URLhaus Database

You are currently viewing the URLhaus database entry for http://lidoraggiodisole.it/cgi-bin/open-dx94jkyi-b6qjjupuuobwfd/additional-portal/28508103373507-Yhw75oH8/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:438272
URL: http://lidoraggiodisole.it/cgi-bin/open-dx94jkyi-b6qjjupuuobwfd/additional-portal/28508103373507-Yhw75oH8/
URL Status:Offline
Host: lidoraggiodisole.it
Date added:2020-08-21 14:27:04 UTC
Last online:2021-09-01 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-21 14:28:02 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:1 year, 0 month, 15 days, 21 hours, 8 minutes Bad (down since 2021-09-01 11:36:18 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-22Mes_20200823_YDC195.docdoc 341e9a1b4252cc46eaaf7518c4a09a3f4caea692bb29798760dbc23601731ca5Virustotal results 54.24%Heodo
2020-08-22Arc_2020_08_23_31840.docdoc 8497faf7956deca580f40179c41fa928c0a810d44b9522acf54d00062baefad7Virustotal results 55.17%Heodo
2020-08-22rep_20200823.docdoc 5dcffa82020a84b2d08003b7730cfcb8a550676a5757b048a44eba3db9b1c782n/aHeodo
2020-08-22DAT_B38221.docdoc fa51bf8fd1da8c767a9d37c044edfe2cddd9e3b49011babc5b9418d3ffd21fc1Virustotal results 52.63%Heodo
2020-08-22Mes-20200822-991.docdoc ebab708f03ee6f65f5d74463903c11d08108d9b335a01b1c504fb44a337b7ef7n/aHeodo
2020-08-22Dat_471175.docdoc 241170b03a78352fc3be673f0edce2be2087a865f54e547cd65912e0c6b5f219n/aHeodo
2020-08-22DAT-2020_08_22-9666267.docdoc 164465258e55e97d043ab6f880e55b5391c7e9797de4c30b19f1a4998277087aVirustotal results 50.85%Heodo
2020-08-22arc 20200822 2450.docdoc 5fa91070a3507710ecbe203e1124bfa581b74ecda84751a17795c86c8a890d46Virustotal results 51.72%Heodo
2020-08-22rep_20200822_022.docdoc 0fb3f076a5760f5cd7f7e51347a38e02dfc8901bb5d01ff764a6fd2d6784cc7cVirustotal results 59.65%Heodo
2020-08-22Dat 2020_08_22.docdoc 3b87b742002b973d033d06a0392bcebfb3073fae103e48cc81f1d57b55e92525Virustotal results 53.06%Heodo
2020-08-22Arc-2020_08_22-H456.docdoc 2e4be71a90e92bfdb86d96135462904c2ee04e76d0262438bd5602b5ac0c417an/aHeodo
2020-08-22REP.docdoc 2d37b5d896f89d65b52008ce0db99ea6b780989a36a29acd6e47cd10504ff507n/aHeodo
2020-08-22FILE_20200822.docdoc 97fd4c5a3798765f362ebf591aa87772792782f5c76f675ba6da1af0225ceaa4n/aHeodo
2020-08-22rep_2020_08_22_76955.docdoc fa2a1d4f51b1afa12671d5fc760dddc993ff2ef768e3edec3d54dce07e1ad744n/aHeodo
2020-08-22INF_20200822_TXU5916.docdoc 1eab37042ccf24c1988ac1582cb8829751e1e4c1fa5c72ba5e984daa11869410Virustotal results 48.33%Heodo
2020-08-22list-931.docdoc 141ae7bd833a21adbe67d57ce9791cdd5ca210777ffa0df005892c94b01f78aeVirustotal results 57.89%Heodo
2020-08-22MES-2020_08_22-X752199.docdoc a848bea60e6257d01e25d7ca5944a9781c123fba443b5de6b84f20a9599a53f1Virustotal results 52.54%Heodo
2020-08-22dat_947427.docdoc c101788996fd465167fb930e0ee443ba396607808c74fa8ded82e0bcfa9f7f64n/aHeodo
2020-08-22dat_20200822.docdoc 54b53b93cf0923b5070f9935e120c740643fb55c2a3fce58430bd5c38f531fb0n/aHeodo
