URLhaus Database

You are currently viewing the URLhaus database entry for http://swingcommerce.com/wp-content/uploads/closed_box/YHim0z_mvqyzrJPRQe_76jy_mxy1me3/pa84uf2f2oqj_sv590sx04s45wy/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	414060
URL:	http://swingcommerce.com/wp-content/uploads/closed_box/YHim0z_mvqyzrJPRQe_76jy_mxy1me3/pa84uf2f2oqj_sv590sx04s45wy/
URL Status:	Offline
Host:	swingcommerce.com
Date added:	2020-07-17 16:02:06 UTC
Last online:	2020-07-19 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-17 16:04:02 UTC to irt{at}nic[dot]or[dot]kr)
Takedown time:	2 days, 1 hours, 38 minutes (down since 2020-07-19 17:42:10 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-18	Mes 20200718 VR75156.docm	doc	8a20c5d41b0ea80165d9d900936696ea0d6e1aff5e22ec84913d2a8663f4c063	43.55%	Heodo
2020-07-18	mes-E6824.rtf	doc	7368359446096f3aa39784197cf18662554a6ead0d4ff0938fc49f2b713dab51	43.55%
2020-07-18	File-YZ7474.rtf	doc	7b109398cbf73b6ad4911a37a8599dce651c0580ddbf0fb4bd7d6ca4d429b245	n/a	Heodo
2020-07-18	rep_20200718_7389417.doc	doc	140826ff8504695349da93d44b8cc8bc99720a9c4155b14653f7924beaba8e52	44.26%
2020-07-18	Dat 20200718 4602.docm	doc	d83dda004c1f5cc3b6af587c3ceace1bb5f2e76e8cdb013a30c0078e100b2e07	43.55%	Heodo
2020-07-18	INF-9688361.rtf	doc	49b1db3ab05041bbb1b9a2cd6c9b4e33f1c3dc4771d4e5b35ca7e19135c5006f	45.00%	Heodo
2020-07-18	INF 2020_07_18 C0901.rtf	doc	54daaf4068cebea8b89ef3f816d0b551095429f8fdd6a5b579753c27b23be06b	44.26%	Heodo
2020-07-18	inf-VG4315.rtf	doc	5a9e81f7254aa92662706fba57e78e6743c5506cefc521c3a7a3f7338202ef03	n/a
2020-07-18	dat 20200718 1274.doc	doc	0c3d714fca3f5deadd848d030e8a87bb073c39ffef3f849eed2d405f34b84408	43.55%
2020-07-18	mes 2020_07_18.rtf	doc	9e4c16c45a0b1624877fa22082ede2a454283a84c0cc5daa66b8b16b721fd004	n/a	Heodo
2020-07-18	doc-8133.docm	doc	e4f83f5b3d38b5bbe3b2372980bdb5303c74b1938b66e40288e0ad6c2c79d9b7	41.94%
2020-07-18	rep 20200718 ZZT9426.docm	doc	3b1ddd73153ba5daf34cb2df5a5bf96b2868d8dbb014d9e9e09ff8c50d07ef99	41.94%	Heodo
2020-07-18	rep-20200718-H383.doc	doc	2f2bf71ff720e834455f232dad3c4c5a0b4e7a0160fe14230fd7d73e3b394883	27.42%	Heodo
2020-07-18	inf 673870.doc	doc	1fe6bff652bd2ae7803b24a5de11039367bea29f7f8cfd00bf212cbc841cd784	n/a	Heodo
2020-07-18	MES-DOO78261.doc	doc	5239c9a098468e61c38a839792ada20222fe9fc976df4b9605c5232033be081d	41.94%	Heodo
