URLhaus Database

You are currently viewing the URLhaus database entry for https://fisipedia.com/ebi/lm/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415484
URL:	https://fisipedia.com/ebi/lm/
URL Status:	Offline
Host:	fisipedia.com
Date added:	2020-07-20 19:28:05 UTC
Last online:	2020-07-21 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-20 19:30:05 UTC to abuse{at}choopa[dot]com)
Takedown time:	18 hours, 53 minutes (down since 2020-07-21 14:23:11 UTC)
Tags:	doc emotet epoch2 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-21	INV_OW6615274328MM.doc	doc	610576af7dfbd57bc54cede047748ec6355fd2122f6820ee76c1ec17967126fb	27.87%	Heodo
2020-07-21	30441364.doc	doc	ced32d6bf400cc3bb59aa1929efa4c17228064153ca0615288fc1fefde35f11b	27.87%
2020-07-21	32093687.doc	doc	9053508e8b2272bfa74c8eadba7ecd45a1db50cfb3aa841015dc626c3e13e85a	26.23%	Heodo
2020-07-21	BAL_94552979.doc	doc	974a9bde6fa374685e63b50d21dd8254256dd8f6418d9d65e208a465a0141f73	24.59%
2020-07-21	DOC_YKIOKXMZTCCH.doc	doc	8f5c9735c5189f1b809aba58ae06fa7432eaff2ca15ec97d918d82dc6082a69b	24.59%	Heodo
2020-07-21	IO5799229330YC.doc	doc	281280ed257511ed8f8f2b291a83ce2978bc6e6f14c52ca9ce10540c70cf0605	24.19%	Heodo
2020-07-21	DOC_SM5578136047NC.doc	doc	a77f0d09a07d8f85b737d25216501b343e22c4e04a6f88b16dc1ab9ea1b2a222	25.00%
2020-07-21	INV_KK8XNAAHHG7.doc	doc	b1a935c9a64f8a2191e613e696c6df7a5892c608ec14c6f72c3459c4a62f2865	25.42%	Heodo
2020-07-21	U_OA5533217753UV.doc	doc	3f65143957146edc136d123a62507f50497de812d31cf82785b88dc67c7f4792	22.95%	Heodo
2020-07-21	INV_08902753.doc	doc	6ea128ea049d2ebacb539514c677bb05791d9844046f47e6e1e3dc783f2942fb	22.95%	Heodo
2020-07-21	REP_EA1224667613NB.doc	doc	003110462b096556a9d96dca0472feaa2dee2edaf6d8d0e179dc08a8a8f2b775	23.73%	Heodo
2020-07-21	INV_RVX_070120_WTH_072120.doc	doc	24008d212916e04542b1f308917ce152914fc98dea21a3ac690999db725ea0bc	22.95%
2020-07-21	BAL_6882777970963181.doc	doc	9560e6e3b0d652ebeb93460213b2441adeda06783b641d59101d2cfe2c227307	22.95%	Heodo
2020-07-21	QW_9374758198.doc	doc	f2e0593ca696ec36f6b813e857b8fe6741252d7b65df42e5e16bb3c80bc7a90d	n/a	Heodo
2020-07-21	87793241.doc	doc	49e7f3d18db1b3402794fa15a11d36c41d2857d4a668834b6178d0c739e2f821	22.58%
2020-07-21	PO_07212020EX.doc	doc	59e827ab690ebe0398ef2409db0e89fd63ebe9c9a198ed0cd9febc218813f6a1	22.03%	Heodo
2020-07-21	IFT_070120_HYI_072120.doc	doc	2786a95d643bf9b6c90e2940c4387436c45e5bcd4f88746449713a6abdfb5c51	n/a
2020-07-21	35159600658.doc	doc	252e3f0055225fdaaf98be11f4b12f61d98b7311d4aa43aaf9cca4de02b07a26	n/a
2020-07-21	INV_AMAZYEDW4BUTE5ZH.doc	doc	660ff4d3124a99db58894556a3461eda17393ca94c27e075185e72536eb6735e	n/a	Heodo
2020-07-21	8330004402433723812.doc	doc	fc2bb7719f33ff249113e3c05c4b2b6fdbc99190e250b3073295e271c553f0d0	32.26%	Heodo
2020-07-21	BAL_UTG_070120_NWU_072120.doc	doc	d604f20c04d25e448176ddfdf3e01865091590cdf5f2cd2c42eb9af7cf41c718	33.90%	Heodo
2020-07-21	FILE_QR9364940041MY.doc	doc	53b9a409018adc25ac26a608d9fae417659211d8754dbf7f07c3e4710a026774	32.79%
2020-07-21	BAL_53553204.doc	doc	6c9bab65f28ed13d572adc91a1af99d0862edc49891f2ffa643423c75a0cc4c7	30.00%
2020-07-21	INV_Z65YCKL28504L8.doc	doc	41239e9448583b6a09ec8574d34295b254dec60348e219d0a1355467c3ab37a4	n/a	Heodo
2020-07-21	BPW_070120_PZK_072120.doc	doc	b5956950d2004aceecfee887e4d5435b6d7cdc6d13a6655cb5d81a7f7425555d	n/a	Heodo
