URLhaus Database

You are currently viewing the URLhaus database entry for http://wellnessredifined.com/wp-admin/available_disk/guarded_space/1685897_HW1bxJWn/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415496
URL:	http://wellnessredifined.com/wp-admin/available_disk/guarded_space/1685897_HW1bxJWn/
URL Status:	Offline
Host:	wellnessredifined.com
Date added:	2020-07-20 19:57:40 UTC
Last online:	2020-07-22 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-20 19:58:02 UTC to abuse{at}a2hosting[dot]com)
Takedown time:	1 day, 20 hours, 2 minutes (down since 2020-07-22 16:00:50 UTC)
Tags:	doc emotet epoch1 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-22	Mes_2020_07_22_NK17264.rtf	doc	a4730c2913b245ccb77ed0c4a10031a10360828ea6681eb4f9831c502bf0c2dc	42.37%	Heodo
2020-07-22	dat 2020_07_22 5939.docm	doc	b6d61e35726e8b3a7b927301d0577dc610610104d94432cced3a6d063920b865	45.00%
2020-07-22	ARC_2020_07_22_739328.doc	doc	1e4b9f3bd8e3a2dfbb9324372219221763f9b3d91a94d416f43fed86f778ed88	43.33%
2020-07-22	arc 2020_07_22 S90936.rtf	doc	6a8b03f385b500a82ae03dbc5c4462e236b1ece3279d4ff4918eda37ab38271c	45.00%	Heodo
2020-07-22	file-2020_07_22-LU096.rtf	doc	86e2ed9273d315410e681e02ca8b3f70eb822ba45a792ef240e1036779de525f	42.37%
2020-07-22	inf LP256681.docm	doc	bce88cb5c4bb7331cb4cdb37a1d9d122bf444785670578109715ea8a54c74dcc	44.26%	Heodo
2020-07-22	dat 2020_07_22 5236.doc	doc	d594cc9f8ef872a0e9b3e12042504748ec68c52f4453d35eebfadc54a82d6a94	45.00%	Heodo
2020-07-22	Mes-20200722.rtf	doc	a2bca2dbf8410837475af5b8e83246f69c279f4b502019816a62568d1ea4fa46	45.00%
2020-07-22	DAT_2020_07_22_651450.rtf	doc	7bbeebb4e14ec2e7561ce66b3462c414cb1009c7951a6566ff11275944c17964	41.67%
2020-07-22	File RD5618.doc	doc	22ac435d22c7b71db3bfa296ea41d2bcd35c819895e51ed3f8994de46854b30e	38.33%	Heodo
2020-07-22	list-BT47778.rtf	doc	476f47a1fbb75de056f6a02ab3dbb2087dc5c6c2519a029219f344fc90e16280	36.67%	Heodo
2020-07-22	MES.doc	doc	2bf6770c0abd36c1d4bf26b47dbe953c8f1f7968fac457a4a370a1b198945d4b	35.00%
2020-07-22	rep-2020_07_22-057.rtf	doc	623c4ed3bff71e9b92646983452b40e40499ac21f3a3aa0647bbf37d3581b909	32.79%
2020-07-22	Rep_20200722.doc	doc	fb1530a751799859585501c02c6cce39addd2e4572d8df0149ae14735eb2f113	32.76%	Heodo
2020-07-22	ARC-2020_07_22-053.doc	doc	ad0b84b38f613391231e63d53e800947407c72b0e2b87c9a79cb58d7d3520146	28.81%
2020-07-22	REP-2020_07_22-V022785.rtf	doc	6babaa931bc26a787edf3d1d3118c0a45416f2e9deb01bc741decf522a2bda49	26.67%
