URLhaus Database

You are currently viewing the URLhaus database entry for http://labersa.com/preview/docs/4415082717620562/gvikzy/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	445693
URL:	http://labersa.com/preview/docs/4415082717620562/gvikzy/
URL Status:	Offline
Host:	labersa.com
Date added:	2020-08-28 02:41:36 UTC
Last online:	2020-09-16 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-28 02:42:02 UTC to abuse{at}jalanet[dot]co[dot]id)
Takedown time:	18 days, 23 hours, 34 minutes (down since 2020-09-16 02:16:03 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-29	Form.doc	doc	5df4f10d255d1733e9450ecf67d166c73f6f29bb36efe88d6093a31d31ce0ad4	n/a	Heodo
2020-08-29	August Invoice.doc	doc	867f6ccabf112c3105f544c490f65b90fc6e09b18681e1ed7eb9619045ad60f6	44.83%	Heodo
2020-08-29	invoice.doc	doc	53a81757cc45ec010aa2b5bf957b383898ab0b91b52e51adf5a72e44a9845e51	45.61%	Heodo
2020-08-29	OC5404599879CI.doc	doc	71df89329f89287c29afab47756e8927fdf739cf5086d353a967cf47b6238aac	n/a	Heodo
2020-08-29	invoice #1937.doc	doc	3a8a42c319462b67597a9fefae7c60c0a3917018eef2b0bba8bb02980e6ffe02	44.83%	Heodo
2020-08-29	Invoice 94661.doc	doc	a521f45b1de9146a13bd8a351c6999c9f2530183305f06315a2e681690ab40da	44.07%	Heodo
2020-08-29	WGK-080120 DEGD-082920.doc	doc	72da2757545a5a82bac55bc0d9ed9ccb5beb853d5af23f8497e6c3be60b5f493	46.55%	Heodo
2020-08-29	Inv. 0052791873816.doc	doc	e025c7438abe6ad8be1077eb7feef8b418706abcfbd2a10abb2023dc6dd7bcf9	45.61%	Heodo
2020-08-29	invoice #344827.doc	doc	1f42096613819f1b1cf2ea163ea893ccc965e8b3fc9beb61d4b0a967d2374bb5	38.98%	Heodo
2020-08-29	invoice #93278.doc	doc	38e18ba0acf48a33e6a874de5cb797b15be7cddba35555743de5106df8b99adb	37.29%	Heodo
2020-08-29	invoices 34801 & 2417.doc	doc	b8029c0d90d1b4ff550cf1f13603ccb9b462e64c8b81afc2ac33252b86839931	35.59%	Heodo
2020-08-29	Inv. 914127.doc	doc	1c37ef957c050e7a7373f775d0d82d817ee844735fe2cd1bc4f18b6a65638f6b	36.84%	Heodo
2020-08-29	Electronic form.doc	doc	3859539d7b23160befaa0ee026d5fadadd14d18b595a63a1d2adb1c103a7092b	35.59%	Heodo
2020-08-29	invoice #122692.doc	doc	60f661d0a3444cbf34c1c249572f83e9d7c73bfcf4aec6790b856574c1906aac	35.59%	Heodo
2020-08-29	INV #1653202 FOR PO #0401653283.doc	doc	5354855cf9c113bafd6c1284faf05ad3d8937c59843f31207ec11ae9ff32454c	35.59%	Heodo
2020-08-29	TF-080120 NQNC-082920.doc	doc	5f5c3281702a2ecabc7797e25671a80f30335f7d4a4a6644b230346b7bcfe942	35.59%	Heodo
2020-08-29	Inv. 0045871981052.doc	doc	185ff2975ac23b9d712ae8cd6a117244f3533ec9dca5739a5ab0592762353458	36.67%	Heodo
2020-08-29	Inv_7500.doc	doc	8c3d2e0fd7d2cc86088185bf1acaf32d2d7e43124beba918f38856179ade8097	31.03%	Heodo
2020-08-28	Inv_487882.doc	doc	76b27ec8a97aaff0fcb904c903f9813d51120eab33ba6c8e2624e900e8863b94	29.31%	Heodo
2020-08-28	invoices 711 & 4455.doc	doc	d39436c50b9667b5827c801070c34c0747f3ec1a8cb14b0602a317fe47c4331a	28.81%	Heodo
2020-08-28	PO# 08292020.doc	doc	a457afd23063f580f5431f2118cc0936362067a7440f76d90eeb270da41508ec	28.81%	Heodo
2020-08-28	INV_802980.doc	doc	aa23767464f7fe044c9cca35770caf51ad47116bd89f8c1257c1f6e97b4649e4	30.00%	Heodo
2020-08-28	invoices 169 & 16032.doc	doc	9034da8b67f17e8e3d888862f518ce6f50fa88cd7c2ba27d2fa046607209cf9e	29.31%	Heodo
