URLhaus Database

You are currently viewing the URLhaus database entry for http://w1glv.com/w1glvcom/closed-resource/evscqr6-cnlns29v-area/56559974034903-ggpaNqCFD9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:420222
URL: http://w1glv.com/w1glvcom/closed-resource/evscqr6-cnlns29v-area/56559974034903-ggpaNqCFD9/
URL Status:Offline
Host: w1glv.com
Date added:2020-07-27 22:53:04 UTC
Last online:2020-08-07 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-07-27 22:54:02 UTC to abuse{at}liquidweb[dot]com)
Takedown time:10 days, 17 hours, 32 minutes Bad (down since 2020-08-07 16:26:11 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-29List ARV372.docdoc 11ad3548130ca9fb621e026a53942fbce3442ed396abee8da53f798ab597434aVirustotal results 43.55%Heodo
2020-07-29rep 2020_07_30 YB9206.docdoc dcb0d5886c4e43d1e46789d4fa9213efb3917724caac5574b7b3e508bfbb99a6n/a Heodo
2020-07-29Inf_1437.docdoc 542a74294e9671fe5cfe6d1391707d43cbf80e8a06788fba55eaa6aaf6a7e0f2n/a Heodo
2020-07-29DAT 41889.docdoc 7894435f0911559a26dff508b47295b2bb762b9812e13c08ea44ff6dffdbaf83Virustotal results 36.07% Heodo
2020-07-29REP-20200729-6960687.docdoc 7d5c1b7ed02d907f282dc39417e607956d98cee471c6078c82ee8e32bade2310Virustotal results 36.07% Heodo
2020-07-29Inf_2020_07_29_3851713.docdoc 08ee7d8db7afb04c7aeb9d27e135aab610653bfa632d97a30ab85d68842bc099Virustotal results 36.07% Heodo
2020-07-29Mes_2020_07_29.docdoc 9dbce8fd3bc06c6f6965bdb0d32cd55ae1f196bc57dc5c0622a0dee787ec66caVirustotal results 35.48%Heodo
2020-07-29DAT 621.docdoc 931a3d5bfb1c29aa10a516f09810d05a55e656cd3b05cce6eea7eabea9917453n/a Heodo
2020-07-29MES_348.docdoc ac12bfd17290d68dd86ea22a43bf4f6f0ade51e8a38d377c20050add454536ecVirustotal results 35.48%Heodo
2020-07-29mes_2020_07_29_8014709.docdoc d009612760ad9dba467fc8f4cf70df7525b45c528a2e14a49cedbccd0203cffbVirustotal results 36.07%Heodo
2020-07-29File_2020_07_29.docdoc 03995f7538079d2cf9ed7fc15f78b792be7d168150464fad150be2b2febbd2ccVirustotal results 36.07% Heodo
2020-07-29FILE 2020_07_29 KG6905.docdoc 4ee5376ca1ab5c1f49bddd182e7fc412f36875312a81f11518f81ff52fb166e0Virustotal results 35.48% Heodo
2020-07-29rep-427.docdoc 22432edf35d5245c7e5b9613890819c87862cfee69167a8741e4fb2e3867479aVirustotal results 36.67%Heodo
2020-07-29list 20200729 MO4150.docdoc 4ab0e9516d22c69e933385ce50d6c53ff93fc423f33b0682afa52f1844271cf1Virustotal results 37.93% Heodo
2020-07-29dat 2020_07_29.docdoc 4174168df0202ec0fc0570fc65b4fe9fff2699fd99649dfd8cddb823e8efec6dVirustotal results 34.43% Heodo
