URLhaus Database

You are currently viewing the URLhaus database entry for https://www.gettruefoods.com/wp-admin/docs/nlg24x0-061261/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:445320
URL: https://www.gettruefoods.com/wp-admin/docs/nlg24x0-061261/
URL Status:Offline
Host: www.gettruefoods.com
Date added:2020-08-27 16:56:13 UTC
Last online:2020-08-31 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-08-27 16:58:02 UTC to abuse{at}hivelocity[dot]net)
Takedown time:3 days, 10 hours, 36 minutes Bad (down since 2020-08-31 03:34:22 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-29August invoice.docdoc 5df4f10d255d1733e9450ecf67d166c73f6f29bb36efe88d6093a31d31ce0ad4Virustotal results 45.45%Heodo
2020-08-29Invoice.docdoc 867f6ccabf112c3105f544c490f65b90fc6e09b18681e1ed7eb9619045ad60f6Virustotal results 44.83%Heodo
2020-08-29Payment status.docdoc 4cc3b0434341ecff74a4c62206f91d15c075496a48829df0ab0f51b530dc9ed5n/aHeodo
2020-08-29invoice #0598.docdoc 3b5c4fffd6b0548d5d66842086b1b3762032be24a72ceb3154d72cc55cbb8d83Virustotal results 44.07%Heodo
2020-08-29INV #0386 FOR PO #08141766.docdoc 3a8a42c319462b67597a9fefae7c60c0a3917018eef2b0bba8bb02980e6ffe02n/aHeodo
2020-08-29Form.docdoc c20ac324613872bd6a01c7b872595002ebe2f3ff89da41d668aec7cb22ebe586n/aHeodo
2020-08-29invoice.docdoc 72da2757545a5a82bac55bc0d9ed9ccb5beb853d5af23f8497e6c3be60b5f493Virustotal results 46.55%Heodo
2020-08-29August Invoice.docdoc 784032625b6d1b88dd76d550cb768c579598aea088f9fcb111d041fff5f57019n/aHeodo
2020-08-29August invoice.docdoc 1f42096613819f1b1cf2ea163ea893ccc965e8b3fc9beb61d4b0a967d2374bb5Virustotal results 38.98%Heodo
2020-08-29invoice #366282.docdoc b7a2a470b35a3cbf4a6501f45709fa7cc29d2a33c5cac4f00ac64b426b90929en/aHeodo
2020-08-29PO# 08292020.docdoc b8029c0d90d1b4ff550cf1f13603ccb9b462e64c8b81afc2ac33252b86839931Virustotal results 35.59%Heodo
2020-08-29Invoice.docdoc c98ebc2ba9a8e8f27e921e635f8742cdbb64688b48b57e7300575ccee61930a5Virustotal results 35.59%Heodo
2020-08-29invoice #0028.docdoc d8c49275c5f1f5f0737181da7071f1755efac730269b0741539b1430a34096ebn/aHeodo
2020-08-29invoice.docdoc 60f661d0a3444cbf34c1c249572f83e9d7c73bfcf4aec6790b856574c1906aacVirustotal results 35.59%Heodo
2020-08-29invoice.docdoc 8024aa6cee62d71b90733458c64c779647087eb613aba76cd872a01b46cfdea6n/aHeodo
2020-08-29Inv. 7244653168.docdoc a936fa77ef0be55ddc1bba6a24c65da623b7207d45356219d55b2475a4234b9cVirustotal results 36.21%Heodo
2020-08-29INV_9896.docdoc e2e03f4ee18e589f52459cd372bef3e8a8935fc5e5638f41044f00fe0f151e52Virustotal results 35.59%Heodo
2020-08-29Inv. 055654.docdoc 8c3d2e0fd7d2cc86088185bf1acaf32d2d7e43124beba918f38856179ade8097Virustotal results 31.03%Heodo
2020-08-28Payment.docdoc acaee01eb81fad1793634836807c913a67f13ad7d260b9a1e51ef0994148734bVirustotal results 31.03%Heodo
2020-08-28086752.docdoc 418cd12b251bce9b75ac793c3d626440b35e8e6ef2002751114a27eb3a627d26Virustotal results 29.31%Heodo
