URLhaus Database

You are currently viewing the URLhaus database entry for http://staging.vcsw.nl/css/docs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	416227
URL:	http://staging.vcsw.nl/css/docs/
URL Status:	Offline
Host:	staging.vcsw.nl
Date added:	2020-07-21 18:59:29 UTC
Last online:	2020-07-22 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-21 19:00:08 UTC to abuse{at}transip[dot]nl)
Takedown time:	19 hours, 21 minutes (down since 2020-07-22 14:21:20 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-22	REP_PO_07222020EX.doc	doc	705b055121eb9b4694a147b5998b6b3702dcb080f4c98b4bfee9809be5ed62c1	40.00%	Heodo
2020-07-22	INV_MH6485543131AU.doc	doc	89781678d6d163d911bb4191aef0633150643ec2950d40fb73be636fd5856511	n/a	Heodo
2020-07-22	05686785.doc	doc	782736531e733d8dc455a8d1c25318d69d3bbe81a3d9ee2f8f26322d40d242a6	n/a	Heodo
2020-07-22	BAL_RPU6VGARXZW.doc	doc	f1b7132df8ec796787268640384eeb445a1ffc5c0ad9f2c780ad7383f2b9e185	36.07%	Heodo
2020-07-22	ETR_88853035184877495495411.doc	doc	e36be98a3e3d568430d52706ee06d935e126942b2a5c2453f5478d8c0d58acb7	40.98%	Heodo
2020-07-22	REP_0QMCJY0QGCGU.doc	doc	fd2c6130cd3a5d6056aebf171e64dd498f02a42d48ac937ffe344d43318776cf	40.98%	Heodo
2020-07-22	BAL_WFS_070120_YZW_072220.doc	doc	067ba9cf327a1e5805876399eb60e0766480e8569c950130e43141b645b6a4bc	n/a
2020-07-22	BAL_YJDR2JG7V8A1DJ40.doc	doc	91420939d17611e6b1215827089e2e118b07eaeb3034e72059b79148104ae337	40.32%	Heodo
2020-07-22	BAL_15609049.doc	doc	a3b6c9b8acb5b16ebc30ed08ff4d24d310e3417939fcbd41d05a07a51a292945	n/a
2020-07-22	NCW_09199084301872650.doc	doc	09ff59e3aa0a87e0028a01ccc11acdf7bb537cda761ef20a6d6528aa762a6aea	40.00%	Heodo
2020-07-22	INV_56600722.doc	doc	0857814f3cbcc8df6a43272007e719bba14facd9a864545e13f58ba9bf6e1773	n/a	Heodo
2020-07-22	DOC_BII_070120_XNH_072220.doc	doc	f0202afb75d71b71aa5ce2b8807dc889f92464703741d1b6f3fefd8efefbb86a	n/a	Heodo
2020-07-22	FILE_141679995360192038288.doc	doc	5e856e1c81b994e7c0cbe55a689bc1d6e7d7905b90398abd6168e4acd64a5e39	38.60%
2020-07-22	DOC_TL7994531613PG.doc	doc	b62a1c960c1e1635a15bfc9d7f02f48844cc4e9d49355449bc23aa7d5572c292	n/a
2020-07-22	PO_07222020EX.doc	doc	02688396874aabe3c8706c443c1e19466a2d0a2b36ce2bcf5407d5db72dba36c	37.70%	Heodo
2020-07-22	DOC_19270894.doc	doc	6ddb1ab381e127fb09e8aad4fe9c0b336d0b7642398da88031954d7ac6b94d54	n/a
2020-07-22	UON_070120_OHD_072220.doc	doc	5094c26c5d8795c7cfb7d55342ba1b11cd3d4407b6a42681793e6ecc8f9c5a52	n/a	Heodo
2020-07-22	KI3287781914MO.doc	doc	dd584a748f37459bb1c1c14e33cf396479669e2a15dd267fcb952d788ae4a0bb	30.00%	Heodo
2020-07-22	NWVX_OH9168551160BM.doc	doc	1e3af37e16412c773f67b690a273c0c17a35d7ff6ad70b411cfc8b8c9a269e14	30.00%	Heodo
2020-07-22	DOC_2084929933215.doc	doc	ba4417524d4ec820b4eb5bc47ce13c88930355211107e1866f24d0888f36186a	26.67%
2020-07-22	PO_07222020EX.doc	doc	99e4ace02c6584969197f86d1122c6dab6d35545343a0138df9821a3a71ddef3	26.67%	Heodo
2020-07-22	FILE_MG70YXUS4.doc	doc	5c1251139b141b728d3489236c0c8cbd8762fc941f5aa0476d86b6adf4a90c0c	n/a	Heodo
2020-07-22	BAL_VFP_070120_SQK_072220.doc	doc	d243463bd64bb0b8edb242be0ba86c3983e5752422c0e1d07a45027ae1a806f8	n/a
2020-07-22	K_FF1610151666EE.doc	doc	49e20fcd1ebe7943437c809b881031d59e45a98614d1c7af96b3c1835d4586cc	26.67%
