URLhaus Database

You are currently viewing the URLhaus database entry for https://www.rbrandguitars.com/cgi-bin/protected-section/verified-area/pkik2g-y74u7y7u692v89/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:427021
URL: https://www.rbrandguitars.com/cgi-bin/protected-section/verified-area/pkik2g-y74u7y7u692v89/
URL Status:Offline
Host: www.rbrandguitars.com
Date added:2020-08-07 07:13:06 UTC
Last online:2020-08-12 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-07 07:14:02 UTC to abuse{at}hostbudget[dot]com)
Takedown time:5 days, 1 hours, 53 minutes Bad (down since 2020-08-12 09:07:30 UTC)
Tags:doc emotet link epoch1 heodo link Quakbot link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-08Doc-20200808-277933.docdoc ba50483a5407dc7d213263534638c2e4e0445d9d06f977dc496e979beda32f33Virustotal results 45.76% Heodo
2020-08-08Doc_2020_08_08_A369494.docdoc dbbfe251ebab8c3e19de23d3e0aca5661d1e893f34b9a123699fa7f2d3d5b8abVirustotal results 42.37% QuakBot
2020-08-08List.docdoc 31674d9d2a53c9407819aec8731838ed678f2d3317a2a4a47680fcea72536fe0n/a Heodo
2020-08-08DAT-2020_08_08-WJZ839.docdoc 6d851aa91fb4cfef84903c3d1926892f45b06e662077f5fb62434768f44e5ea0Virustotal results 41.67% Heodo
2020-08-08ARC_2020_08_08_301789.docdoc 62112657085b9dc12429d5002978a67b6a792db61dca0bfd23db9d5370717ec5Virustotal results 43.33% Heodo
2020-08-08Arc_20200808_348097.docdoc a5b4fca70c16e40a7c4bad03de3c8f0448aea24ebbf989026202c94a9eeee7f8Virustotal results 40.32% Heodo
2020-08-08LIST_2020_08_08_TX700.docdoc cec603db22ca641e772ad1f3912383a2b3c73d6210e966c3b6ab9b4ab6695362Virustotal results 40.98% QuakBot
2020-08-08doc 20200808 523890.docdoc 4be780211b5eeca427c252f629f2ed5b1e7062193463819a056e705ffa9df1baVirustotal results 41.94% Heodo
2020-08-08MES_20200808_RD1619.docdoc ce5d6aa5b1cfe76e48ec485669e784f6e6fa115c5c008cd89c499726b2a74652Virustotal results 40.98% Heodo
2020-08-08Dat-2020_08_08.docdoc 5293588efc9ab0d7fb9777c0bf75ed1974bcc07364bd907aa5ff69b13de3aa46Virustotal results 40.32% Heodo
2020-08-08Dat_IFC220106.docdoc 424cf5c4a91c06c70e70f85621afca02a6335435bc3aca17a07b860ca1d9cfb2Virustotal results 43.10% Heodo
2020-08-08Mes_XCX7508.docdoc 7db111b6a3b2b44ddb5ce3413643af61cc16843c9921e8fd636a7d8cfb7894d6Virustotal results 40.98% Heodo
2020-08-08Rep 20200808 2127.docdoc da431f9f7888ba7c9912a4ddd22f7d4bb12fcb99f9003d0e5b37a30ba731462eVirustotal results 42.62% QuakBot
2020-08-08LIST 9573.docdoc 4749be0b925b0d49c831813a68772865cc0448b80e10fc43d06b81c93c5c9e34Virustotal results 44.26% Heodo
2020-08-08dat_20200808.docdoc 2ef95fd9c222a0b299b53659e79526a1281e9d076b75aafaedb447034237ba36Virustotal results 44.07% Heodo
2020-08-08DAT_20200808_28944.docdoc f21e6c6dd73f1a99d913d80b3465c4aa3df89467e4a9711cda9de6b9f3c310bbVirustotal results 46.77% Heodo