2020-07-22	inf 3737.rtf	doc	9d678fbeffe8eb971ce79fed03f575d8712e98b080969dd2aac8e4ede327b43c	27.59%
2020-07-22	File 2020_07_22 065.rtf	doc	f0c9f76f342ea1c5905bd4b18f1988ecfdfeca17ad3d89bf82e9ad372ffab247	26.67%
2020-07-22	INF-2020_07_22-487275.docm	doc	6f567c0477f01c7cb169abe9c9bbd5a18c39d7a68160438508adc626a2835d2d	27.59%
2020-07-22	arc_20200722_4242374.rtf	doc	b68476e293e35d7cbbf80b3561d23bad553eddd9b04a07ea072ab1ea17f1d78e	26.67%
2020-07-22	Inf-38059.rtf	doc	4ef2c8006cf9685f61441f329dbce4b1cfab1f70eb6709bf48168b31c42eba0d	26.23%	Heodo
2020-07-22	arc 2020_07_22 F44475.rtf	doc	bf08d9f7924956f144f0211f6ea48722fea5cbcd8dff6c661dddc5a221e13742	26.67%
2020-07-22	LIST 20200722 MQQ21428.doc	doc	656f9f7c087bc9a3d272d1aea2c369dcfa89d33e5fe59b61e4a57d7b181904d2	25.00%	Heodo
2020-07-22	inf_20200722_10226.docm	doc	4db416be55570ba71279738d715adc20cb5c44d1d0725b6ddd828b5daa6cf345	25.00%
2020-07-22	arc-P581358.docm	doc	586155893603026b83f2f51289bcb32825a2cbcf7f5b0bd9dad28b470d8453c0	25.42%
2020-07-22	FILE-20200722-M71445.docm	doc	3550a00d6cf8efb047a97d984cc26719d87014434ff444e3b70427e1b1670342	25.00%	Heodo
2020-07-22	Doc 20200722 HSV447748.docm	doc	a73ea0967cbcfbf0070a32f075b9b8e4f448d2d60f08f78ef9439b64394fc035	35.00%
2020-07-22	Rep 20200722 076155.doc	doc	8aec85cd8e1f0f312d2a3442272e4634ea845690457c6a516b51378c868a1c34	34.43%	Heodo
2020-07-22	List_20200722_GWJ429370.rtf	doc	eed180c709224d892fa8a82e0c51bf623d7057a65ca483d45e3d005984dc6588	32.79%	Heodo
2020-07-22	List-2020_07_22-SR611.doc	doc	7eb51f8c4719f0171a98650b63385c15908628fc4ef7838c410fc53c46a0b8a6	33.33%	Heodo
2020-07-22	Inf 2020_07_22 J368.doc	doc	84ee9ec33d16ade130e8842b327ab3d4b8480fada3bb6fb25ad854dea738e9be	31.15%
2020-07-22	INF-20200722.docm	doc	365f2b2480d704ba0fa82cf5c25d92895a3518ed02ec36ff5f150cfe091b3574	29.31%	Heodo
2020-07-22	Arc-2020_07_22-0665.docm	doc	b58dbe82f7a65596a2277d1c5ef1e42945e45cd0ad84c35872e1ed404607b9b6	29.03%	Heodo
2020-07-22	dat-2020_07_22-BYX0609.doc	doc	5a4cd1c4d6c751cfd8495cae1b6503f4c1e1d98bd6c82cb7a56ebeb25d1b55ab	27.42%	Heodo
2020-07-22	INF_2020_07_22_9882.docm	doc	1c8b781620a02fb02b753fe6324d8e0745326e1f4ddcab65f27e5b73892ad286	25.81%	Heodo
2020-07-22	FILE-2020_07_22-PRK48575.doc	doc	0c24abb426e9a3dac8679d113235fe206c6cf1010035c97791dd11b9132a567a	26.23%
2020-07-22	LIST_392023.doc	doc	80cb12a6bbe9b2c3065f9007e9740b9f7d75dcf2bc68651848cb08f4ce619b39	26.23%	Heodo
2020-07-22	DAT_2020_07_22_4211.rtf	doc	ebdc8f40febf78564180a0f4a84f3ec60622fdb13e5a18b627ecd8f86f4e1b85	26.23%	Heodo
