URLhaus Database

You are currently viewing the URLhaus database entry for http://centrolegnoambiente.it/test/http://FILE/FFDMjocqzsSfcg/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:451810
URL: http://centrolegnoambiente.it/test/http://FILE/FFDMjocqzsSfcg/
URL Status:Offline
Host: centrolegnoambiente.it
Date added:2020-09-02 17:42:33 UTC
Last online:2020-09-04 20:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-03 08:40:09 UTC to abuse{at}hetzner[dot]de)
Takedown time:1 day, 12 hours, 17 minutes Poor (down since 2020-09-04 20:58:06 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-04Inf_EZC077218.docdoc ef5176343779eaa99518b910aea7bc09e3f3c68b84d581e4762ede0c68729a0cVirustotal results 36.21%Heodo
2020-09-04ARC-797.docdoc 74f31456977a691fa6c56243890fd997e0ed0e2793ec4b6e1df8e8a0c93a22cfVirustotal results 35.00%Heodo
2020-09-04MES-771.docdoc 0d5e301807f834486dc3a5e55e4e04056e56cb6b8a2f2136c64f55a0ba12f1f3Virustotal results 35.00%Heodo
2020-09-04mes-KR3763.docdoc 3616487fc9577f23d340266d9936a2e2553b1b9c340d3217345e74a4af603666Virustotal results 28.81%Heodo
2020-09-04DAT_20200904_431.docdoc 6fe4e70594d98f07fc43fc54e2e24a57ba80babf404b803336a8c7cca7f4bd70n/aHeodo
2020-09-04Arc-3855583.docdoc 3b8964cde0e41b835a06f77a2d1834dac132f78cdebaf8b6e89214daf39b8752n/aHeodo
2020-09-04075155-BU8454.docdoc cb6f8268789cd833ce1b0c40a720e8f7b6bb9ae5c3d8cb8ae59e66391c81f606Virustotal results 20.34%Heodo
2020-09-04File-2020_09_04-57797.docdoc eb2264ac02ea6f6ca9efed74315f140e86357be821112bba1c3b3a1f8b70e8c5n/aHeodo
2020-09-04Rep_20200904_925.docdoc dd91e0f54696016ac33f44dbbabf15a089d0d2685b7e468529013e86c9522a99Virustotal results 27.12%Heodo
2020-09-04ARC_RQU3820.docdoc e514ee40aaf58363f83b55c5bb9e01e591be5d5fbea0402363bfe659405e331aVirustotal results 25.00%Heodo
2020-09-04INF 20200904 9540.docdoc a44af5b41212998f1fbe2710a20194236275ea73fe20d136c36ab549738d00eaVirustotal results 24.14%Heodo
2020-09-04inf_2020_09_04.docdoc d38918707adc1b43963df18c7c3483e35cb906f58221fbe54adcbf770706feafVirustotal results 21.67%Heodo
2020-09-04Mes-JW9722.docdoc d310bc1324e7bd2e09dde5482cc4390a66257737f2da4ce7c2bc2f05d04663d7Virustotal results 42.37%Heodo
2020-09-04ARC DY92818.docdoc e65695efbab165615890ff748629c8f55ca9d41d32545193018429b58b8ca746Virustotal results 41.38%Heodo
2020-09-04dat-20200904-630.docdoc 027746c91762be2cd5ecdd301acedfce96399a7961478130a7c6e26d2e47ea3cVirustotal results 40.68%Heodo
2020-09-04rep G068981.docdoc 6fb9ee26a4d1cd44041b63fcb2e65e6a4e4b61ca73d4e847d56d47076abeb32eVirustotal results 40.00%Heodo
2020-09-04file.docdoc 1fa1544383bbda2ef984f9c0a8a1e3ec9c37ede4a0e897d8177d7e92d3809ea1Virustotal results 40.68%Heodo
