URLhaus Database

You are currently viewing the URLhaus database entry for https://citybasket.in/payments/DOC/gqu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:444681
URL: https://citybasket.in/payments/DOC/gqu/
URL Status:Offline
Host: citybasket.in
Date added:2020-08-26 21:06:37 UTC
Last online:2021-02-09 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-08-26 21:08:03 UTC to abuse{at}ewebguru[dot]com)
Takedown time:5 months, 16 days, 3 hours, 20 minutes Bad (down since 2021-02-09 00:29:01 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-11-14Z5390579460HD.docunknown 812cfd0b1f56e4777b8b842808eef4e1728eef7a9519e600969a068392534ff3n/a 
2020-08-29invoice.docdoc 5df4f10d255d1733e9450ecf67d166c73f6f29bb36efe88d6093a31d31ce0ad4n/aHeodo
2020-08-29010083.docdoc 4cc3b0434341ecff74a4c62206f91d15c075496a48829df0ab0f51b530dc9ed5n/aHeodo
2020-08-29Inv_14112.docdoc 3b5c4fffd6b0548d5d66842086b1b3762032be24a72ceb3154d72cc55cbb8d83Virustotal results 44.07%Heodo
2020-08-29PO# 08292020.docdoc 3a8a42c319462b67597a9fefae7c60c0a3917018eef2b0bba8bb02980e6ffe02Virustotal results 44.83%Heodo
2020-08-29invoice.docdoc a521f45b1de9146a13bd8a351c6999c9f2530183305f06315a2e681690ab40daVirustotal results 44.07%Heodo
2020-08-29Payment.docdoc 63b6721473e50f9b390f116cda2dc97aff00e66766293eae82b907ae7ce0c375Virustotal results 44.07%Heodo
2020-08-29INV_051412.docdoc 3b05f64f06873b3ad6438916c81c4f4139191b2d5a8324a632b2ef7fe4a82803Virustotal results 44.07%Heodo
2020-08-29Invoice #288875007.docdoc 1f42096613819f1b1cf2ea163ea893ccc965e8b3fc9beb61d4b0a967d2374bb5Virustotal results 38.98%Heodo
2020-08-29August invoice.docdoc b7a2a470b35a3cbf4a6501f45709fa7cc29d2a33c5cac4f00ac64b426b90929eVirustotal results 37.93%Heodo
2020-08-29PO# 08292020.docdoc b8029c0d90d1b4ff550cf1f13603ccb9b462e64c8b81afc2ac33252b86839931Virustotal results 35.59%Heodo
2020-08-29Copy invoice #68195.docdoc 1c37ef957c050e7a7373f775d0d82d817ee844735fe2cd1bc4f18b6a65638f6bVirustotal results 36.84%Heodo
2020-08-29INV_5793.docdoc 0c962f3623896801e405c611fdc2b6cbbff5a1757ab32e43feaaa32ac76fd56aVirustotal results 35.59%Heodo
2020-08-29invoice.docdoc 8024aa6cee62d71b90733458c64c779647087eb613aba76cd872a01b46cfdea6n/aHeodo
2020-08-29Form - Aug 29, 2020.docdoc a936fa77ef0be55ddc1bba6a24c65da623b7207d45356219d55b2475a4234b9cVirustotal results 36.21%Heodo
2020-08-2914272.docdoc e2e03f4ee18e589f52459cd372bef3e8a8935fc5e5638f41044f00fe0f151e52Virustotal results 35.59%Heodo
2020-08-29August Invoice.docdoc 8c3d2e0fd7d2cc86088185bf1acaf32d2d7e43124beba918f38856179ade8097Virustotal results 31.03%Heodo
2020-08-28Payment status.docdoc 5db10c40e7788456c57bf2481d95f86b762e85ec74c1ba5a232014afc0b7071en/a Heodo