2020-08-28796538.docdoc 3dd8598be29765ae8825921f3df19b48f978ccc5d17dd3a3516c1c2740dbd5dcn/aHeodo
2020-08-28Q087 invoicing.docdoc af205422f14b639b4df94286a2e75e65fd7522ea8c0ec60d23af74f197e9a02dVirustotal results 30.00%Heodo
2020-08-28INV_949536.docdoc df199d182f56a9ca1aa93778b0d2d4d64f1bdd2cb2800ce66935e46b0846dacaVirustotal results 28.81%Heodo
2020-08-28Copy invoice #96841.docdoc 0bd6fc0b137ab4dbba7bfe081efa83190edcfcd01b5d6e6e48f675dd6062e750Virustotal results 29.31%Heodo
2020-08-28August invoice.docdoc b3b2e789359990b7665ba13670e32405ba12ca0f114337c7e84993a63f03c7f8n/a Heodo
2020-08-28Invoice 009922030.docdoc c7042f61131d4a483d3b7433af94d39743944f2fd4e00abf795450a603c883fcVirustotal results 27.12%Heodo
2020-08-28Electronic form.docdoc 7c71cf265cc466bd5ebf00f951075806e8fa53e88af0e8c4f33a3cede8cd48e8Virustotal results 26.32%Heodo
2020-08-28Electronic form.docdoc 5247f3a28b50babf22fb454ffac4172d77fe1e13cda0fa05e0e7d8ea1b15af52n/aHeodo
2020-08-28Inv. 23983676.docdoc efddb6ce3f85a172356a95dfe3e262efff6d615be2339031c4ac5a68d7d2b2dfn/aHeodo
2020-08-28INV #290609 FOR PO #0505418069694.docdoc 427fa32e1296a2edfcab458af02c46f7ef53c82d98e29ab7161e5d8f8443b932n/aHeodo
2020-08-28Invoice 014602.docdoc 8e0a43dba192a9953d51771fbb1935e32f67fe8ec37566325e406fecd46c36a6Virustotal results 45.61%Heodo
2020-08-28Copy invoice #8680.docdoc 17040e536cb711011ddfe95c5302469d68db8f57e368902fa164633d4104c7e3Virustotal results 43.10%Heodo
2020-08-28PO# 08282020.docdoc 819b13194a2265d7d36170eea82b3d549e982afd2dc4dd0a18f3dfc0978ea61fn/aHeodo
2020-08-28Invoice 0081544.docdoc 87cc2871c899ee6b8c19880fab2e1bf98e9935b3dd9672c0f3726c94328f0f2cVirustotal results 36.84%Heodo
2020-08-28August invoice.docdoc b88ee9f0ad1a591659e9547e4eab2af49bf706001ead1cd568432bcaa49b76feVirustotal results 37.29%Heodo
2020-08-28Form - Aug 28, 2020.docdoc 04db0fe3d77ca5cbbff1f31bd8c3a447d0064d2a0154116bbb03556dc330bb21Virustotal results 36.84%Heodo
2020-08-28Payment.docdoc 5a4cf0221fb9ee6669bf548222ff11e164ce4d437225148a391f7121e6401a7bn/aHeodo
2020-08-28form.docdoc 793c748b73456c41a779d39fd68f6e5575afe3e45b78bb91800b39bd3f5918a5n/aHeodo
2020-08-28AF7591653984WY.docdoc eb2643323c03b0e4f951c27f3d3003dece58d31ade3490d2d2dba0c480c21695Virustotal results 35.59%Heodo
2020-08-28Form.docdoc fe67dad19921f5aa8094f795c7d533572b3d6d386e1d3b9d1490738b2150e066Virustotal results 37.29%Heodo
2020-08-28E-080120 NKFQ-082820.docdoc 56385c138dcd6e1f59be2fadd0cb3e78305d5a8b74de904c00ca85d68aa84809Virustotal results 31.03%Heodo
2020-08-28August Invoice.docdoc 1e4247cd718e3c8e11d41fff2bcb19571e03a5ab290cd2073caf398878cb6648Virustotal results 31.03%Heodo
2020-08-28Form.docdoc c5a9757906c65f2a2961bd352aa8d42181b2b26e9cf2b82e01d6e824d94bc00aVirustotal results 31.03%Heodo
2020-08-28invoice #3532.docdoc e822f692db9cca639db39d7eb9c43eb6e9dda23f3c26e26e231aa3f7d2aad69aVirustotal results 32.20%Heodo
2020-08-28INV #32931 FOR PO #65802017250.docdoc cb74e6583da3957d6fc1c0e3335350497207614a8b8a39c78b13b5818d22af08Virustotal results 30.51%Heodo