2020-09-04406 2020_09_04 584563.docdoc 7eba76e504a537e3600311969b0b159744d8f78d48891c9f06dfd9aa9798b9e3Virustotal results 40.68%Heodo
2020-09-04List 20200904 657850.docdoc 945f9c6c84eff86e098fcb02268e716fb80f5c6fa8a5e64e08175a306d3c0a2bVirustotal results 41.38%Heodo
2020-09-03Inf-20200904-Q7526.docdoc dec0fc4e4611e340eb402f29ab07769dcc51d4a2806a8aa520f4332aca26f2dbVirustotal results 33.33%Heodo
2020-09-03arc-740.docdoc 184ba331ed727480fd65743bfe0cf1489eca3b4d49b68a31b970ee96288c9484Virustotal results 30.00%Heodo
2020-09-03REP 20200904 79974.docdoc eff6ba195fc7d083d41cc3c5d0bf90588ba4de22599bc9adeb053e04f0f4d55cn/aHeodo
2020-09-03Attachments-TRN8799.docdoc 2bb99d9824b62fad58399309008db0c35224a435f3128a9f1104bae218fff192Virustotal results 28.33%Heodo
2020-09-03REP-754.docdoc 509ecb6a2610738956ebdf8a885bdb413fe84bd8143e1012a1fb4a4e14333d19Virustotal results 22.03%Heodo
2020-09-03Attachments-20200903-44271.docdoc caf9674b2ccdb2ccd77f1873b6782fb06bf4ffe22bc103017f81b1c352c8afe5Virustotal results 21.67%Heodo
2020-09-03inf_2807992.docdoc 4af88a43df9708bbfe4b6e374b0a1d494ebe3e3e148bc26031e2274b74d33bd5Virustotal results 25.00%Heodo
2020-09-03Doc_2235.docdoc 68d0a89d26bba2a49d3271ddaa1104a60270cea28a6ef91c7aba13e0226eb457Virustotal results 25.00%Heodo
2020-09-03Attachments 20200903 GN786333.docdoc 8e0ae601e353b70b9a13a7fda1f70f4739bc059c0ecb33bf2d0f4e767e2a3ba7Virustotal results 21.67%Heodo
2020-09-03mes_20200903_97965.docdoc 22f195db5856009d2d9a8a6c82daa0ba4e31d3970ae907e9311cbc5c94925ad3Virustotal results 19.67%Heodo
2020-09-03ARC 2020_09_03 C180.docdoc 735617818e8d2ea0cf674f7722f0a4c73128aed869e1adffb63f34567a9d4647Virustotal results 20.00%Heodo
2020-09-03INF-20200903-561219.docdoc c6290176fa35a59fc311bb422e3653b880eebeaa4378cf5fe697344fdd50a3faVirustotal results 20.00%Heodo
2020-09-03list 20200903.docdoc ec4e2217ccfa3e601f1227b3b6ca3bc3a9126cad211c5b303d7c9a6ded11b93dVirustotal results 22.81%Heodo
2020-09-039683P-2020_09_03-733984.docdoc 955f576da964c0e5580c88d090c71ff4d9dfff999abc142c5e4efea6dbd04112Virustotal results 22.03%Heodo
2020-09-033231 2020_09_03 AM475001.docdoc 490fef6aff98d6e725d22acf348a7bc81c7e8b0fc299d29ff5f1f2233725af2cVirustotal results 18.33%Heodo
2020-09-03Inf 2020_09_03 PVN772253.docdoc 6cffaf302f33249146288f181c629138504d72143a68e3c79b67c5a9ad8cbf0bVirustotal results 18.33%Heodo
2020-09-03Mes 20200903 OYA60683.docdoc 475d8fda613f9584e77724a38a4bbd51bb5b035c5c29016ea7b91ca4bf188865Virustotal results 18.33%Heodo
2020-09-03PA192-20200903-79391.docdoc c0cbde26c26008c28e57c09b3755a36c862bf431e69e8a8c6efa181a5c135343Virustotal results 18.33%Heodo