2020-08-28Payment status.docdoc 418cd12b251bce9b75ac793c3d626440b35e8e6ef2002751114a27eb3a627d26Virustotal results 29.31%Heodo
2020-08-28invoices 3417 & 99675.docdoc cb57de487eb99f77f573e820510f8f2a4dc9569a0f80c775a85762067e82af99Virustotal results 30.51%Heodo
2020-08-28Payment.docdoc c6a98abe2ef2b0e445d4145a16d2728b53d55c55b9303eb550696db4b531bdc1Virustotal results 28.81%Heodo
2020-08-28invoice.docdoc 1af25f1feab8bab24a7f9f4531268d94b21a132eb001a1474213e7f92378cef5Virustotal results 28.81%Heodo
2020-08-28Payment status.docdoc 83a4d7860de46ad541e0399824ba56d53f755c233914096fa08cdf1d966960b0Virustotal results 29.82%Heodo
2020-08-28invoice #898053.docdoc 61272114fe318bae05e7fbc18aebb7f1af9bee41c0bb39188421c660d3970db0Virustotal results 29.31%Heodo
2020-08-28August invoice.docdoc d022da59e50434649d9292537c3c675835c9c9f958bf9a421d9688fb864439ffVirustotal results 25.86%Heodo
2020-08-28invoices 2526 & 3267.docdoc cbb94a69520e37b9f636211a47e9c71047477c36ff3a4b98b3c3971676a6ecccVirustotal results 27.59%Heodo
2020-08-280991277.docdoc 81cadd314f1bf342797da22c3d89200bc29b25a928bd3a8241d2864d3a6d4771Virustotal results 27.59%Heodo
2020-08-28Form - Aug 28, 2020.docdoc efddb6ce3f85a172356a95dfe3e262efff6d615be2339031c4ac5a68d7d2b2dfn/aHeodo
2020-08-28Copy invoice #312517.docdoc bbc0eae477256f89197e5444d0c56c9d942ef98593c60569ebc0c33dc28f6f21Virustotal results 45.00%Heodo
2020-08-28Electronic form.docdoc 8e0a43dba192a9953d51771fbb1935e32f67fe8ec37566325e406fecd46c36a6Virustotal results 45.61%Heodo
2020-08-28Form.docdoc ddf4b2916c52aac5c7ded567a35342d32e16955b622791d146f2c94f1070628dn/aHeodo
2020-08-28Invoice.docdoc 36745635813a270265d3e77f10090ceff5e939ae61f65aee431d9e14d555b808Virustotal results 36.21%Heodo
2020-08-280558255.docdoc 87cc2871c899ee6b8c19880fab2e1bf98e9935b3dd9672c0f3726c94328f0f2cVirustotal results 36.84%Heodo
2020-08-28Payment.docdoc b88ee9f0ad1a591659e9547e4eab2af49bf706001ead1cd568432bcaa49b76feVirustotal results 37.29%Heodo
2020-08-28Form - Aug 28, 2020.docdoc 80027d22a9457b32a8f92b86c0d35a78c9ec6cf7eff358d6d542ff2978fc1bedn/aHeodo
2020-08-28Inv. 909444.docdoc cf099f56a163d561f3b40e133695b738e5f074a835a1288d559551c7406c935cVirustotal results 36.21%Heodo
2020-08-28Copy invoice #053911.docdoc f5eb0742ddd76b3e12d9f836701dd83a4bc0acd63810d1cddcbf7306caeb48fcVirustotal results 35.09%Heodo
2020-08-28Form - Aug 28, 2020.docdoc 164917e33b2936b9448295bc0d2fe08b57ca88d611553f6a966e29ae1a53931aVirustotal results 35.09%Heodo
2020-08-28Invoice.docdoc fe67dad19921f5aa8094f795c7d533572b3d6d386e1d3b9d1490738b2150e066Virustotal results 37.29%Heodo
2020-08-28INV #005681 FOR PO #007982049.docdoc 56385c138dcd6e1f59be2fadd0cb3e78305d5a8b74de904c00ca85d68aa84809Virustotal results 31.03%Heodo