2020-07-22	INV_36271679.doc	doc	44649b15c8270438769bec658bd63477e64a1164f0e721c002eedaffd43b5256	26.23%
2020-07-22	FILE_T3I6INQIWXD.doc	doc	3d556f0009c372e7b8c40ee0d72ef13026b96bcf3268a7dd838eea37029dd3cd	n/a
2020-07-22	60909425.doc	doc	61b94e8bbe7564405293dadbf39ad662250c4327556639f79c09ee9e56cf909e	25.00%
2020-07-22	L_PO_07222020EX.doc	doc	5f5a353ccf0dbcfaa0859d0a1db152f2d40735bce47864d7ef9c12ab93c8ca88	24.59%	Heodo
2020-07-22	88454252.doc	doc	584fbf65a3d7eff0ed9282b47d237781da7f7aeb0092ecd034d3edb66adbc6df	n/a	Heodo
2020-07-22	DOC_PO_07222020EX.doc	doc	f9b9806f9c7c88864e0ff685eaab801a085f8c567b7d6993101bafa58c4833b8	n/a	Heodo
2020-07-22	86682329.doc	doc	593793a914684244b3c51333736fffc1cdc69c51759831c888b66e6a07ef8b72	24.59%
2020-07-22	R_PO_07222020EX.doc	doc	756efc8d3530d9e9b4141763d1a89a2092a54347108a59790356c0c3506082be	n/a
2020-07-22	PO_07222020EX.doc	doc	1ff7a8450997cc013c4527af47bac34423607b8fcda043bca82df0e6b3e823e4	25.00%	Heodo
2020-07-22	PKU_PO_07222020EX.doc	doc	ed1a41469969a80fefc58566124f44e0846bff21d8e51d897da0d10b2386174b	24.19%	Heodo
2020-07-22	BAL_WS2059925134ZC.doc	doc	10963f8cec95f3f18634db9382cd4403523a624d72a459c29c9c3baf27097509	n/a
2020-07-22	H_XKQ5A6BGF.doc	doc	62f04c722299e8d193bfbe9dcde36cba23bf403f4476d6755bca71d6d49987bd	24.59%	Heodo
2020-07-21	INV_93051712842.doc	doc	73962239e4a48429f588ed5950e69d8ba450efa22a2265afe97bf689935caf47	25.00%	Heodo
2020-07-21	FILE_52760107.doc	doc	cd57ea2cc92eb01b71fef3745014a5c22b58b46c5e6f8d9da1519342e675f6c5	n/a	Heodo
2020-07-21	INV_PV4239808332UA.doc	doc	737dad0010dfc90068d5db4073a76c04f2e9aa7549373686028374e3bbbdb652	24.19%
2020-07-21	AG_UNH_070120_YXE_072220.doc	doc	443699b3e3b9a7f6acc2e21bce3a2bfab58a5fc166c408de2a1d5c8f57ed7376	24.19%	Heodo
2020-07-21	REP_BB2584013947XU.doc	doc	dcd97e231a7928660c49c35be9d5b8f839ccd3e2b8882ddd60c22b1bd012ac4c	25.81%
2020-07-21	REP_PO_07222020EX.doc	doc	bc7398dd8ac94a9ff8ca7a93f0755681ec84ca7fd05058ddc053cd16e1b3f4e3	26.23%	Heodo
2020-07-21	OTWQJ8L7N.doc	doc	c0af5b3ed8e1c92c57aa0e1b6f60d24b4ddc6a95ae92906d793d88413fa9904d	24.59%
2020-07-21	PO_07222020EX.doc	doc	80d32fabd4ef9c2f61025263185e0a3a9643a936901f2f385203562ca7c28fe1	26.67%	Heodo
2020-07-21	81840257.doc	doc	bfb0b36ae7105ad67727e68789279e3550b6750177ae7c2fc1007438f686f070	26.23%	Heodo
2020-07-21	DOC_33471947.doc	doc	a687cedab74fe24b95545319ea7ef7ea0afb3d56feeee11e42021892ecb50da2	26.23%
2020-07-21	PNF6Z48WAHP203DG.doc	doc	d73d45bb52a4ffd9def4427538644f33df6cc2f3f86fd4c390fb0e1dc2eab2e4	26.23%
2020-07-21	66538269.doc	doc	0c69f537211ca18ffdcd88151cd0e09636aec3e5708e6fde3df55bea4884ba5d	26.23%
2020-07-21	FILE_KK0380888297NU.doc	doc	6f5f3c1f1e679725ef379a8fd3fc99404536a3ebecce5036a1dc5359dae68682	25.00%
2020-07-21	RIS_ZBL_070120_VYH_072120.doc	doc	1d4f799b9a42d290ef2337e3e72b89fb04019b4604479f7a48a5067d6f5d265f	26.67%	Heodo
2020-07-21	JKK_070120_YDQ_072120.doc	doc	df3b437a0a2555b3ae16c3634140dd1ff3832120d3376e4a11ec45a500250f4a	32.79%
2020-07-21	INV_72041739784199155766.doc	doc	253ad2d41181a76e9546d65aa0f8b49d02149b4377d46cd67263566ae929bdbb	32.79%	Heodo
2020-07-21	PO_07212020EX.doc	doc	6c7f4d1d0a33793b058d45416bb3b5f59335d5785f80855611d2c428a98069da	33.33%	Heodo
2020-07-21	PO_07212020EX.doc	doc	6b606b07e4ddf623479f05fe2da2628bfb74b953116407b7e4ad3cd64421de36	30.65%	Heodo