2020-08-08Rep-20200808-CB0762.docdoc 8d118098701f23422ec3560934134ab170767e28ea66c8a336be4dc8ec102987Virustotal results 44.26% Heodo
2020-08-08Rep 2020_08_08 SU3799.docdoc 70d75d5cd67db6987e30cdec0ba5856d4d7acaedba8e771af42a12151b44295cVirustotal results 41.94% Heodo
2020-08-08arc-UT745912.docdoc e5e2f23eae1e5ced0e4dd57ce7c5c5ebb9206decd8ef46a05c454df21be49ea6Virustotal results 42.62% Heodo
2020-08-08INF-2020_08_08-V0760.docdoc a0106e59dd260be14700f439f7a350fc5c02d1c3f1eea2c3da779ea8edbdee42Virustotal results 42.37% Heodo
2020-08-08Inf_X0840.docdoc 68fa39fdeeb2482b9dbec2a1c2a7649e0a1e4b883528ef42b407a240bac4065eVirustotal results 40.98% Heodo
2020-08-08Dat_792.docdoc 56cdba181ffde696964d97ad5737c127e271d4beb75e1ef87eb83d1c3242831bVirustotal results 40.98% QuakBot
2020-08-08FILE 2020_08_08 J585720.docdoc d840943a1f750210b98a2f26d5852b1c58ce7e454a38b38884f0b5371ec1198aVirustotal results 40.98% Heodo
2020-08-08rep_727437.docdoc 21a4526681f542f3066046ac15cf21e2d5e9d49314df6b742be7b46d67f8f0a7Virustotal results 39.34% Heodo
2020-08-08INF 2020_08_08 YT19593.docdoc 10e31c0403e39c143f65d38765e917f12eb759a504a40578a2dec5ba5c1a7efdVirustotal results 40.98% Heodo
2020-08-08doc 553194.docdoc a06d116a6a22a8bf4413f8be14dc63fced336358a21a7711ab9ac2f94da681b2Virustotal results 40.98% Heodo
2020-08-08Mes_20200808_OVX891285.docdoc e9bf95d02c5b2b1e8ac21c595cce59294b8a54da32e71a619cdf2ed03448dc96n/a QuakBot
2020-08-08arc 2020_08_08 Q015569.docdoc 501893610fc7b68385c512147e464fd30fbe631de1d21b4b7f2f89bbc7583e81Virustotal results 41.67% QuakBot
2020-08-08Doc 20200808 RXL219.docdoc 1562546e7af2a1ae8fdc323c8c8efb077d72b897914796be46b612c6379b1d29n/a QuakBot
2020-08-08File-20200808-YL46115.docdoc e49e34bfeed9d527f6a2c80df9f388d89705278aafa1aa2b250556754ac38944Virustotal results 40.98% Heodo
2020-08-08inf-20200808-8404.docdoc 132a79f10403808ae939cca854d6eb7a7f061536f04f3d1b735c0284ac46b163Virustotal results 40.98% QuakBot
2020-08-08doc_979345.docdoc a737ca74e110edc3bf6b03a41b8f19a2e7c5b5e3ca563480e94efc99a1be9f0aVirustotal results 40.32% Heodo
2020-08-08MES-2020_08_08-VM461.docdoc 58088a9fda3119b215f1635d1dd1f036ee4788de1ae879597e78e7f3122b4b43Virustotal results 40.00% Heodo
2020-08-08doc-2020_08_08-824280.docdoc ec11d3cebaa5d4d05ef93c8b88ab79e34d82fede8daa5a821d119d12de060ffbVirustotal results 44.26% Heodo
2020-08-08inf-2020_08_08-70795.docdoc f3be0b911d44447b80b1337f332187ad596fbfe6a0739cdacdd2f9d759e12114Virustotal results 44.26% QuakBot
2020-08-07mes_2020_08_08.docdoc 5d2b88e4fefb1593bca1de5b27276ba0d00140416c91339fc6fd44431c8ccbd9Virustotal results 40.00% QuakBot
2020-08-07INF 96723.docdoc e8cfc1ea617361564b695bbb732436a5b497bec2660b878ca91e398406298900Virustotal results 36.67% QuakBot
