URLhaus Database

You are currently viewing the URLhaus database entry for https://overcreative.com/css/common-IDDWxkjn-jZNG8S49/VyMf0XaO-KBDkdagHdm-portal/0407848-cHlmFlnZ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:435239
URL: https://overcreative.com/css/common-IDDWxkjn-jZNG8S49/VyMf0XaO-KBDkdagHdm-portal/0407848-cHlmFlnZ/
URL Status:Offline
Host: overcreative.com
Date added:2020-08-17 22:53:05 UTC
Last online:2020-08-18 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-17 22:54:02 UTC to abuse{at}aptum[dot]com)
Takedown time:17 hours, 23 minutes Good (down since 2020-08-18 16:17:42 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-18arc-20200818-KGJ51842.docdoc 8f959970d7700626885598cb613f8e0466e0d1f6def0930bc12f4e742f2617cbn/aHeodo
2020-08-18Dat 541870.docdoc b16cf643ead18e0404ebc5b07f70bd5c5d99d057d346e2bb3ac34ea7a1c3e28dn/aHeodo
2020-08-18REP 20200818 YEV32790.docdoc 5761b96d033bca0977cc67ee0a51123d3986e1ea0e0f7dad51925b7a2a141555n/aHeodo
2020-08-18MES_P326163.docdoc a3d686e64806412716e762358904ec4b07f8d3ba5c22f42fd6463288f544658en/aHeodo
2020-08-18doc I957.docdoc 2205e547d23005dd90dfbdb24d868bab2f4d6cc70c025a1825c050812ab27f45Virustotal results 21.67%Heodo
2020-08-18FILE-52839.docdoc 2d9c3ad3458a6371d8d940be9e5379d3334396576ac0a4cf794f13309056ce6fVirustotal results 21.67%Heodo
2020-08-18mes_2020_08_18_078345.docdoc 6f0f54737b574488c42223ae81bd83ea0da431f0732413951fe4572ca19e6442n/aHeodo
2020-08-18MES 2020_08_18 271197.docdoc 35b18dbdea7ae1b3d982973c26626ba8af054713d0479a8c1ad278abc7e8bcf0Virustotal results 21.67%Heodo
2020-08-18mes-2020_08_18-ZEV0407.docdoc ef82ba7726590c175aa9483782be07ebf1c3ca56839c2a61cbfea1f8a8aae774n/aHeodo
2020-08-18list_2020_08_18_K4806.docdoc f9c427a4bfa737b6f93b8d1271eb7c351a78fa1296db93634de337be0479d319Virustotal results 21.67%Heodo
2020-08-18file.docdoc 9f1df99d205063984fcebb467c9a0f5e788e1fc90b2e9438d7837423c46faf0eVirustotal results 22.95%Heodo
2020-08-18Dat-20200818-8697.docdoc b0ac5f239adc62a48ea0931e271da006133cbbb682b536ef44d0df5981aadafcn/aHeodo
2020-08-18mes_3750.docdoc 55aac05cf9669e716b6b3995c512c293a1be51438d414dc31db9c70be4b954c0Virustotal results 20.34%Heodo
2020-08-18MES_20200818.docdoc 9b12143b085ad044f054f5080820ffcb76f9c92df51d76173e60c0559001f16bVirustotal results 45.00%Heodo
2020-08-18list 20200818 534.docdoc d5af23a4a20609570d4b1cdb956d22513915178d14f35d7fad5dfff86f25c664Virustotal results 45.00%Heodo
2020-08-18rep 2020_08_18.docdoc a7c86fe81531f07b7120be70ff6f16519758654ccc7ae3c901cea8d36e3a21c9Virustotal results 45.76%Heodo
2020-08-18Arc-2020_08_18-97086.docdoc a792d36a5d86adccbd0b2ccbb0fd67191beecb5e7230040f8d4626c8d47fd717Virustotal results 44.83%Heodo
2020-08-18rep_H75681.docdoc 3b916aa5cf96d7330d89f1de96c84ecc9f5acb0f21832d5571cdfe9fcc0b069dVirustotal results 45.00%Heodo
2020-08-18List-PTI1663.docdoc 81ec297e1363823b4a4170387a248d68e35aaefafcd998d0f30c090fdb0a7ee8Virustotal results 44.07%Heodo
