URLhaus Database

You are currently viewing the URLhaus database entry for http://www.cbi.com.eg/wp-content/multifunctional-box/479140351167-KQZikOmjyHvaK-forum/w152yv5-w0w0s0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:422362
URL: http://www.cbi.com.eg/wp-content/multifunctional-box/479140351167-KQZikOmjyHvaK-forum/w152yv5-w0w0s0/
URL Status:Offline
Host: www.cbi.com.eg
Date added:2020-07-30 20:13:05 UTC
Last online:2020-07-31 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-07-30 20:14:02 UTC to abuse{at}tedata[dot]net)
Takedown time:21 hours, 45 minutes Good (down since 2020-07-31 17:59:48 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-31List_7596951.docdoc fbd0c49f5c2708ad67b9d66dc6d64eebc7ab9d234b2b79321393591d081dbdeaVirustotal results 46.67% Heodo
2020-07-31list-2020_07_31-256.docdoc c54a83ed7df0a40d62a865853af530ffc4372e2bf7255a43bd6e352ed5ec9868Virustotal results 47.54% Heodo
2020-07-31LIST-2020_07_31-ANM3382.docdoc 3ff6d346ba30b381f485bb036f6640bd7a206398fab2270a333fc11bf4329e40n/a Heodo
2020-07-31Rep QY59761.docdoc 3807ea27c87ef220916b55deb372a2eab386ffd18028cfee853a34521e6fd377n/a Heodo
2020-07-31REP-2020_07_31-JEZ75132.docdoc 4c6a9e9d068aaa2a313b10f83cb3f03ba7afdca5c5cf699fb7da411be652526aVirustotal results 46.77% Heodo
2020-07-31Inf_2020_07_31.docdoc 6dca66df42bd8494a68b0844baf9a74e4bbd8da25633bca4914817f18657e009n/a Heodo
2020-07-31List 849432.docdoc f9daf58283bfa44af378dcad38562399d3e8a6ed3117f97a4019941b8f6164baVirustotal results 46.67% Heodo
2020-07-31INF-42030.docdoc b9e30b1122f4f7b875893dc81126dc002e58997fde186f9a50efa25d0d41b8a2Virustotal results 44.26% Heodo
2020-07-31doc-20200731.docdoc 0d19eab6c2f65c93fb4711c4ffc828bf9cb8d040a96755fd0c8f7ca1e360dd1dn/a Heodo
2020-07-31file-20200731-26684.docdoc 6559d31bd3b4516030639ae34a8eddad15c6e57874d70ba30fc618cf0a792092Virustotal results 45.76% Heodo
2020-07-31Rep-20200731-003.docdoc c34cc723608cf1589acd4aacff4c1cc291df02a859ba8df666c93573275cb5c2n/a Heodo
2020-07-31REP-21356.docdoc 5a2684ad28a602e041aeddf1c0ffab3a0ce29c3420b4a4d8a8351043a2269483Virustotal results 43.33% Heodo
2020-07-31Doc_20200731_871.docdoc cd29071298cbab67d898b5cbcf4b56f1b7d725f85267037659bdd2da3083f57eVirustotal results 44.64% Heodo
2020-07-31Inf.docdoc 72038c4d742717c91add32782d8128e5c7753b4cd7ef566bcc1d39aa0df0677en/aHeodo
2020-07-31FILE 2020_07_31 1935241.docdoc 596669e4ee62dd88d2ad8cd5b9f66d21a243874280e56566b6530cab61ed15b2Virustotal results 41.67% Heodo
2020-07-31DAT 20200731 681.docdoc 67ed4b0c64b53843652c30e3d24300496d59cbea3def00912b82490ae3057394n/a Heodo
2020-07-31Rep-2020_07_31-EA5661.docdoc 79549b185089294cdeac8fb216fb34ea37a63e73fb98e984d229557aa428fea2n/a Heodo
2020-07-31INF 2020_07_31 351.docdoc b7866f0bf3b77092eb43f36d11d3576b2e4db31f80033dc2ce61b2c12f799e15n/a Heodo
2020-07-31INF 2020_07_31 NV9781.docdoc 27ce43fe47db68424483795b29ece2105efd82b3916c52c71c7e90acda9c6134n/a Heodo