2020-08-22DAT-2020_08_22-509943.docdoc b0f721ea8672a7794a9b1eed3876a23bd5bb7d62a934c76bf45dc9c57461e50fVirustotal results 50.85%Heodo
2020-08-22MES.docdoc 6bfb56b285ed97664a586743af9ec1bec72255af2731174be05a1236883b0129Virustotal results 53.45%Heodo
2020-08-22Arc-6273274.docdoc c619eacb3a8f871f00b7d7ab616e04be4d699aad1cfab9bb6d047f5ed301ea12Virustotal results 50.91%Heodo
2020-08-22Arc_20200822_VSU781962.docdoc 6ea67c1096ec61c63688095baf266f0db4d7d21e3e3dc01cc59ea3629d600a0cVirustotal results 50.85%Heodo
2020-08-22Rep.docdoc 19993ada17d417eac8d69e9ef6fff9bccbee9504f913f7b18414165b7cfdd964Virustotal results 50.85%Heodo
2020-08-22Arc_2020_08_22_7417964.docdoc cc632bb864117c96ce9795a4077e0412d58358016ee1b15275bcca7c0bd368b7Virustotal results 36.21%Heodo
2020-08-22File 2020_08_22 1531859.docdoc 2fea8b7f5754e42358ec1079c8f5995e1e733153af5101e3c786980aad17824dVirustotal results 53.45%Heodo
2020-08-22Inf-ALR3815.docdoc 44be463c465e4e229df4dcea734d505a424cb65601ccdcd1348117882ad9038cVirustotal results 45.76%Heodo
2020-08-22MES-2020_08_22-614.docdoc cd59c3570d89a3b5b8263e3beb294d4a87f3a1524d40f58e27d22b415db7b40fVirustotal results 36.21%Heodo
2020-08-22INF_2020_08_22.docdoc f303289ccfa96ee597e4ed497e6aac8ca9ce382b04c40f5d17f21b63228ba66aVirustotal results 35.59%Heodo
2020-08-22LIST_048.docdoc 2f1fb6d0a8160b4201dd703dc1821a3476091a66a5fe04641aa80c9595342694Virustotal results 33.33%Heodo
2020-08-22Arc-20200822-NF05161.docdoc 410274b2ca31ea3142f4fb91817422ccc1ca62617732458298145fae6d740559Virustotal results 35.09%Heodo
2020-08-22Mes-E61707.docdoc 0a7181e539b268536df28fc63a82b43dfa50e94f794f246c2adf975042ad1384Virustotal results 40.68%Heodo
2020-08-22Doc TJ560398.docdoc 7910573209534692d5d300434187b3769f390a81173b30e2ca9a834d1989266cVirustotal results 36.21%Heodo
2020-08-22Arc-2020_08_22-4857809.docdoc 0d62984f302057e3206f8ffb7af2b01402726b9a6d7146509f4420e5aecd80e5Virustotal results 34.48%Heodo
2020-08-22list-OI834486.docdoc 888576b006def3935c63b3044add14aff8f8a2f56a1a52592f895f1182d25ce6Virustotal results 38.98%Heodo
2020-08-22ARC_2020_08_22_P0802.docdoc 41e117890931d05a1eaa233b22b71bd5de72311491f54ccd76c7141d37a2c2a8Virustotal results 34.48%Heodo
2020-08-22Arc-GCC1009.docdoc eb03beecb5dbcd12f2191ec6980a4b9abb56b43907f1bff900378a80daa3699aVirustotal results 35.09%Heodo
2020-08-22arc-2020_08_22-AZY33859.docdoc 7e23b5d1c6802917ef79115b4b1a242be7cd7465aa52247ae9d01092bcb49da1Virustotal results 34.48%Heodo
2020-08-22MES_W015.docdoc 46821d694a7c94efbd9aa8cf863377946de88c036c813decd85ed3cd8bfb6cdeVirustotal results 34.48%Heodo
2020-08-22MES 2020_08_22 NGQ632.docdoc 4cd4ea7314c2268401c1395af0e562dcb530b081eb42c55152e03990a62bc4eaVirustotal results 34.48%Heodo
2020-08-22Inf-5886567.docdoc 037b8124330acc05c14aeec4da5dd741dfc43260dbd62df806d84fb370ed3416n/aHeodo
2020-08-22DAT-43831.docdoc 90e7e0a921f7805d5392b6725349de6ed30c7a234187790c6579d8cc240ebce2Virustotal results 34.48%Heodo
2020-08-22Mes 603.docdoc 9171991027c772e7f4a0461492ca9a074c828f0647d3fb993b0b370dd233fd2fVirustotal results 40.00%Heodo