2020-08-28invoice #2664.docdoc 1e4247cd718e3c8e11d41fff2bcb19571e03a5ab290cd2073caf398878cb6648Virustotal results 31.03%Heodo
2020-08-28August invoice.docdoc c5a9757906c65f2a2961bd352aa8d42181b2b26e9cf2b82e01d6e824d94bc00aVirustotal results 31.03%Heodo
2020-08-28045072212.docdoc 642f14769b07ea8ab51a202c4f9b39fc9d7a2a6181baefed723a2d581d729a7aVirustotal results 31.58%Heodo
2020-08-28Electronic form.docdoc 84590a0e6742080514a791bb605325337880bca28cdede5d2388b57f36090472Virustotal results 29.31%Heodo
2020-08-28INV_649112.docdoc cf44ca167e53d433f4e6be9f18fa798d5a633513666a1560fd7744831f3df64aVirustotal results 30.51%Heodo
2020-08-28August Invoice.docdoc 184f41153db696359eda05646b09918cb416fd8316679b0621ccad78de67c03cVirustotal results 31.03%Heodo
2020-08-28Form.docdoc 8a2ccbf2fd45902471ea5dcc116d258ca0ff53b4e7499fe76f00349f029d0570n/aHeodo
2020-08-28XS-080120 LFZU-082820.docdoc ba1bac226c7ba525e1b2706a7f0a7a0ddec1272db21044df1e28cfd777804a3fVirustotal results 31.03%Heodo
2020-08-28Form.docdoc ac73f9f11dd4a53f4040102e8d29e4be710b31446d7dacecc25487ba026f9687Virustotal results 30.51%Heodo
2020-08-28C6889691943ZF.docdoc 7e0d6fc8bc7a69d5e27e2130c83b434512af52a5337145098c2426f62abf97eeVirustotal results 33.33%Heodo
2020-08-27INV #0005200 FOR PO #7821540986.docdoc b1f8d82d19d6020ac3606afc8e0699ddde66a03ce07d5d7f6b6bc45a238084f2n/aHeodo
2020-08-27INV #0058525 FOR PO #616225798.docdoc 7dead668d7c967ea503ca5f10f3798256d72f38ba9abd9020411901efd97311en/aHeodo
2020-08-27INV #05564266 FOR PO #07034255001.docdoc 7314c132ed2bd783a95997d7bb4306ebfb97de0cd23e31c78dbf77ebb4dd61efn/a Heodo
2020-08-27Copy invoice #068853.docdoc 5de6521f5d824f69adb9f590faf1c2de46ce1c7eddfdb394d79c725ddcc7cfc7Virustotal results 32.20%Heodo
2020-08-27Form - Aug 28, 2020.docdoc d7c4c7378b94661a714fe656b5ec74214db2780401d214fb0faa2d6d7b627199Virustotal results 32.76%Heodo
2020-08-27INV_6753.docdoc 249258e389c57dae809f34520051324f678dda2c946e37189377ac5ee3a7c8f2Virustotal results 32.76%Heodo
2020-08-27Invoice #37169.docdoc c87ff4601214eab29d1318e621dac4a0ae69e9f3ec301f4126b4dfff0a947572Virustotal results 32.20%Heodo
2020-08-27448790.docdoc 5bf845e70cde6a5112d1aec081e98995bc8494ce31682762bad07ec7c92a2889Virustotal results 32.76%Heodo
2020-08-27form.docdoc 2d49046fc064b91ca9ac6b885536752ac075d5f370afc9d43148a0d79c4cfa51Virustotal results 32.76%Heodo
2020-08-27Electronic form.docdoc be05ff271ea7042c2e01c9daa7f63ee9dd190864d23716b22f83561e1cb4ae3bVirustotal results 32.76%Heodo
2020-08-27invoice #6925.docdoc c2c840c18a5cd6eb5a60c30afe7695b1068bd8ebf0e5fbd5c6a166f9c15767c4Virustotal results 35.00%Heodo
2020-08-27Form.docdoc 8974b88d7ce674207d02e5c3dbefe723b7284f76bc41295fe5c6f7504ce06b06Virustotal results 33.90%Heodo