2020-07-29ARC_20200729_250.docdoc ba70e5201cfbce20c6c71c9b53e47e758e4f13da5db46260d3feae0824f1e749n/a Heodo
2020-07-29INF-20200729.docdoc d076cf496cceee93a7feff09cde2c3debeca7167b511425696cb3a76f3ffc843Virustotal results 35.00% Heodo
2020-07-29Mes_20200729_098912.docdoc 47482467cc04e69d03d51061b35e629ea671fcfdef9cd16b6beba53c363753a6Virustotal results 33.87%Heodo
2020-07-29list 20200729 MW618265.docdoc ffcdf6865a74947c31474d3e634fd2644a1775ab9917348a7be9d93bc333b691n/a Heodo
2020-07-29arc_20200729_2698.docdoc 7cbce31cb7b0adf214bfd948d03f36d891140eff92af8f6ba70ef036800a2f7eVirustotal results 34.43% Heodo
2020-07-29inf 20200729 9703.docdoc 7002ed23f624161aa746fbf3cf95f9d95f8575af9b016ed41d3b8323f042b112n/a Heodo
2020-07-29FILE_2020_07_29.docdoc 975608dee92d56c3575f7b47ae361b5561b0ac039c50071cc6152d98c4552910Virustotal results 34.43% Heodo
2020-07-29INF 186.docdoc 84286b6fcd1ad93cf269c8291b8a71f65e5d71ad1194e5da2839aa19c6c72a9an/a Heodo
2020-07-29MES GH15575.docdoc d329eb19da1d2deda09dd814c9eb6a929f3c93df8cc530c9f2007d31b2c3bd99n/a Heodo
2020-07-29List 20200729 CKN092738.docdoc 424bb85c7aeb485a5d5c0a1b73c7fbb050fb9d4c165c7306f43e89b19013c385Virustotal results 34.43% Heodo
2020-07-29DAT-360289.docdoc 3f629a6878b4ff4383a80723718f32ed1ab5e210433db014412cc12d5d1cdf3dn/a Heodo
2020-07-29Doc-20200729-DJ387.docdoc 646437eb438966cf74da4846b38ca3b6bd6378d4ddb17be5e6d525b91b498b1cVirustotal results 30.00% Heodo
2020-07-29REP_20200729_398.docdoc cf46b40e6aad6e5bf2eb169493207fd6167e250228bd8c4ed5fed1ea600fc209n/a Heodo
2020-07-29file-20200729-ABX806.docdoc 9a4098702f77f9c17710381c6420db214a9ddd6bed24413d5e4e316176b2b756n/a Heodo
2020-07-29Arc 7923.docdoc b06acafc9440a1f2036e66f3df5827f31e50da3ce6dc66114ea7a224c1b5fc9dn/aHeodo
2020-07-29Doc_IP949353.docdoc 8fe804416a77bba32e0c65d0aa4b17b862bbe3da25f5e27c7ff8e1685ac961c2n/aHeodo
2020-07-29inf-2020_07_29-JWW8359.docdoc 1d0bb5c581a0f8a3dc4f7ab5877b022219815e0e329934b45f2cac61d31cfe6dVirustotal results 27.42% Heodo
2020-07-29file-PH43231.docdoc fe2947d15986710cbddbb2552a05de1d18f25e9dd8bc62b3fa9ac26b14b1cb25Virustotal results 27.87%Heodo
2020-07-29arc_20200729.docdoc 042cde9d3c9ac4c96b983c03041a6e00692b89b18888c3602b5d4ccba5f88670n/a Heodo
2020-07-29Inf 2020_07_29 7850.docdoc 86faea602286868ec996cf729e4ccae016707f4589c35ca444ad8e2f82c48071Virustotal results 28.33% Heodo
2020-07-29LIST_2020_07_29_WHH847408.docdoc d80d4a17577b544fa7da9fb2fef8c39d77ebaf839456255a0fb4994148b0f00bVirustotal results 27.87% Heodo
2020-07-29INF-026672.docdoc 4b66bb4e22f421f21ae63f70aa2f43f7952f0ff42459c7f15215a3c8615e032fn/a Heodo
