URLhaus Database

You are currently viewing the URLhaus database entry for http://citymobile.rs/cgi-bin/FgGK/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	431455
URL:	http://citymobile.rs/cgi-bin/FgGK/
URL Status:	Offline
Host:	citymobile.rs
Date added:	2020-08-13 02:18:07 UTC
Last online:	2020-12-22 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-13 02:20:03 UTC to abuse{at}ninet[dot]rs)
Takedown time:	4 months, 11 days, 13 hours, 27 minutes (down since 2020-12-22 15:48:00 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-15	InvXI4012188988.doc	doc	6304d9157e443c349a212dcf8c2ee4bf23645a1f690a499ac31bed22e2995f6b	41.67%	Heodo
2020-08-15	invoice-ZCCE39-97073053.doc	doc	bae86b6997572490c22ffc81ad1e24ecce68f3d2124066b202be498fbd9b7d72	41.38%	Heodo
2020-08-15	Inv_PE7094_40341209.doc	doc	d2e560f82d7e334c790e0731e12d7e9bc0fb862acf7adb2016be7bae7417ef94	40.68%	Heodo
2020-08-14	InvoiceOCUL36838717.doc	doc	65531b466ac29ac2fbbdd69e1f6408eccbd82b4a998e13fe2ce4592ead35deff	35.59%	Heodo
2020-08-14	invoice-AKZ5284-874696.doc	doc	ac17c79acdf8dacbc6b93da5811f3ed7c7304e25f8f69612a93dd594cececa16	38.60%	Heodo
2020-08-14	invoice_GYVB71_707791673.doc	doc	b8e3d4836d24b41192ee8a17ec384debcf3b71ad18e5a77361963c10ff28f3bf	37.29%	Heodo
2020-08-14	Invoice-A733-749746.doc	doc	945f6863a44778bca636e7c1076746b4f4fb45cc9e67a455d55ec84b4d3a83c4	38.60%	Heodo
2020-08-14	Invoice-38-52826749.doc	doc	24d8cbfa1ad06cd8c8ae049129cb7430b25037b74f586f0322eb11845b628b3b	38.98%	Heodo
2020-08-14	Inv_750_0774304.doc	doc	78ffd6c8749436f656b7f77eb1bf11edaf3ee4c2411dce4a22b8bbd6cb1ed515	37.29%	Heodo
2020-08-14	Invoice-GOIM2104-1077238.doc	doc	4e4e13b049124c6db74594ed0351792442e0a91a82abc72f06601c9598c241c1	38.33%	Heodo
2020-08-14	Inv_W91_832645298.doc	doc	95cc5ce9259454f349e823d4c1e4c546a303dacfd17dd01c60af5f9dfb171cb6	36.21%	Heodo
2020-08-14	invoiceLMV937385260945.doc	doc	f63cf892be860fdaa9344fa756d261c0d729aa1944f58cf75a780cb92b639f4a	37.29%	Heodo
2020-08-14	INVOICEHCGH216824857714.doc	doc	6b5f7ad9df134c6a4892ee11c2b9d5942174a02fa5e8f5f1b6e4e6c40c3583f6	38.33%	Heodo
2020-08-14	INVOICE_USB22_558138873.doc	doc	c129af5aef7d314993b58cc7c4a1df79f5550e97f3eb6b9f1d558defa38df88f	30.00%	Heodo
2020-08-14	Invoice-B856-1328104.doc	doc	8f06da82fed54fe7dacc418331a26da7477fc8ef58d6ab78f540fe6927a8b91f	31.15%	Heodo
2020-08-14	invoice_NZRI975_436886474.doc	doc	4b13402181491e81721d3129182c033f1ce4f14f4956c41426c51b2c92488d65	30.51%	Heodo
