URLhaus Database

You are currently viewing the URLhaus database entry for https://theburgessgrp.com/wp-content/statement/4rg4019748258tc1qqn5yqtrlo9750mdzm5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:518163
URL: https://theburgessgrp.com/wp-content/statement/4rg4019748258tc1qqn5yqtrlo9750mdzm5/
URL Status:Offline
Host: theburgessgrp.com
Date added:2020-09-15 18:01:34 UTC
Last online:2020-09-20 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-15 18:02:21 UTC to abuse{at}1and1[dot]com)
Takedown time:5 days, 3 hours, 22 minutes Bad (down since 2020-09-20 21:24:59 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16PO_09162020EX.docdoc 55caf48be5ac9c86baa0a943d9733131878d5b4316acdaeb3f9fc054a2e3bd38Virustotal results 25.42%Heodo
2020-09-16INV_AA2189240381NF.docdoc 4cc531c7241824525205b57dd2b2ab65b3d2d37861becf043ff065f0a091dbdcVirustotal results 27.12%Heodo
2020-09-16PK0XJSQUQC.docdoc 8d23dd0aa60ef4332c6cee379e7719bb7275f27b1d8be36f48bc0c2e77a4a95eVirustotal results 27.12%Heodo
2020-09-16I2PNDRRRB34OW.docdoc b3f649438cba7dc8f34dbdea69bb67a356906ead944752b8abcc4fcc23b737e6Virustotal results 28.81%Heodo
2020-09-16FREW_7520118085758293558061482.docdoc a1a24cdd447db95aa10894a3b471875da732d0240e0b855117d5d31d9ca09500n/aHeodo
2020-09-16BAL_FA7987118793PU.docdoc c24eaf2c7e9192b22bdb558cdcb458e6de607d17f373c4d46d92561b2312f1d0Virustotal results 23.73%Heodo
2020-09-16IF1033010778CD.docdoc ee69760c14fa03c104d83ca3e3ba2c9649d7c8feafea5c32b239f32e21851a7dVirustotal results 21.05%Heodo
2020-09-16PO_09162020EX.docdoc bdf14c66a5a4843014c1fef6f147f6a7454f8f34223c51a2cd78f684c80e010aVirustotal results 20.00%Heodo
2020-09-1660700810.docdoc 6166313f65b115a61aa233fc6f476490bf8ebb4d5e8fb8790bec568541b2c561Virustotal results 19.30%Heodo
2020-09-16M3Q64X5UI.docdoc c81e73cde0ba06145f34071dd88dcaa6a7a0490d9096b1c3f78886fbf5063669Virustotal results 20.34%Heodo
2020-09-16FILE_MOI_090120_XIM_091620.docdoc 654a30f8d9039f328a9143a75b54433c3a6c7acc12019d3bd26364e54e091e65Virustotal results 20.69%Heodo
2020-09-16BAL_PO_09162020EX.docdoc e94ff7ee99e57be629d1e0f2be3bada9aa1ae3c87560e031697f35d0d1799945Virustotal results 20.34%Heodo
2020-09-16BAL_TDRVL5ISS639.docdoc ba7b3a0a6b1d37bb71adbceb6c77e589b2645f816957e7a2555934d893ed8033Virustotal results 20.34%Heodo
2020-09-16MUATE1XGA622L9SV.docdoc ca193911fda7f38dae553f8746afb6e4021eb40f46144ae77d2c8883da2c3d82n/aHeodo
2020-09-16INV_07762799.docdoc 6b2eab389a7a3b060a0531979a56b8ed93a525cadb8535243ca02b29d3fdb1aen/aHeodo
2020-09-163922584523182969533251.docdoc 3e62fb780c0ad60d1b4e8a1cf6e61782262a3376a1b6552c72c17df57d5375eeVirustotal results 20.34%Heodo