2020-07-22	Rep 764256.docm	doc	8d70f6580cf02bcae5c4c14396951b6e6c1ea10bcbcbb89f835c29dc7d2c8ceb	n/a	Heodo
2020-07-22	List_20200722_VR994.doc	doc	3e65642f10d2b821a0c08b74d0ddfd34717dca5f9918551779815db934ae7963	26.67%
2020-07-22	Doc 2020_07_22 N334.doc	doc	d7b8fec9f533a9c31e7fe587b89552973d00bff30e4c7d8f7d4f2d93bc0eda1f	26.67%
2020-07-22	Arc-20200722-43460.rtf	doc	ea444cde5a8ef5b6165a348732af41e4c634669259036caae42e242c5a7c9b1c	25.81%	Heodo
2020-07-22	File_165.doc	doc	7fb831a6988b9e816af85e485721d4e44b500b6a9d30af5b82cf9ec4d28eb584	25.81%	Heodo
2020-07-22	LIST 2020_07_22 5661244.docm	doc	d3bfea33a12c522ea8faa7840613e14c78035362c064c858c1467513a68ac9a7	25.81%
2020-07-22	LIST-82411.rtf	doc	812ed74f92912f98accd025c7c64b9c943032b3379fe1c9654a9deeac6d8b981	27.12%
2020-07-21	Inf 2020_07_22 L75074.rtf	doc	3ef294ca4013371b69d6af647114806b71bb3dc07fd56f12c078703411d61b3d	25.81%
2020-07-21	mes.docm	doc	c1cc356eaf49711b7673b9c27f015163363a60417ad3b9b7e6883015b65d80d8	26.23%
2020-07-21	REP 2020_07_22 LYG004578.doc	doc	3e24c4373b1e2ba1e3d16925cd0d4a1752452402ae4aaa8ad8ce498bbff5335c	26.23%	Heodo
2020-07-21	ARC_5387570.doc	doc	4ed6d7c9f2e9292974253fd9e5b4063a391c156768d50cf6a8deff4425a099b2	27.42%	Heodo
2020-07-21	Arc-20200722-EOK398.doc	doc	2027e8348e8d2f364d55b2bf47f9a4b37fd2ff7aabdda5ed056e3f6cd42cf777	26.67%
2020-07-21	doc 2020_07_22 62415.docm	doc	139f5bcf4c7fcbe0a8a5d940c5d38dd847e2c979df74dcf680208e73b8ac668d	26.23%
2020-07-21	file_20200722_RSV914.doc	doc	205a04626bdf6f3da605d8f8ba60126d02451085528330524d899a38520be8c3	26.67%
2020-07-21	Arc J165.docm	doc	6852b34db0c7a6150c1095a704236a1938b4ed46cd9d7bdfd412555ebf61890a	26.67%	Heodo
2020-07-21	ARC 20200722 613680.docm	doc	db88b385b97b7038cd233960f7f99ce350a72a3eecf6bbbcb227645f111d4e7c	26.23%	Heodo
2020-07-21	REP 2020_07_22 DPN549.doc	doc	99b15b640124bbe2d317af00e7c30fd65e9b97abdb6e07947205d5bdd73c5737	n/a
2020-07-21	Dat_20200722_H589888.doc	doc	8aa3e958943656f026b02437d4c84ed9268018560390b8ab0d9807c7b23c8b41	26.23%
2020-07-21	Dat_FV3187.doc	doc	1a3131840aa881ca39803d20f5224e9339a2cc959ac92ab756f6ded8d81a1a90	26.23%
2020-07-21	Arc_2020_07_22.doc	doc	a9dd576067b09e3fd64c7f184d22655ef1559e2270354ee005a3001d0d3d1bc0	26.23%	Heodo
2020-07-21	arc 20200722 HS084861.doc	doc	bcc1834e956cf9ee218e2956ae6511170e810ad54d6738ed11f98620609a3e30	26.67%
2020-07-21	Mes-20200721-DC013.docm	doc	253d4ce06935b6b78211d3f7b0ef787b74e019761199199ab5720333db23577a	25.81%