2020-08-28RPN-080120 EZPL-082820.docdoc 5fcecf8fdfc590ef687d6590209ea3c2ea0ad746b5f4746e537cd64813fce05eVirustotal results 30.51%Heodo
2020-08-28Invoice #9315.docdoc 8369cd1f9e4a1892c61f02631be1abae0346cb1972cda90b4cb4a36ede626e7cn/aHeodo
2020-08-28Form.docdoc a03a331036791b2d25681114c722041029d9e995c684190654e5f664efe761a0Virustotal results 30.51%Heodo
2020-08-28Inv_14042.docdoc 717e95cf51d45cf596aabdf52e31383a32dea1d2e41d90601b9d8176d44f588cVirustotal results 30.51%Heodo
2020-08-28August invoice.docdoc 2012064cfc4ba5e01f3677d2f52053612232c932876a8266ac2bd8bd8a35af6bVirustotal results 31.58%Heodo
2020-08-28August Invoice.docdoc 1d2b270375ae00907412647180a7dffae422dac066c42966c9cca4bd1dd8dfe2n/aHeodo
2020-08-28PO# 08282020.docdoc 7e0d6fc8bc7a69d5e27e2130c83b434512af52a5337145098c2426f62abf97eeVirustotal results 33.33%Heodo
2020-08-27PO# 08282020.docdoc b1f8d82d19d6020ac3606afc8e0699ddde66a03ce07d5d7f6b6bc45a238084f2Virustotal results 35.09%Heodo
2020-08-27KI0028 invoicing.docdoc 474fe5a4009da897047f91b9d9b8f40aaa5d674955f0815934507029c7038976Virustotal results 33.90%Heodo
2020-08-27Inv. 0633403.docdoc 7314c132ed2bd783a95997d7bb4306ebfb97de0cd23e31c78dbf77ebb4dd61efn/a Heodo
2020-08-27Electronic form.docdoc 97dfe06b3f4e9ebb2beb149355b82886fe468ce91c30adb82a16097ec15cbdfdVirustotal results 33.33%Heodo
2020-08-27231078.docdoc 55729022c3684fd899ee712d0d0d3dbfeb5161fa842b101cd28dfcf85ead1a74Virustotal results 32.20%Heodo
2020-08-27Form.docdoc d7c4c7378b94661a714fe656b5ec74214db2780401d214fb0faa2d6d7b627199Virustotal results 32.76%Heodo
2020-08-270085430.docdoc 249258e389c57dae809f34520051324f678dda2c946e37189377ac5ee3a7c8f2Virustotal results 32.76%Heodo
2020-08-27Payment.docdoc 9293848a589af567094cd2bdce0ee80f984253bfc03742c8784009050f881b36n/aHeodo
2020-08-27Payment status.docdoc 5bf845e70cde6a5112d1aec081e98995bc8494ce31682762bad07ec7c92a2889n/aHeodo
2020-08-278757947.docdoc 36ee717608500b1f82f45e91f5a2c3e81bf3d417a824eb6d932c2853f22fdda7Virustotal results 32.76%Heodo
2020-08-27Payment.docdoc be05ff271ea7042c2e01c9daa7f63ee9dd190864d23716b22f83561e1cb4ae3bVirustotal results 32.76%Heodo
2020-08-27Payment.docdoc c2c840c18a5cd6eb5a60c30afe7695b1068bd8ebf0e5fbd5c6a166f9c15767c4Virustotal results 35.00%Heodo
2020-08-27Form - Aug 27, 2020.docdoc bd389be93c4aec08317b46159c7afbb0dc573ec9d6310e2d0deaa94f3f2b577dn/aHeodo
2020-08-27PO# 08272020.docdoc 7edd3c85a54dac34d665264c15e59c4129b3804b480c865caa8e08c21b401febVirustotal results 35.00%Heodo
2020-08-27Invoice.docdoc eabd205d0597750c6a3f5465e5e597bc6dc1628bdc539cae4cf2dc9cd206cd80Virustotal results 34.55%Heodo
2020-08-27Payment.docdoc 6c08a03c8d6eef6f9a917dbecc7d93d721545f0df5d5d17f49c166cd47f5ed5fVirustotal results 35.09%Heodo
2020-08-27Invoice 721332.docdoc 0949e31f5cd2da489be1f6b8160a874f80a150598d2404eb6c9edf60398658a9n/aHeodo
2020-08-27Inv. 965577.docdoc 2b0f8ed3c4248c49927bc826192f10c0529aac190c31df9ea36b80c33015943dVirustotal results 33.90%Heodo