URLhaus Database

You are currently viewing the URLhaus database entry for http://goftmanclinic.com/wp-content/https:/paclm/zov62GSzbJ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	452977
URL:	http://goftmanclinic.com/wp-content/https:/paclm/zov62GSzbJ/
URL Status:	Offline
Host:	goftmanclinic.com
Date added:	2020-09-04 02:33:11 UTC
Last online:	2020-09-04 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-04 02:34:41 UTC to abuse{at}hetzner[dot]com)
Takedown time:	6 hours, 5 minutes (down since 2020-09-04 08:40:15 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-04	rep-099.doc	doc	258bbe0fb661ea9b9d8d8e3c5232cafbd041c38252beb2009fe95c19bfcabe4a	23.73%	Heodo
2020-09-04	doc OS241993.doc	doc	bfa8973f2e13b6e793f43e4c1d1b68e81e7928903e0f8edf9fd3b146ee1cb9f1	n/a	Heodo
2020-09-04	rep_2020_09_04.doc	doc	52253d5cc807567a8465a7cf37b1101897ed3c19596c3261041ce32593e2f467	23.73%	Heodo
2020-09-04	Mes_2020_09_04_H784.doc	doc	d9c975b6db619552db6df9461b3c0947dbeb829698591386f2c86994a414e005	23.33%	Heodo
2020-09-04	dat_20200904_124239.doc	doc	a609f7e20b48bdd41568b99bce2cb2882716da265eb0b2da0207bfdccee6288f	22.41%	Heodo
2020-09-04	REP-2020_09_04.doc	doc	3416451c32e492acc9198b4de63c14aa38c110a4a023ae4f01fec692c0a5ffaf	22.03%	Heodo
2020-09-04	803MK_20200904_439069.doc	doc	2be118d48f3e89cf53df13c43a01cdea40d8ffc9ed68e343636386badff6200d	22.03%	Heodo
2020-09-04	inf-DCX55211.doc	doc	987e6058bcbb6e6830567bcbf092de202f9fc61bc7b1a6f282f6ee741685e442	n/a	Heodo
2020-09-04	Attachments_20200904_766550.doc	doc	425e52461ebc8d48bfd618d18286f0f60b45a26d89da4a25c07ea36cb359aeee	41.67%	Heodo
2020-09-04	FILE 2020_09_04 3066.doc	doc	be658261ea85360800d4b052f23fd96dbadfe7171d308a38dba22b5fe4efadf0	41.67%	Heodo
2020-09-04	INF-20200904-RGC83200.doc	doc	d310bc1324e7bd2e09dde5482cc4390a66257737f2da4ce7c2bc2f05d04663d7	43.33%	Heodo
2020-09-04	inf-20200904-50498.doc	doc	03cb9a738ad3ba7f5744d092532b2e578e9ade9b376af945fca5faf115b06c4b	40.68%	Heodo
2020-09-04	inf-20200904-RC39658.doc	doc	0ff1c95a7d850d74903fb10610c4d99e54fd900d51cad0f2deda82e1122f403c	40.00%	Heodo
2020-09-04	Dat-2020_09_04-BZX364824.doc	doc	a7f7db7e743de3993fe73005b54d739c61d8b922446cf434ecedcca82c63e922	40.00%	Heodo
2020-09-04	ARC_2020_09_04.doc	doc	6bb0dcdffbd9df010a6d7951c4a8ecb8596b694a6b4f59c866f30a012bc325f5	40.00%	Heodo
2020-09-04	Untitled_2020_09_04_FOB61353.doc	doc	05558fbc6250f15d45880b5ebfb3798d415fad3e982b503fd6b61e658d902aae	n/a	Heodo
2020-09-04	inf 932957.doc	doc	ede8d998dc31e2c855d01100bae27909e6fad8672e5bb1e7afced120b025c6a4	40.68%	Heodo
2020-09-04	File-20200904.doc	doc	6c3530951ad2bde0a96b5bda4698fb3638e360f5176d3f6aa4f9ea0570a3f45d	40.00%	Heodo
2020-09-04	Arc_2020_09_04_6016341.doc	doc	9a9c96896e784dc4ac0ff44a3052d2ff2d7cb744fcf3255981f30894e95d6c42	40.00%	Heodo
2020-09-04	REP-2020_09_04-70599.doc	doc	b25414b4b759b6517cfc1ce36e58d10a5aac59912adc8230095f50f6659af778	40.00%	Heodo
2020-09-04	REP_2020_09_04_3911357.doc	doc	8d774a00099efb6bf180d96ed66c4cc234169be46bd45261c06dd8500e0a8481	40.00%	Heodo
2020-09-04	UNTITLED_2020_09_04_0946374.doc	doc	d771bd380512ca62d90490660909fd428aa582bd97ee49d263deaa6334170f65	40.00%	Heodo
2020-09-04	INF 2020_09_04 9832550.doc	doc	2f40ae83dd7e6ea630b731213a7f9629565af65eca2bf9990d77114dc2b441e5	n/a	Heodo
2020-09-04	Inf-20200904-47657.doc	doc	595e8a24f2e5e51e56138296f7c6cd58e709e8f532dbacc38ae66f462e0e071d	40.00%	Heodo