2020-08-14	Inv_VUDM473_586496358.doc	doc	022cf3a8bcb181e5218ff3a6b7e759e94462df01ff93902560371dfa2ffc0950	28.81%	Heodo
2020-08-14	invoice-M4-4990156.doc	doc	fe1022c544c49d969befa506673e1f2df484914f36500d16548ab07d4c073528	27.59%	Heodo
2020-08-14	Invoice 68 86823737.doc	doc	6ab6bfb1af92d80a1d6d41f52257d7e1c85a2a18ccb782596f37d426ee600c24	25.00%	Heodo
2020-08-14	INVOICEIW17863176310.doc	doc	6805a810bcf466e80e587c1933e7d96d2e378735619324aa1ad6dc04d8173d68	25.00%	Heodo
2020-08-14	invoice HMA0 7084872.doc	doc	6969c9659df92d53fbfae853c8c208cb0e09fc6acf7dce23773cb66cd060294d	26.67%	Heodo
2020-08-14	INVOICERIDG144159013.doc	doc	7fd083f3133fd46bf7f6a70c043bcd84de058c8b12d8fc72e503b95851fcc20b	26.23%	Heodo
2020-08-14	INVOICE W3 046594389.doc	doc	8ad36d2358be52766de37fdc1d96bdedf6f1fb28fed87cffd3cd8bf3c560eaf6	26.23%	Heodo
2020-08-14	InvoiceO3723913839.doc	doc	b3ffd34596fe613e60507fc3754eb284d3bdf1968ea939014bb5c3efcdefedae	25.00%	Heodo
2020-08-14	Inv-OGMA0319-830696437.doc	doc	73d4b0a7ca15e61e87a8fe48a88037618e4b4aac3d8a94cf4583f52cbab9bcc1	25.00%	Heodo
2020-08-14	Inv-3-924307.doc	doc	7358c63d00a9a687434f3915c70e05e268b5d414d08c19e063de5f08e84e92e3	23.33%	Heodo
2020-08-14	invoice-PMG3-065995.doc	doc	e8d602a059428b4576239097eede7757ab616eb16521eb1f2b2b6795621f4c50	24.59%	Heodo
2020-08-14	INVOICERKOV8345362.doc	doc	825617f8a3ad347433be07250c2c043f504c413cfbc31739029208f4af30fc57	25.00%	Heodo
2020-08-14	Inv-R58-47467185.doc	doc	8aa7b26f53f2ebc1a1678bb6f61704527478b875e9c4947c3193d966f0664efb	23.33%	Heodo
2020-08-14	Inv_405_3092843.doc	doc	99db7baf30cee72146c4791d36d158ca3ed62a58dd3bd57b7bfa60d0f13b08d9	24.59%	Heodo
2020-08-14	INVOICE-543-959185684.doc	doc	538aec1c87a88d78a75a417c253579be5fa18cefce592109122505cf70f2eea9	40.68%	Heodo
2020-08-14	Invoice 4 5255909.doc	doc	fb17807621969c33d345882ad5ae95cd5294c32509e13a6fe8ce1d317a5c3f4d	38.60%	Heodo
2020-08-14	Inv-A3-721539048.doc	doc	865aa27f909822b77734136c2ce238a258cbf8a6041b588f5fb75c284fab5d26	40.68%	Heodo
2020-08-14	invoice-Y6-5336006.doc	doc	c32ebf07a4f2324cc33cf6e7c975c375621c519fa654fc27303c9a812293fd7f	39.66%	Heodo
2020-08-14	INVOICEPU5906316910.doc	doc	382eeb05e0b37509916697e88d5f58e00cfd17db07cf9b27240fd84aa4bcd26e	40.00%	Heodo
2020-08-14	INVOICE 0798 275639.doc	doc	4156fe5a204dbbd2086b1c71f40ced2d03b723dfbbf218927b71ad2b2fb369c6	38.98%	Heodo
2020-08-14	Invoice_EBM23_217214.doc	doc	c257cd4e52104d35aad4c65319a54abf3cbea3929e1fd295bff5fe422409618e	38.98%	Heodo