2020-07-21	REP-2020_07_21-12382.rtf	doc	6c9063989cd23941fcc8533284a0e2ccd26555ec3b40e4f292ede0bf59605f1f	31.67%	Heodo
2020-07-21	inf-20200721.doc	doc	a498a07bd860a86bd937ea230aea64bdbc55c3040d90c13e57a2670608c1af3f	31.15%
2020-07-21	dat_20200721_83339.doc	doc	0974a3c01f3b2bdfefa2c3f955522a50e05bea86eac7c7da493d7548b1b5c758	32.79%
2020-07-21	List_2020_07_21_27117.rtf	doc	94afe20839c1b4794b268af701170510a03aca8ba4c42d4f37056f048b4f4312	31.15%	Heodo
2020-07-21	inf_2020_07_21_735916.rtf	doc	8d842d76f958c70be828a217a80c8398107c158a2320c0d36f3b75512b8deca9	29.51%
2020-07-21	list_S85390.doc	doc	23c6039e4db511bc4f78a07eab4780a9f8a41e215b277e15bbefb19faa85171d	29.51%	Heodo
2020-07-21	rep-A9338.docm	doc	f76760e19ef8c715a396435ac9a3fc931699e03a431a25ba0f9d0f20c104495c	n/a
2020-07-21	Rep-20200721-5287.docm	doc	0dbbb6599f01fe8f1817f54193e2969d69f49e504430db1e659cbc26706cfa2a	31.67%	Heodo
2020-07-21	file_2020_07_21.rtf	doc	7203fa5731e4f60d782eb7248af9620384981a39282d70094f40946b1b7a60c8	30.65%
2020-07-21	Inf NAY42911.docm	doc	3d808e9e116ecad94d0839d1a951f8aa24c96f6dfaaa774a889edbb38c857b56	31.67%
2020-07-21	List 2020_07_21 AT206.rtf	doc	8771e257fc13efea0c60ee072b8fd918f12f287632341fe5f20756d5675112d9	n/a	Heodo
2020-07-21	Mes-20200721-5111.docm	doc	c969a0b83fe39c15dd74759e9c07b8d753908346f3d8dcb940fccee01f146e92	n/a
2020-07-21	rep_2020_07_21_YCZ6236.docm	doc	ade92c771f3d31b85f839181d2c222569b9271fef181b82414798016840e0b37	29.51%	Heodo
2020-07-21	Inf-QTB087576.rtf	doc	519ac8bbe23cc0506580ac08c5bc589d9d5382e00ea81898846715cef7502d8d	29.03%
2020-07-21	mes EKG454045.doc	doc	620ec5ba9b3488d2f0df3f27c7efbd786e501f76dc0cd1e11e70e9783968374e	30.00%
2020-07-21	list 2020_07_21 ALA900018.rtf	doc	95d8b345f72bf52ee554c32232d32359be4cb131298f45e717641f6dd3e2bcad	30.00%
2020-07-21	list_2020_07_21_3637.doc	doc	76b3bec66b692ad45b4c647003c0e5e5b5a3d416c87a613b7094960050adad61	29.51%
2020-07-21	MES_20200721_UA1455.rtf	doc	c90c7844e46d777d31a1c9a7155a04315b31a96367bed2d076ab0d23cc7149ab	n/a	Heodo
2020-07-21	arc-20200721-00031.rtf	doc	268a97dd90a672f712cdec3a39986e6ea760af1f34b3bb9924eb08a270e0c576	28.33%	Heodo
2020-07-21	file 2020_07_21 Y928.doc	doc	15617b37ed587c9af7ec3de8d4aabd3de95ded6604f652abea14822da2c94ce0	28.33%
2020-07-21	Arc_20200721_Y54451.doc	doc	6166ebbd7b66dd9173a4731d1d34051e54c6826ee275be43d34ecfad4a0d5e7a	n/a
2020-07-21	Doc-20200721.docm	doc	c7822a15dfb48ca078ebc0a41816b3bb1925bba9198831892a7e77fe64e84f42	n/a	Heodo
