URLhaus Database

You are currently viewing the URLhaus database entry for https://gayasianporn.men/wp-includes/docs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	414286
URL:	https://gayasianporn.men/wp-includes/docs/
URL Status:	Offline
Host:	gayasianporn.men
Date added:	2020-07-18 01:03:12 UTC
Last online:	2020-07-22 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-18 01:04:03 UTC to abuse{at}dedipath[dot]com)
Takedown time:	4 days, 21 hours, 11 minutes (down since 2020-07-22 22:15:49 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-18	R_16036332792349.doc	doc	56ca979add889f731b0f90db151af8bb24a5688a0a071e7a78d3811be6081dc5	44.07%	Heodo
2020-07-18	CYY_8954125649904325532864.doc	doc	3e4178a5bc1469679ef6a3b46d7f97409ca12e1288f2939d5fbe08dde04db602	44.26%
2020-07-18	WK4372600784OA.doc	doc	d9ceadf98a3189294345574d94f347d3908b03290b12b47d5b661203b9b1d695	42.37%
2020-07-18	FILE_19164077.doc	doc	87fa22c9ec422e1416256a2521fc8b0aa4b22775e32b2b245d308ac43e006226	43.55%	Heodo
2020-07-18	DOC_21025920070335507237.doc	doc	c9fab8bbf0f314bbc29c3932091a7f0977ac5180da759cd8ffe9a9fd633f2c3a	n/a	Heodo
2020-07-18	PO_07182020EX.doc	doc	17349a4713477389332878314d893e7719798a93f8f9a69e7784901234dab8af	45.00%
2020-07-18	DAG40SFQ3LD39O.doc	doc	209e82fa6ae3e04595cfe5be6748f7edf64322f7a941cc0dea71cdfa58d67b16	43.55%	Heodo
2020-07-18	REP_PO_07182020EX.doc	doc	93bf8e81fa814089a5dedf67b91f803f997fd2e5b09297ad53a4d609392867f8	n/a	Heodo
2020-07-18	0JB5UEC5ZMC0VHTH.doc	doc	d7351d476dfea357ef165b3a814032a1fe16a6f210cf0e088dca698673c90836	43.55%
2020-07-18	861279621718619836625.doc	doc	aa1a0ff9b42a8d686ce043eebdd511b76c27e8222269bdc8df22216bc188a533	44.26%
2020-07-18	DOC_411637610849952658.doc	doc	e8f1f437e1fa36a8bccefe4b451b6574d2c70a1c24cd56ea42cc6ab51cee6e60	n/a	Heodo
2020-07-18	7X4P45E9WSCLL.doc	doc	41b06487e7b6c55c9e976984578c8b04cf014f52f49c2a6cc5f3797ac269550c	43.55%	Heodo
2020-07-18	5074596979123.doc	doc	0c1bcdbdacd25aad1e0618a72d12c8ed3b0f0037dc5054db556a2a5ebe22eea9	43.55%
2020-07-18	M_JBN_070120_QJB_071820.doc	doc	55875b80f7f06204639c132b298e3af7ec60a7800d4a6c415a98feea351e598d	43.33%
2020-07-18	618716068611592142484655.doc	doc	f1b757ac5477a25c821784f0b5059c5ed36b2669cbfabd38a0b840b8f526dc03	42.62%
2020-07-18	TOJ_PO_07182020EX.doc	doc	b4eda7af47e2c0b94b97b4f79df478c65e55fdb9165964be8b21d611bc091ac6	n/a
2020-07-18	PE_TR3364649131TJ.doc	doc	fecc6b5b0136dcd5e19ce47cc1ff27fd3d9c9751a6f310c17ff2cc76fe73cd98	41.67%
2020-07-18	DOC_PO_07182020EX.doc	doc	95c965a55c26d996bd289741f368bf201710275cf4c335b64452c573c740ec2e	n/a	Heodo
2020-07-18	PO_07182020EX.doc	doc	3dc12218cbf996e560620f4da980be34859c07955857545d22b2a376d9e3b6ee	43.33%
2020-07-18	INV_5VJOAVLIIAS.doc	doc	6e5bb95d4f3f2e2f3ae531e788589c7d4c9fa7f65ef246016ad9b231b1df9d84	41.94%	Heodo
2020-07-18	BAL_PO_07182020EX.doc	doc	75f0d4945e98a3f8bc73e66436cc437061ea5f38510e7e554d6b26617460b74a	42.62%	Heodo
2020-07-18	PO_07182020EX.doc	doc	0321dcc5d416f60aa5a24e206e06a2f787dc3021fa9a4589508637668f25c892	n/a	Heodo
2020-07-18	ISF_PO_07182020EX.doc	doc	66341377204cc1f59817b6449fb99384c8d173153ada7a859a907cce12bbc54e	n/a	Heodo
2020-07-18	O_FJ5899669352HJ.doc	doc	235905e0f1e943ece9739738d7eafbe365d0b86d3e8c80453056e6cf5f94df17	40.00%	Heodo
2020-07-18	BAL_PO_07182020EX.doc	doc	e9cdb9eed210e1ef9fef04891b1739922b435e2ca30c9dd18cde8d79c4c25c4f	40.68%
2020-07-18	FILE_PO_07182020EX.doc	doc	306d6c3978c7ab7f9b4453ed2901b3c250556695dd0f2b9ae7d4e361bf33c9a2	39.34%	Heodo
2020-07-18	V_YS8125099769QB.doc	doc	5f52d07fc8821f958e288af90a3fd967540be0366d524719bb01f4add55c780e	38.71%