URLhaus Database

You are currently viewing the URLhaus database entry for http://www.hlsquared.ca/protected-zone/kts8X-byJOCxJMn-rbHJJoW0-0qq6TS9OgyGkUy/WcbbgMk4OC-x5q91Hl4raH/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	435227
URL:	http://www.hlsquared.ca/protected-zone/kts8X-byJOCxJMn-rbHJJoW0-0qq6TS9OgyGkUy/WcbbgMk4OC-x5q91Hl4raH/
URL Status:	Offline
Host:	www.hlsquared.ca
Date added:	2020-08-17 22:28:14 UTC
Last online:	2020-09-18 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-17 22:30:04 UTC to ipnoc{at}terago[dot]ca,noc{at}datacenterscanada[dot]com,noc{at}terago[dot]ca)
Takedown time:	1 month, 1 days, 16 hours, 55 minutes (down since 2020-09-18 15:25:42 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-19	MES_2020_08_20_4105.doc	doc	d9a07475bf7cc89340e4d9ce8fc63892a459e3a1c861f8882500cbfc2f7151c9	27.12%	Heodo
2020-08-19	ARC_20200819_H096835.doc	doc	c940432dc1875cdb1adfbda4eb2c3a23b3a10fd0a53cf12cc32e79389120b5d8	26.67%	Heodo
2020-08-19	inf 20200819 M453619.doc	doc	9f5d9746575d302feb35e355e302048d2120d6cc266704fbd11a933c5695eacd	27.59%	Heodo
2020-08-19	mes-062.doc	doc	74545edd1c8daa2ef253937380b32b231d92b8d8b73912a7d060cec5639e5852	26.23%	Heodo
2020-08-19	List NV738881.doc	doc	2b41717ff4304a879197a6e3f69119636472f9a20d4fc5226afeb075d7b99e81	27.59%	Heodo
2020-08-19	DAT 9836.doc	doc	f7e9fa608f55e54940a272093c78974b3e2350594feb6bee7e0847ac03e975bd	27.12%	Heodo
2020-08-19	arc 2020_08_19.doc	doc	1974d9df785e9c234899f09030fb1e99b007709c6ed249e4e8b2fc080df7ff16	26.67%	Heodo
2020-08-19	FILE 20200819 620.doc	doc	ad1cd733252039fe55df9241f672a3e0dc2435552a2f48e40f56477612916743	26.67%	Heodo
2020-08-19	MES-20200819-8545324.doc	doc	ccf7aa2ddbffb5627874d5d3a1595b112fc715c76264882477835efa5c64e0eb	26.67%	Heodo
2020-08-19	Rep-2020_08_19-ATB333503.doc	doc	d54b881b142aa3ec2e3b816d4dc326d23176dee31c65f78ff9b9328f61aaedb9	27.12%	Heodo
2020-08-19	DAT 2020_08_19 ADT20779.doc	doc	4f49566c22cd95508f39368f73be4e9b6c9c8e504c519f2383cc00fb67d28c55	23.73%	Heodo
2020-08-19	inf_CG241312.doc	doc	66915150d26a0500bee5a47eef810f6d5ef9c9a9282973f17b3e434bac5600bf	21.67%	Heodo
2020-08-19	ARC-DY932578.doc	doc	35a575d3cc73b07a44de16fc04dbd04650ba5d4a0005028abc178ad78e1d47b4	21.67%	Heodo
2020-08-19	dat_20200819.doc	doc	017dedfe5d57e11c86048a8f6470f4d48573fc0bc581b8ef0a6e22c06169770a	20.69%	Heodo
2020-08-19	file-20200819-EFX6635.doc	doc	b4980748305d9329f376c996a7887e4cb40713c823693998d4360500c510062a	n/a	Heodo
2020-08-19	Dat 20200819 SF594601.doc	doc	305cb6c8382b96303f2a72bf13d1c5396188b06612236babedc20ab620eddba1	20.00%	Heodo
2020-08-19	LIST 20200819 41593.doc	doc	02efef8ede900c86814ee2bdbd43c88bda71b970e85d0320bdb50feea29dc6ba	18.33%	Heodo
