URLhaus Database

You are currently viewing the URLhaus database entry for http://fithealthyliving.net/wp-content/uploads/files/US/INVOICE-STATUS/Past-Due-invoice/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	34582
URL:	http://fithealthyliving.net/wp-content/uploads/files/US/INVOICE-STATUS/Past-Due-invoice/
URL Status:	Offline
Host:	fithealthyliving.net
Date added:	2018-07-19 18:34:09 UTC
Last online:	2018-09-08 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	JayTHL
Abuse complaint sent (?):	Yes (2018-07-19 18:36:13 UTC to abuse{at}godaddy[dot]com)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-07-21	PY26240_2018_07_21.doc	doc	de662d5bebf05b3d325db46989ca160d6bd5c9f232bd3490c5c9b9e5b7cb7ab4	29.82%	Heodo
2018-07-21	BH13533951_2018_07_21.doc	doc	02e8fa08eed92f4546cda6239ff0d52753864dfefd97795abb8ee8e3cd09ead3	31.58%	Heodo
2018-07-21	AXS5396190_2018_07_21.doc	doc	05953e5d43777dbe3a973b4b310b5d57e909b09ca12470ef8b86bc2345a1cc62	31.03%	Heodo
2018-07-21	XQ272455_2018_07_21.doc	doc	bf23076a132ec49497f50575c07dddcdcffc88b8a58aa94baa065ec9cf5f83fd	n/a	Heodo
2018-07-21	DL2540039700_2018_07_21.doc	doc	d91c31eb9a5705c5f02de259bf377d12608bc9f889e3fa3a59ae291f7f11a515	28.81%	Heodo
2018-07-21	ZWA692156125766_2018_07_21.doc	doc	6080a6c68c8ce3f9aec42f36cae49b4bb86d6cdfd871da118ac81bb176313539	26.23%	Heodo
2018-07-21	AY47283_2018_07_21.doc	doc	ff96f38726a5d370bc8c1782c9768c892c6c5d2388c03aef4a5211c47a3b8530	30.00%	Heodo
2018-07-21	NY6733092_2018_07_21.doc	doc	32799477ff89cd4e7c61b13b9071ab8f5b5235fd852a89034baa8a63d84f170a	26.67%	Heodo
2018-07-20	RWN40941_2018_07_20.doc	doc	78b28c11eff63b22c58f5fede556b626ad6124bf1d6f26e7e0c8ef8920a62cac	n/a	Heodo
2018-07-20	GR706046204807_2018_07_20.doc	doc	3b989a9a60b40ee5295f0d66bf9400fb75634c9cdc72325db17dc986321403aa	27.12%	Heodo
2018-07-20	LG059028958_2018_07_20.doc	doc	ee74e5a1a06c6fa34ba5d7bf16dc5193f78ad6d8b4e143fe97ec4e9edb90ec68	25.00%	Heodo
2018-07-20	SOY78107_2018_07_20.doc	doc	f2fcda5fae0579434edabdf820a8b4cfd20cb42bd5ed85eed93aaf40b1779e1b	25.00%	Heodo
2018-07-20	KOU8759477_2018_07_20.doc	doc	08485465abe8f1fc59c14275b5a3161846601c24d5caae8a6a7d57de0c7e5a75	n/a	Heodo
2018-07-20	BCH46989373508_2018_07_20.doc	doc	122bd15959bc1d92bdf3e3d2cc7d4c7acfd6b12da411e597c713228f66197f2e	n/a	Heodo
2018-07-19	DCT814721458_2018_07_20.doc	doc	c587c71a62ab98e1c84e21be59a10e6d85b789a1794cef3528e591754eb48bf3	n/a	Heodo
2018-07-19	YZ16172340147_2018_07_20.doc	doc	e588d60741370662d5dc50eccb9272f18ae2b92260d23f87f2d5fdc2ff30d0e0	21.67%	Heodo
2018-07-19	JNS2796859363_2018_07_20.doc	doc	6aee9285dd4ddc1a2bdf2eeb7e1d0310ac59af12268726b3ffaf59c8c6e51f83	23.73%	Heodo
2018-07-19	RR254598405_2018_07_19.doc	doc	ffbc71083ac2f2e794fe9483b65264544a0a8d237aa0a2a85c98299eebc1f76f	23.33%	Heodo
2018-07-19	OY50700109_2018_07_19.doc	doc	7d73990b5232be916500aa33b6d04b337f1f28a3fb145e0ec3739a48d159e13e	23.33%	Heodo