URLhaus Database

You are currently viewing the URLhaus database entry for http://bagraphics.net/LochaiStine.com/08735/x5km442795227311722044p89g50x/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	428220
URL:	http://bagraphics.net/LochaiStine.com/08735/x5km442795227311722044p89g50x/
URL Status:	Offline
Host:	bagraphics.net
Date added:	2020-08-10 11:11:25 UTC
Last online:	2020-08-12 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-10 11:12:01 UTC to abuse{at}uk2group[dot]com)
Takedown time:	2 days, 4 hours, 43 minutes (down since 2020-08-12 15:55:32 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-12	Y_PO_08122020EX.doc	doc	8ba174f163ab56df5f8be5039e97d2737cd41edee6deb87ad1fe07aa70c30554	28.33%	Heodo
2020-08-12	INV_79620426.doc	doc	445ce6e58d4b1065155b98012da83fd1b0e86a027b8e6d2d48c2554ce66bd869	28.33%	Heodo
2020-08-12	12925126.doc	doc	d4c552ce903e8455566a265fd7ba1a276db5bf2a88ad998b7c93e89989d1aecc	27.87%	Heodo
2020-08-12	167541589346035315997023.doc	doc	deecd2c02ce1300608d772703afe9dda7a49aa3c1a1d59246b476138d6ebe201	28.33%	Heodo
2020-08-12	96319572.doc	doc	9c207c0c5698ac5ea7993fb5eb0ddf77b235db32d180fd91a69df2f55b14490c	28.33%	Heodo
2020-08-12	XO_5SBTB5U.doc	doc	408bd6525ea4e38ffe39a42a4c24c314099dff289a0cf7ff621c7f171c63792a	28.81%	Heodo
2020-08-12	FILE_PO_08122020EX.doc	doc	75ef3d95b4977d636664bda5c6cd5f0444ecc1ca7d0753f424bfe829474fa330	29.31%	Heodo
2020-08-12	BAL_TN2901260295RU.doc	doc	0085be76f66a4d51c202440ddf5c76d922cfd0c94826d85c4dbe605628b89dc5	28.07%	Heodo
2020-08-12	INV_LZ9641514831SA.doc	doc	1e1197d27bc4e2c81bf36570d41052b3f74d24df43ce0250b2d53d7b2269c20b	29.31%	Heodo
2020-08-12	N_3SD6HP6PGR5W.doc	doc	fe14ae5d76ac1ccafc67f474efe315000dadae344444a44c9200e04e94ebbdad	28.81%	Heodo
2020-08-12	K_DB7621390363SU.doc	doc	05fb55b118852bdde2c76754d2d2b2700accc08481280cc2309ab985aeb86c06	51.72%	Heodo
2020-08-12	INV_IY7295413106TB.doc	doc	af51abb1270f34af770a98599b8023a55d05885a976e2c898299e78ffe91c943	51.67%	Heodo
2020-08-12	FILE_WCQ_080120_REX_081220.doc	doc	274183210ef39b2e9096bc782cf02e85e4101e18805e59ce55692d90bfc9a51b	53.33%	Heodo
2020-08-12	BAL_22337803723537121264959.doc	doc	6f973501cc2dece992aa2f959f8e352e424e96f06abb300b4bed8bcf2ab4bf34	51.67%	Heodo
2020-08-12	DOC_QW9232494973NY.doc	doc	1d2096f4adcba717670858b98912615f7bc86bd95ef6b3117901aa4ae6383d4d	53.33%	Heodo
2020-08-12	INV_PO_08122020EX.doc	doc	75e0692474be7d8066516c6ccb1904530d6540d82228ca27d52c6c8c5f806264	52.54%	Heodo
2020-08-12	INV_PO_08122020EX.doc	doc	e95c19b3173d0c69d60efb950859b2ffd3020235efd6c47ffebddf950a0edf52	n/a	Heodo