2020-08-19	inf_20200819_99217.doc	doc	fa59f15a4552911075dfed2943fc04b755430e1611628a0cd18370afad3e3e1d	19.67%	Heodo
2020-08-19	INF-20200819-904.doc	doc	aaadbe4b9d0ee93e968e9b335a70f43b7494e2f260e87ca8a08a211997111940	20.34%	Heodo
2020-08-19	doc_OON085.doc	doc	8b3f4fadba7e503156606666e368e036a99962c1a2a7e3929067e86d385df235	20.00%	Heodo
2020-08-19	arc-3604.doc	doc	ac5d6169036212c360d8f4232685f6664041d612f03126d5ae29a48dfdcf2d1d	n/a	Heodo
2020-08-19	INF_2020_08_19_088.doc	doc	eb155a10b70738148dddee502448a1f4361b5ca62ede0e0f0e186dac342fa090	18.33%	Heodo
2020-08-19	mes-FXA262.doc	doc	fc3d622adccc98bf7aee3ff98037920892cf9ec8e29b6a2de393217d74499b7e	18.64%	Heodo
2020-08-19	file 2020_08_19 HN46755.doc	doc	e9da8132017bc36f1448def9ba8b2ea44184e68bf955c08ba75f2560ade79372	18.33%	Heodo
2020-08-19	MES 20200819 NMM870.doc	doc	efefb13f4f10cbe61192d1e07a8c0a3b8c510b0775b4f5d73a522ea8a19fa1df	n/a	Heodo
2020-08-19	DAT 47352.doc	doc	4798faf76258c8ed12cd2d43a683e3c56b6fadbcbc5b6e7a797ca73e76ed49df	18.18%	Heodo
2020-08-19	inf 20200819 0372.doc	doc	44116755a469545747d98ca4dad33a22c5565d571be3001cb95cb4971c532c3c	18.33%	Heodo
2020-08-19	Mes-KN1976.doc	doc	6694fe251d3d322846bd820435fba33e44ed217f3f9e2bf3a1ba2f71a2c8b4bc	18.33%	Heodo
2020-08-19	Arc-RB74368.doc	doc	d854741ed5301c0c1c91902f29edc9e823fe1f656c5f9c1610fdc19ae1c29059	18.33%	Heodo
2020-08-19	Mes 20200819 L321658.doc	doc	06a4431e2a5467fd8f9c297a6a25e670ee44231c92dd38d8f998a3a93115f0c9	18.33%	Heodo
2020-08-19	doc_20200819_885.doc	doc	286da6ddd48e8a7710a42e0b3a8176443ce264480609c7e8107f9c8ee598e1e9	18.64%	Heodo
2020-08-19	file 2020_08_19 I9284.doc	doc	741441215f02f536e57bad81a0cd2549669c22dabf11a9db8076f3e7ec6acf1b	18.33%	Heodo
2020-08-19	LIST-2020_08_19-6388.doc	doc	1dd9e898cf2ef400f93bb6759c7453980dc396b70c7c8748055db01b62685f2a	18.33%	Heodo
2020-08-19	MES-8200252.doc	doc	6409ea14c150741b3551828dcbbc20e14505bdad2f9a8eee4f450a80878f6519	18.33%	Heodo
2020-08-19	LIST 2020_08_19.doc	doc	2dea73b6391db01c0900ef660c75b0841dcb9fd8fd91c892a5faee2e9701606e	48.28%	Heodo
2020-08-19	DAT 20200819.doc	doc	f4e30920b70f56cf729fbd18a0d60e33b391f7e5307d39b78d9852f9918b46ce	47.46%	Heodo
2020-08-19	arc_20200819_H541.doc	doc	09d725bc4314f587c3132842fc1d924a1ec4952620d18e32796d3797b90e66b0	n/a	Heodo
2020-08-19	Mes 2020_08_19 VO473.doc	doc	06cad41d0787e562a96ad8958e26b1f207b90cdf231201faa801225a7a259256	47.46%	Heodo
2020-08-19	Rep 20200819 755670.doc	doc	7065577cfc7f1d2a71a9044c23838d7703f1a1e02b2c222ab507407a778aae24	47.46%	Heodo
2020-08-19	doc_2020_08_19_ZI514.doc	doc	f6feee3a8137cb0cab6667842f06e07f96e54fc2f15ebe079dc30b4060d52452	46.67%	Heodo
2020-08-19	REP_20200819_015575.doc	doc	00ae8c566e55be2bcbcd11072f67a71e34b8b28b3e3dcb0f949043c17c398ecd	46.67%	Heodo