2020-08-14	Invoice 8873 63682171.doc	doc	f740ad05fe75e146443ce0776602fc5828a534f28e1e2f34a1d785083de85bd1	38.60%	Heodo
2020-08-14	Inv JOO0561 791364629.doc	doc	ebfd94ac1cb7510d9b3fe2de38c88bb88d64956d0c6eb93aceebee8ea83ac763	37.93%	Heodo
2020-08-14	INVOICE-NIFR0247-983064255.doc	doc	0b134d91d537beab9f4e700b126eb1b43b69c80126818592cef4697fce08263b	37.70%	Heodo
2020-08-14	INVOICEW591787922.doc	doc	4398bc31070f761b318b30f297d363b006ed9e84c6af0aa45ad140f57e7c1529	37.29%	Heodo
2020-08-14	Invoice_PDQI600_815147.doc	doc	532d6be9513e3dea9cfb7040d4e2b0878429f90b84e8c3229ba775ff99dcfbbc	37.29%	Heodo
2020-08-13	invoiceSLS750972573.doc	doc	1ffe441dc57cc6d6fab94949536fc37e1ee200c8108f3345a48a04ca268d097e	36.67%	Heodo
2020-08-13	invoice-Y473-1935912.doc	doc	1903fc2590537417ead798a7e0026a3f89c338018d0ff2942e8f984a197b930c	35.00%	Heodo
2020-08-13	invoice-KEQ4-9676109.doc	doc	4121659e82eadcc9063dbad5e46d42ef2d1b91e429f0c0e38fb203a6a0fec99b	33.90%	Heodo
2020-08-13	invoiceVNGH2486320528475.doc	doc	345ad176e1abe5bab4a7665cb4b35fda3bac70a3cb1207f3b663d77550e197f6	35.59%	Heodo
2020-08-13	InvMO4864602.doc	doc	ab444b6b4e01751a504bcbe5bfafccb6c73c5a8f0a83102badfdfa7f0d061be7	35.00%	Heodo
2020-08-13	invoice_I184_254489.doc	doc	cf0b0c4bf2dec3979bd7cc8606c1c911299845f9f97067fd4ae7af1985e6f6b9	36.07%	Heodo
2020-08-13	INVOICEX30602018733.doc	doc	5068ac1fc3ea1af3eb637bed169df3a72f14ab7db56ff2996f718fbe8c05642e	36.67%	Heodo
2020-08-13	INVOICE VAFW4 948490.doc	doc	576c0497e26b93869620e9bd122a6836001c6ab4128462dccaceed7c2eb22ded	36.67%	Heodo
2020-08-13	Invoice_IP5_5125139.doc	doc	894dfe7d84439530c0f7bdca76e92f6d9ff10fe2121e0ff8decfea3153f5e91f	35.00%	Heodo
2020-08-13	Invoice252381907.doc	doc	5912b8e3ef4983ff2a2edb2097d0149b2828a6d735e579fc964a0a938c0afac7	34.48%	Heodo
2020-08-13	Inv B89 520398.doc	doc	a430b79aa886bc228b8aedcfd295bfdd9f860f814ddfefd8839d8c2159e24049	33.33%	Heodo
2020-08-13	invoice41052514.doc	doc	82b0468b8277859b0d4bff3af6eff0d446bbba4daa11cb4d96b62160bb22e3cf	33.33%	Heodo
2020-08-13	invoice-PJEA67-059581669.doc	doc	196a89c54cda70af31877740ead0a738ead3533d3ef89e87e31b193044fb42f7	31.67%	Heodo
2020-08-13	Inv_5_480947525.doc	doc	7abb5b30def6039173391b3e77f2a498a9ac16f3e7fa6312e9991d2d8c4e39e4	30.65%	Heodo
2020-08-13	invoice 264 72426669.doc	doc	7d4ee38f224a7af8f2988087cb32ba596f3e914f876a03f7b51b3d68c0832e43	30.00%	Heodo