2020-08-12	REP_T70S70G.doc	doc	8f78d106bc2f3e79349aabe3d812859febc3039e06dced8aa67b29e2421a9d31	54.24%	Heodo
2020-08-12	V_63923384.doc	doc	7575d9ebd2153fdfbf4c1626ec4769e8cdef40ea8e2990670f1cc5cba71a2e7e	51.67%	Heodo
2020-08-12	INV_PO_08122020EX.doc	doc	da9f6e2ae0ff87abb8b7d2716ddba59950db9ac472fcbc968f391b5f6b742fbc	52.46%	Heodo
2020-08-12	BAL_TBU_080120_DVL_081220.doc	doc	358176ae69d49cbdc29ce5f8965efe9952253949970d9de4e8f09f46c488e6ec	50.85%	Heodo
2020-08-12	ZQM_080120_XBO_081220.doc	doc	b06fa4a03274712b0d1bea0d2a5d1afc2c71541acb80b1054d31b661b67514ea	n/a	Heodo
2020-08-12	F_19784924.doc	doc	e4d1deaefa7f905c5ce7490867ae09ff2d50fdf4162f102e276653c1c46eeab6	n/a	Heodo
2020-08-11	P_101699775.doc	doc	5a95e436c4df9dfb41496c96489d1bddf6db2c7d54ccf0761eb61ef1af9c83a0	n/a	Heodo
2020-08-11	MY8350757071HT.doc	doc	cafe9be1769c83fbeb348a49f0c1e0512df75007fbca4689516ce442fa72b54e	51.67%	Heodo
2020-08-11	AAK_080120_OZF_081220.doc	doc	854be831ad01f15c5a5cc2f0f253d059b2a9faaac66db5b90fe51b3daa401c57	50.00%	Heodo
2020-08-11	I_NWQ_080120_FZC_081220.doc	doc	1aac25866333e7f77dc237137353a0a65ce189972d87658229eae96e3037bc68	51.72%	Heodo
2020-08-11	FILE_1369581048094082251634427.doc	doc	1b12d2490da123684664ff9e627dddc8f23b3a666af8331bf3cc409949f91f31	50.00%	Heodo
2020-08-11	V_PO_08122020EX.doc	doc	6c5380e193b725ec3ea512a3146d8c0925c7c489800dad57d1b4b2f940751d22	52.54%	Heodo
2020-08-11	DOC_29561876.doc	doc	ddcfa6beac3f79149c8786ca9af44062331f6222f46f5ccfb1429ff859308dac	n/a	Heodo
2020-08-11	5L03UJUK.doc	doc	cbacf0f510ec4c1a5cacd10259c0e6075f65050b602e47fc67409aefcb6af60e	48.33%	Heodo
2020-08-11	QE6328561360DR.doc	doc	4e1398a541baa1807c7737004b16fa72d75d9e64ad0b772b4d78be698725b753	50.00%	Heodo
2020-08-11	DOC_45533911.doc	doc	544045a4220133bbe6fba0dc73c65a21782329649d1c4ab92cf883cc1dbae677	n/a	Heodo
2020-08-11	1691099318566611132.doc	doc	3f9ed468a85787c4bf29a327c525e87f3ac3fed5b4079b2958f3617ef3d3a1df	40.00%	Heodo
2020-08-11	INV_PO_08112020EX.doc	doc	8e5f3490181127db4ae19a0c19a2aab3233016bcc64272ec836a68426ed0ae89	n/a	Heodo
2020-08-11	DOC_26400989.doc	doc	16004f742c9d51196b4a45e665c360f8eecec87448f703ca65f1ca9fd2748deb	n/a	Heodo
2020-08-11	REP_IOF_080120_BHR_081120.doc	doc	2e6ff6d6098f2b63d436caef9146a587a4906131d0cb324b675b959be4d88598	38.33%	Heodo
2020-08-11	DOC_17133555.doc	doc	dfe95319cf0ecc8daf385929ff7c7cadb747e81a026fdf88dbb55eaf43b38491	n/a	Heodo
2020-08-11	RNZ_080120_JJS_081120.doc	doc	819a2c8717a367ec5a69f4a0ddc0eed9f469fea2415f8b0e3defc94d21813f41	n/a	Heodo
2020-08-11	BAL_JK7B066ITN0.doc	doc	e1973b8ec4b91daa517547b42f329304ae3fd6b95c20184e1a945e7926f4383c	35.59%	Heodo