2020-08-19	REP 2020_08_19 KN174866.doc	doc	8ecfd0e0dbd4257b0b0f97f99517f9d1d825e32d7862b1ceb1b6bfdc67b205a0	45.76%	Heodo
2020-08-19	Doc_20200819_3312659.doc	doc	60529051426888b950c39051f1ae3ffd04df199460f8f08ad2fb4ae0d65837f6	46.67%	Heodo
2020-08-19	Arc 20200819 N96412.doc	doc	5194005835c1f487f14f03ea67a9300ad9821c5d0922e5549321d2629448f630	46.67%	Heodo
2020-08-19	FILE_2020_08_19_ITA0077.doc	doc	5a63ce9de6a721eaabedc5a95a579a3eee404a94034db171f646e24517fed367	46.67%	Heodo
2020-08-19	Rep-2020_08_19-1215.doc	doc	682cb4ff880f1a6a000f5a227f8dba42abd73d836308162dc519644d9dae94ef	45.76%	Heodo
2020-08-19	Dat_2020_08_19_592.doc	doc	45a1dbdb6b372ed28b9806469cbe031baa76035067cb69b5e936960e53988a80	45.00%	Heodo
2020-08-19	mes-20200819-5010853.doc	doc	7833c0d39d11142241550af1fa9cb743026dc00c841f79a52d695fd8e9bfdd43	46.67%	Heodo
2020-08-19	list_2020_08_19_347668.doc	doc	eb36ddd9edb9f64c1d10743135f87875826990fee2cde8abfcc653b1045c9061	46.67%	Heodo
2020-08-19	inf-2020_08_19-YGM812555.doc	doc	b4109096624dd29f07d9e5c328637c66396a4c0ba53760b48905a4d81e829027	n/a	Heodo
2020-08-18	list-2020_08_19-6825.doc	doc	5644494f53e0f58e39e8c623b06d33e093d920e7728632366beaa74ce3ce75a2	43.33%	Heodo
2020-08-18	INF-20200819-HVJ013.doc	doc	96ff6e1cf0debb38b542d25de485f8bbedbebacc99a76bc427946603266b19b2	43.33%	Heodo
2020-08-18	rep.doc	doc	f382710578f3df562db77ea613a75d9485ab315f7f8b7e5aa86e8120a0f0bf6d	43.33%	Heodo
2020-08-18	List 20200819 9489.doc	doc	8f47cb493376d43a1a8f2ccadec7a4cade6df8e86bf5159d54781451519064c3	44.26%	Heodo
2020-08-18	dat 2020_08_19 BDM636072.doc	doc	942ccd6baa3b3eea249f01497d82b6835ddf27ab79c9db9561a3f473e05eceaa	43.33%	Heodo
2020-08-18	FILE_M0431.doc	doc	f4b06b5878e6216de2fd744371e3da706006cd0eaab9952e028ed23bdb5b89d6	43.10%	Heodo
2020-08-18	doc 9627875.doc	doc	2df5b20d8f749d1edb14c16c6c1c1ce78165354f3d038a23ac8d4d99188391bf	44.26%	Heodo
2020-08-18	INF 3815.doc	doc	1a8c5bc937330472d676469e981466649ed28cae04d2f3273b0648e96ee6609e	43.33%	Heodo
2020-08-18	Dat-2020_08_18-M035.doc	doc	de7d72e073b61d24137abfd27fe66238449d71dc609887dcb78cca6b90ffe2b6	43.33%	Heodo
2020-08-18	file 2020_08_18 85039.doc	doc	830569cee9172bcad9f7c205210f393136c53f41606252a10e763c8e9c2064a2	38.33%	Heodo
2020-08-18	file 2020_08_18 APU354304.doc	doc	72d943737f8d648bf65f1f9071ab2656abc7a9095e4bb53f4be92836d49aaca5	n/a	Heodo
2020-08-18	MES 2020_08_18 YU077404.doc	doc	c2c31857eddef908bb15ebce07f54e91a068ffff5b92014fd70c1d5ce8f34cd6	40.00%	Heodo
2020-08-18	Dat_Z6380.doc	doc	c674ec5f3cdf350eb7768e985c94060f26903274d10b581bab0fc71c730f0179	36.67%	Heodo
2020-08-18	Rep 2020_08_18 6380.doc	doc	4447568080893f02a97ee86ec9e776b6d5b4f7ea644870e130a19f3df9b16667	36.67%	Heodo
2020-08-18	INF NH96873.doc	doc	b8ceb76e216625929c1a81fd2260e8b3ed97b6dda3a18f3054ef2fd575f7b15f	n/a	Heodo