2020-07-21	Doc-20200721-017523.rtf	doc	f0bbaafc7f8e8677ac74fe5c76625f29793a0ca04c8177ce41d4b4aabbd2cde2	24.19%
2020-07-21	File 20200721 330.rtf	doc	64eee4aab6935f2d3d11646b1c38bdd7519aef0367f417afc89d07c5b15b8eaa	25.00%	Heodo
2020-07-21	REP 20200721 JBS176588.doc	doc	bde282cb96f5986ecffac2e217f661fa0f00c92f1e4b2a788aad9cbd53a2eb51	25.00%	Heodo
2020-07-21	ARC 20200721 C7843.doc	doc	ad614712ee0ad71a7408a527a3a2051489b0ff4f08038b7a676ad967ea160fb7	25.42%
2020-07-21	FILE-512.doc	doc	23bf0066e26b5b6e2403af2810c57d5ee5c0e04cfb175df6c134826cdb68bce9	25.00%
2020-07-20	list 2020_07_21 KBD6406.doc	doc	c0696d196c346305861f4e358f48f216dcdde4251309abed3547504007cb858c	29.51%
2020-07-20	doc_2020_07_21_Z904473.docm	doc	41d61ed5ec94c9f81d804487ad8f6132520d6ac7009a8c9a7b0c074ed0748e4e	29.03%	Heodo
2020-07-20	List-UXK1868.docm	doc	616dde6dc6e22e28f4149e26996578dde114b40f896cee3cb36165d52ff70857	27.42%
2020-07-20	Mes 20200721.docm	doc	1269bdbbc40be92cc1f13918a692b34fdfeec466bd7d872863ecc405ff38f77f	27.42%	ZLoader
2020-07-20	dat-20200721-53782.docm	doc	4d5d4a16ec11a850141a0a77026153d2a409bb4602e624623ee007e79dfd9639	27.42%
2020-07-20	dat 2020_07_21 599163.doc	doc	3b93eda94becc07130cb0b7b3bd4f351444c2a0810a9bd983913a4a5d833b3a5	27.87%	Heodo
2020-07-20	LIST 2020_07_21.docm	doc	00593b1d3ba64e5ca39e6c503ab0f33dcade0d3afb65c2a73f2d4696cf8a7bb0	27.42%	ZLoader
2020-07-20	MES_20200721.doc	doc	d28f9dea8c5837be7474d3735799da462ae74c0a0f3e7279a3eb8a50ba6183ee	27.42%
2020-07-20	Doc_0906166.docm	doc	10e15c8850925b8f03210b06fdc2e0e87bd7339bf6a185992346e2063cbe1e99	27.87%
2020-07-20	rep_20200721_1359078.doc	doc	f4295c97af0389a32cb42495d1b102a8e8698e5f107c50034cee1d0ef8735a1a	26.98%
2020-07-20	Inf-2020_07_21.doc	doc	3aedca3992d77371154f015834399c14aab576050a53efa01fb5714e01beb841	27.42%	Heodo
2020-07-20	List_XVJ010.docm	doc	dc9d3da24212096b6029163166558cefcd8b37aae588dd461d9b5c02700700af	27.42%
2020-07-20	REP 2020_07_20 U160401.doc	doc	ba9dea8d19d91af5e263e8bb98b6ef25c7f8d994944b6d6a0ecae3fae653199a	27.42%
2020-07-20	INF 33398.docm	doc	a1064f658ecf514ba982b19196bb1ea0b7f1e85661c20777b3e93093510db141	n/a	ZLoader
2020-07-20	LIST 0928849.rtf	doc	6b5e8002c323071f83df953f977caf3a477d1a0c7178e0795674d263bc2dab15	27.87%
2020-07-20	doc 20200720 WOZ2531.rtf	doc	ed29b479d20901bb285c8146d9a69a73a34eadaa4f6c86aca69aeefe96f4fe0f	27.42%
2020-07-20	doc_NDQ368611.rtf	doc	b1b7474023c9888e1283849b5bda6d35570bff187a8189a06b390f5db5e64683	28.33%