URLhaus Database

You are currently viewing the URLhaus database entry for http://healthandsafetyevolution.com.au/2vqjz/attachments/b083p507483844725c9mgx4jd8ejmjp3uslo/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415317
URL:	http://healthandsafetyevolution.com.au/2vqjz/attachments/b083p507483844725c9mgx4jd8ejmjp3uslo/
URL Status:	Offline
Host:	healthandsafetyevolution.com.au
Date added:	2020-07-20 15:57:35 UTC
Last online:	2020-07-21 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-20 15:58:02 UTC to abuse{at}microsoft[dot]com)
Takedown time:	1 day, 5 hours, 38 minutes (down since 2020-07-21 21:36:19 UTC)
Tags:	doc emotet epoch2 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-21	SBB_PO_07222020EX.doc	doc	7e19bd9fb89d319412d1ebf8ea34ac130a54b3b07921976713b1585dd2d25071	25.81%	Heodo
2020-07-21	DOC_XLK209LIU.doc	doc	98838ac3371620d27bb1934833850cb50098197f8f45a137d1ba94ebb92104af	26.23%
2020-07-21	HDUI2JECBFN14G.doc	doc	dbda4797cc002eeb66a87ca2dc004b353d72aff451eb3ba1010bd900cac133dd	33.90%
2020-07-21	BAL_PO_07212020EX.doc	doc	25d8674a9a9f8dc39e05c8625561abfa731d499fa4fcf8ef72bb9dadb1d4c156	32.79%	Heodo
2020-07-21	OH_EF8893964276QU.doc	doc	adc75d7a700b766503c50f538a24148656ae2c500683944ad15c8a2c8e42b567	32.26%	Heodo
2020-07-21	HMD_1VT76JXFY.doc	doc	1eb40695aac83a3f528f16af863be6327354d555eadf1695c53904c523ac9a86	31.15%	Heodo
2020-07-21	REP_9717824583360791255094242.doc	doc	4b9e26f2c63d249bd9be365f44513691d3aa8461f77b10638c5f27fcd5144568	31.67%	Heodo
2020-07-21	7V1OIGM1R8PXID.doc	doc	a79260a2130cd207d41c21e4675a28c84d838212eb973d2434c642819a2e30bf	30.65%	Heodo
2020-07-21	KCUJ_30492576.doc	doc	ffc575665829ae7905ee6e5f2194883080c4ec8d2fa69ac1770319767a1b5456	31.67%
2020-07-21	NK7946722490TN.doc	doc	c3db961b04941123b6924d69f2c5b149df9b54835cffe9dc0f693fd0dfca31bc	31.67%
2020-07-21	62392486.doc	doc	74db9fac3d9a684b81ce1975d06d184a85bc67d24466aed35ff6ee475e21d16d	31.67%	Heodo
2020-07-21	BAL_35786286243727290975.doc	doc	a543b622ebcc58314854fa85473ce89753b8c30877e2562d607aa9483023d16f	31.67%	Heodo
2020-07-21	A_8150167791881327934224437.doc	doc	5d776bf9cafd76e79aaab31bfc6c44f43e4dafea532c69aff3875e0f8d253bae	31.67%	Heodo
2020-07-21	REP_K3FJC8A.doc	doc	75ef42ac18f4e0b5e1ae3476f03a760b2efa15e2a578c7cf8898bdfebabcf07b	28.81%
2020-07-21	L_GU5405016038VR.doc	doc	26d6a947ace5dc20b8511699014a7230d627b181f37246807ea85cdeadea61fe	27.87%	Heodo
2020-07-21	NH6910635973SG.doc	doc	e59ab4e1a047866cf6ad7eea19330ef2c3ace4086662158f0e46d07333ea11eb	29.51%	Heodo