2020-07-29rep_20200729_51252.docdoc 9fe355810178fe930723ac4fef37d67ef5750d3ddb01e805896743dd09591345Virustotal results 27.87% Heodo
2020-07-29Inf_925351.docdoc 4cad41a2c94580e73badd4c35c2282597f7708204d5214f88c3f9972e3d99bbdn/a Heodo
2020-07-29list 2020_07_29 6503.docdoc 9890475f020efa660854e167de44045852e57c9a202a1ed39fba865070723598n/a Heodo
2020-07-29DAT 2020_07_29.docdoc 1d08f0b597c36bdbeff2046fbc31263ea2c4044af0e4040aae479badb1a900b2n/a Heodo
2020-07-29File_20200729_3453282.docdoc a71a811fc1e212cf3595d9d66d1e1e6291221fc9a5520eeef7aeabd5bacc683an/a Heodo
2020-07-29list_20200729_1525.docdoc 6a8bb6e77fb312e9755b5119e1f2d52a58b9f11f1ffdd96eb7c937a0307cc6a7n/a Heodo
2020-07-29MES-2020_07_29.docdoc 2358e95d172df16e4ee84738952acac2857dd1c6ca1fd8d4f5a1cd6d3dec5b74Virustotal results 45.00% Heodo
2020-07-29Rep_20200729_857.docdoc 18eb3a42e22bad4739e7e30656ea54d812b781b53f4bdfb702acc5e440a0b6dcVirustotal results 43.55% Heodo
2020-07-29Arc_47572.docdoc 820134a5637582882bafcc6aaee3741fded6acffba0751a562ebff93370f7a64Virustotal results 45.76% Heodo
2020-07-29List-G4063.docdoc 581b3d0fa7b6ae23cef3a8e882801014964734eb92d18b457027199033b4690aVirustotal results 44.26% Heodo
2020-07-29Dat_2020_07_29_494507.docdoc f89b0ab3a3817bdaaca98ca6ebdd47fea5c4ee59872c90a4fccc23463d192e52Virustotal results 45.00% Heodo
2020-07-29Rep_20200729_1281.docdoc 2d0a50c2b71293e0d232856f5b99127f9a871bb9e7e2a731280462f0f48ad966Virustotal results 44.26% Heodo
2020-07-29file-556599.docdoc 31a705c847b5a8e8e18857c0a1b1fd7ab4f65ad44d4d860c12c2001c25c67fd7Virustotal results 43.55% Heodo
2020-07-29doc 2020_07_29 3852.docdoc dc9ed541230e97a30f45695e066b67e80728f6963ada93b7fb8d9617a653857dVirustotal results 43.55% Heodo
2020-07-29inf-2020_07_29-380194.docdoc ae55f67659dd8f44ccb77fc51e56174eadb421dab3bed4f02afb2dff2c783934Virustotal results 44.26% Heodo
2020-07-29Doc 2020_07_29.docdoc 915ae2165210e21055c3ce6e6c455943b75d0ab07c690a48d810bcf2ab79d0f3n/a Heodo
2020-07-29Inf-2020_07_29-0230.docdoc f108b93f8a51197e20952752105e589dac418d57b106df142a474ed7f8627354n/a Heodo
2020-07-29Dat 2020_07_29 3612.docdoc 4939104d6ac747a434d08a86353fdba0f99fab4fdfc1fe2791945d8bcb3f8482Virustotal results 44.26% Heodo
2020-07-29FILE_2020_07_29.docdoc c5fe30ccdc224f47c8059f8abf775b896101e8e9d007aa2f41a9071562390b1eVirustotal results 43.55% Heodo
2020-07-29dat-583213.docdoc eeeffe5ba0fcb1fd64fc11747b2b463cb84f1acd64201609163da191e142aa36n/a Heodo
2020-07-29DAT 7351.docdoc 0a3991096a1362548e6de042c3174a436135be87ffc6fae6a721103ec9642105Virustotal results 40.98% Heodo