2020-08-13	invoice_PL941_677586808.doc	doc	aa47a14fea86aba6e480c82c0b3f6ca81999d5f167f97577bba31919a701ecaa	n/a	Heodo
2020-08-13	Invoice-KIT166-5629306.doc	doc	f392265c903b4cad60edb998054c18fcb2cfdfe7e9e068ad6119545be62062e6	28.33%	Heodo
2020-08-13	INVOICE-PXY4251-5283417.doc	doc	5d894ef153180b84776667977d9af12006256fd8598c0ce0738c65ee160e190c	26.67%	Heodo
2020-08-13	invoice-LSA1-757865029.doc	doc	ec1d8db770842d2aa815d796d9ca7b59b1a84ffb342060081768bdecf7025cbf	n/a	Heodo
2020-08-13	INVOICEQ4496283638.doc	doc	b728f085e0e3133f7083a77948330f193955e186b2e479815f2657baf3802c57	n/a	Heodo
2020-08-13	Invoice-EE168-7010020.doc	doc	3a957d2e54e658d116c346dcaf0dab5ecaec5e60bf7125b32087746f27cbe35f	26.67%	Heodo
2020-08-13	invoice XM117 81854816.doc	doc	d2cc4f61f498dbddde048bbb918416d73f063a0bb46c960ab7fd6fe671ed9bd1	25.42%	Heodo
2020-08-13	Invoice IX229 7535297.doc	doc	780339401d94d888dd79a9d81b94ead083dc9070649cdf2e72eb3a6a78eb45d8	26.67%	Heodo
2020-08-13	InvS32128102541.doc	doc	225e48d5a2210f48804a4463a7c970cb9d79f88b8ca085b379ec5bf95f671b01	25.00%	Heodo
2020-08-13	Inv-JVG08-762930694.doc	doc	a9db211b5c0ed36501a165bda0a9c6a4f673bcb350aa5f5b7bfb4a9910f883c0	25.00%	Heodo
2020-08-13	Invoice13885330989.doc	doc	f844331d28cf2533981a9e753d6df2e9677efadaeea9b2c014266991ae78280f	26.23%	Heodo
2020-08-13	Inv_PFH337_3333786.doc	doc	d4f1ca6b7e264ab843f2bf183ff3a4bc306e513e7b5edc1cd49154e8f0e88499	26.67%	Heodo
2020-08-13	invoice_HNQN195_615133650.doc	doc	7b6f86d6898258e9a8a5a572e055f9efc0d045b78fc6eb88c0d2f61f064629f2	25.00%	Heodo
2020-08-13	invoice-84-596772700.doc	doc	cc8c1667a1b992293217c0bb3a7bd8be2cb3d4f83bdaa7746fdb6b36992bfa5b	26.23%	Heodo
2020-08-13	invoice CLPA3 898638074.doc	doc	e1b7a11726c385bcad71dfe791b165802cc625ceaf2f1550a5a10f5f222ea90d	51.67%	Heodo
2020-08-13	Inv_807_86330315.doc	doc	10531f315432369a9c0706bc00ac1405445316044a9ec07b03de6606a6a9f9fb	55.00%	Heodo
2020-08-13	INVOICE_ROY4842_3250032.doc	doc	de63eeb9f1015ea52b0e1a4d4698d706634a985366000085cfc06c5295b0d165	n/a	Heodo
2020-08-13	Invoice-IGSL0053-3131118.doc	doc	17b6049e45eaf5263f576de1799a8b8ccd0164f7e1241cf72738d56e8793458a	53.33%	Heodo
2020-08-13	INVOICE BQW65 498122433.doc	doc	fddf4cab73e6e2ff5c40c7fee09d52d5eb903e6bd17ad77aa292c6ded707f394	n/a	Heodo
2020-08-13	Invoice-3-95340280.doc	doc	bd379f0e0dcc9c8c75d70a99df9f95dc56d70fd92cbf446a21dcb7b22ded59f9	54.39%	Heodo
2020-08-13	invoiceA20989773.doc	doc	97e52709f1f9169fb2a3d0cfc7852f811d067999ed1bdc700c6b66bc7dc23765	52.54%	Heodo