2020-07-21	REP_GXU_070120_QQX_072120.doc	doc	c9d9cfb4d6f95d66b6480f5dfb60edf7b0c4581895b68dbf25a830f9006b2d3b	31.67%
2020-07-21	DOC_68817133760.doc	doc	2c03fc75fe3490e41923ce263321de82aca6656dab7a4d95ce7334adf39a04b3	n/a	Heodo
2020-07-21	01701972.doc	doc	d6c5ff0dea2cbabf074ec5c1f7ca759925d9f469a37d4265919edf2414c60d5b	n/a
2020-07-21	PO_07212020EX.doc	doc	9953004cdba2aa71a7552b41ec9b4718f1fcf03abe1589629ce524746cece259	30.65%
2020-07-21	SQ5860332659ML.doc	doc	926e68ce8e0ae5b9d2e935c1fe517533b3dc8cb4aa2250b0fa6ec86af0d78220	27.42%
2020-07-21	BAL_XGZ_070120_DFH_072120.doc	doc	74fdca7126b9d049956422f500ca2a0257fb7956f385a45c6b5c36230fd3a2a5	28.33%
2020-07-21	BAL_DJ0080330993GD.doc	doc	a6c8655af8c96aef402f4853f9c71b907adc45a533de7e3f9a9517aee1b43c0b	n/a	Heodo
2020-07-21	FILE_SEC_070120_SYT_072120.doc	doc	46e68edbdc3dd2b5e70179a93d4f788074fa29e649c64063f636ee4e37c42fbf	28.33%
2020-07-21	N_2TQS8296.doc	doc	229710df49bb17b78fae2414fe4ff138609fdbbe410dc297f49d8b7bf10ad109	n/a
2020-07-21	BAL_URB_070120_FTC_072120.doc	doc	cff09d732ea9fe1f128dc29bff9f5d5d8ff78ea22eadb52fa4b5b8d7c056928b	27.42%
2020-07-20	V_QC5816982299OE.doc	doc	5ef34d47ef171a2b5cab01782a4a45d9a12f01d70dde381936b6975ca93dfad7	n/a	Heodo
2020-07-20	LAG_070120_OIN_072120.doc	doc	f532fcd4387475d48960a5f0863e003f7eba0281354728bf832162a0ca5673fb	n/a	Heodo
2020-07-20	DOC_PO_07212020EX.doc	doc	49f90436f418a86b0f4e55e14bcf74793954cc90596ad08dfb6355a1e50a8f27	n/a	Heodo
2020-07-20	MU9342950008BR.doc	doc	d94cea8ea634ed8d8de82348acb5c417260d48a0f2b559531624b67f776c660c	n/a	Heodo
2020-07-20	INV_PS2536897522AN.doc	doc	86dc2706e8cf0a78688e5a503d6e8db55275a7ec3de655ec33a9db2f6ffeef57	29.03%	Heodo
2020-07-20	INV_11497815.doc	doc	f073a991092d0dc2ca2d7308e64b58992ce0cb00fe5da928b65b58530c10e7a9	n/a	Heodo
2020-07-20	8034512305818395.doc	doc	4ec7f2a0359b740dbbc849705f2856818bccc8fafa5a2237fd79640e61423255	27.42%
2020-07-20	V_NV7538598864QQ.doc	doc	a6ce3b9c522d36ac4e91cf8e2cf1581bc9d7e6548f1e66ff998e11662f6894cb	n/a	Heodo
2020-07-20	17418141.doc	doc	148aa06dceabdc99c7588bd48277867f3d0528fcf04463562707fd66f953045d	27.42%	ZLoader
2020-07-20	Z_OO4289607049NF.doc	doc	d076c294bf588b7c9f8db6b5f35a63758c5710feb5920c263ceb77a501bb9133	27.87%	Heodo
2020-07-20	BAL_110849363880.doc	doc	cfb6588d9181a97aa1f93b2b9f8af82134836e916938a80a217cd03fe4294811	n/a	Heodo
2020-07-20	AAF_070120_EMD_072120.doc	doc	401dadd7c1211dae181b8767949d274790aa4fb72e78a3d57ae92ac2cf925da8	27.87%
2020-07-20	UR3877449499CH.doc	doc	8163146178e6d55057843fa5f0da1b851d049bf802aea69b44aaec7352be33d4	n/a	Heodo
2020-07-20	TUOF_14992068.doc	doc	33c897cc3c1d11687231644af13032e24358c594f4b484a7040a3eeecfae7145	27.87%
2020-07-20	JW_05679553.doc	doc	0acf607beb7b1d944c892c27acd49b254a36f39059812903c9d8bcde71acc6e5	27.42%
2020-07-20	L_GES_070120_BKK_072020.doc	doc	70fd23e6a829661f7fe775e5b73c20b09a4dbeb5b97648d0851dde0591a3b304	n/a	Heodo
2020-07-20	ZX_PO_07202020EX.doc	doc	8811f4498f1b1d8729556a61a5683ce20c4270a64ee5ad0223185110adac5f2c	n/a	Heodo
2020-07-20	X_PO_07202020EX.doc	doc	f479686dfc59c7e2cf8607ef958b067288d47d2de6a92db1b0c1268b9862f42b	27.42%
2020-07-20	P_PO_07202020EX.doc	doc	69167697c3c077b3ca6449ae55750d1712c20bc33196537fdbbe05e463aab195	27.42%
2020-07-20	DOC_TNH_070120_DKU_072020.doc	doc	1e146c18d65265b27e23f9ee84a8f1d20c046aa76c30ed386710a10cb0da2960	27.87%
2020-07-20	PO_07202020EX.doc	doc	9ea223e9251e17c155c00e320f9f1008c6872573da7a16d524213225ebec9add	n/a	Heodo