2020-08-18	dat_20200818_ST5010.doc	doc	8f959970d7700626885598cb613f8e0466e0d1f6def0930bc12f4e742f2617cb	n/a	Heodo
2020-08-18	ARC_20200818_VBK3516.doc	doc	b16cf643ead18e0404ebc5b07f70bd5c5d99d057d346e2bb3ac34ea7a1c3e28d	n/a	Heodo
2020-08-18	List-284.doc	doc	5761b96d033bca0977cc67ee0a51123d3986e1ea0e0f7dad51925b7a2a141555	n/a	Heodo
2020-08-18	Inf-20200818.doc	doc	a3d686e64806412716e762358904ec4b07f8d3ba5c22f42fd6463288f544658e	n/a	Heodo
2020-08-18	INF-057.doc	doc	2205e547d23005dd90dfbdb24d868bab2f4d6cc70c025a1825c050812ab27f45	21.67%	Heodo
2020-08-18	Mes_20200818_1579373.doc	doc	2d9c3ad3458a6371d8d940be9e5379d3334396576ac0a4cf794f13309056ce6f	21.67%	Heodo
2020-08-18	List 2020_08_18 WU951323.doc	doc	6f0f54737b574488c42223ae81bd83ea0da431f0732413951fe4572ca19e6442	n/a	Heodo
2020-08-18	MES-20200818-LD3346.doc	doc	35b18dbdea7ae1b3d982973c26626ba8af054713d0479a8c1ad278abc7e8bcf0	21.67%	Heodo
2020-08-18	MES 20200818 7515.doc	doc	ef82ba7726590c175aa9483782be07ebf1c3ca56839c2a61cbfea1f8a8aae774	n/a	Heodo
2020-08-18	Inf 20200818 6431102.doc	doc	98ff1d26226bc654bacac7dc85fd4dc8ac6988dbb67d4997b98f07f328a02f6b	21.67%	Heodo
2020-08-18	MES-2020_08_18-35684.doc	doc	28a385f1a4db5a227e82384361eb3b4b1a839291ee7dc840f612bfd05c7e1c83	n/a	Heodo
2020-08-18	List-20200818-ER873267.doc	doc	cb25ae558b0f7fcfc47025986a8012bb4b205121e43c896f85fcf9e1dbff0441	22.03%	Heodo
2020-08-18	INF-2020_08_18-H04654.doc	doc	b1a5b0c45a385a514d7ee49f36e2df92b90949faf44927ad0a6540f39686a5f4	21.67%	Heodo
2020-08-18	ARC 2020_08_18 6888.doc	doc	ca13f800b50bf58a4b795fc6da781783074ec311cdcf92e79eefffd9b952747d	21.67%	Heodo
2020-08-18	File_20200818_XU9033.doc	doc	ef65c9f4858045271c7a6baf6f96364dd76acc60c1c3da6ac156bdb6322c43bc	21.67%	Heodo
2020-08-18	Dat-8732646.doc	doc	f82bca080090e9e0e8ea3afbbcaec1a60b2bea552c025d42b324fa2115f69ea2	n/a	Heodo
2020-08-18	file-A219.doc	doc	fdefc11c170fb154dba517cab14b16a6033b9119a7b3b386e4a19a3f6982e035	n/a	Heodo
2020-08-18	inf_NQZ16221.doc	doc	9b12143b085ad044f054f5080820ffcb76f9c92df51d76173e60c0559001f16b	45.00%	Heodo
2020-08-18	DAT INF872563.doc	doc	d5af23a4a20609570d4b1cdb956d22513915178d14f35d7fad5dfff86f25c664	45.00%	Heodo
2020-08-18	mes_5441.doc	doc	ce7f5157d0128d0740ec074ee8db6dd03e234c410111f7aa6832f7adc820cfe0	45.90%	Heodo
2020-08-18	LIST_20200818.doc	doc	1b091450a22052f2f93d1729f74b3ceeae074536055865f9e232398acd2f3a7d	n/a	Heodo
2020-08-18	Arc_20200818_X639421.doc	doc	25ee4f3c43b72dc8241940ae6f5418b60bf58dca63bd4a9d08d45bc566b1cef3	45.90%	Heodo
2020-08-18	File_277.doc	doc	2ce679953d8f4a7b2d6d9f47c635d574aa6e6a9ea94154654e1bb1472971f502	45.00%	Heodo
2020-08-18	arc 2020_08_18 624.doc	doc	4a49fe6ff5e8731a7aa0536b8f0c0dbc5673dae67c35f0141efb3807cb21dadd	45.90%	Heodo