2020-09-16Q_CT7040107234SI.docdoc aebb79d00a5e16152918873b637b5c9a059d85715ebaadaea301faf34273ce01Virustotal results 20.34%Heodo
2020-09-16813994151.docdoc b1d829eedc175dd7e2278966693e67bb2bba46c38b17a2f53b198ea4369997cdn/aHeodo
2020-09-16BAL_EA8493623993TY.docdoc 1bb4012e89aef09b80eda22d99a564f0d3e923f96cbf25dc4a78ff6de6dbb31fn/aHeodo
2020-09-16DOC_34752819.docdoc 8b8af9ba9bacf4def64c2e201f101cf7682ad791c1d170e1571b05a144a2e1a7Virustotal results 32.20%Heodo
2020-09-16PO_09162020EX.docdoc 32b64c216d2a44427fdf3edfe941de9017c0ac4864f88a73a252fd4256c7024cVirustotal results 33.90%Heodo
2020-09-16U_25936700105491629096527.docdoc 0dbd4a1c724732ed63f98689408f3fc72fe81f5c82ceca3ac7c45f111965e4b3n/aHeodo
2020-09-16REP_162516248463345.docdoc 0baae239cc9292a22eac63fb292ef0261437ef05c3ae2f0b402dee533bc9fdd3Virustotal results 33.90%Heodo
2020-09-166923782587303.docdoc b55bf8d95ff3a2bbad6b0601a57de2a479f99a33add787f61befe740dad11b66Virustotal results 31.58%Heodo
2020-09-16INV_PO_09162020EX.docdoc 0db5f8d914e43863feb97b598b9d216663ef184121d7d2fedee37f04325c1dfbVirustotal results 32.20%Heodo
2020-09-16FILE_GN7I5UL3105PI.docdoc fca275c16aa901a7fff33e9ab6ef4a73787f1020eabc602bfdd18bb08c4e78fcVirustotal results 32.20%Heodo
2020-09-16HG8J0XLVI.docdoc b2a10928dc3d7419e3b9ec74228185d8a4d57a7dbec48722c9fef2178b7baa68Virustotal results 32.20%Heodo
2020-09-16INV_046342486158.docdoc b408d1437535aab5eb52b147d59272e8056375f2e90e2ccef71c062980e36b2fVirustotal results 30.51%Heodo
2020-09-16O_PO_09162020EX.docdoc 9563d877bafd1387934e2e5243284770dc969f8406fce65bc70b4a8741081548Virustotal results 31.03%Heodo
2020-09-16INV_EXY_090120_BJG_091620.docdoc 588439f42539c073b150e685ee9d555a0012c8bfbd92b3bb4091b6ba21ed3d6dVirustotal results 29.31%Heodo
2020-09-16PO_09162020EX.docdoc cef5fe8cb42c84d6b646353c977ec12cd7118000eb906b2ff5625158c998c8b5Virustotal results 27.12%Heodo
2020-09-16K_ZR2753199153UU.docdoc 1315727eb211a211a51d3c0766d9b4a340960aa2c917aaea173e6621858a2157Virustotal results 28.07%Heodo
2020-09-16FILE_TYS_090120_NCO_091620.docdoc aff9c4fbadddf0c2b4c80320ddb1809027d157508adbf5e5f12d88db367c782fVirustotal results 24.14%Heodo
2020-09-16J_0860616547145907722706.docdoc 57f88105c170f6a9c0718d37fc98fc60ebc7eecbd83b74780b5284d5412ff8adVirustotal results 25.42%Heodo
2020-09-16MK7868198881DM.docdoc 7cec88df6a841fbc1251142492e673c8a2cddc58f21d6fd402f8167ee96e194cVirustotal results 25.42%Heodo
2020-09-16D_PO_09162020EX.docdoc 1fdc71b89f5d3b5fce037341692415964a8c4141c9579be50045bf9d2e309afdVirustotal results 26.79%Heodo
2020-09-16DOC_5823081411036657002.docdoc 8803b647321791051baa9ae249b48b03143908965ed583a37b955bf28c6a1c77Virustotal results 25.42%Heodo
