URLhaus Database

You are currently viewing the URLhaus database entry for http://bgbg.us/wp-admin/LuhsUKlH37_Lu3DRWHSa8Lqh_disk/open_46634167_akQLurN/4sAbSJ7sj_1clLyhxcrdh39/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	428781
URL:	http://bgbg.us/wp-admin/LuhsUKlH37_Lu3DRWHSa8Lqh_disk/open_46634167_akQLurN/4sAbSJ7sj_1clLyhxcrdh39/
URL Status:	Offline
Host:	bgbg.us
Date added:	2020-08-10 18:46:06 UTC
Last online:	2020-08-12 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-10 18:48:03 UTC to abuse{at}uk2group[dot]com)
Takedown time:	1 day, 11 hours, 55 minutes (down since 2020-08-12 06:43:08 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-12	REP_20200812_905.doc	doc	e44866ddc3408fab14c87c206e408852253a05de531691d4cb8e1dcd7f37cf72	50.88%	Heodo
2020-08-12	FILE.doc	doc	1f2721d86674c089b606753be49e601afa652cd0daa1af0a19239ca33981af29	51.67%	Heodo
2020-08-12	List-2020_08_12-R7900.doc	doc	fb3cc3350e60d43b553472c75d1c7ec6d97b7a837094ac667dae539d90e627a5	51.67%	Heodo
2020-08-12	file_3026.doc	doc	d6ceff199daed77e31636bbce10dd06d27353c4064b10c076028aea4313071c1	49.18%	Heodo
2020-08-12	Rep-2020_08_12-G7399.doc	doc	aa16198b53e4a0f12906d869baf7d712279438c0e5cb818a405a26f02d9b29d0	53.45%	Heodo
2020-08-12	file_O5217.doc	doc	590e4167894112b18705fca17ee4057b39745b4af8c182ee650b066c9b195f8c	48.57%	Heodo
2020-08-12	arc_20200812_7287130.doc	doc	fadf9dff9ac739df4bfe67bb110d2570b3a8b56ff10d4d0a619ec013819ee896	50.82%	Heodo
2020-08-12	Doc 2020_08_12 L7073.doc	doc	a86eec1385c130042a6609edfa33a94bd2e475ddda047eb16553247dd67622b9	49.12%	Heodo
2020-08-12	Dat.doc	doc	6fa74bb52572c68bce1d712b488aea9184f884d85ef22b26492011dc0fbec3a8	50.00%	Heodo
2020-08-12	REP_2020_08_12_EH365.doc	doc	7d7ecd381d765e01cbb41e6b0a254b7bc60ebb1d59c3c212286dbb9054e5093d	n/a	Heodo
2020-08-12	Rep 20200812 LEE516427.doc	doc	239b0c4f5e150bac96fff321ed672e0772718018ae715db9d4feb0b59879fbb7	50.85%	Heodo
2020-08-12	MES_933740.doc	doc	e49959014262227a3e6ca5bc2937e6afab83a251fc694000d1a3d38e7814d9dc	50.85%	Heodo
2020-08-11	inf-2020_08_12-J537538.doc	doc	db2aadedc60eea4a3a77bfbd6c1334cfca2091f721e34c196cde4f47624bcb90	49.15%	Heodo
2020-08-11	Arc 2020_08_12 0942141.doc	doc	d135bfa839f7aced43217658d78cc59d8c51a7120940e59b3c805612e1b276ee	50.85%	Heodo
2020-08-11	mes-2020_08_12-3939.doc	doc	1a7a977f0328b4118f2f26182d1cedae0c09afdd9819c51e56fd41599e8bcf29	48.33%	Heodo