2020-07-18	File_20200718.docm	doc	e11da7c7c88a7a2a16b8f4c7581b1349658d2629b5876da8384e4d4b1e7ddb96	41.94%	Heodo
2020-07-18	dat_2020_07_18_66328.doc	doc	10c77e4b6a5839e58d182a67152db5b25a31e943cb0fa06ce266b27e8c4d06e3	n/a	Heodo
2020-07-18	Inf-20200718-768.doc	doc	44737c7b4475fb2a259af5c0b23c7f14945dda0d119491a61f2004f59cce8105	41.94%	Heodo
2020-07-18	inf-20200718-TQ2323.rtf	doc	970834bb4b0a1475a24293740d8149280249bf3b2b905605a54960a1ecf8945e	41.94%	Heodo
2020-07-18	doc-2020_07_18-J967.doc	doc	96b7758b00c5b27afcfd1a5b7dc362e67103d42475e2b6eb4e4f7327943e312f	n/a
2020-07-18	inf DA28534.doc	doc	c4fef70e62aafcefd6600e91edd401ccd941dae7472d89fd2cb164219eeb34f3	n/a	Heodo
2020-07-18	Mes 20200718.docm	doc	f821386a84c5ca5ce96218b63990b6ef7ba0016e43aae95ebd78c9bda997b6f0	39.34%	Heodo
2020-07-18	Mes-20200718.docm	doc	91c02fe37317be17fd879fd63a10cd9da611ae6098948f77ccdcdc94f83b5cca	38.71%
2020-07-17	ARC_2020_07_18.rtf	doc	d0a6228f0457c0dab131d8c3cbcc69b48575c993d2c1e3745087337415144d9c	37.29%	Heodo
2020-07-17	INF 03401.docm	doc	b89bd8bfdf7fd5c0068f3ce823eb1b563cbd691a3bc70b9080b36b611af5e27f	37.10%	Heodo
2020-07-17	REP 641338.docm	doc	a316095923a935fbe139e79f7237eaa7e1fd93ae1aa7550afa9d52ce36ec4977	37.10%
2020-07-17	List-20200718-164.doc	doc	d12ad51a2c2b91323324d970ffa092041ec804bd5a52d66c75ba5af96b22afac	n/a
2020-07-17	Rep 20200718 1344235.rtf	doc	3f054364f4de6d79966887c8d95c9c4bbe25fbb622c1163ff73ac7d345f73731	33.87%
2020-07-17	doc_ZI958.docm	doc	4f650fae13b2f497c92dd327ff98b5126875ea6741d5e9db7f7f74bb2e471f83	30.65%
2020-07-17	mes 2020_07_18 57039.rtf	doc	53bf679028cc33a63e89aca4e94e08af3e5193436dfade18feacb14756907ebc	31.67%	Heodo
2020-07-17	Doc_2020_07_18_YOG859.doc	doc	15823fbaaec62d56050309844e01b51c68e70ea470896e571eb673938c147a81	n/a	Heodo
2020-07-17	FILE-TL209188.docm	doc	3f69f8a5d85615b90542b5460bd5298315e40c5e29978ab420bb67620f2422c1	27.42%	Heodo
2020-07-17	Rep_2020_07_18_I296939.doc	doc	e0dbd16c77a20262e645efb54ad25b76ebfd52caa1e6eebe10cd7e52a81119de	27.42%	Heodo
2020-07-17	mes_20200718_HSR695.rtf	doc	4fd042bc7f87d15ab7e39173c26a90e9365eceab07ec26c62b16c6cfafbe2f4b	n/a	Heodo
2020-07-17	LIST-2020_07_18-JYS891.docm	doc	7314748358ee31f8fdfdc7972cb282d8675c0e843b07383c52e124ae3b937a7f	27.42%
2020-07-17	mes-2020_07_18-URC72795.docm	doc	328a1ddb0998b010e99d5314354fa47de97745a0e09b6682e043ffba500f19cf	n/a	Heodo