2020-07-21	LP1297440638AF.doc	doc	eea895f78d31fab11d485cdedb1938309a53c01bcbad7657c9695879ab1f0979	30.51%
2020-07-21	ZXM_070120_THH_072120.doc	doc	e8eff9852fefe1a01b140600735f3b9abecfd2f1bb93929c8955778bb11d0681	n/a
2020-07-21	K_51606901.doc	doc	1dad4de7cb45876fd076def8d214824ef1d8fe10d8b202ee220930ba6ed989b8	27.42%
2020-07-21	INV_HSW_070120_MYT_072120.doc	doc	8d53a88575b2b26b3fe78df74205c739baf12ccbe1d51e27853d2ec4ed6aea5b	27.87%
2020-07-21	ZZRS_63811275.doc	doc	ced32d6bf400cc3bb59aa1929efa4c17228064153ca0615288fc1fefde35f11b	27.87%
2020-07-21	BAL_BW8374494889WZ.doc	doc	6aae57a7a60c8c2529948a9290becdc90f10be950ad2133ef7cbb1c366693f4e	n/a
2020-07-21	Q_NHK_070120_WHE_072120.doc	doc	5f79033b6a54db8f8075b5fa3c0629142bb73e654e4aabb10f5e905942a4871d	24.59%	Heodo
2020-07-21	T_31536573.doc	doc	b4f865e3011a63a5b8a0da14876282d97d5144e153f8316025555d276602d335	n/a	Heodo
2020-07-21	DJVHYVKXCDY.doc	doc	8f5c9735c5189f1b809aba58ae06fa7432eaff2ca15ec97d918d82dc6082a69b	24.59%	Heodo
2020-07-21	ZQYK_12676984.doc	doc	fe7bb6362bb3a11a4579b9c0c36fb7d1df5b57d43ff14b8b4ada2254224180e2	25.00%
2020-07-21	INV_382743936748773442935.doc	doc	a77f0d09a07d8f85b737d25216501b343e22c4e04a6f88b16dc1ab9ea1b2a222	25.00%
2020-07-21	DOC_NL1035718618WN.doc	doc	b1a935c9a64f8a2191e613e696c6df7a5892c608ec14c6f72c3459c4a62f2865	25.42%	Heodo
2020-07-21	DOC_0329471731805831.doc	doc	3f65143957146edc136d123a62507f50497de812d31cf82785b88dc67c7f4792	22.95%	Heodo
2020-07-21	DOC_62035645.doc	doc	af5e7fb37b6e00d487dfe968b928d24db3a786c75b530be1f46c3b228fa940eb	22.95%	Heodo
2020-07-21	E_OV1T52GLI6.doc	doc	8969bcaa62533ea3d1c200c02009112d2d21e5b51ec3500698935d4689d46265	22.58%
2020-07-21	DOC_23KU8YWBCQS.doc	doc	76135328ce70dd5755fa54408d962b10954d6bb5c47f883a7c2bdd1defbebb9c	22.95%	Heodo
2020-07-21	REP_29698409935242729666.doc	doc	9560e6e3b0d652ebeb93460213b2441adeda06783b641d59101d2cfe2c227307	22.95%	Heodo
2020-07-21	E_PO_07212020EX.doc	doc	f2e0593ca696ec36f6b813e857b8fe6741252d7b65df42e5e16bb3c80bc7a90d	n/a	Heodo
2020-07-21	BAL_PO_07212020EX.doc	doc	49e7f3d18db1b3402794fa15a11d36c41d2857d4a668834b6178d0c739e2f821	22.58%
2020-07-21	FILE_341324030833906602237.doc	doc	59e827ab690ebe0398ef2409db0e89fd63ebe9c9a198ed0cd9febc218813f6a1	22.95%	Heodo
2020-07-21	HLN_UZR3BZM0RJIBR.doc	doc	b946948073ee057b1f1cdf3b7c54098e9eb35bb8736104d13e2f3febb038f2b3	n/a
2020-07-21	BAL_TNP5D9D9EU.doc	doc	8b448dc2b315f49801c7b4d4b20a2d3163f9c9376a3c36dc4dc7a52513a101f0	22.95%
2020-07-21	79139678.doc	doc	660ff4d3124a99db58894556a3461eda17393ca94c27e075185e72536eb6735e	n/a	Heodo