2020-08-11	INV_228761846247089605.doc	doc	208687883ec482d8ef391621a964345892dc3af09bbb0797af59fb18935df319	32.20%	Heodo
2020-08-11	BAL_27FUL7E.doc	doc	5ca1aedbc7b3e63e13e3b3263321e12f1d49d668c331db20a1f996b3fd362894	32.20%	Heodo
2020-08-11	007359078.doc	doc	3cbbd9298f3b6d77456b687dba10ecf5f45614573ed3be647167c5e96ef16552	30.00%	Heodo
2020-08-11	INV_OQV_080120_BMQ_081120.doc	doc	8bfd3587537db9be73cc189509eab9796c40a95566b79753724b36ce7dce7c19	n/a	Heodo
2020-08-11	INV_PO_08112020EX.doc	doc	be1ea14251fcd6f2b5491c2911923c9dee4c5e3441d8a5493d8eb189ea03eedc	28.33%	Heodo
2020-08-11	BAL_PO_08112020EX.doc	doc	74c60ddf02800ed5d9c79d78e912a81ed34d20ccb8fab265ac1512c0ef32a93e	25.42%	Heodo
2020-08-11	T_005018014354182.doc	doc	f266dfe6eca386777143d38c655e759b22fba117bcd9138c44354938222c1673	25.00%	Heodo
2020-08-11	C_PO_08112020EX.doc	doc	3c96d99ab907c8544c09f14a63fff98744847da193d7884e99d16710cd130d31	25.00%	Heodo
2020-08-11	DOC_PO_08112020EX.doc	doc	c4c90085f1c458859b18e0503f5505debd672b4ad9c0b13a043b89a9e7bceb72	24.59%	Heodo
2020-08-11	REP_XTV_080120_UKC_081120.doc	doc	159adf2257291ab010f4ab9a6518eca15f59b22b9dca9f3d52dee5f9fae80c00	24.59%	Heodo
2020-08-11	FILE_14G9C5RBET.doc	doc	4e77258e2d9783b3a6a43b6120942df58f68146d113634f41f95436ddbcbf21e	24.56%	Heodo
2020-08-11	FDZ_080120_ZMQ_081120.doc	doc	b20330780ffde03eb1b391b3a57cd24eca45f10aff5916ff6ac1366f033f6c32	n/a	Heodo
2020-08-11	0533925184152897091339618.doc	doc	d0344a04dec8d322f179b4b71125fe49e20df1ccbf4580b250f77f49fe5c00de	n/a	Heodo
2020-08-11	P_B6N7BAHL5C8.doc	doc	f525a4c14fe2ed5ebc5a3b09a1a8ce10dac9f2df2449069c3b3f493878b20c03	25.42%	Heodo
2020-08-11	REP_2936027711074982.doc	doc	f6fa765a0885ee4a0383d1fec754e6051fc90b598eb9c66cc528e9adacce7d5b	23.73%	Heodo
2020-08-11	59709887030487288.doc	doc	9088702b9de53e98d1a703557ef6c594d9025b61613169b5d0098d607a4ae12c	23.73%	Heodo
2020-08-11	FILE_HZC_080120_RXB_081120.doc	doc	3f96851b275fb5a1a7a9fd1950711c7966acd41a7aec7974827e40c729d38ee2	23.33%	Heodo
2020-08-11	M_8ALQA9IR999.doc	doc	c79922078efc326b0a7199af4f066d3a8d3f8122bfb9a1d58a2a62bdd508e803	24.14%	Heodo
2020-08-11	DOC_07426893.doc	doc	fe1403af8bfc6dafc09d02f60f2b208d0891210f6d16fc2db622f950339c7f99	22.95%	Heodo
2020-08-11	TT0494284779WX.doc	doc	68bf86506f97cbba49424cda74e590de3d0ce3b3befcc6f431d545d5e931a608	24.19%	Heodo
2020-08-11	FILE_HR7690319701KT.doc	doc	4a4a4dd5d1a19053ad3e765787b01d9dffb8b06be5faf5ce7a36efc5285df326	43.33%	Heodo
2020-08-11	FILE_86647322.doc	doc	8edf233ddcd24433edb9bf021d9eb73597b9d87e5bb9ee0c3fc936977dfe6f45	45.00%	Heodo
