URLhaus Database

You are currently viewing the URLhaus database entry for http://grandautosalon.pl/60428S/biz/Business which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	51248
URL:	http://grandautosalon.pl/60428S/biz/Business
URL Status:	Offline
Host:	grandautosalon.pl
Date added:	2018-09-04 14:03:12 UTC
Last online:	2018-09-17 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	unixronin
Abuse complaint sent (?):	Yes (2018-09-07 11:46:22 UTC to abuse{at}nazwa[dot]pl)
Takedown time:	10 days, 0 hours, 50 minutes (down since 2018-09-17 12:37:17 UTC)
Tags:	doc emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-09-06	SEP #21121SA.doc	doc	58159af5dd02c6ad0409c44f2e5857c61f56434a0ad805da154671739375cf8f	n/a	Heodo
2018-09-06	PAYMENT #3FAJJCJD.doc	doc	3674df1d3b0a673b80a50f176d5fb241d5ed82675be0dbd6acf7a5fdaec4edab	27.87%	Heodo
2018-09-06	PAY #32164BBN.doc	doc	1ad60397502466a4d9d0bcf79f2307464342b926141a3b9ca38d5d2ece216a21	n/a	Heodo
2018-09-06	SEP #2361153YLR.doc	doc	533a902f789cedfc4b88b0dd1493bb0d8bc736b4b333f9492f1667f41632113a	50.85%	Heodo
2018-09-06	PAY #906WGBCURMF.doc	doc	10b15f27ea2171d08ce96fa1ca590fe3087b5af324582fefa333240051580f7e	50.82%	Heodo
2018-09-06	PAYMENT #803942KJLCRG.doc	doc	70b60b50d027b2fd5f14b0233dae6a4253f62ecb9ff98c07b35f4fde3d55f405	49.18%	Heodo
2018-09-06	PAYROLL #20XCASV.doc	doc	2804c63ffaa55702f34618353f0bd35dc092f476e5bbc19d2ce5b92970cb3832	n/a	Heodo
2018-09-06	BIZ #7NJGQHCF.doc	doc	08bd5b72b01a1034086c779b4353fbef9e0f135e532556515b4737c45a7d0ea6	46.67%	Heodo
2018-09-06	SEP #61VMMO.doc	doc	e5189a5ae04977c103a33e27522c37ea3401c8a00f8f2c561bc8109444b0cd9a	47.46%	Heodo
2018-09-06	BIZ #1267GUJFCS.doc	doc	bf14e0f48eaf802db871da36b68bb7705d93d272e47cf2a3453c3caa0afac5ae	45.00%	Heodo
2018-09-05	SEP #0XD.doc	doc	9ebfffb714a4b22022a32142fdbbfe9903002de297af63da54cb038a6c7714cd	45.90%	Heodo
2018-09-05	SEP #781269DIGQR.doc	doc	20b9108674f61c9c77765f5c63ae759185eb5af223570f84e4394e7d7e74b620	45.76%	Heodo
2018-09-05	PAYMENT #26SEDWWJU.doc	doc	10a02be292398663910c31dddff39130d2b2edf783c335a76ac7ccc387166665	37.70%	Heodo
2018-09-05	SEP #48325R.doc	doc	2a51c5beb1217d58a521aa2a94a1e90119071880d23105d3c33f17d5d4628ea7	36.67%	Heodo
2018-09-05	PAYROLL #1HXVBKKD.doc	doc	abe5cf4ccf01b28cf0947c2ba4e84448a694534fb8a1ddb658be1c78579b9e9f	34.43%	Heodo
2018-09-05	PAY #30EAADXJT.doc	doc	69958a4a14dae0727e7ed6dad4f186aea9016567a21444ae9514773ee451de9c	n/a	Heodo
2018-09-05	BIZ #608842YAFQGND.doc	doc	66776c5f78965776a6aeb096f578279f78f110b8f91ebd5e72e5a73f4b85686f	n/a	Heodo
2018-09-05	PAYROLL #09888KNLZO.doc	doc	f833a2e863302e5d6475616cceec0a722d5dea6e72414622c34b7c3ae1790920	n/a	Heodo
2018-09-05	PAYMENT #1RQNBYWPE.doc	doc	46d83d98d1f2bac45b9e5f3d5ea12ddf6487404b11beda013fcd06fc35f8bd75	32.79%	Heodo
2018-09-05	PAY #1D.doc	doc	07eae27c15cb7d9daa5ef99d5342885eb519c12f8a7d1079d5975717536ecbeb	n/a	Heodo
2018-09-05	PAYMENT #670578TGJG.doc	doc	db3cc7177e7a94494bfbe8169aca696977a8b6982ab0df6ba43f5de8ec7b0734	33.33%	Heodo
2018-09-05	SEP #6449740JVHBSYGV.doc	doc	3f6a4518759a1937a8f01b4be9c6ea2213767e4beb208efa5c6e9462e95ca8fe	32.79%	Heodo
2018-09-05	PAYMENT #95302NBCTMM.doc	doc	41a7ef5cc5ad4b4ba9203ae229ed26ad4a4844710804dd5f11874133553e1d46	31.15%	Heodo
2018-09-05	PAYMENT #3259OQHOHF.doc	doc	91339375f4e75eb6d1e2cd05f67b13b4eab1312309aa35bca56f3e1f0960c37b	29.51%	Heodo
2018-09-05	BIZ #688OUKCSB.doc	doc	46d81e2fd19c2c3cfc9f8562967f2eeef71159d9819db16dbe9dfabb195b8d97	44.26%	Heodo
2018-09-05	SEP #58571ULV.doc	doc	16d2a4c6c5f94697fcfa589f451cb7c7c463f1e24916fd75fac15f4a2768c6fa	37.70%	Heodo
2018-09-04	PAYMENT #7539FYPQULGP.doc	doc	8af697b9f099a91e352825ea641ed2e16f34c712260fd9ffb944d4fbb63afd3a	n/a	Heodo
2018-09-04	SEP #2386ZIN.doc	doc	d6f969b7556d427cc83135fec3234a586d0b323e3681b31c093ddd6f2045bd59	32.79%
2018-09-04	SWIFT #4827230UEJAKXKG.doc	doc	0303b00cf9c798bf57f613069355ca7adceaccf7a37f67dda2e14c8fb67f0361	n/a	Heodo
2018-09-04	PAYMENT #886KZUG.doc	doc	42b6a10960515fa834295ca69c8a9204966bf0d97e671625439eb857169a7d60	35.59%	Heodo
2018-09-04	PAYMENT #9175PDBFHV.doc	doc	40da74a60df8413ccaa3746dfc29684df9cb1acb2176a0ee2242867c57997e59	31.67%