2020-07-21	6174266881.doc	doc	fc2bb7719f33ff249113e3c05c4b2b6fdbc99190e250b3073295e271c553f0d0	32.26%	Heodo
2020-07-21	DOC_14573711.doc	doc	d604f20c04d25e448176ddfdf3e01865091590cdf5f2cd2c42eb9af7cf41c718	33.90%	Heodo
2020-07-21	FILE_JB8295538588VU.doc	doc	53b9a409018adc25ac26a608d9fae417659211d8754dbf7f07c3e4710a026774	32.79%
2020-07-21	KGS_070120_EXI_072120.doc	doc	f23c88283a5b29e45eb6658afb904be03923f73895e4f6b232f3e04e288bb715	n/a
2020-07-21	Y_SO4794692384RB.doc	doc	41239e9448583b6a09ec8574d34295b254dec60348e219d0a1355467c3ab37a4	n/a	Heodo
2020-07-21	FILE_ADQ_070120_FZS_072120.doc	doc	9e8362c34f689302d747bee833e604d4d7e10c7d519b401e9c9fe257bc241197	32.20%	Heodo
2020-07-21	BAL_03967506.doc	doc	c9d9cfb4d6f95d66b6480f5dfb60edf7b0c4581895b68dbf25a830f9006b2d3b	31.67%
2020-07-21	FILE_VK8425697485UO.doc	doc	798bef025be5953e7e96ca59398667ca056420d1bed67221390de9d122f40165	31.15%	Heodo
2020-07-21	QBR3BZYOYB.doc	doc	d6c5ff0dea2cbabf074ec5c1f7ca759925d9f469a37d4265919edf2414c60d5b	n/a
2020-07-21	KXHK_WAMM0SOQA15361T.doc	doc	6d7c0327ef758d90e34d8e64f95ea11431fc630f904b95f33141ced30a743dc1	31.15%
2020-07-21	PO_07212020EX.doc	doc	926e68ce8e0ae5b9d2e935c1fe517533b3dc8cb4aa2250b0fa6ec86af0d78220	27.42%
2020-07-21	REP_T50K6632NC.doc	doc	74fdca7126b9d049956422f500ca2a0257fb7956f385a45c6b5c36230fd3a2a5	28.33%
2020-07-21	INV_37121648.doc	doc	0d1316502220cb6dd888dfe5bf248b70b28dc8eb3518f1cf98737edd5b62aa74	28.33%	Heodo
2020-07-21	W_BL6883390277ME.doc	doc	a7f4f8b9dddb70414bfdbbffd5c446c88b517c104a441be19151c8a711133686	27.42%
2020-07-21	FILE_IBL_070120_PQY_072120.doc	doc	9f082f2eeb02660ab639991cade576f8a7f72990579ddb87315b51374e11fc18	27.87%	Heodo
2020-07-21	IVS_070120_GJB_072120.doc	doc	cff09d732ea9fe1f128dc29bff9f5d5d8ff78ea22eadb52fa4b5b8d7c056928b	27.42%
2020-07-20	RI_PO_07212020EX.doc	doc	1d9333d44f7442890d84cbc3972b9d00c93bf1556042f7b58c1386365eae3c76	n/a
2020-07-20	JNXP_PO_07212020EX.doc	doc	49f90436f418a86b0f4e55e14bcf74793954cc90596ad08dfb6355a1e50a8f27	27.42%	Heodo
2020-07-20	REP_PSBMK9XHYMWI.doc	doc	2a7edcd4009ca88459bd2ec64af866f700abb7acb68cc5b13a40315c51976df7	28.33%
2020-07-20	S_VD3272161288CA.doc	doc	80b27b3a7242ea8cdfbcc0d266c4fe489cc0b035fb614b755e2546c80cdfbed5	n/a	Heodo
2020-07-20	BAL_52094359.doc	doc	86dc2706e8cf0a78688e5a503d6e8db55275a7ec3de655ec33a9db2f6ffeef57	29.51%	Heodo
2020-07-20	T_PO_07212020EX.doc	doc	f073a991092d0dc2ca2d7308e64b58992ce0cb00fe5da928b65b58530c10e7a9	n/a	Heodo
2020-07-20	INV_88761114319395812903783.doc	doc	4ec7f2a0359b740dbbc849705f2856818bccc8fafa5a2237fd79640e61423255	27.42%