2020-08-28	Form - Aug 29, 2020.doc	doc	cdac53378c792a6443bd47c44e9b57acb53b23603d27af9fed4214c752e5df8f	28.81%	Heodo
2020-08-28	Form - Aug 29, 2020.doc	doc	61272114fe318bae05e7fbc18aebb7f1af9bee41c0bb39188421c660d3970db0	29.31%	Heodo
2020-08-28	Inv_13628.doc	doc	ecb83a3f0aed069df344aa0370f14c5e672d9cd2c660346c5913228614e290d6	27.59%	Heodo
2020-08-28	invoice.doc	doc	4937752287939165aa36395a854f950276118f93f72c6c8d297b05987b4f2417	28.07%	Heodo
2020-08-28	Copy invoice #960037.doc	doc	c835983a232b7cc18458be9f13cf520ec158aec1729ae152396df6ca89e42f84	27.59%	Heodo
2020-08-28	Form - Aug 28, 2020.doc	doc	427fa32e1296a2edfcab458af02c46f7ef53c82d98e29ab7161e5d8f8443b932	n/a	Heodo
2020-08-28	Form.doc	doc	d951968aecf198524d68853160cd036d18a8efa2402dd0ade4821f8565d4e0f4	44.83%	Heodo
2020-08-28	Z003 invoicing.doc	doc	0a3f6fc6e4d514ce7cea782a7a6fa667500f8d8f0a7b2e078e368c3845670e2a	45.00%	Heodo
2020-08-28	Form.doc	doc	3fcf99d952244b4dc0d194ef52b616c67cff47317237f80a392b78a96dd0db0a	35.59%	Heodo
2020-08-28	Payment.doc	doc	007a49ceb646df28664627f6329f719181bff1eb3050bcafe8f7fad649821a53	36.84%	Heodo
2020-08-28	Inv. 00959798.doc	doc	67484a298833085645e58633dac097e76989a91be839c3c28d3e7253c04a37df	36.21%	Heodo
2020-08-28	Form - Aug 28, 2020.doc	doc	9fd6f0a503fcfc4d47a3035cf5d80d452de33354006ebcd57d5d74f2e2e8d1d3	35.59%	Heodo
2020-08-28	form.doc	doc	38184bfd7f545600d7629e1905785dca49366c2650ae39f87cb8d2e45d4732ee	36.21%	Heodo
2020-08-28	80491.doc	doc	2d14c523acf3092f2a1e4e8435f3f80ca6100a26890cf7ba5e967bbf11cc2d54	n/a	Heodo
2020-08-28	invoice.doc	doc	716703f4858eb698b4592740489044142ede128a420d00b525881b131110cfc7	36.67%	Heodo
2020-08-28	Invoice.doc	doc	4119649803a8168b6e95925b6a82c14d651ac14a9f781cf7d5fc963a23f034d1	32.73%	Heodo
2020-08-28	Copy invoice #9708.doc	doc	56385c138dcd6e1f59be2fadd0cb3e78305d5a8b74de904c00ca85d68aa84809	30.51%	Heodo
2020-08-28	Payment.doc	doc	a6421cf41552314c72a3681a97db91dc055d59b00ebc356b7fd16dac2cb2c2e9	32.20%	Heodo
2020-08-28	Inv_619875.doc	doc	1e4247cd718e3c8e11d41fff2bcb19571e03a5ab290cd2073caf398878cb6648	31.03%	Heodo
2020-08-28	Inv. 014761091.doc	doc	f98372d1fff549ac8c7a1518ff72e9854ade0e34ea6a808b73f1c0c83bd61a62	29.82%	Heodo
2020-08-28	TE0501 invoicing.doc	doc	b3ce8d4d08b4d88a3ce6b2ffacd98d9fe59ee8913a83d0085b1ead247c470d52	31.03%	Heodo
2020-08-28	Invoice #9902.doc	doc	3300a945fa99cd4d06a1b23aa7255058d2967f6feaa40e0c26c4c2ddb7b948c0	30.51%	Heodo
2020-08-28	0546341.doc	doc	cf44ca167e53d433f4e6be9f18fa798d5a633513666a1560fd7744831f3df64a	30.51%	Heodo
2020-08-28	form.doc	doc	184f41153db696359eda05646b09918cb416fd8316679b0621ccad78de67c03c	31.03%	Heodo
2020-08-28	67766.doc	doc	fddd0a201073195a7eef27f0a0a348046963e9c94710f2fba3009d484d7f9799	30.51%	Heodo
2020-08-28	Form - Aug 28, 2020.doc	doc	9de0d253eabbe24e3bff7deea232a7e4ce2dc5d6122df90755128f26b890d052	31.03%	Heodo
2020-08-28	INV #0065891 FOR PO #000347474.doc	doc	ac73f9f11dd4a53f4040102e8d29e4be710b31446d7dacecc25487ba026f9687	30.51%	Heodo
2020-08-28	form.doc	doc	7e0d6fc8bc7a69d5e27e2130c83b434512af52a5337145098c2426f62abf97ee	32.76%	Heodo