2020-07-31inf_2020_07_31_GFZ031.docdoc eedaaf67ad14a0213229367966ad1333e3f8085e1e6b83683d7fac0e3e16ae28Virustotal results 40.98% Heodo
2020-07-31INF-2020_07_31-2915.docdoc 7172995d1d5b54353bce9bbad1ec7900ca7175b8a7e41e5d86bd80df42e1014an/a Heodo
2020-07-31list_2020_07_31_4355.docdoc 97071ba63f17807623b2324ae19a8fc1cf5b4dda03e64e3c6bf3921575d83695Virustotal results 41.67% Heodo
2020-07-31rep.docdoc c67829ddda6b856d8108c7466c504e2fe554ee00e99fbbd7c7ede24a312a9807n/a Heodo
2020-07-31Mes-2020_07_31-YP67779.docdoc fa3e81294239894ab6d187ff561319cd3f23649f9888593ae2c7bd734af6ecfdVirustotal results 49.15% Heodo
2020-07-31file_6630.docdoc 0d9bd1c99b795fe81a3fd93c3876a155141a8aae073c9bc13d6e68771efdd59an/a Heodo
2020-07-31File 2020_07_31 U84215.docdoc 4747129b682a8bce6fe1548a36147ad211b0089ae003ea7a9e8524d287e0fba9n/a Heodo
2020-07-31REP.docdoc cfb9e071cc0b8abf3bfe496027745ff1085b24dafec350195422d545c337001bVirustotal results 50.00% Heodo
2020-07-31LIST_326119.docdoc e65be429adaa3fc5ffe6032682cc985f717d526c15b0ef7ee2dc4aa882231c02Virustotal results 46.55% Heodo
2020-07-31Inf-3275.docdoc 504a1e650555404e3526d3045ef7bc16a577c06635215b1cea49e2c8877a7cf7Virustotal results 48.33% Heodo
2020-07-31Mes-2020_07_31.docdoc 3c7ec988c0951420c57857cda05c624236d7f014f4c4c720d4937152b0366eedVirustotal results 49.15% Heodo
2020-07-31doc 20200731 796.docdoc 3d0cc46b7da5512e1f7e206cad81500810333df0c10fd1270f314353c2602d83n/a Heodo
2020-07-31mes_20200731_GU51929.docdoc 8fa1a53141a9745f824ecea3c830850c7b798488ba6e3e33382229bf495c1d5dn/a Heodo
2020-07-31Doc 8192258.docdoc ae98434b475cd34f72aa2b317e2c29339d0a2578d792a14ee7102cc0bb415aa8n/a Heodo
2020-07-31Rep_20200731_7110.docdoc 2af35203a78ab48a45126f959aa05f3037e941bc7ff22d04decb13d88846a967Virustotal results 48.33% Heodo
2020-07-31Rep-20200731-324654.docdoc 7b19a2c4df568d90adc7b0f3e4379c9b0df814da7955b4e4af1ad9860460407dn/a Heodo
2020-07-31ARC 2020_07_31 4046906.docdoc 57b075be6438184bf527bd055363a33f851ee9acb765aaff3c717f2ca6ea7d5fVirustotal results 49.15% Heodo
2020-07-30inf_2020_07_31_432260.docdoc b9c357adce4a39fef2bdc25779951e2f40307dade90e05fdd0f95b77cf77c786Virustotal results 49.18% Heodo
2020-07-30rep_20200731_Q9511.docdoc 1aec4694358be776e5733a6efe431b95ad93ed01eb0b394bac898a68f62938b5n/a Heodo
2020-07-30dat 2020_07_31 63874.docdoc 103409fe241a51656f19890d23c38daa378646f589ef42fb9a84480af85fcddfVirustotal results 50.00% Heodo
2020-07-30DAT 20200731 UEZ118356.docdoc 16312617256751866a6609cf1deb47b3605e122c7c756151d68c635960088c31n/a Heodo
2020-07-30arc_2020_07_31_160912.docdoc 80565d4ed000d2c561645c79096f5e2fe04ac3f5c7e9e34ac68cb4ed9306ceabVirustotal results 50.00%Heodo
2020-07-30Inf-2020_07_31-LX465.docdoc 4122a94cf3814bd9e32328263e6b981316558b31ce38df659a1853a02274dc00Virustotal results 50.85% Heodo
2020-07-30Mes BD805.docdoc 1076bbb650f5180bd85eead7b5411b8d601b04cebbf38dac7328ea86b4e7adb8Virustotal results 50.00%Heodo
2020-07-30Inf-262382.docdoc f7bfbd7538d1263cd80ba4bcfbe37a00d9b9d38fdf39941b66202d40ff00b539Virustotal results 49.18%Heodo