2020-07-20	NXGH_74192217.doc	doc	53dfc48b5b049b05895bc4e2e5fca037946e69d083cdac2e6c222b76c86f4763	29.51%	Heodo
2020-07-20	INV_KL6928409715TP.doc	doc	148aa06dceabdc99c7588bd48277867f3d0528fcf04463562707fd66f953045d	n/a	ZLoader
2020-07-20	REP_M86JEM96.doc	doc	7b6a3b4d5f51807fa19a536a4a2400dd3279b75a75ba37423ab27c6937aee30f	27.87%	Heodo
2020-07-20	GXC5V2EXWOBHRQX2.doc	doc	cfb6588d9181a97aa1f93b2b9f8af82134836e916938a80a217cd03fe4294811	n/a	Heodo
2020-07-20	PO_07212020EX.doc	doc	401dadd7c1211dae181b8767949d274790aa4fb72e78a3d57ae92ac2cf925da8	27.87%
2020-07-20	UGS_070120_HCG_072120.doc	doc	33c897cc3c1d11687231644af13032e24358c594f4b484a7040a3eeecfae7145	27.87%
2020-07-20	INV_ERI2WK5.doc	doc	4fdba539896383e37ec2383fb569df4f17395dd40115ba8caba62127b7ebe949	28.33%	Heodo
2020-07-20	DOC_XQV_070120_DFN_072020.doc	doc	a00bd0c41a60173a7d02bec198e21b3be8ce018289a2120a48b3cea32160de78	27.42%	Heodo
2020-07-20	OWG_HO0475046683HI.doc	doc	6f07729a0d38233363651ce3760f506ded756ffb5010218df70d03bba767e7d5	27.87%	Heodo
2020-07-20	B_NTQ_070120_JTZ_072020.doc	doc	8811f4498f1b1d8729556a61a5683ce20c4270a64ee5ad0223185110adac5f2c	n/a	Heodo
2020-07-20	P_96569420.doc	doc	f479686dfc59c7e2cf8607ef958b067288d47d2de6a92db1b0c1268b9862f42b	27.42%
2020-07-20	TC2678693409EZ.doc	doc	69167697c3c077b3ca6449ae55750d1712c20bc33196537fdbbe05e463aab195	27.42%
2020-07-20	7097736923058494403.doc	doc	1e146c18d65265b27e23f9ee84a8f1d20c046aa76c30ed386710a10cb0da2960	27.87%
2020-07-20	REP_58208252.doc	doc	9ea223e9251e17c155c00e320f9f1008c6872573da7a16d524213225ebec9add	25.81%	Heodo
2020-07-20	DOC_9668617137.doc	doc	4a12475b07d363c78dedd7070df1730851f1871bd0951f703375692801ad2f97	n/a
2020-07-20	OFA_070120_JYD_072020.doc	doc	d2357823bd33f106343cf781864392d133112d09386148aeec801d016dde2d47	n/a
2020-07-20	PW7MKNMGQT8.doc	doc	1a328aa48b0ba77e6965043cc7dc2d97edd5ac325b193b1f102a50a492444948	26.23%
2020-07-20	REP_ILT_070120_CIC_072020.doc	doc	de77fe86034d9281adb201f8d4d906343d622467a133d5ef3d0e8cfe50dd4061	25.81%	Heodo
2020-07-20	M_PO_07202020EX.doc	doc	73ec1e7316f940c2f81b1372760692b29c86b72855aa04b2e9e27cce2c9e316d	25.81%	Heodo
2020-07-20	REP_HH1328562249MO.doc	doc	49a503bf7c2281565500c611ddcd637063436524390805e4a871560ba792e1eb	25.81%	Heodo
2020-07-20	INV_PO_07202020EX.doc	doc	339483bcbbf9f51611d79358797318f66d88eeb7a561eb5ee3dd5fbaacc31531	n/a	Heodo
2020-07-20	Z_26864919667.doc	doc	932c549927ea5c0ce827253fcb26978c1361cfbee3495d9dde5130ba190dd3b5	24.19%
2020-07-20	INV_58072671.doc	doc	1e7876167b890b5fef7dd8cb965be95ef2adaab8a7c06bdb8b1fee0b34d90534	n/a	Heodo