2020-08-11	FILE_ID1145702071GX.doc	doc	4d2029f90dd4666820163090c7717ea8b2166605108cf8e5292054e752213b86	45.00%	Heodo
2020-08-11	O_PO_08112020EX.doc	doc	57d5fc234966fd696f948b9952b125ec464fe2c3b2b0948e151dc74218050cab	40.35%	Heodo
2020-08-11	YKX_XZN_080120_GJX_081120.doc	doc	810f85306409a8678b1956aa73bae5e016aa0eaf12cece7d24c3297ba074c56b	44.26%	Heodo
2020-08-11	PO_08112020EX.doc	doc	b0276a23c508f3b994e893c4a51a5130674d5aebb945c3dbffcbbe22e7d62846	44.07%	Heodo
2020-08-11	K_03316346019621913417614.doc	doc	106e9a3097680f7a8270ac6a6a5c75fdf983b6e2ce326e7c56403aefa0eff516	43.55%	Heodo
2020-08-11	BAL_YF0459414498WF.doc	doc	77d07ebb9067728855c77e0d2486102c7710c99f4d2f952cde12dd1aff24ae2d	45.00%	Heodo
2020-08-11	DOC_HS5203764473AF.doc	doc	7a21ceea16e5ac47afe5072b7863649cccdc31540f9e90634bef272b619a9d65	44.26%	Heodo
2020-08-11	REP_CDO_080120_GEU_081120.doc	doc	37f50253f8018bae34e45657de8074c1a59a940ae12792fc8a5cdc8c700bc5ee	43.33%	Heodo
2020-08-11	Q_XQS_080120_MCW_081120.doc	doc	62104fb8abc7b1ebfcc1f27dc49a753517b49182741b3bee249633214a595e82	44.26%	Heodo
2020-08-11	FILE_4W2IZ47N9V4NP.doc	doc	4d67767678a9079f097fa98392ca9191d4dd429a1da0506b2e60185b0ded8609	n/a	Heodo
2020-08-10	REP_PO_08112020EX.doc	doc	0aac84e792a3fda908009cbfdfbfa1f1e9e8f024bc759b760ec6a4a62e6958c1	40.00%	Heodo
2020-08-10	FLW_080120_EJZ_081120.doc	doc	af547eb34804f006425dafe29de39e4bfef46ee54db5be9e20a1ee36b5cb922c	40.00%	Heodo
2020-08-10	O_EF4GB0FE0.doc	doc	9f69dab80ed88c105f65738e34f9f97c34813c839c1e78395167bdf09090f89e	40.98%	Heodo
2020-08-10	INV_SOT_080120_COG_081120.doc	doc	aadddb049f89ec5e5d1e40e88efb782963c3f82c032024f3d3e0529e097d3e12	n/a	Heodo
2020-08-10	DOC_9135632680517379821576982.doc	doc	517c239c322e6fd41f4a19a9ccf94409d986910c42f7e9bd8bb3cd33ff83a920	42.37%	Heodo
2020-08-10	J_83490170301127524714536.doc	doc	1701cece68d9611b07097a1e331039dc38649b44d3ea02351e0b494b6bca4fe9	40.32%	Heodo
2020-08-10	REP_UUNVS53D.doc	doc	f229bb103cf90eb570e07d6cca6870dbb9d42f8bd3a437df9fc40dd35ba22ee5	40.00%	Heodo
2020-08-10	BAL_RYP_080120_NMD_081120.doc	doc	d04235ea57172d8e82ab7ceea5c85b7a847adbc9d6e6b2fc5bbaeaeaf96d8661	n/a	Heodo
2020-08-10	79578866.doc	doc	53185bdfd244573e26be311cc6a1ca4a638ee6956f3521605c10735b0f4200cb	n/a	Heodo
2020-08-10	GXF_080120_KDF_081120.doc	doc	bb9c6274ff65ac8ee339d712ae7f3d2b010cb74f04603840cc6017db29aaa3ca	40.68%	Heodo
2020-08-10	EVF_080120_ZZJ_081120.doc	doc	33d40d4480617fb77d5d793051a847a5f4d09e1bd9845507308637ddf454e47a	40.98%	Heodo
2020-08-10	LC_TZJ_080120_DYD_081120.doc	doc	9872b30ec02cca1d3a1e99556d047ce25619a15bdc75e08242b514e0e54a2a87	n/a	Heodo
