URLhaus Database

You are currently viewing the URLhaus database entry for http://cqfsbj.cn/ZqXMroNy8Ib6 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below may have been used by bad actors to spread malware, the URL seems to be clean for a long time. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	42925
URL:	http://cqfsbj.cn/ZqXMroNy8Ib6
URL Status:	Offline
Host:	cqfsbj.cn
Date added:	2018-08-15 02:30:16 UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	No
Tags:	doc emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-09-10	n/a	unknown	230019cf5e0f698c59ca57b02068651db9ab4299035f3b97d6a44c8d47330c22	n/a
2018-08-16	Tracking - Donnerstag, 13:00-18:00 Uhr.doc	doc	63bd976a37fe2e7cdc3e3a53bd81b21c296a23626aa8aebe34624790552f62a6	27.87%	Heodo
2018-08-16	Tracking - Donnerstag, 13:00-18:00 Uhr.doc	doc	50ca3dd502102f03ed01d2caca14e5412915c38e0913f0b7b97982dd0b41cf21	38.33%	Heodo
2018-08-16	DHL Express - Donnerstag, 14:00-17:00 Uhr.doc	doc	087a2ea9d2fb81d0b1d74c25c725c1c183c15995f502e744fe8c4c1a7adc0c20	33.33%	Heodo
2018-08-16	DHL - Donnerstag, 14:00-19:00 Uhr.doc	doc	66b183e80f55c7ced56e97cfc6bfa1a767a558412d0f5ebafdc47e5ed75a1287	30.00%	Heodo
2018-08-16	DHL Tracking - Donnerstag, 11:00-18:00 Uhr.doc	doc	c49c861f8be237608246522b56d4e729568e804d4adfca2a28117d972d94e928	30.00%	Heodo
2018-08-15	DHL - Donnerstag, 15:00-17:00 Uhr.doc	doc	59fb51c98a77c782fed98fd718b5292ae7c980b60069a733175a39513237cdfb	n/a	Heodo
2018-08-15	Tracking - Mittwoch, 15:00-18:00 Uhr.doc	doc	f299cb65e5c336cb1a31b5cd73948d07dd68780e7329248bfc5d080d75b43070	25.00%	Heodo
2018-08-15	DHL number - Mittwoch, 14:00-18:00 Uhr.doc	doc	161526263f54084f867c6b5afbaf5e898a493fc096c533bcc4d345e419148ddd	n/a	Heodo
2018-08-15	DHL Tracking - Mittwoch, 12:00-17:00 Uhr.doc	doc	289cd5b062c4e0d4b405e43b05e150f65f58ed5b9ba7c91353c62dd3a0e2841c	27.59%	Heodo
2018-08-15	DHL Express - Mittwoch, 14:00-18:00 Uhr.doc	doc	824b994e79209479f239099b9c368aaff46a6fe2ce5a047d8b8cbaa093a9fdae	31.03%	Heodo
2018-08-15	DHL number - Mittwoch, 14:00-17:00 Uhr.doc	doc	023e1779b49fec6ac4d9ff9826bb7b6216256f3ea92caa3811490c1aa015ecec	n/a	Heodo
2018-08-15	DHL number - Mittwoch, 11:00-19:00 Uhr.doc	doc	72a9605fb3bb77cde5b3fb2d1355df6707e0fb3c7fe4d0ee20e561354234d15b	37.93%	Heodo
2018-08-15	DHL number - Mittwoch, 15:00-17:00 Uhr.doc	doc	def44d5e8f11965378f2059cd4978fc4e46ce26f785fd2ef5a6359e8c81cfbea	n/a	Heodo
2018-08-15	DHL Tracking - Mittwoch, 11:00-17:00 Uhr.doc	doc	23d5a27e14c1441567e38b6a14485082e88f56133f18d60a4d42e5ce9a60d743	n/a	Heodo
2018-08-15	DHL Tracking - Mittwoch, 15:00-17:00 Uhr.doc	doc	750f735540883b2a173ef6de05ed720e37ff554457199c64728f5dbd9d411348	33.33%	Heodo