2020-07-28rep_0845.docdoc 94ddcb3d527aa945321d1e706a0d7cdebe9b0380b2ac33918e02ae142da93a34Virustotal results 42.62% Heodo
2020-07-28INF.docdoc 560f5cc2d9a6a987bec2c57b8cacda03229c7f0fcd7542b764adc99d5f7e2f2aVirustotal results 40.98% Heodo
2020-07-28dat-20200729-4280290.docdoc 54a962d82de3bdeb06f38850bc6cb537b3d35c6d95c97b7b1ccbc4948e0fb3e6Virustotal results 40.98% Heodo
2020-07-28inf 2072.docdoc b08aee092cb3defc671949d65b32da80150ad60e64554f24eb25bea83ade4708Virustotal results 40.32% Heodo
2020-07-28REP 2020_07_29 YRO45232.docdoc 63e8efafd895a3c81e6b57f8df7af0d841c821d7e99b7dc74c82906d3291365bVirustotal results 40.32% Heodo
2020-07-28arc-AF91776.docdoc f37ae711b262ab3caff91d44e0ef517c066e9eafcff80cef84ac904d8efad0aeVirustotal results 40.32% Heodo
2020-07-28Rep_20200729_LL59863.docdoc 605bf230fa718f2bc3c8c995f36a5ab96b8459a24eb76edc6deb9ef97d9f9a0cn/a Heodo
2020-07-28doc-2020_07_29.docdoc b15efa03e4076cbb66aa63e8e5d8e93f4c81a61dd15f225f7e88bec58841d7bdVirustotal results 40.98% Heodo
2020-07-28mes 20200728 391.docdoc d92a10a91fc1b1b8ac3bda947f552a110b71c174f5b3ab1db2aa711a7efa7eb2Virustotal results 40.32% Heodo
2020-07-28file_20200728_627457.docdoc 14485797cc257a6a0ded3acbbe9cbdb0cfc7ca43ea9c23c35019ac229f70b098n/a Heodo
2020-07-28Rep_20200728.docdoc cac82767427ea3ebfc0e8f64c5f3d58bfb5a97ba333bf935631b378ac7e0378eVirustotal results 41.67% Heodo
2020-07-28list-2020_07_28-795.docdoc c43a63602cb0b1dad2eaf7f04a744d632f94f40f19a5ee48afbe46d6898b573dn/a Heodo
2020-07-28DAT_2020_07_28.docdoc 7dfe8c017d0ab4f45bff8329eac5216dd63d5f32323126740cafcfcab0444082n/a Heodo
2020-07-28Inf 2020_07_28 8952542.docdoc 3249f88f826d81cd257476820b8d47096da83c22cccec5425fbc8582ba36535fn/a Heodo
2020-07-28Dat 2020_07_28 74908.docdoc 7c91ca6956e0430bc2d4abb390650f3b92961c93f12f0d1da0410d68da768d81n/a Heodo
2020-07-28List-VV918.docdoc 75d8adb84b4f6e8554293102bde287c1e4ebc2bc7baa0d8452ee8b75e14344acVirustotal results 43.33% Heodo
2020-07-28REP 2020_07_28 830246.docdoc 0081319dd28e168071c4515c299698a8bd64da6089ba663e300aa782d4195f88Virustotal results 41.94% Heodo
2020-07-28MES-20200728-8105922.docdoc 8b84f0c7a08e17c108f35d35b7507cb8164d1801c14e619882312f087a401899n/a Heodo
2020-07-28REP_RH663348.docdoc 9a25233d8195a5b81c448574c1f555009c14b4e5e4291da25f9ab354b999a8bfVirustotal results 42.62% Heodo
2020-07-28ARC A217067.docdoc 683a2ea0b3953d097f3252a5334c7651d31c5fbe2264867e637cd30cc20140b0n/a Heodo
2020-07-28Rep_O340657.docdoc 7062f6009b062252fc3dd1ea29d46265a166398e42cd997b8a8f72b1bb231350n/a Heodo
