URLhaus Database

You are currently viewing the URLhaus database entry for https://www.libertolaw.com/test/UDMTR/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:421970
URL: https://www.libertolaw.com/test/UDMTR/
URL Status:Offline
Host: www.libertolaw.com
Date added:2020-07-30 13:58:34 UTC
Last online:2020-08-10 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU002837926 created on 2020-07-30 14:00:08 UTC)
Takedown time:11 days, 5 hours, 5 minutes Bad (down since 2020-08-10 19:05:39 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-01Invoice_9148_31040583.docdoc 56916942bc59a1ae0cc030beaf907b54631390e0a5fa7d75bce1f120df88d843Virustotal results 47.54%Heodo
2020-08-01InvoiceS71230892844.docdoc 410ad2793e5e2cf30ef44aff53ad6715be63ce088837d79fa899bf84843564adn/a Heodo
2020-08-01Invoice_YTSG4_461153.docdoc f5063edcf32916070acfbc9278e53a73ef52d43169d165b04dd88fea5e75109fn/a Heodo
2020-08-01INVOICE-UNT8-776115.docdoc 59fe059c7f944c657a41a53e8b2c462d7b2efdd8752d2b5db253a956aaca2950Virustotal results 46.77% Heodo
2020-08-01InvoiceJZWZ9633250214876.docdoc d2ad4662ecec9de8e762286aed287dd57ae7a9abe05aaf585b00df8416023a96Virustotal results 46.67% Heodo
2020-08-01Invoice JKP071 4581692.docdoc 7cf37aad24974f7634799c3c29442dffa76216d4f81ec2cda71f9c489e65dfc5Virustotal results 48.28% Heodo
2020-08-01Inv-HWDL8744-134229671.docdoc e062d585af5bd255743517d4cfeea2f9619ed7a013981973f5e62e84cba556ddn/a Heodo
2020-08-01INVOICE-444-007547285.docdoc 3313ffb88f8caf097099973a0b3621c3e20f101fc72c95b9d54f29026c272fa1Virustotal results 47.54% Heodo
2020-08-01INVOICE-G690-9735351.docdoc 0457060f736d8abc01a2718e6b003eaa9b8a2c798ddc3f0b589f63f8769fafdbVirustotal results 48.28% Heodo
2020-08-01invoice-W4-355603568.docdoc 8a3527868ae086f48fd41f40545528717f6c347ef9079185dfd12bdd868c1ce5Virustotal results 46.67% Heodo
2020-07-31Invoice-BASB158-68604601.docdoc 58716951590c1341ba410dd9f789899240e75b017604d8fc2d49e86f843fb389Virustotal results 46.67% Heodo
2020-07-31Inv-SV7-3939048.docdoc 29a33547180f8a2c21bceb0424f9724b50dbdf57104000d4562a96c1c8a4f241Virustotal results 50.00% Heodo
2020-07-31Inv-4687-611422.docdoc e272cd40c1e1f839d797cbdfd1574d19a1cf68c11f47c04172e944d06ce6f525Virustotal results 46.77% Heodo
2020-07-31INVOICE_J982_3040113.docdoc 69574cf913cfd357b51a19e616dee5e675a28e3a397826f7fc4ec4d9c8ef61d9Virustotal results 46.77% Heodo
2020-07-31invoice_QBJ182_38001847.docdoc 1489edcaeb77576b964e01c0afecd1d1d5ce35b05f335e4473be0fe3255e802fn/a Heodo
2020-07-31InvACXB9569159372.docdoc 7ad485f73ed801fe057ee89153970c59e3dd7331d317808f0f04c7a138d6aebcn/a Heodo
2020-07-31invoiceZTU3122778.docdoc c13e46d1796c767f42fcb0b83df4e4e8775ff207b91c3cc649a3fe3f4690a89fVirustotal results 49.15%Heodo
2020-07-31Inv-V899-540469718.docdoc be9580ee19139809910c67fa4e0f35bf76001f0fe80e6923b8ac0a4c6365555bVirustotal results 46.77% Heodo
2020-07-31invoice-U94-042669.docdoc 604d8d4b25d82a9fa60525c21b4f7ff9f0edf0d00aea808ceef6bef8e9e4f4c5Virustotal results 49.18%Heodo
2020-07-31INVOICE_8_0688482.docdoc 9420fbed8bbf98010e41a960a8bf2314eadd6423e12163e88553e78439867a83Virustotal results 45.90% Heodo