2020-08-18Mes_2020_08_18_A013811.docdoc 97c4a455a266f18df4c26ce82ca2dce9c1411c24b190098b54f0ea98299c6025n/aHeodo
2020-08-18list 2020_08_18 GR0524.docdoc 85d29d1d7b0defac3d595525d663889a12f7d5388d8bb0a993665335f72bac30n/aHeodo
2020-08-18Inf 20200818 SE416.docdoc 23866d5c01d81dae8b6112cf09cb195b3caeab201b8d5b2074c6c01e280d1783Virustotal results 41.38%Heodo
2020-08-18MES-20200818-XD893.docdoc 1c62113735e6ddecc264c05212144be5441448de6c9cdc063a1d3ff2494185a7Virustotal results 46.55%Heodo
2020-08-18Inf 2020_08_18 Y261540.docdoc 8c8aa4e03dde0b4f833c19e6fe8d3ea663d6dfaf860287b2cb8d230fda6bd8b6Virustotal results 45.76%Heodo
2020-08-18FILE 2020_08_18.docdoc c096790fac979c0cd6d10f7870eca525a28891a4462431c6204c5f6adbe9157bVirustotal results 43.33%Heodo
2020-08-18File 20200818 FOQ0578.docdoc 046ef2036e93a6cf34529a8ebbb37aa633f1036021511edbee0fd2fac0363770Virustotal results 41.67%Heodo
2020-08-18FILE 2020_08_18 B129597.docdoc 503c77f99b0c8271cb80a1101e69d6c9060647f7a4a8451c23aae49bd344b634n/aHeodo
2020-08-18list DM472.docdoc 78159b47ee6e43a81e5f727e9f01d56700fb22cca0c9f6cde333e91c0130dee3n/aHeodo
2020-08-18inf_20200818.docdoc 2c71b781d036db2d4d077269622615c4f83acf550bc178674d9c49d9360376a9Virustotal results 44.07%Heodo
2020-08-18REP_01980.docdoc 872c0c3578f24be338bcaa8a29f2b157d80a2d3d5e5ecbd33b028bced714c077Virustotal results 41.67%Heodo
2020-08-18Dat 2020_08_18 ZGO5903.docdoc 0ffb643d2ef22089512c5de14e1d2f14d5632e77e9f609b1374c79fbe0a788e0n/aHeodo
2020-08-18doc_2020_08_18.docdoc d34a4e095dde98d6740346383251d18ce5f9bb8c58071f128db8083844be55e7Virustotal results 41.67%Heodo
2020-08-18inf_20200818_62984.docdoc e7007d098ff3b77d307fdffbc2b566e6396298bfb9718bd207a8b377aca0b96aVirustotal results 42.62%Heodo
2020-08-18Doc_20200818.docdoc 92bd87c0eed15bf75f7c61b1879280e25a7997a4afe7c804c82a3902f51d46c1Virustotal results 41.67%Heodo
2020-08-18INF-078.docdoc 488ee38649eb1ebbf32991529e437aa3cff1d1f4db7948ffa4d4c7c5186cc6f5Virustotal results 41.67%Heodo
2020-08-18File_09150.docdoc e976f7e4de4c0bedc4e4bbc27752994f9110c050508b106611f035260551a8e0Virustotal results 41.67%Heodo
2020-08-17File-249216.docdoc e997b17d809b4d63590d7b7cca81318d3ecd18b59a46a4e83d88af6dfaeba54bVirustotal results 41.67% Heodo
2020-08-17REP-2020_08_18-0471398.docdoc faffee3625908bf1e2cb82c961bd1d777beeff0f87166e3aedc6fa984834c42fVirustotal results 41.67% Heodo
2020-08-17file 20200818 JZ602887.docdoc 5f0f7cccdbe15b26ad3d18fe0dc9c31aba891cea529b65e56c7dda35fa776c0cVirustotal results 42.37%Heodo
2020-08-17dat_2020_08_18_563.docdoc 34c3b24fcdb685c45554b1bc9ab60336cfb9233e87c3f21c61bd63723fea1338Virustotal results 40.68% Heodo
2020-08-17rep_2020_08_18_4887.docdoc 6535313a52f000bc92afec62f22968677544878c5cf2109e862e72f7c441dda0Virustotal results 37.29% Heodo
2020-08-17LIST-20200818-0520608.docdoc cd6e7841abd7bd7d7a42a9c72bc5ba372c35259441f36d9fac83c7434fd1e5f2Virustotal results 38.33% Heodo