2020-08-27invoice #426677.docdoc 7edd3c85a54dac34d665264c15e59c4129b3804b480c865caa8e08c21b401febVirustotal results 35.00%Heodo
2020-08-27Payment.docdoc 964d170c22ca7564b27f8f395b9dd86dca266557cb85156a37e3813657ba0973Virustotal results 34.48%Heodo
2020-08-27Invoice 508731.docdoc d3753d5631e4ba1a1f54981afc907afec8ab5de670c56e8baa294137af8e9998Virustotal results 33.90%Heodo
2020-08-27ZM00768 invoicing.docdoc 246c8ce88bce46537c2ee49415194017dccfeeeaf35e0a7189f1500c3dcd7764Virustotal results 35.09%Heodo
2020-08-27Payment.docdoc 5d6f892d3a27c0036838a9ed0851de7ab16016a83452253649b704a2d3dc65f1n/aHeodo
2020-08-27Form.docdoc 12e784d605d2bdcef1d692ca150cab45dc7446df28f4e787ed6f5ef939b9d751Virustotal results 34.48%Heodo
2020-08-27invoice.docdoc a95e7a4e8ac930ca689c3f465c32f29386269c855a3ba16dbc98b3f891c5a67aVirustotal results 34.48%Heodo
2020-08-27Invoice 005169497.docdoc 5da02687ea0cf4bdf8b5c5850f907655ed663cd8d5bf9004703bae3a2272e397Virustotal results 34.48%Heodo
2020-08-27Payment.docdoc 06ef2c979eef460233e9b5440eaca628840f30d8d701c362da7090df649ac9c5n/aHeodo
2020-08-27Copy invoice #37503.docdoc 835d0910a541696111ecf4588e19a2c361e1ed6a61d2b680e1dd1cfcd85b4da9n/aHeodo
2020-08-27Form - Aug 27, 2020.docdoc 1b8c84e3789ad4f405432eb9b7082c5e30b69bfaba69802178a7d6c407b9128fn/aHeodo
2020-08-27Invoice #0892104.docdoc 77af4b1434a91855bf67d47b551fe759817002db6a435e8c5e561635300a6c11Virustotal results 35.71%Heodo
2020-08-27August invoice.docdoc ea52d249668fe5138dd642a6d9d356c71d688f2da9761be729ad4c7143529b0dVirustotal results 34.48%Heodo
2020-08-27August invoice.docdoc 6dc1fb576692231c12eaedeb19d6f481586673ad6666e1bfddebd6e0a8a3a748Virustotal results 30.51%Heodo
2020-08-27Electronic form.docdoc 102c015e8a58faed4649eb3cb87e00480832721df09382df31e10a6d2ad5fc13Virustotal results 29.31%Heodo
2020-08-27Inv_538546.docdoc 8969e1e9e29920ba44157da474d4851706f1f63a58b7cd36a87845beaea2af9aVirustotal results 29.31%Heodo
2020-08-27invoice.docdoc 06aac37ecc660c9cfeee62c84d8d33f0843c1776dc94aabc56d16aa42c31fbd4Virustotal results 29.82%Heodo
2020-08-27August Invoice.docdoc 70bc2a3ce1968437f2a3dbb114e000c23bc3882e53d4b963cf326ff03b84487dn/aHeodo
2020-08-27Payment.docdoc 02db21d12dc0b5d4da95ae253092f640997129f192be9c9bf0ca6132f5cd7e2en/aHeodo
2020-08-27Electronic form.docdoc 1653613e54e13601c4799c80c854d900b5b794b6f042130935272db8d6d1e2dfn/aHeodo
2020-08-27Inv_50683.docdoc 842b433e1fc26b5e7e972fb6ef675ef6997cc2b8cd9311fb2f330707cad0dc0aVirustotal results 28.33%Heodo
2020-08-27Payment.docdoc cbe78f7b605decf53999dc44e92f4b8d9bb13637f7f40d771a04903ad9ec15d4n/aHeodo
2020-08-27form.docdoc 38aa8eabb4d27eeb9f5150b1d2f27b755f88b11df1a1985794f6677e3c1eb827Virustotal results 28.81%Heodo
2020-08-27Electronic form.docdoc 3655157b27b8b084443564d11a050740b1e72edf7bb35e9b2cc619eb795c52acn/aHeodo