2020-08-11	rep-2020_08_12-771193.doc	doc	8f5d6af71053c703ef6ac42971b9c19766bb0682e793b8f295af1453eccb5023	49.18%	Heodo
2020-08-11	list_K6032.doc	doc	04eb4b28247dcf99dd7a07b62ab41575834d865c72e083dafd8e6b620a6e23cb	49.18%	Heodo
2020-08-11	REP 20200812 QQ2993.doc	doc	7100d7486bcccf991906541b709fd020c8cf3aebaed5025f37c19ea15924b034	50.00%	Heodo
2020-08-11	inf_2020_08_12_WV4461.doc	doc	fa8d6cdfd34564d1ee3cf57bf7d6f033ef277f6d88f2e2099c7a314e8095aa3a	50.00%	Heodo
2020-08-11	Inf.doc	doc	6bbbfea0979ddea7c5b31d79ead31b118ac7455812560b7e9bea64b8d1cc3366	47.46%	Heodo
2020-08-11	Doc-2020_08_11-29426.doc	doc	1bd68b07b524ffb4ddcd903f20522ebbaf7108f9f695e901551f5d4f90013345	47.54%	Heodo
2020-08-11	file-20200811.doc	doc	505bf00a3f0c6b5d8ececc410f78de1bdb0fffc8fe7a3324166448fbb3a213f0	46.67%	Heodo
2020-08-11	ARC-20200811-33967.doc	doc	669795b953f2d46ec362bc03adae579299f4c4a42392c7cbdfef5ab5b54b5ec1	37.70%	Heodo
2020-08-11	Mes 2020_08_11 FN4202.doc	doc	1da87bf7cde42012d6ef60a19e839e43b5cf12ca5942cd31c40cc0ac0e31da49	40.68%	Heodo
2020-08-11	dat 2020_08_11 I63651.doc	doc	9081c21cb26135e8d85675222746dc6dd85b90f195e45ca7cc051103751fa512	n/a	Heodo
2020-08-11	DAT-YHO2531.doc	doc	e55a8128dcdbeb38bece187c83b4066e4c92f5d4d2fc16cc1375139a39cf148f	n/a	Heodo
2020-08-11	list_20200811.doc	doc	0c2fd444f2fb9f77cde4f5629c19ea2ff814f7cda10a63a6bc6227d3ce403b4b	36.07%	Heodo
2020-08-11	DAT_2020_08_11_2871.doc	doc	4a0b580e9b59383cef5ee984231048e27d3e01c6bbc31f779fc80f435d286940	37.29%	Heodo
2020-08-11	FILE-2020_08_11-H794796.doc	doc	d2d1169820bcf260d48e6273ea105b4db9727fcaf8702362a7c8d3b8ca93b1b6	36.07%	Heodo
2020-08-11	arc_20200811.doc	doc	e116b128fdaf41295ce37895adc734d500040cd8b6d027ad266a73d31a7f7ff3	31.67%	Heodo
2020-08-11	mes QZQ921264.doc	doc	443267f63d955561b6da7e86366dcbd233c605fb7eb3b92e5863f7482738e692	32.20%	Heodo
2020-08-11	Inf-2020_08_11.doc	doc	356e3d6505e5c614fd7fe96e3e20c392e04e5b6e552a28f069dd37250d00508e	30.00%	Heodo
2020-08-11	ARC GAS41992.doc	doc	c279b2621cc960bc14d86aa7b7a8ed1d61346e3e582e77072b43a1631871f3f1	30.00%	Heodo
2020-08-11	ARC 334.doc	doc	5c7e33c23d454291dacaf4ae431d451d0659a56b3cf2e2a0ed82002b5ee21bdc	27.87%	Heodo
2020-08-11	INF-2020_08_11-60353.doc	doc	03ae6dacc26669e23257af7d5e8a8c8d15bdbe6cc973112960392ab22d03d93f	25.42%	Heodo
2020-08-11	FILE K86134.doc	doc	23315f65b06123e965e1949c08085c097b3efc919a3807955cd3e1acc596e809	25.00%	Heodo