2020-07-17	File_20200718.rtf	doc	a64f2f02a7bb03fb55ca2a301f702c810582b38347ba2d3aff39c93e40df5d3f	27.42%	Heodo
2020-07-17	DAT-20200717.doc	doc	deb9182b6e138520576458d85048d5069a4e20f11acf4938b081ba4e8765365c	27.42%
2020-07-17	Doc-0252.doc	doc	770fd6643c934cc3aa0fddf589d643b7b59e18a005ff89fc9113bd8181c21a2f	27.42%	Heodo
2020-07-17	dat_20200717_HG02758.doc	doc	cda9436fa557c4829240ea266b287d29715c5d9c9e706886a7755ef20de25ec0	n/a	Heodo
2020-07-17	arc_CC4033.rtf	doc	9ce48179a4b378637be89a11806cc5163d83aad8d14834b2fd6c645aa4ab9517	n/a	Heodo
2020-07-17	Mes_20200717_3498.docm	doc	493accf3563320001bb8c5d727fb01bd790bdd20df7f179b12e771330274ddfc	28.33%	Heodo
2020-07-17	MES-20200717-CN9690.docm	doc	e90c88a5cbec9eb57a69658a28abc2a72c188a4d8b491e8df5b855fbb1ba950a	26.67%
2020-07-17	MES 2020_07_17 G5355.docm	doc	ef1f1a7527cab97e8d41b6308210121f218d42c9c052f000d0eee0e79924ab7f	n/a	Heodo
2020-07-17	Doc_714792.docm	doc	7472c7e89fb0f2d1c2c6b136bc5f151624ac96b92297bc63baad78b84d7d4e07	n/a	Heodo
2020-07-17	FILE-304.rtf	doc	b559130a7e571ca280d62de701538c0b16f51cb8b29c0cf49fb6ab023c34e98c	24.59%
2020-07-17	rep.doc	doc	3f6cd2d9f5824d163dffe683601aee25638d36df49ba202cf1d10eb655c59b26	n/a
2020-07-17	Inf-20200717-33786.docm	doc	cf39e42a621e1ccd2f06e052cc9ab58b0c071717a6f8cf9e29d11a2eab8c92e2	n/a	Heodo
2020-07-17	doc 20200717 594.doc	doc	d04e0e7daf8c94bfba623e60a2eff22f97e5b71026cac2acff4c2e77f835efc6	24.19%
2020-07-17	arc XI683.docm	doc	61f184050c876f25f8c486f3efbdb25230876854fa9dd371610d212f7c738850	24.19%	Heodo
2020-07-17	INF-ZDZ252819.rtf	doc	517476e80a66768db74eae2de0226011892f476ba4fd6fc971a1066a66d6149a	n/a
2020-07-17	MES 2020_07_17 251.doc	doc	23bf8940f56854e022bd7db861e8571a6ca4215a13981adbde437fc90955da12	n/a	Heodo
2020-07-17	doc_20200717_5087.rtf	doc	a2dceffdbc0988aff05e9e8a27c88f8309b6ca48a34df4094fcf22e51fc0a495	25.00%
2020-07-17	doc_20200717_5883312.rtf	doc	27a83b12572b1a8e36fefb5359f26b51c4da21f1ede18268f3cf499c6a960e05	n/a
2020-07-17	File-HVZ656380.docm	doc	696e3215c663ea07245aeb522fd756434314c3ebd391930eab91b6f3b6c72140	n/a
2020-07-17	Doc-2020_07_17-C3368.doc	doc	69ab8e3432c5deb5cc999422c37aef2259686b748f7c26f1224c1dd0e105f695	n/a	Heodo
2020-07-17	FILE.rtf	doc	9e62a7b227cf3d3c0006499d6ebaba0aa6363eb1cc7152c2999c14860f345702	n/a	Heodo
2020-07-17	ARC_20200717_KHE3766.rtf	doc	cc4d24079bd085cea1a4c576a36b4af61cd7e338638b1d267bab689785a9cb88	n/a	Heodo