URLhaus Database

You are currently viewing the URLhaus database entry for https://www.cupgel.com/__MACOSX/foHtE/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	430585
URL:	https://www.cupgel.com/__MACOSX/foHtE/
URL Status:	Offline
Host:	www.cupgel.com
Date added:	2020-08-12 15:55:54 UTC
Last online:	2020-11-02 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-12 15:56:17 UTC to onur{at}voyar[dot]net)
Takedown time:	2 months, 22 days, 0 hours, 48 minutes (down since 2020-11-02 16:44:52 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-13	invoiceH194179921941.doc	doc	07ef8001baa80dd47641eb72cf224ac104b550a23017ee50f028b4eae9f27f20	26.67%	Heodo
2020-08-13	Invoice-62-00735528.doc	doc	dba9e4aa81f3eb4f83c14062d3f6223cca9018859b8f08a43f4d642edc871f02	25.00%	Heodo
2020-08-13	INVOICEDQ0698217921.doc	doc	46b21be022edbd1e3c421e00b0f0fb17b33ff686feb8309c819c817da38d7fe6	53.33%	Heodo
2020-08-13	Inv-70-2863827.doc	doc	04f398e872a21555e613068343a42ae713930a96f16f079aba07a4434b800180	54.24%	Heodo
2020-08-13	Invoice-ZPSY2746-542502.doc	doc	cd0aaf460944efd580dcc39bc1dd0460f88f2c3c17e303694ffa1eae5020eab2	53.33%	Heodo
2020-08-13	INVOICEZQCK5781070132.doc	doc	17b6049e45eaf5263f576de1799a8b8ccd0164f7e1241cf72738d56e8793458a	53.33%	Heodo
2020-08-13	Invoice L0065 023565.doc	doc	015990746f332cc1ad898d46ef3de53f4ffc95d723ccd19bea5fc12b95f86b47	54.24%	Heodo
2020-08-13	Invoice-89-111584404.doc	doc	fb04bcaffc6328a8a16308df4ecbcf2ab1099b8c1dd14c443590f8bbad856fb7	53.33%	Heodo
2020-08-13	INVOICE-135-4773513.doc	doc	ee1f5c8ab512406824b28cd257477afae1af144286ddd585d142664b10b2ec77	50.85%	Heodo
2020-08-12	Invoice_ME00_79078201.doc	doc	b858572fbe695215c2aa6ade7ada24c980392ad2f5c9e3564d4e6446ef424383	51.67%	Heodo
2020-08-12	invoice 56 961713873.doc	doc	9b5d7e0c6ce7b00011f1c9fa7157bded3963629b18e4b79469bb62c84e80a312	51.67%	Heodo
2020-08-12	INVOICE_YN76_0461179.doc	doc	92dfce0e83a09bacf5d1ce00c4ef5c7bd7c35bbb27742bc01060cb96511f8156	49.15%	Heodo
2020-08-12	Inv-99-415395.doc	doc	27f5a6d1c03ee22b1c20250a5cf13fc46584715e452dc107d3f7263371a96809	48.33%	Heodo
2020-08-12	Inv LQDB9849 846707.doc	doc	24b41c6091602c0f9df9cc64905ce9dac977a04f700ae0607de467c101a093dc	49.15%	Heodo
2020-08-12	INVOICE883924689.doc	doc	0c7d085dc88b57e56819a0a9319e1aa089ad9851a0ea21137aab6309395ed039	49.15%	Heodo
2020-08-12	INVOICE-KBJB509-1315284.doc	doc	1258569a650076330f8482febf678459beb6690d24b1e9e65d10389f6d641e8b	n/a	Heodo
2020-08-12	Inv-N36-47071744.doc	doc	161c633d35b061799650a498b12d4054d636759da3f233758f38a0d7d9ea5f46	49.15%	Heodo
2020-08-12	Inv_50_216560434.doc	doc	bbf084bcd83d08a6693798f851e3af34cc7c303afb235c8c25fe237ec00315cb	48.33%	Heodo
2020-08-12	Inv OIL68 221465551.doc	doc	773bbccfa255f100e61a8949ed19308ff66fc817fcc06e34e5d1aa2d8746ca7a	45.90%	Heodo
2020-08-12	Inv-OAI565-14375943.doc	doc	cd110e81c2ab80786c6b50fa2f567bd93e1471529d849677f100974715c14621	n/a	Heodo
2020-08-12	Invoice-YS117-519598549.doc	doc	31a9525914a9103909d69127e4586f222b563a67204a2a9582ac50280357181a	41.67%	Heodo
2020-08-12	Inv-QWJU7408-837228377.doc	doc	8961a6a26ad05af0256bc2ddd21efba0fd0e1d1900a73c736fbd7b749dde0357	38.33%	Heodo
2020-08-12	INVOICE_89_66980722.doc	doc	3f5261f4d28c39abec2986a50be9436202150bee5188fda8a1d52e186a7423ca	32.79%	Heodo