URLhaus Database

You are currently viewing the URLhaus database entry for http://tusciahempcompany.com/wp-includes/INC/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	435593
URL:	http://tusciahempcompany.com/wp-includes/INC/
URL Status:	Offline
Host:	tusciahempcompany.com
Date added:	2020-08-18 11:46:34 UTC
Last online:	2020-08-19 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-18 11:48:04 UTC to abuse{at}hostinger[dot]com)
Takedown time:	1 day, 4 hours, 15 minutes (down since 2020-08-19 16:03:19 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-19	J_PO_08192020EX.doc	doc	bc5f7faf4b9266301e7e8bd3f6ad494c0b34e984278b3a484c6c46d845d9a28f	16.67%	Heodo
2020-08-19	CLX_HBF_080120_BJB_081920.doc	doc	546326b982f8d4e1c2af1b80d268127974403aae48e453ff6d8f1820120a8d0f	45.76%	Heodo
2020-08-19	INV_MKOVKQ8501VQHVD.doc	doc	94fe6d0cc1723a60d8965c606027ad0283a60c1f4677cf33c8cb85fd202bbc60	46.67%	Heodo
2020-08-19	3183239232.doc	doc	fededa8f56c791fe22493104398edd8f25c5b47a5668857fbbe72e6ee16ede93	45.00%	Heodo
2020-08-18	PO_08192020EX.doc	doc	db2013508bc3e41f1f93da8cc42b9edcae448ab5eefe05b364e1ce01247dd763	n/a	Heodo
2020-08-18	REP_LTY_080120_DNH_081920.doc	doc	78b703aa2f21f7da750676af91580be9d1e489f83d46c23e914c501ab654676f	48.15%	Heodo
2020-08-18	DOC_36335470.doc	doc	805f00873a643dff1edc0ebb808bcc771a6641780897a3d7732b01444b2ec3d8	40.00%	Heodo
2020-08-18	DOC_148273346.doc	doc	7f32822db30d0d6ab9d5ef5dd261b4629d251e40b69b860a30fa476c0e7b8d0f	40.00%	Heodo
2020-08-18	N_PO_08192020EX.doc	doc	35e9740b20a2893c8d20a705afd0fea0ec6d9293bb4b67d0446012a36e6a72d0	40.68%	Heodo
2020-08-18	INV_JG5822520356GL.doc	doc	7457d0d48a6875b4b70d817d7542bdd94e000e4293907a48b014189b5e7bada5	n/a	Heodo
2020-08-18	W_LX0013143553WT.doc	doc	1ab945db51701046ee561291c84c12844c96cad17d38c044915bc3657803b75e	n/a	Heodo
2020-08-18	MM2504590564KK.doc	doc	cab6349ac0df4084c7ff95a5e68f961048537236c2602cd3aff11482fb0d0af0	40.00%	Heodo
2020-08-18	PO_08182020EX.doc	doc	460a8e4f639b96c10e0094ce3aceeb1f60278284a1d7b27e3b16fd4b76744636	40.98%	Heodo
2020-08-18	964365426109249218015.doc	doc	455f2ce2d5b18bbce7c1ff8a8eec0e143f98fe0c1e0a4d289aee56f5f8e33e4b	n/a	Heodo
2020-08-18	DUB_2244948737999289.doc	doc	2e671edf471827a78f9327e215f9bcf6dda0f639706319263dfe9cb37d0241a2	n/a	Heodo
2020-08-18	L_57642597.doc	doc	fef24e0c24fefb1c867b231cecb3ca9fcfd7322a0df4f1d47be8c48000fb0ba5	40.68%	Heodo
2020-08-18	SC_842000240424157038.doc	doc	9c44c80515e97bcea6d0ecb7465ea920e4515d1c244dee409b2a3467b6815a50	n/a	Heodo
2020-08-18	HQL_080120_SDT_081820.doc	doc	4d8e7cfda1c0e9d03775d5858d97345d0a2ebd918a721a33ab2b2225e594711f	n/a	Heodo
2020-08-18	69725228.doc	doc	010999a8438ea40d8012240b03d2ced196d695c0e6ddcdb43bca7d28693c16df	35.59%	Heodo
2020-08-18	81757126.doc	doc	0a41f0b1fa2d723ed6b405e7f8ec27f3a38956badc1df3350a581e21c8c9d203	n/a	Heodo
2020-08-18	FILE_ODR_080120_YSL_081820.doc	doc	0cef6300d4ff34161fe15685c7de03dd6663177b6ca1d87df136eb05e9daf650	28.81%	Heodo
2020-08-18	BGT_080120_FOI_081820.doc	doc	77300670b06067855e3c1d1b58df8a505ec1598099aa1a03970407a2798336c7	22.03%	Heodo
2020-08-18	PO_08182020EX.doc	doc	c6313b13d24c46970563fd973b3b8b40ffd67b9270160ba475ba43994c824d8e	22.41%	Heodo
2020-08-18	K_8TZILH4F5.doc	doc	679270b48ad04036553294cf790dfbe503d0d2ebe2d5fe3bf9a534f306203e3a	n/a	Heodo