URLhaus Database

You are currently viewing the URLhaus database entry for http://damiancollier.com/paradiselost/statement/s7nr8p8ut/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:419868
URL: http://damiancollier.com/paradiselost/statement/s7nr8p8ut/
URL Status:flame Online (spreading malware for 5 years, 11 months, 0 days, 1 hours, 10 minutes)
Host: damiancollier.com
Date added:2020-07-27 13:10:05 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-07-27 13:12:04 UTC to abuse{at}pair[dot]com)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-04-14DOC_PO_07272020EX.docdoc 1c3ae30d15c6f9deebb5d58432f4e15ec78a72047879f2836f574d7eaa926cbcn/a Heodo
2020-07-27DOC_42187616.docdoc cf253830c0484f6a93945b844e71d9d20ebe95c0a8e699fe12be87b07d04959eVirustotal results 35.48% Heodo
2020-07-2773998222.docdoc 7ca74b3c7abb4df9b42143995e6df94e5cdc55a6736e58abee7a70bd20032c47Virustotal results 35.48% Heodo
2020-07-27DOC_IG7423219484JX.docdoc ab0f127714796541c566c6a6eac8962cc8fe2274d474690c9b4a17985ec45aadVirustotal results 36.07% Heodo
2020-07-27U_60415041.docdoc 1a1fa85b7553a50116d917e9064e24df1e54384a76dbc1c5ce450131894dc1dfn/a Heodo
2020-07-27KNY_PO_07272020EX.docdoc 530101c520032e4ec1949d65b22f11eca92202263c610bd64e9e6a827d897e5fn/a Heodo
2020-07-27REP_PO_07272020EX.docdoc 759a9925c0d0324b377d49fa37282f26912ebedfe841c72411aa4568540cbbebn/a Heodo
2020-07-27BAL_TV5471209584BX.docdoc 4bf023382638c6775d7fd65eb79139545c67ac070bbee3fe3f6e7ebd8b0ab1f0Virustotal results 36.67% Heodo
2020-07-27INV_BI3190643667IK.docdoc 51ffaab27770020c62a461869a9649b42e2dc3929d5debba9a6dde20cc42c201n/a Heodo
2020-07-27Y_41YZJGZ3J6KLOYZ.docdoc 4de7205b3148a989443ace3ec09936ba3c9539639a254013be838994669344a8n/a Heodo
2020-07-27REP_524804220868.docdoc 91631b5f74221ef36cfacf1572e87d4a71c5876f16e20d1131401cf6f61f0c1en/a Heodo
2020-07-27FILE_05470310.docdoc 09f7d48ed4d70c24ee8888b1ef67071cbca500ff3fe98267923a5ff68d113b28n/a Heodo
2020-07-271583645982557986.docdoc cfb29bce041ca72fbf97be1b608791b9d7e4fd6b632aebf4f91111ce6491cfc1Virustotal results 36.67% Heodo
2020-07-2798789277.docdoc d8aa761a6b6debe83afc1c64c873d0d864afeaa4d7b8a7660da07f68acb23722Virustotal results 36.67% Heodo
2020-07-27DOC_95591859.docdoc bf198fc4f742eee0325964619e075bd02f5e081bafd95f39e935077ddf3a91d1n/a Heodo