2020-08-11	arc_26589.doc	doc	b9d7c3f1fc34b47554d301ba8d6d5a60e86fb6db50fe0d212aeae580a8c38840	25.42%	Heodo
2020-08-11	Doc 2020_08_11 RD1719.doc	doc	d990f8ea6afdd409b408fefaf18c4bb205c5fef6397e1e6d7c9466a47b138cb1	24.59%	Heodo
2020-08-11	dat-2020_08_11.doc	doc	9715534fe73d1a63f33ee24b769c7a8dfdadedb96b0c0e52fe0fa713f889d37c	23.33%	Heodo
2020-08-11	INF 20200811 X0253.doc	doc	5920c7e4ce5cd003b9b0fc667cf8b9414312502656caee024acae86456e58ce0	25.42%	Heodo
2020-08-11	file KN7668.doc	doc	bdec17a0bd8af4f682e06a0e45531d3e90242d09c6a7e99b3c293fcd72418b21	23.64%	Heodo
2020-08-11	dat_20200811.doc	doc	9ef7fa8efe7c59b7cdbd9d44134d7876fb641fd6cbd2b1aaa1fadab058c7e4ef	22.95%	Heodo
2020-08-11	File_72459.doc	doc	1120dc774813691b283970a1c385789e1348091375188983a903c5143f52beac	24.14%	Heodo
2020-08-11	rep 20200811 PNP2206.doc	doc	b1528ebc856d5dccf38a0f758121c3e2b97f527b661f447c4ccecbf2332ac804	23.73%	Heodo
2020-08-11	List 842307.doc	doc	f0e8946d7f54556e1480a0bba3c67426132627d6f3cfb53ca8209647f06e9997	25.00%	Heodo
2020-08-11	FILE_20200811_S372.doc	doc	bac9a9d3b5783ae78298bfd2e768bbca94c8d87986fc65ffe746ed49ccd32c6c	23.33%	Heodo
2020-08-11	List.doc	doc	ad8ecc85066be281b996f847814e7770dd2316faeaf97406e310db7bd1e3498f	20.97%	Heodo
2020-08-11	File-2020_08_11-712.doc	doc	12587249744f2253a36fa401256c0bfe0d806185522023bd4862720f14b9cb15	22.95%	Heodo
2020-08-11	DAT-2020_08_11-KTM33460.doc	doc	ac20765cdf4d1038df199a09c940feba4bb9cafde628ca8abbd316fd299463b3	23.73%	Heodo
2020-08-11	MES V767624.doc	doc	61a3696a9198091587a55008ec682860adeddaf5a0cc68060e71647881009598	43.10%	Heodo
2020-08-11	List 20200811 SY027.doc	doc	fce0f3d055c058d10eaff76ccd0a00bc87a7fb733b1ce6894e486b39ebf6793f	42.37%	Heodo
2020-08-11	Rep_20200811_9988890.doc	doc	cae649fa4834fbe773a6759d1c55036ab5a152fa90aa2f64b7751e50b3e7deeb	43.33%	Heodo
2020-08-11	INF-2020_08_11-3542.doc	doc	353b24cd1dbb7be15133b64495afbbd1846a83e775870f07cef1efc21c411ddf	44.26%	Heodo
2020-08-11	Dat 20200811 D742078.doc	doc	bd21c54cff53a13d78966917cf55e87135e7020967d2416f6a0b259beba63dba	44.07%	Heodo
2020-08-11	list_2020_08_11_JYK3253.doc	doc	ee1ee54baff4c78ecda5e4b6ff18630ad8152cabe662ac370b7d814ee6d457e4	44.07%	Heodo
2020-08-11	Inf_2020_08_11_CV31334.doc	doc	980c5eb49f054079a587ddcfe2c193c45a1a6be41100c5f1179df24c87986712	42.62%	Heodo
2020-08-11	Dat-20200811-610.doc	doc	92f8226b4916acee5abadfd888bd396b2979be223db46252b4decde8b4b3667c	45.00%	Heodo