2020-09-16L_PO_09162020EX.docdoc 5184e08e6c595ddbb60b6ac4030286b2e70fa5ee7567cb0360b2a66ec04f8d89Virustotal results 25.86%Heodo
2020-09-16C_X6ILSR4SCPLV3.docdoc d4b79b30c6abd6633d513bd08d8b3b9b3de6f0705245b72b3e2ee09e0d03746fVirustotal results 25.86%Heodo
2020-09-15P2CWXLECI9KX3KNW.docdoc 629e1a081ae300a6d2f05af5d3062f2b48e11d58f2589a4dc44c4f79c9c32c87Virustotal results 27.12%Heodo
2020-09-15REP_10858607.docdoc 8869192957c4d226cae4679243a3a7ac5a193866a2e1048e37ca60f29d9af28aVirustotal results 26.32%Heodo
2020-09-15FN_7901592968579.docdoc 1b3feab547c227fce46787527a728a57b05f236dc7f3be77bade5b9e661017b4n/aHeodo
2020-09-15BAL_MZ7998129768AH.docdoc 879cb07fa12e39fbaafbeef54a8c988ee57a673fb57a02099a1f6bb733318c44n/aHeodo
2020-09-15FILE_PO_09162020EX.docdoc ade1729cdf53dd56b39ae9440ccb71670f42e5f8fd2b0a564f11aa404c2d427eVirustotal results 31.03%Heodo
2020-09-15EWRG_T8CK3YCXUPBLQPL.docdoc c5be1178786e06c4c3265db8da35fbe4f74a96000fe5eb06874abeb6b85fbd74Virustotal results 29.31%Heodo
2020-09-15TJ3758761549XV.docdoc 8e6f30327f622ec5f0e0af698a465ea3e932a184bd57077e5561244208e45f8dn/aHeodo
2020-09-15INV_IF3581202799VO.docdoc 233f0708bd18c6dcfda50809ba5b1d71184f0743d6a9903de9d06dbb5fdcfdd3n/aHeodo
2020-09-15833297456.docdoc b08ba532b43fe11e03765134c030e9f47fcd626ebc014e8b2d1d3cf4cd7f1074Virustotal results 25.42%Heodo
2020-09-15CJ2ERPD67EG2.docdoc 3b610a0aa4890a007dcf6df33178a042c25d7ae68a3fdff4d368a5728f811a78n/aHeodo
2020-09-15G_NQD_090120_JLN_091520.docdoc d4c8ce2687fd07ab7c3991cab5500c05e719381d7906228371f0457d260ded94Virustotal results 25.42%Heodo
2020-09-15PO_09152020EX.docdoc 607bf68103d9158e576beb6c3a4b287bc5f5283c5871075a532d44efa448b9a0Virustotal results 25.00%Heodo
2020-09-15REP_34048334.docdoc f8a35f4ee5b56117d206ece5cd25afb33aba58cbfb3c32748018d4424f212bddVirustotal results 25.42%Heodo
2020-09-15PO_09152020EX.docdoc aee8c2cd0f5858f9d9f402974a799cfa4ba52786593ce6681014c289e75f58c8n/aHeodo
2020-09-15R_JJ56VAEW6OX8.docdoc 5961fcb88f0e94e30cd06002aa7653bfe00c9ca29501fa70409464450b8d1217Virustotal results 30.51% Heodo
2020-09-15DOC_PO_09152020EX.docdoc 81834b464c9d4cf11ffc357df7e18071f8e5d8f62d182e997059da665294a8b2n/aHeodo
2020-09-15XZY_090120_LWE_091520.docdoc c8410c8dd820bc1e8805ba93260cd2fb0f7707d75573915bdb97ea2a01b66ea8Virustotal results 30.51%Heodo
2020-09-15BAL_PMD_090120_LEI_091520.docdoc 1566f358c08b612008f380dbf93ae439bedd0b527deb8bfa5ca732264e37af87Virustotal results 26.92%Heodo
2020-09-15REP_308428237.docdoc 82caa6df7c863666c0e05d0b5220c9327d0223159c178a97d69f79a7a271d6bcVirustotal results 30.51%Heodo
2020-09-15INV_UPZ_090120_GSF_091520.docdoc 6e6f6b58f145fa06be9bbb1ec69b77c97ec6d245e71fbf4a6b7ad3004ba035a2n/aHeodo