2020-07-31INVOICE YC8 705533823.docdoc 25c12d4806108d86841e67f79d958093ac0ee1b28322cbeaae2e7527322b66f5Virustotal results 46.77%Heodo
2020-07-31Inv-Z5-854617803.docdoc b2671d67c068a833209094947cc1f15c6169a854e02006f116cd342528850f15Virustotal results 47.54% Heodo
2020-07-31INVOICEGCI362539631.docdoc 37524ad76f2f5b4eab6611654b6d4db507e547ccf9b0490f0a011d2900f7ceadVirustotal results 47.54% Heodo
2020-07-31INVOICE SQW4582 2456671.docdoc 015ea078c5fd0a7e7358750b113536aa28746f179954e4c37e6185b99888c39dVirustotal results 46.77% Heodo
2020-07-31Inv_IVK9241_0223137.docdoc 8d668df833984a5c527237ca2ab0cafd0d9358925912ce0c64cfb8fb749d09f8Virustotal results 47.54% Heodo
2020-07-31Inv-871-992342461.docdoc ec21525a8852265e8892193f896c9002e6f4a525c42e980120cdfce6e8ab3d9fVirustotal results 49.15%Heodo
2020-07-31Invoice_VSEB9_6884430.docdoc 955df219d60bd853070b3b3202dffdc5458ac8fed8c076c8c8076baf06348236Virustotal results 46.67% Heodo
2020-07-31INVOICE_24_570212684.docdoc 946cd2d84da75bc5bec22111b5edc5dc80f8cdfbc8ab53dc8a71b23999fb4565Virustotal results 47.46% Heodo
2020-07-31Inv_6443_396949.docdoc 5e3e4c0db013c193ec0fc613f3e0876bd36a6ba53ce477f2b989f8732f645dd7Virustotal results 46.67% Heodo
2020-07-31Inv_029_698632.docdoc 6157dbba4f741eefa74c0f002ed410a6117e719c2e626ea9dd8668d7452afa24n/a Heodo
2020-07-31invoice-NK775-239878.docdoc 4cb3ccb083a74daebfaa6b646b8294f70cebbba4515d8798b52a41cccde1c7a4Virustotal results 47.46% Heodo
2020-07-31INVOICE-8397-96338450.docdoc 99b43c6e14bfddc98c87cb9dc35cd89b59a2797e8893f5005eb0868226027f35Virustotal results 46.55% Heodo
2020-07-31INVOICE_YKKZ5059_15041937.docdoc bdfb558047f777f0a0fb66e81bab1d2eefe9a0041a72d203b52456717f30a594Virustotal results 44.26% Heodo
2020-07-31Inv-692-59215573.docdoc 1e78d834b4871e8021b0bdbff55c32e9a28bbb0f6901965f9c2bfe6c2ee9eae7Virustotal results 45.76% Heodo
2020-07-31INVOICE-M8778-097211755.docdoc b4d042616128f86d16e3236bca494492b012caccbd331f5b540d09b77e9d30d4Virustotal results 45.00% Heodo
2020-07-31InvUA6 125352428.docdoc 3d8ef147ca84e9943fdc850171e2de9c05b0db3472cd05901e4f109e7fbe07f1Virustotal results 50.85%Heodo
2020-07-31Invoice-ENC062-4878624.docdoc 24faef0a3c46f8fdf60a5fff6f323ebd01a0365dde63a55a242ecfa0455183baVirustotal results 50.82% Heodo
2020-07-31INVOICE SJ4-152795506.docdoc 31cc2ce5d46e87076266a3202b8fcf83047af212b47c84458caa5fa94d48e86cn/a Heodo
2020-07-31InvoiceCFN32_844080158.docdoc 5399417505ae67bdc2253943f273fe2b69fcdb71294530cbfe0cbe731a251b48Virustotal results 50.00% Heodo
2020-07-31invoice-CQOR9_647865538.docdoc c8586306addfc533e0c3ee2c72a3a19e28d38b0e41207d72632708e52ee965abVirustotal results 50.00% Heodo
2020-07-31Invoice-DZOF5451-15376601.docdoc 36edfa2da0e0eae3557b74c315c7dd66eb25f209f7e207682647a475984eb47cVirustotal results 50.85% Heodo
2020-07-31Invoice-HW40{:REGEX:.docdoc b6ffa6767e3b7c53645dc329280108bc5145c28514aad30f28d9b628bb3bed9dn/a Heodo
2020-07-31invoice_TV012{:REGEX:.docdoc 8e95611645644103d2ab67a6ecba315228abcad85d986852783b1af75477a63dn/a Heodo