2020-08-18	rep 20200818 H601770.doc	doc	85d29d1d7b0defac3d595525d663889a12f7d5388d8bb0a993665335f72bac30	n/a	Heodo
2020-08-18	inf 20200818.doc	doc	5df043bc839c637b8e9bedb8ae724393cd4ba22ce6712d476f8b56ce4c9d2e6f	44.26%	Heodo
2020-08-18	Inf-2020_08_18-0516856.doc	doc	5b2f315f6910580a86de6995dc3bb3af0bba726b0292875fbeeb557d17759d57	45.00%	Heodo
2020-08-18	MES_2020_08_18_189097.doc	doc	9f6acf9a0b1abf9481a13650ecdec0e7a9cb7a4c30938c2ffcca8da0934a96d2	n/a	Heodo
2020-08-18	File-Y31728.doc	doc	c096790fac979c0cd6d10f7870eca525a28891a4462431c6204c5f6adbe9157b	43.33%	Heodo
2020-08-18	MES LM1107.doc	doc	046ef2036e93a6cf34529a8ebbb37aa633f1036021511edbee0fd2fac0363770	41.67%	Heodo
2020-08-18	FILE_2020_08_18_UXM141.doc	doc	503c77f99b0c8271cb80a1101e69d6c9060647f7a4a8451c23aae49bd344b634	n/a	Heodo
2020-08-18	rep.doc	doc	403175e425e2a4c0eedf4b7a5fee64bdcb3b6e6929a1aea63dbda7f9a84e8086	41.38%	Heodo
2020-08-18	Inf II7570.doc	doc	cbae984f113307015e9a42c646507cd4fecbc37c1ce7ed2fa9d731fdfff7e00f	42.62%	Heodo
2020-08-18	DAT 2020_08_18 35841.doc	doc	872c0c3578f24be338bcaa8a29f2b157d80a2d3d5e5ecbd33b028bced714c077	41.67%	Heodo
2020-08-18	List 20200818 LJV604291.doc	doc	0ffb643d2ef22089512c5de14e1d2f14d5632e77e9f609b1374c79fbe0a788e0	n/a	Heodo
2020-08-18	arc_2020_08_18.doc	doc	d34a4e095dde98d6740346383251d18ce5f9bb8c58071f128db8083844be55e7	41.67%	Heodo
2020-08-18	inf 2020_08_18.doc	doc	e7007d098ff3b77d307fdffbc2b566e6396298bfb9718bd207a8b377aca0b96a	42.62%	Heodo
2020-08-18	FILE-SB272909.doc	doc	92bd87c0eed15bf75f7c61b1879280e25a7997a4afe7c804c82a3902f51d46c1	41.67%	Heodo
2020-08-18	List-20200818-1536.doc	doc	8bbfe9b6aae9ae8cd42ef61b046d0c690f0637f216d5a22d4a5f7911b59469f7	41.67%	Heodo
2020-08-18	rep Y01562.doc	doc	e976f7e4de4c0bedc4e4bbc27752994f9110c050508b106611f035260551a8e0	n/a	Heodo
2020-08-17	file-20200818-PZH868.doc	doc	cc2b2954e615657190a6b35c6784f2280cf56ca53c09647bcd8e096a005642cf	41.67%	Heodo
2020-08-17	inf 2020_08_18 892688.doc	doc	faffee3625908bf1e2cb82c961bd1d777beeff0f87166e3aedc6fa984834c42f	41.67%	Heodo
2020-08-17	doc-2020_08_18-QV09701.doc	doc	5f0f7cccdbe15b26ad3d18fe0dc9c31aba891cea529b65e56c7dda35fa776c0c	42.37%	Heodo
2020-08-17	Rep_2020_08_18.doc	doc	34c3b24fcdb685c45554b1bc9ab60336cfb9233e87c3f21c61bd63723fea1338	40.68%	Heodo
2020-08-17	Mes 20200818 VQU6279.doc	doc	6535313a52f000bc92afec62f22968677544878c5cf2109e862e72f7c441dda0	37.29%	Heodo
2020-08-17	dat 2020_08_18 FJ90652.doc	doc	818e631aced6291b95a641f2eace827a0b9f2ee202b364a3a09378bc52401e03	40.00%	Heodo
2020-08-17	list-JIB1990.doc	doc	b217056622d2655617081ef69ad65da589c7ca744d2d1d6b666425f5d55f4644	38.33%	Heodo
2020-08-17	MES_Q54090.doc	doc	297f4f2334f23666aa894f8d89b15cc255462eda977a194792c9eefa5102a3da	40.68%	Heodo