2020-08-27Payment status.docdoc a6dfe43247a893e522285a5b3ea949cb49bd1b8007cc42c18de55c70c45a8b7dVirustotal results 28.81%Heodo
2020-08-27Form.docdoc 36960985eb5fac4be748ffe766e2d2115dd8a2ac0b9be81f28fa48cc4bec0e23Virustotal results 28.07%Heodo
2020-08-27August invoice.docdoc 1e01a8df8f521e0db311144288882290f51f66435f7ef11584a1d8c4166ec7aen/aHeodo
2020-08-27PO# 08272020.docdoc 08531c896c900816e373957872ce7e55db50203fd681019719dca8fc27882b40Virustotal results 28.81%Heodo
2020-08-27Inv. 783937758.docdoc 982ec1619efb871fbcb238050b05cb55e526b8ea31b8759bde9e20c45ec482b8n/aHeodo
2020-08-2700922869.docdoc 95feb4a035233bbf6d90619d2c6d9948385cc06b894dfdd7fd10cd378797df32Virustotal results 44.83%Heodo
2020-08-270131839.docdoc 021d2338b8a706fbd77f04cf43db3bf9dea03a1afff732ece042614c35e369edVirustotal results 44.07%Heodo
2020-08-27Inv. 093392947.docdoc 518cef1391f1fd9cabab66c2c32f6ee1428a399147f181ff433baefecb0e8c45Virustotal results 42.86%Heodo
2020-08-27form.docdoc 7f33bcae335d18da18a8cd7474dffc2399131f6e66ce9e7a8099718810cdd350Virustotal results 44.83%Heodo
2020-08-27invoices 654 & 63321.docdoc 469ac8a418f2dbb4e433d022cc757fe2ddb270878b4c7ab13ebf4f8a316c30e6Virustotal results 41.38%Heodo
2020-08-27186571.docdoc b87a064c66cdd9719e97ee49c21b6435c4f769164c1195b5d14cf15b9dc81a19Virustotal results 31.58%Heodo
2020-08-27Invoice #74722.docdoc e45a7277159aac8916096aa45b400cdd23c26f876fb6a1753d95e1119c352259Virustotal results 31.03%Heodo
2020-08-27PO# 08272020.docdoc f92eeeee023f763c255c41615d314bdd95628f511d7650771f8bbe9ef73742b9Virustotal results 32.14%Heodo
2020-08-27DX0058 invoicing.docdoc a12169bfd5b2999a36e090c627578d1d8c9a00225ae68ec13361f8c61de5cee6Virustotal results 28.57%Heodo
2020-08-27INV #0048750 FOR PO #09169301842.docdoc cade1ffeb7c4023e29d6f908dd96b6ef4f6d21c0a78dfb0728a0b358302e7563Virustotal results 28.81%Heodo
2020-08-27invoice.docdoc 55e8bbf2a59f439bf5dc58b7fe2236ab94b9552b4abf1a74ea194498ae32199bn/aHeodo
2020-08-27Form.docdoc 305e0e9a329ac85f97dacf909710fb3ae485af0e09b6ed9022f8a4dc901623e6Virustotal results 28.33%Heodo
2020-08-26Electronic form.docdoc c0b72b161a48dab0be1f4cf804079f65cae5827a62e982b8af3fe00a2281dc0fVirustotal results 28.81%Heodo
2020-08-26PO# 08272020.docdoc 4e2e9c00a518654ed11ca5bdbcb739c816524d665f519789f77cad7c1ee6d78cn/aHeodo
2020-08-26J-080120 VOBI-082720.docdoc 900e897c3d7f08039833fa89748e84c98a62d959e4e8e8cc54c832acd902470dVirustotal results 28.81%Heodo
2020-08-26August invoice.docdoc 6ed646f54add9ca22852e2fbe34861573a88cadccac53c9ccdaeffe7db82d284Virustotal results 27.59%Heodo
2020-08-26SR000 invoicing.docdoc 1862df6f40d11380f7d581fd9f613d34ff81f2f61ca92d8178a226434543ff52Virustotal results 35.00%Heodo