URLhaus Database

You are currently viewing the URLhaus database entry for https://www.ingenieriayseguridad.com.mx/css/https:/DOC/rIu0rL7yOTK/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	451983
URL:	https://www.ingenieriayseguridad.com.mx/css/https:/DOC/rIu0rL7yOTK/
URL Status:	Offline
Host:	www.ingenieriayseguridad.com.mx
Date added:	2020-09-02 22:39:34 UTC
Last online:	2020-09-03 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2020-09-02 22:50:05 UTC to abuse{at}digitalocean[dot]com)
Takedown time:	13 hours, 23 minutes (down since 2020-09-03 12:13:06 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-03	file-2020_09_03-531693.doc	doc	c0af2be2400e298680651009e6586ebd35f1655cc541948d513020e716155acf	20.00%	Heodo
2020-09-03	Dat 20200903 207484.doc	doc	4605de521a5c8ea6ed6776f702bbc6cd5c5c7c4f5138782994e3de529ac5c2ed	n/a	Heodo
2020-09-03	Attachment 20200903 SE966.doc	doc	ec694d65b8558d8ae93d7dcb5b232189d20440574c9eba95443c19f05de0cd20	18.33%	Heodo
2020-09-03	B95521-2020_09_03-940.doc	doc	e27179abd184c050e74ac8626356272e34ce88bd661754c7af44117fbd051e15	n/a	Heodo
2020-09-03	INF_2020_09_03_3900.doc	doc	c0ed199d0bbe902fbe3e9edcb2c1fb18b43cb04112722ae6b9f41d38f0a5f843	n/a	Heodo
2020-09-03	list 204333.doc	doc	3eef5b04ad1f0d11509341eba660dd81bf2a215ac7f5da75d9355824da254c47	18.64%	Heodo
2020-09-03	rep.doc	doc	fe11842a1866dbedad0c266cead36a7b2c83327e6658c5e6dc8519b9475a55c8	n/a	Heodo
2020-09-03	5059_632892.doc	doc	3e0be4ed5da1702faca0d2cd0ca1f13267be6c7af90459dd04c5de4478cb9220	35.00%	Heodo
2020-09-03	ARC-20200903-495388.doc	doc	aa172b20f6de0d7af9a069bb8d7c11a589e3b2a8d9d67498b0110f69561a10e5	29.82%	Heodo
2020-09-03	File-2020_09_03-X86687.doc	doc	fec90b9f6fbd9d737bfb18e0f1801b841454d1857793a0cb6484f891a1a495fd	30.00%	Heodo
2020-09-03	File_20200903_897728.doc	doc	37ef3759b818dcea7d8eb53b1154b78d5112b369a37d266135ca3b3852922114	30.00%	Heodo
2020-09-03	MES_2020_09_03_W462103.doc	doc	b9a8cd441d4272f268bfe4f6d07d3e7d847df248f08827b609db5336c4cb8c6a	29.51%	Heodo
2020-09-03	378352_20200903_WCJ31236.doc	doc	da1132b0bfe7505ba5697d51eeda268a7f7a45a3013adabdc071716ae957d8e7	31.58%	Heodo
2020-09-03	List.doc	doc	8c2a4d37de43bfa1e37a1800952c60ba9b3f351246cb47066fd446ac568e24c0	28.33%	Heodo
2020-09-03	REP-2020_09_03.doc	doc	2f6c8e4cc76bba83b11c27d7964707f6b58b103caf3f596cb86669d33d843a5c	26.67%	Heodo
2020-09-03	94605534 2020_09_03 327.doc	doc	12eb109b5cc21f61356696a06698808a9bcc8e97a6d3a5ef1c96d3aedd57b13c	n/a	Heodo
2020-09-03	Mes_20200903_DBE005.doc	doc	290ed9c24539d01f8be31a788976ceda4646eccf4c0d685d5907a924a0aabf49	26.67%	Heodo
2020-09-03	ARC-2020_09_03-008.doc	doc	99522c539da7ddace0b75678c64242e00a3171bfd46ff591936a1bed34ff407c	27.12%	Heodo
2020-09-02	636R-2020_09_03-FG0388.doc	doc	307a4fbaa0d80db37e3ea6e971fae14df8588da457932320d6ea7f4d4df61ac4	26.67%	Heodo
2020-09-02	File_20200903_QJK272.doc	doc	a9604493990426298f032a099836b353e88a4b5152690b58c6eb87865d2864e8	25.00%	Heodo
2020-09-02	LIST_2097682.doc	doc	6e6db219ffe9ff6be1e7df214bd10146f8df7e51344845c7c8ed5ab7954e58a6	25.42%	Heodo
2020-09-02	88093-GRQ93084.doc	doc	cbc706330d51abaad2b5aadb0d773e948c1705880c56112529fbffce5009fbe4	23.33%	Heodo