URLhaus Database

You are currently viewing the URLhaus database entry for http://www.handler.cl/resumen-uso-inodos/dBvOJipcT/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	427097
URL:	http://www.handler.cl/resumen-uso-inodos/dBvOJipcT/
URL Status:	Offline
Host:	www.handler.cl
Date added:	2020-08-07 09:40:17 UTC
Last online:	2020-09-22 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-07 09:42:03 UTC to abuse{at}zamltda[dot]com)
Takedown time:	1 month, 16 days, 12 hours, 21 minutes (down since 2020-09-22 22:03:19 UTC)
Tags:	doc emotet epoch3 heodo Quakbot

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-08	INVOICE YTL7682 507423180.doc	doc	5d7f4b905c268a16b873261ceb5f2bca434dbaa45ad6c5b20a3d43091709ace2	39.66%	QuakBot
2020-08-08	invoice-T5-827503688.doc	doc	934e668c7d90204ad5578903490ce28fd0e338875fabd6a82a4789afac1f3062	38.71%	Heodo
2020-08-08	Inv-GLY0-062254510.doc	doc	b203ce9f83d385b987ff9b43259951280c34830fbba17c5263dcfa112ed1396d	n/a	QuakBot
2020-08-08	Invoice-L7-97199194.doc	doc	c3d556b58967b1957a9c5b9e5465e6af4230e6f94ed8b1109d30445a86d2fb9f	40.00%	QuakBot
2020-08-08	INVOICE PDO616 717420.doc	doc	795144410d184d35fd61e5d83a0b3a1bb669ef7c4ed028eb1b315a78e4ddd9bc	n/a	QuakBot
2020-08-08	INVOICE_YJAI05_1083049.doc	doc	7362b1e859fb740c6cf774d7528bffb89eab97ae0859801ac7a09b3a399ed651	37.70%	Heodo
2020-08-08	Invoice_J90_570788743.doc	doc	c8451a4260d26137a6dc3200a2290e14f2210f03417e39e58ad95052ec6b0de7	39.34%	Heodo
2020-08-08	INVOICELXOI94826916435.doc	doc	51d32641c97d78c53640cc9fec84f1b150eb754042a74ce028d92f70bcf7544a	n/a	Heodo
2020-08-08	InvoiceA9294894338853.doc	doc	e2f4571846f5b8e17a5481779757851f78f2853f6734ce6ef4a92db0cd0c5de2	38.71%	Heodo
2020-08-08	Invoice 037 18762031.doc	doc	b5b0dab6e7d7a2fc66a0947ad16fc1b6de4d68b73d5d071459ed06b18a96a8a0	42.62%	Heodo
2020-08-08	invoiceMI659882119179.doc	doc	c9bdce375621af7dd83001e09e95fa17ae125b59423cda4a4499fb3f31fc1ade	40.98%	Heodo
2020-08-08	Invoice-I6-8582636.doc	doc	8ee784204fc5d7cb096a234e69f593cb6807f74e01a2393e1d1f9a8e99f22b74	37.10%	QuakBot
2020-08-07	invoice-S593-4798552.doc	doc	d91731a4dfcfb45b578cde0a57e35273bdc0eecf426e738a1f52a32e989c9fb9	37.29%	Heodo
2020-08-07	Inv 2 188152.doc	doc	346b0ed5db257c2bf541ae37f57e3971a19bc69310811cbe7fa037768f2136a1	38.33%	Heodo
2020-08-07	Inv392451605.doc	doc	847871d283f7c713a149c57d41ef65f78b7c7f808ba380b9e80f09fe48a837d6	35.48%	QuakBot
2020-08-07	Inv_FRIA8592_48016300.doc	doc	7ce67620298aa7d0fe5e7f2bab8e052f4a4ce937c3300c92875e33d7b466acc0	36.07%	Heodo
2020-08-07	Inv-DRK8-113509373.doc	doc	6d9ffb2447adb083ad20788cb467c96a7f91b27d9a5a9eb35a13e2471d909b32	36.84%	QuakBot
2020-08-07	Inv_DLZ5_662757.doc	doc	bb196956c5e57876daf8c64828c2b0cff8f83fc540f7ff492ecd7632f8a235dc	36.07%	QuakBot
2020-08-07	invoice-974-3364928.doc	doc	5871ec926c8f2a5e608bbcc0aadc55520fcba58d418280c7f44449f8e88a3d41	32.79%	Heodo
2020-08-07	invoice-Y0-66921623.doc	doc	01415a0a9ffd595121b549de4447ea446137954484eaa2deda4b870f30782be5	33.33%	Heodo
2020-08-07	Inv-QE5-801150242.doc	doc	23f821e6c9ca56b683bf96dc9e8d6d19094c60ea1223073f466278f12a2745ed	29.03%	QuakBot
2020-08-07	invoiceQQK6435249443.doc	doc	3a7e162433ba4372c7e49ee5cb6bd4afb23cde7bc0f19d39edc30aa22473994e	n/a	Heodo
2020-08-07	InvoiceMPQ96436824387.doc	doc	c2ecd3419f71d51acb56c7f02e685cdd46ec96514b459545a931768e2141ae58	27.42%	Heodo
2020-08-07	INVOICE2670955.doc	doc	ab1f576293cc70428b0adcadcbb453c1525ff8bf2fa71d650e52b83ff4092f81	26.67%	Heodo
2020-08-07	INVOICE GU8 875912.doc	doc	288bcc48727e2eed9e8b0c26b5c3e04a3856769d65bfd4065bba4a533237bf36	n/a	Heodo
2020-08-07	INVOICEQN97174022563.doc	doc	f2f9d8844e0ea0472349e17048e353522a138927c4b88802535845aa231f0833	24.59%	Heodo
2020-08-07	Inv-NZP2-07744693.doc	doc	fe2a7c9ef45e330a03ae7d563a86ae6a60347ecb9b4cd212a55d9695dbc48f61	n/a	Heodo
2020-08-07	invoice 02 61622283.doc	doc	d3c7b17eb10b73fa3e2c519f2e78fbf3d2fc0ceca12fa1eb7b6d2f2b550ee3ec	25.81%	Heodo
2020-08-07	INVOICEW93101012.doc	doc	969a99e247a7799ab5d43893d9ba53bc202dea27b3246da220b250308ea060d4	24.59%	Heodo
2020-08-07	INVOICE-OGW394-125599724.doc	doc	f3d9f7cc7e604de1c96321d3ceb0e2d2099aa4bdf9e36bdc861bda08c76601b1	26.23%	Heodo
2020-08-07	INVOICE MABB372 756704898.doc	doc	ad8fc14787b10f1dd4473d7b7ec98565f64ee0493926368426c7ed261339666f	n/a	Heodo