URLhaus Database

You are currently viewing the URLhaus database entry for http://gombui.net/bibliophilia/swift/5gzmh467btdw/795638541389992424j5ka2fhi41hj/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below may have been used by bad actors to spread malware, the URL seems to be clean for a long time. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	422341
URL:	http://gombui.net/bibliophilia/swift/5gzmh467btdw/795638541389992424j5ka2fhi41hj/
URL Status:	Offline
Host:	gombui.net
Date added:	2020-07-30 19:25:43 UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	No
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-01	DOC_LQV_080120_LKU_080120.doc	doc	ef94f112784b83596fcc0ff3821d586cbc216cc3c4c8fbca25ada751d52531ce	48.28%	Heodo
2020-07-31	FILE_KGL_080120_UWR_080120.doc	doc	3d313d6dc6fa20a7e7637af1c94de520d97a71eb8fb1e68a5f6f69054d801469	48.39%	Heodo
2020-07-31	PS_WCP_080120_XVP_080120.doc	doc	33091d857d11e214a1b20764d0cc24a6a1abd2378b9b4e26884874ff24dc2a00	47.54%	Heodo
2020-07-31	INV_FV7793822486OP.doc	doc	4834d43a503e5a10693dcc514692016c26b9084f17b258a3505a4e44ac893db7	47.54%	Heodo
2020-07-31	PO_08012020EX.doc	doc	7b6a76a3a932265f067c2751c8bd6647327d0ec5bd95563dc3dc38d797a1469e	47.54%	Heodo
2020-07-31	INV_FXP_080120_UXI_080120.doc	doc	1e4b706d611f935dd5aaac2b97e921c9c1df152d9dcf98127840b7c0e60348ee	47.54%	Heodo
2020-07-31	BAL_EQY_080120_MEU_080120.doc	doc	a6d50bad4a4674a49020c5172d75868fa86668a6a03c9c421ab1ff382c3bb596	48.33%	Heodo
2020-07-31	BAL_82881025.doc	doc	eb028d6cc2f640226ea486371a452928db1bc61e3a09dfedb3a4a6d213b4a661	46.77%	Heodo
2020-07-31	PO_07312020EX.doc	doc	d331563285211ef85352d9a878f710f4a08a7d694cb8ee0e3e3dff9c9bcf3d55	48.33%	Heodo
2020-07-31	FILE_7QQXMSYZ.doc	doc	16fae461ff606c9272da9e1b49e527059fa868d3cb882b9cbfb201958608ec80	45.90%	Heodo
2020-07-31	BAL_VO0351975305NS.doc	doc	c99d29a720a02f4d759c1b02ad533deeddb74851d9703831b9ff236c9c87d21a	45.76%	Heodo
2020-07-31	INV_13009131.doc	doc	66e9380acc03aa90e855320b6090e72cc9e0fd7c72f1fd005f08a0b3e5aeda0c	n/a	Heodo
2020-07-31	INV_78528713.doc	doc	29d891e740b344f9ec63299342ad3d46a3f4841be720defaebea50963c9aff13	44.83%	Heodo
2020-07-31	F_OYP_070120_VNK_073120.doc	doc	79c176bbb127e50221aff1d14c8b4f8536dfe567f477e4608a526858824fcd26	43.33%	Heodo
2020-07-31	REP_86863451.doc	doc	67eefdc61c4894365a14b80f30a06e1581213946458527b37964761cfae38cd0	n/a	Heodo
2020-07-31	57825959.doc	doc	6f6bff6803088908604240b57a6b45d3730b455d22f9db54d6c134d22a71a91e	41.38%	Heodo
2020-07-31	REP_2D2IMKJ0C5Z5.doc	doc	728a0a1d8f9a71bd86dce389f0dd100a5abd819ea428304f97e35104903c0a28	n/a	Heodo
2020-07-31	DOC_XM0564086679JD.doc	doc	5e55aa28613770be2ebdf584ad12081c21c3029122a4d016325fe4c933a1fb68	n/a	Heodo
2020-07-31	PO_07312020EX.doc	doc	e3ffa6100001a0b693fd8e169864c93f0a6fd4c1d3430e669cd053d7fd344c8b	40.98%	Heodo
2020-07-31	DBD_070120_MIR_073120.doc	doc	819d91bf43d4c318008ef846e30372e2d6d30483faf960b16f2473b915b1b612	41.67%	Heodo
2020-07-31	INV_60008980.doc	doc	7689cf53f260808946f1b53dd444210423a975b7fc7754c1fe6b04960286f9a3	48.33%	Heodo
2020-07-31	P9Q7NJJY.doc	doc	322a7665dcf14c90511c88b7a62d6384296ae003dd2c586bda876768281e73f1	49.15%	Heodo
2020-07-31	DOC_46913590.doc	doc	582a1cef0fa903d6e306172892c6ec7fc72bed9ac3fa49364da864273c260db1	n/a	Heodo
2020-07-30	REP_PO_07312020EX.doc	doc	1c9a402f03f531de1c9a3c3bfd29912daba7d791379b7788d23cbdcb7d99290a	n/a	Heodo
2020-07-30	WMFB_JRK_070120_TJW_073120.doc	doc	b920bae96043cfc55017d7a67bb6c5caac098cfce2620c6348e63cf4f7842378	50.00%	Heodo
2020-07-30	INV_TS2R2W0F9.doc	doc	b428976d96415b32efb7157b375160dd676b448e1566fad5dd8da634fac3cc64	n/a	Heodo
2020-07-30	Z_57357534.doc	doc	f3ceae5781ace1e523935bb48baaf6484791c5cde8e95f8ce6db69f31b2917a4	n/a	Heodo