2020-09-03File_20200903_K665402.docdoc 56412c0ce89de5431ad730770788f4f2ebe5782c5f7d81eca4b2e8ff41f6db7cVirustotal results 17.54%Heodo
2020-09-03Arc QSL118647.docdoc d7e28dd65d5aab6b17a6509ad8869ce65f0838f59de7b034f9a0ea7775a19c35Virustotal results 18.03%Heodo
2020-09-03Inf-2020_09_03-050.docdoc 3eef5b04ad1f0d11509341eba660dd81bf2a215ac7f5da75d9355824da254c47Virustotal results 18.64%Heodo
2020-09-03202-20200903-30267.docdoc cacf08dc29380900a46bd3ef7a8d9df051aae704102a5878816183cfe16caf1bVirustotal results 31.67%Heodo
2020-09-03INF-2020_09_03.docdoc 3eaff0adaedb721bdcb992b625696f79e232fa822f13b1183b30939b7ed0b4ccVirustotal results 32.20%Heodo
2020-09-03Rep 20200903 76364.docdoc 10b9c4bca67ace9500467fe62f3f429c09793aad07493bb237def1c168c83000Virustotal results 30.00%Heodo
2020-09-03dat-006737.docdoc ed9827a493cf03febb984e81ed9277dd7da365a7d84aeed254f720d8072eadeaVirustotal results 30.00%Heodo
2020-09-03file 2020_09_03 033608.docdoc 1c4ae5147277da1ae2e1698cb5bbb78013414bc44ec134e7b0b5443ef4839f62Virustotal results 28.33%Heodo
2020-09-0350121Y_4041.docdoc 331f6f1c7361fec9bc67094b8f722822cd76a5ed5f52d5b84750dfd66410b382Virustotal results 26.67%Heodo
2020-09-03File_2020_09_03_6129188.docdoc 085d2ea87b81f4e928025643fbb3e252b20f52d3dfca8d8a91c7c99188b67e68Virustotal results 26.67%Heodo
2020-09-03inf-2020_09_03-689329.docdoc 1d31079c43f1a74caa0a2b3f3d3ce420472f1850cba8580660e016333fffc799Virustotal results 26.67%Heodo
2020-09-02MES-20200903-YA200538.docdoc 599a861ba05b57347331fbb180078cc4074c60d71c1e24c6b1469d18f139c4e7Virustotal results 26.67%Heodo
2020-09-029149989_20200903_50479.docdoc 307a4fbaa0d80db37e3ea6e971fae14df8588da457932320d6ea7f4d4df61ac4Virustotal results 26.67%Heodo
2020-09-02INF 20200903 54574.docdoc e2903eb4f9230ac21528b58d84f15ae6dbd4191f8f0ca869657e9f04d6b1ff75Virustotal results 25.00%Heodo
2020-09-02File QDN98173.docdoc de53464b8b694b4f672a2f55429b372de0dfd04906cc310700ad0201e16bd5ecVirustotal results 21.67%Heodo
2020-09-02Arc_2020_09_03_UZ285.docdoc 47051914b32358b3277db21d76c1f681d97058305cb4d6b55d4bac81816a6f47Virustotal results 21.67%Heodo
2020-09-02Arc 2420.docdoc 930c166c6877a176166a8eab320ecc6ed60d3780bd1d6140c861a69fc6be1101Virustotal results 30.51%Heodo
2020-09-02doc-15607.docdoc fbb76450ac7c97da5463aebb027518825c3d37cb34e7747dd7019710a43d4833Virustotal results 30.51%Heodo
2020-09-02list_2020_09_02_284647.docdoc f5aa298753f22134327ca1421cf6f5ba524e8d4b5935c9c90f2733780a492290Virustotal results 21.67%Heodo
2020-09-02Inf-MI1058.docdoc 78df54e013eec7c5840a232217b575026b958ff69eea895f43e7acbb54aa386dn/aHeodo
2020-09-02Inf-2020_09_02-509.docdoc 0eb92730fcaba36a39d85a8c960f6374ddee85feab7375574626f576306110e0Virustotal results 20.34% Heodo