2020-07-28REP_20200728_89162.docdoc f831057ed2e448c723eaa816ab8f6c90edeec0429c085392504a49779d7eb425n/a Heodo
2020-07-28rep_2020_07_28.docdoc a6922bd640eb839557eb7de4b0eff5a905358af3591caa7eba423e47812787f1n/a Heodo
2020-07-28dat 2020_07_28 69516.docdoc 0426bde1c11882e8c7dfe85a1f176412a6fc3935f9df847838f7c71e14c47c64Virustotal results 43.64% Heodo
2020-07-28Dat 2020_07_28.docdoc 807b670fda7efd99d81102cecf7b0dc2c45e05f674d17cda9002e6547ba288fcn/a Heodo
2020-07-28list_2020_07_28.docdoc f898c2ac5936c81024e1c459a3c1ce7be3c0542d5449dab89009de372f814beeVirustotal results 39.34% Heodo
2020-07-28Arc-20200728-5108.docdoc 76e3d5f5723f45341a8f69cb98945096ebed68bc0b919158fe077be65fb4b093Virustotal results 40.00% Heodo
2020-07-28FILE_2020_07_28_0935.docdoc bc8ed220d589f5b992b17855748e438261a53484daa608dddf8def5be64e0804n/a Heodo
2020-07-28arc_20200728_G560.docdoc 96b92a507285aec2864fccdab3cd183d2a4fda565c812dc189511a085c96f0bcn/a Heodo
2020-07-28Dat-20200728-1610537.docdoc 702fd9bb99bbf2fa2901fc1d43cf18ae23d625a09c1eda18f476fb6cbdf8459cn/a Heodo
2020-07-28doc-2020_07_28-A00471.docdoc 4545350210bf1fd8b012fbac3ea72c145dc9d12457597946a9e2b1c167659bfan/a Heodo
2020-07-28Doc_X17169.docdoc b2b9ccf270c6f6a116a4a22b11df78268a8ed4adb32a54778303ae89e6a9affdn/a Heodo
2020-07-28LIST 2020_07_28 HQL97177.docdoc c886af6a164ef32164d83f2dbaa1d353aafb9289858ea9bb2e78674b4ed9e632Virustotal results 39.34% Heodo
2020-07-28INF 9491944.docdoc cd16a120aaae00292ab7267c2ce0515434c5e4e168d596f3da1cbf27553a7b93Virustotal results 39.34% Heodo
2020-07-28INF-2020_07_28-E17938.docdoc 49a829db25a031f897c810bec82adf3f2af0166b1d5043dcec07db0ba72546b0Virustotal results 38.71% Heodo
2020-07-28REP_999784.docdoc 0086265c2f4da7654f02494ee0cbf199fc621cd86d4d0b7ed80b5af62252209en/a Heodo
2020-07-28File 20200728 969.docdoc d23680d922e87a0b9bbaad4803126f3076c1208e1efe41f35f6b212dcf32a460Virustotal results 38.71% Heodo
2020-07-28Inf_OR3570.docdoc 504fa30fd0f82b9b4ca1ebd125ab22a5aaa20e50c9b2082e7a9c0b0eca53473eVirustotal results 36.07% Heodo
2020-07-28Mes-20200728-87825.docdoc 7f901905cee7f7176e3a6118e01efc82181b58cada7801cc121f2d440c3781cfn/a Heodo
2020-07-28INF_20200728_9732.docdoc 6d41956ab2324e6d9e134b3e73bf93c9a9a5734468aead7d72031e862c132e45Virustotal results 38.33% Heodo
2020-07-28inf-20200728-N078.docdoc 8ad5258045f9c1ec73dd06d74b5b6157a12c15166fa0c8e2fc8106e78227af6dn/a Heodo
2020-07-28LIST-2020_07_28-AR4407.docdoc 231a0e9672ea9bd8a4425055e34051b2105ffbfdf3c2a40ba5677eb17b36cfd2Virustotal results 37.10% Heodo