2020-08-07FILE 20200807 FWG3984.docdoc a69000df0de02fa33f76a39760c10e3b343cf3987577aadd182e361f49d7f5ebVirustotal results 34.43% QuakBot
2020-08-07Doc.docdoc 646ccd64823cfa77dbb491953dde3333f48c8c19ac7a2753088a96dce8b0d397Virustotal results 33.90% Heodo
2020-08-07LIST_2020_08_07.docdoc 33d09f23d234d19cd900a5bcc13358af8cad6d6df26ec505ef0f46f004d342adVirustotal results 33.87% Heodo
2020-08-07File-20200807-PGH83615.docdoc 72e7b1f1f982d507c7ffcce28b3d49cd61c6ae305f47ade10cb7da5f3210ba5aVirustotal results 33.87% Heodo
2020-08-07DAT-20200807-966859.docdoc 7ba25693e2acb9afa6c453839ed62fb82efd94369f13a1549a0b57b8949cf0ccVirustotal results 33.87% QuakBot
2020-08-07file_2020_08_07_016853.docdoc 5cc4b2533d3e8e5c1b21cdae7a43f181f01351036c17fb3b35fd05c59383552aVirustotal results 34.43% Heodo
2020-08-07INF_2020_08_07_F930973.docdoc 9bb646dd5265b86eba5c799d25dec0df4d675cc6e841b5487f22f53532ec4c74n/a QuakBot
2020-08-07mes.docdoc 612b33cca81c88e812436d48c987273b54a73bdc04a908102beac2aaf50b5825n/a Heodo
2020-08-07list-NLK408.docdoc 8e2bbe860f81156cb3f65c53cc9e82ba407d702856b895049330baf81c76a673Virustotal results 25.81% Heodo
2020-08-07inf_20200807.docdoc 3faa5383383ac0ea0fb3b0b200cc128ce70ea0f3b00966d7c5fade338763eae2Virustotal results 25.81% Heodo
2020-08-07Rep 20200807 89009.docdoc e557c9d2cc0e3f2aa2355b58c657834d11c61fe22903ea0800713dc9e09632c0Virustotal results 26.23% Heodo
2020-08-07arc-20200807-MF461847.docdoc b4bfa9abdc1af9d31045f6c98499ccfa5e332945a2b269c064bc108023673a2en/a Heodo
2020-08-07DAT-AEE831416.docdoc a288dd3026142c4fb729f070fdb05a968a11a0cb77d24bdcc066866ac51eb936Virustotal results 26.23% Heodo
2020-08-07ARC-CWG763986.docdoc 3ec975d212b214553bac033787cb72d8310c493b5261f76b8ba3b5421b9f31e1Virustotal results 26.23% Heodo
2020-08-07LIST_2020_08_07.docdoc 11a879a7d8dec97462c1c9185051ef6a793dfa91fa064697aebc8e58839b888en/a Heodo
2020-08-07mes_XZZ01284.docdoc b584a5aebf9d1ad385649f724d7889be3f925dbb7a40ecce452d88f63462e44cn/a Heodo
2020-08-07FILE-2020_08_07.docdoc af8ca0fa1d9fa19974e76b3491741aec5421ff068ac5b8fcb364b9fa30edb3ccn/a Heodo
2020-08-07Mes 20200807 EY7306.docdoc d8b1512c883ce8a757dc12b9a48423d6f6854ab429004ae2435ed470a397dcf5Virustotal results 25.00% Heodo
2020-08-07rep_JS04763.docdoc b556ecc3eb51d65551b28b2e9647f7104ca35427be65f2f2cb9b6384a1b5b3c4n/a Heodo
2020-08-07List 20200807 M839.docdoc 90f8bbf6dee1ad7d38d610ea379dd8fd80444592cadac1f1497cad9b6d4e5caaVirustotal results 44.26% Heodo
2020-08-07Doc_20200807_9264.docdoc 2c5b7f8488ec8abc944d1a90f84293494cb7c6dea6cd23bad40fce8429f41442Virustotal results 44.26% Heodo
2020-08-07File 2020_08_07 ERJ721.docdoc 9f58b57617f52899c47bd379b11f89328aee5e1a1d004a5b831204a5b3992b4bVirustotal results 39.34% Heodo