2020-08-10	PO_08102020EX.doc	doc	61c94c010ff56ce9eb2dc4d6f6ac6bfd5ba848ca81c02c1f54c36789f02257b9	n/a	Heodo
2020-08-10	AN4A7H3ENLH7D33.doc	doc	ad90d0071b25f19345c41da1ac91d96258866c8048ddbe085d4c33dfe445e5b1	40.00%	Heodo
2020-08-10	PO_08102020EX.doc	doc	67944182a5fa81f37c464ff5e81ccf203865d87ee39c6b2497eebcad87f86257	40.32%	Heodo
2020-08-10	D_25355198.doc	doc	93357c56d286a0a7242cb12171bea974c33f8b608067dd4a737324bd6baf0737	n/a	Heodo
2020-08-10	IQ2635940680TZ.doc	doc	868e9c0b8d6d8e39b8bd61634f444b5afeb0d108336d68b28332735796526736	42.37%	Heodo
2020-08-10	INV_526853897336409221.doc	doc	ca8ac34961520d6352cab5d25104db26250b07c9d405709bfd553a45b00743e4	41.67%	Heodo
2020-08-10	BAL_PO_08102020EX.doc	doc	d94a6af9b94a2da0d3f01cbfda9acc7925ae4f663165830cf06f14ad380600d7	n/a	Heodo
2020-08-10	DOC_RCRT3GTL.doc	doc	9d0c4ad59e201bbfd5e94eae7548229c79cd70382bac9067221f9cf6ccd25a4c	40.98%	Heodo
2020-08-10	B_PO_08102020EX.doc	doc	4b59fc8280787bad2bcf292b1d0b8a2230846b5ec53294e7bf798ca3f1d21f39	n/a	Heodo
2020-08-10	PO_08102020EX.doc	doc	1d67a5be7299144f57cd9fb747b5a13b517be926efa3c823466991d3419b78b0	n/a	Heodo
2020-08-10	REP_KTN_080120_MWH_081020.doc	doc	21600f61f85f24fcc273a012d7344a44750a49d52c6ef86ef576f3d8c75cbe4a	n/a	Heodo
2020-08-10	NHO_080120_RJN_081020.doc	doc	c21b7cfd3f55a901e8212e17069a59665137c71594899653a26f0b418c4ded97	40.32%	Heodo
2020-08-10	D8BDM0ZB58F3PNB.doc	doc	3a6d2b0e5b190a5fea50684eabbee0a85819344e19159bf26ac8e1b93ea4140a	n/a	Heodo
2020-08-10	BG9954049593VP.doc	doc	5eea5c7cf7e3d325938ee78f8782ef16a30e61d440f859dae71a3893da21ecf4	n/a	Heodo
2020-08-10	DOC_36102596148904023812090.doc	doc	f4a3bd5e626d53658fca1aff6371dde7f7537270eb24c5532e6a1162c7527479	n/a	Heodo
2020-08-10	BAL_PO_08102020EX.doc	doc	f602c49cb3a75d9e1621b6c62ecffcda74542f712afc23c222ea4460e3729985	34.43%	Heodo
2020-08-10	OYMK0LE.doc	doc	9e9dcc63032c40001dbddb5bd18a2b6fe5605bb069cc340d150b9a779f2ae273	34.43%	Heodo
2020-08-10	C_PO_08102020EX.doc	doc	8bfc9f0131ca6f43abc2eac3a5e2345362e5c80a1d7f5ecf729811990863a1c4	n/a	Heodo
2020-08-10	DOC_CLB_080120_HYL_081020.doc	doc	a9037fe87ed3a03f60771c046496bbf16e1d5646f87a7f4f59a58471050a272a	n/a	Heodo
2020-08-10	YT_PO_08102020EX.doc	doc	c53160bebc0aaaa274a2594c7eb4977b0626c3aa4c2e2fac71206c2a65d50da7	n/a	Heodo
2020-08-10	BAL_WWR_080120_RDR_081020.doc	doc	c3089aae17704c9ddcc67b476b66c0a66f756ef1dad5b90062f06ec428ee5d3f	22.95%	Heodo
2020-08-10	53858830213338757418142.doc	doc	2b2b4341e21f9930df58f0f4f10bd2642775d7eaba166ec686f12a411011c3a5	26.67%	Heodo
2020-08-10	DOC_TKG_080120_TZB_081020.doc	doc	643fe7fcca34ea7798939531f45b28e6bd033ebb1a51a0715fb1605b20e4af9f	26.67%	Heodo