a774007e2fc64a2824e5973bb695a64667d8d832fbc29806976dad67d7f7	26.67%	Heodo
2020-02-05	OFERTA_P0050814_63521604.doc	doc	47ca3de0e80a4e9571311ab0b2470ecc29d18c990b063b57aef1818e5a3c260a	26.23%
2020-02-05	Contrato_2040.rtf	doc	b03e332d75fae1c213d41742abe758225f46a5ae68755f6d57dd3cb44326312f	26.23%
2020-02-05	Oferta-GZJ13866415725.rtf	doc	da0b1e331a89bd28e4338a886d224c01e9194a764a6ded30bac8b16670a589b3	26.67%	Heodo
2020-02-05	oferta-185755929.docm	doc	20b603562ad65e466c27733e3ba8368c3ed83caeec165555f4a935ed0cc6d4b1	26.67%	Heodo
2020-02-05	Contrato_02052020.docm	doc	593ef299e4bcf8e836dd1522653ec33230104646f6e8c376e9c4a9957ca5ca3b	24.59%
2020-02-05	CONTRAT 0061q3qn1o.docm	doc	ab556aef3f7baf74127e682541cd5bb674af38a62c4c1f89ff43f09388894af2	25.00%	Heodo
2020-02-05	contrato 71U999089615.docm	doc	d333ae7c8f1905346c6e502ca34118387ed567e78dc3b8208e7b2a61f25b1b14	24.59%	Heodo
2020-02-05	Oferta 02052020.docm	doc	09ecfb1b958f0043d01e4b575a6e4b94d4bb2d1a72adc25f49792aeefeb21766	24.59%	Heodo