2020-08-11	LIST 2020_08_11 SL139839.doc	doc	e4790d41e27c6978baf5ccf9461b74b1e9606fdc7edcb4d2022edafc3d8a6fd6	41.38%	Heodo
2020-08-11	Inf_W05421.doc	doc	13c77da9bbdaea66303dfe4cfcb8b5a9f8eae8d46f1e710ab6574c73b2c1d91e	44.83%	Heodo
2020-08-11	Mes_2020_08_11_2005164.doc	doc	ce70fba1cd6c71bfbc91162f8e5d6f99e03ffba2db898e1088139f06cef9c304	44.26%	Heodo
2020-08-11	Doc_2020_08_11_9585.doc	doc	884876d14dea6bbb5b0486ae70f7a87077f5f3fda54e5d2e4ac65a912e0456b9	44.26%	Heodo
2020-08-10	INF 2020_08_11 6550.doc	doc	1ff50f088800028624af3ad83890529e6cd409d4c797d27b35f77e33fe36793e	40.00%	Heodo
2020-08-10	DAT 2020_08_11.doc	doc	cfc2a440a24b787cb600844f671424763ef7221b253df29119f44be5f6e0b48b	43.10%	Heodo
2020-08-10	INF_2020_08_11_WNV247010.doc	doc	021b9f28d85d3c2f0ae4137982daa4ddf1bee1fbc756952a3cd4caf0503ffeac	40.98%	Heodo
2020-08-10	Arc-864537.doc	doc	cc915da7e58c724b0602504598bbad14ca38c5ab5323a50095fd1fae2fb9d62b	40.32%	Heodo
2020-08-10	dat R328.doc	doc	57ceb97127a173ae60027dba4b90aca54c66a1b120c77c875faaed74b93a5f22	40.98%	Heodo
2020-08-10	Mes-20200811-TY01756.doc	doc	3b59369e3166425caaacc1f0c00428539ecec010f83337e7af44a660bc6c7735	40.00%	Heodo
2020-08-10	File_20200811_HCU2403.doc	doc	8bac60fe9c581db6206a5ca49fc3fc76df934a47006c8effcd145a6ab3c70cc8	40.98%	Heodo
2020-08-10	MES 20200811 KN6468.doc	doc	5c5c196f98303cb83fe01bd0c601c680ca5b4d5fc5d194a31da99bb0492bcda6	41.67%	Heodo
2020-08-10	REP_20200811_ANY131.doc	doc	3708962d8333f33b8ca2229ccdf932d5f06c2e380b5634afb33c2b29e209e269	41.67%	Heodo
2020-08-10	inf 20200811 VAP7404.doc	doc	8c6e70e36629b376e399237d925f93bd2cd7839a7e02ba7e76c11afdaf82a4ad	42.37%	Heodo
2020-08-10	File_2020_08_11_400.doc	doc	6fdba2a3c021e527cc4d508e143f075fee286280cbb58cc759f2c7968248b1c6	41.67%	Heodo
2020-08-10	arc_XG406.doc	doc	9b16a279970535f938fcae16c2df00eaf040804d5eb740193210aced906a8e2d	40.00%	Heodo
2020-08-10	mes_P158816.doc	doc	bcb9d74a9abe1771e3619aaff40ab73fb482a38cdfcf9d24a78fff78a635deec	40.98%	Heodo
2020-08-10	mes_20200810_2096163.doc	doc	b5184411717b5186e80a521f6b70c47091f21c4e9c586d2f565438dfaba70d7d	n/a	Heodo
2020-08-10	Rep-QB78774.doc	doc	21d305c97502379abad7f15c44454ff18239806f9839d1e72f83028893df2fa4	n/a	Heodo
2020-08-10	INF 20200810 709.doc	doc	6d218e558b2cf4b5f4564d9bbfe8feb68602b363228a53f9c7e7aba48ae19d1d	41.67%	Heodo
2020-08-10	LIST_2020_08_10_3063593.doc	doc	3ab01f23f72898e34f5873e08ee3fa2d872ecbd424017edddc2c351eb7a07420	n/a	Heodo