2020-07-28File 2020_07_28 DQ650505.docdoc 0d08cf10fd555b812e4db0c9a9ead8a9c4b9f0dd9f3921e9c7db137e8cd22220Virustotal results 37.10% Heodo
2020-07-28Mes-20200728-2500.docdoc 330726fccc1b858ccb1e4a089c3e56c7fb91905f08ac6da536160d625ba3531an/a Heodo
2020-07-28rep_20200728_JK539871.docdoc c777c2cbf20f13d04f0e4c21bd8ba2bc44cea5e4b2992ae58a6d6dfe6fb53465n/a Heodo
2020-07-28rep-20200728.docdoc ef6ef0f8ef438897b207562f0d8b11883e9f757636f1a59848d19d93549a1eeeVirustotal results 45.00% Heodo
2020-07-28File 20200728 QGM641511.docdoc f17c0f459fab0492c863e99c1a5792ad48d11acddb5e049a6b4c39f99ce8b344Virustotal results 43.55% Heodo
2020-07-28LIST_20200728_192759.docdoc 36a2dcdbe270ab3526bdea28407cfdec949c82215605a7d871c95f6803ef2eb0n/a Heodo
2020-07-28DAT 20200728 G316.docdoc 9daf8a671b527a71c8a7a17a95ee2828e782aeb81f3e718acb747945a617bb2cVirustotal results 43.55% Heodo
2020-07-28Arc.docdoc c2c286c513606c5ebbc5bad98047dc2c6887966b0a3e972c7fc53bc25e1584beVirustotal results 43.55% Heodo
2020-07-28rep_20200728_9818357.docdoc 4ca4d1e4470fc34af7ba6930b887d43ae19fcd3a58253e8e08dfca1543e49c7aVirustotal results 44.26% Heodo
2020-07-28LIST 2020_07_28 HT4634.docdoc 6f752dcbe61a11bdfe7b1b0d52104ba5efec6539f9588696876a091ae7feba58Virustotal results 45.00% Heodo
2020-07-28Dat-YA852.docdoc 21dce6efb379371051277359737d8c090f5bd3feb2322f04fadc8c1da068432dVirustotal results 44.26% Heodo
2020-07-28Mes_20200728_2030.docdoc 1285ab067041ccc47554c1b6a78dd2ab191d2426e7242817235a92f1f674307cVirustotal results 44.26% Heodo
2020-07-28Mes 9403.docdoc 88f424caef167c363184d8497774224063f29ad00f73366ac8d1cfe921b19741Virustotal results 44.26% Heodo
2020-07-28arc-20200728-XZ726.docdoc ff97460ec476ba0b1dc6bf5044dc590c950725e79412fb75bcb38f37bf94e227Virustotal results 43.55% Heodo
2020-07-28List_20200728_R642313.docdoc c8f7207b776cd41fd7bbd4a9c1bba2c4c1161dc9a1e132d8754d87743107e43dVirustotal results 43.55% Heodo
2020-07-28arc.docdoc 0eac07138b228f378cdcf932ae99d43434a3a644db3255f402e18a63335e9ff4n/a Heodo
2020-07-28File.docdoc ae7f037dd7436f637bbb6f62f4a44f2dcf5ddbe56fa25edd87e054d203e34d27Virustotal results 44.26% Heodo
2020-07-28file_WLH2964.docdoc a07b7087aa9e62580d3df6662c97f7827de42955fe766f0969af529daaee016bn/a Heodo
2020-07-28LIST-2020_07_28-523488.docdoc ed42839bc1ce973dc9b130fc3bf6f29300210d2351b6caae9b715bbaa5a50e8eVirustotal results 44.26% Heodo
2020-07-28dat_20200728_CT4166.docdoc 65750bf28b7d4acf01b9eb045e261c88920a881299f29c97aff7ff4d42be2104Virustotal results 43.55% Heodo
2020-07-27Mes-HDH475.docdoc 80c2733aec99f5aab73c4555949f84ae4ebf7369955d07fa9a0c4a8d06265fe3Virustotal results 44.26% Heodo