2020-08-22Rep_20200822_AB35116.docdoc bf613424225d5260ce91473ce6ebfe8adceb0588ea8fd5bb613437a9ce55f5cbVirustotal results 34.48%Heodo
2020-08-22List 20200822 NU18670.docdoc 0de50412884992ba3c3d7727aed28ea0d5c6bc3c8a2dfafaefbe05b65c853df8Virustotal results 33.33%Heodo
2020-08-22mes.docdoc 38ad7eca5e40a7294cfd489d269d4dae16920886c3e5b69674dfffb9e75daeb9Virustotal results 32.76%Heodo
2020-08-22ARC 2020_08_22.docdoc 554418877730d4dee3eb89b119139b9525488871911b50e38b4264d4e02aedf0Virustotal results 33.90%Heodo
2020-08-22inf 20200822.docdoc 3c425e91c6383bae63a5768f423894b4db16efeaa0224ff93d8e9878e0422ff9Virustotal results 33.90%Heodo
2020-08-21Inf 20200822 577.docdoc f3910c447952615a78e47e19bb4d3f313f015a74e603c83b15fbe812d5437d4cVirustotal results 34.48%Heodo
2020-08-21arc_20200822_39859.docdoc 92e5e1a51ddd03e23c7c26053d435dae5ad6603e18a54d2926e943f5380ad077n/aHeodo
2020-08-21REP W00660.docdoc e2e7f4b11f11f2af066278c55e5cca8fb8e9e9c9f3bcebea7b72b4c6e938cf4dn/aHeodo
2020-08-21Arc-2020_08_22.docdoc bf674967afe4c840338de636d94e0808463b9786fdcb2161515d63e333f4bf56n/aHeodo
2020-08-21inf_2020_08_22_H956.docdoc e41c9acb24c7dbffbe881b62867bf6c7e1ee5c151509f7fa14b4004d0db184aan/aHeodo
2020-08-21rep 20200822 4917.docdoc 477e5903ab426d0f8d08786b9ee6332240fdbcb967dac106e7de5705a84ef512n/aHeodo
2020-08-21MES-880.docdoc f5c802f7ea024701b5da84ae6654fb6d08915fb996f178622a4d2808016cf0aen/aHeodo
2020-08-21list 2020_08_22 459888.docdoc 605a94a5d882c71dfe00f46a2f2206f95436ec9be3be78d13a2828dcd55a3935Virustotal results 35.59%Heodo
2020-08-21Inf_20200822_98971.docdoc 603d629a760eac3335de2eea279b70f0eb80380c0b8028bc31da451010d718ffn/aHeodo
2020-08-21dat 2020_08_22 24527.docdoc 8d7e7872e7396c91f6d004c84a1634b659beed3051508037c90bc07a7cbaf7f9n/aHeodo
2020-08-21doc_6564.docdoc aa5a4eb52d5e8701ff524488939ee045bb87e08a430e7297908342ee32bfbcc4Virustotal results 33.33%Heodo
2020-08-21DAT-RC65567.docdoc 045722a598eb4956a7229f49d8208b80677db2ae6464d4916ab9908d961bc1d2n/aHeodo
2020-08-21doc_J33865.docdoc 9bc64010c8d94a22d54acf8497f0854e97dc1cec1f0acb8a662102adc4763b89Virustotal results 27.12%Heodo
2020-08-21List MLK5498.docdoc 276f6c0d4e660b252cd9fc6759fd38616f6e8c8af4969383b700bbb0b133b18dVirustotal results 27.59% Heodo
2020-08-21INF.docdoc c4525d8d12b2ae0b6f7695fee8ce9fd554341878ff6ead657048680e50beefccn/aHeodo
2020-08-21doc QPW37040.docdoc c22cd3fcf4f9698404855a85f7bfcd785d3742f4aee5ff514f4005afa77fc3e0Virustotal results 28.07%Heodo
2020-08-21Rep 2020_08_21 069.docdoc f60fd519356c19645f80da09725195818b3e9ae9aabe1e372b866675d3dd3263n/aHeodo
2020-08-21MES_2020_08_21_AZ8638.docdoc 60a1004745b62fc2bcf481c539405b90b7b51a0bfac0bd51937ca199e0799e4eVirustotal results 27.59%Heodo
2020-08-21REP 2020_08_21 UH73497.docdoc 4527b275368496e687fa4ee3da85db79e2f9278a4ba53b0033a3631bd6af0318n/aHeodo
2020-08-21Doc-20200821-F6068.docdoc 06731292da769a21d7cd5e4226b873134f18d1bcac76f39efd3a9cac90c47758n/aHeodo
2020-08-21Doc 20200821 11031.docdoc 3cf74e0df4d78618f3a47dd3b2cb2dcb14ed65d1d5100a0e372633577641a757Virustotal results 23.73%Heodo