2020-07-31Invoice Q9_056846008.docdoc dcfb38249b589a264dd4ce2c25853335f1399685fcd68d68c337f308d110a793Virustotal results 50.00% Heodo
2020-07-31Invoice-FVLH1-88155488.docdoc 105f7c3a68f898a8605a251f25363f508285b8d32b8d6fd1f1e00565dcb4e3fcVirustotal results 50.82% Heodo
2020-07-31InvUJD6_936465880.docdoc 468c03e5514c45db80f93d359506f99bcdc95812e5e37680b531dd2fd1cba7f2Virustotal results 50.85% Heodo
2020-07-31Inv-E5{:REGEX:.docdoc 2a378624ddc963eca6688d3c25bec4bc7637de2153e1f23f594622a03f6e600dVirustotal results 50.00% Heodo
2020-07-31INVOICE 4-01622541.docdoc bf0357d9a2938d3822857917e7d249aaf62c75978c0dcb1ca07494df87f4b431Virustotal results 51.67% Heodo
2020-07-30Invoice-SA1-20013972.docdoc 69f262e3d8a1665878527a0ce7ff0580243687e2802bcad1f7499eeadc4fa87aVirustotal results 50.82% Heodo
2020-07-30invoice-CK8 991501.docdoc 45af81f39aadf17f34aa962cbd9f7c3abe4d49bc3a4ab2400d56c2fd90f50725n/a Heodo
2020-07-30invoice-EKF204{:REGEX:.docdoc 881c5ef2385626accbec7572c0b5c5b5cdff760f61e1bb044546983d6c3fbdc4Virustotal results 50.00% Heodo
2020-07-30invoice-PSDP3473{:REGEX:.docdoc f2bef647cf5f376c3807d6693d2fcf28cd42e71629fb0cd64847604a0e189081Virustotal results 51.67% Heodo
2020-07-30invoice 65 6236097.docdoc 1c8026d6bd75a1ea091d6a6676d3a7e3bcba3b17717e21607488b9fdb762fba7Virustotal results 49.18%Heodo
2020-07-30Inv-L6-327548.docdoc f299a2c4f0ecc2e57db212cd815c6cdc02bbf1b9d409abda624fd7c2cc80f314Virustotal results 48.33% Heodo
2020-07-30Inv-ITOQ513-6875231.docdoc a4fbb0aaf18ce158238577166a697fa8d6376423a47673cb7ed648f5e75deafbn/a Heodo
2020-07-30INVOICE-Y1311{:REGEX:.docdoc 9c1ed7eb18e0fdaae82bfd182321793cbead92d2d90ad01cc41fa34570a973baVirustotal results 47.54% Heodo
2020-07-30INVOICE-BGX89_8214409.docdoc 01663b94d847370d937c017344092fb204b3fef3bca2c0d26c9f49ebac946525n/a Heodo
2020-07-30Inv_J006{:REGEX:.docdoc a8ceaf730fe74e1c965d074614c433d6a9a494b5a56fb1ec5ca24e31dc5e8a7cVirustotal results 47.54% Heodo
2020-07-30INVOICE QVD08-30650691.docdoc bae2af6b9665e503d04df2d1ac30e8b31685c948f248a3aaecdeceabfa1ff9ceVirustotal results 47.54% Heodo
2020-07-30Invoice_HTVX114-0326978.docdoc 1511e952c392ec9edc446fc09733a9942c3d5ca1be0b69035f348f159e7f5acbVirustotal results 48.33% Heodo
2020-07-30Inv OYMM3842{:REGEX:.docdoc 58c9d212e36aac17066b82d0856064919fdab691e2537e5f0ffdeb11df502d53Virustotal results 46.67% Heodo
2020-07-30Inv L5 888432072.docdoc 5a1d1b56cb562585cb92395ba78f4b2eabe9a5b1792cda8e8f28455fc11a3464Virustotal results 47.46% Heodo
2020-07-30InvoiceMZ38_475671891.docdoc 89e20dbcc8e8d14df0055e98cfd6bf380fa8cde12d9cbc1045ed4a521c08496bVirustotal results 42.37% Heodo
2020-07-30InvBAUL4171_499615609.docdoc ab10cbb6f714528b4ad15065cea6a610a87ca305ec3ae010d56adfce1402e1e8Virustotal results 42.62% Heodo
2020-07-30INVOICEG3-443179.docdoc b2b5bb52775d354ca1f715aea58d03f84ed213c90247c3ad861790ac7483b976n/a Heodo
2020-07-30Inv-7{:REGEX:.docdoc 46d310c17da858517554fcf0b0167e0a7f33f71e6bb42873207343ee1ba29b09Virustotal results 45.00%Heodo
2020-07-30Inv-FA3136_677734616.docdoc 57cd3c6667afd66293fe85bc6632764caa8217677ecf64f34c72677367fd9472Virustotal results 46.55%Heodo