URLhaus Database

You are currently viewing the URLhaus database entry for http://dental.xiaoxiao.media/css/https://1BVGtiTWDy6Wj6SD7lA/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:521457
URL: http://dental.xiaoxiao.media/css/https://1BVGtiTWDy6Wj6SD7lA/
URL Status:Offline
Host: dental.xiaoxiao.media
Date added:2020-09-15 22:56:13 UTC
Last online:2020-09-16 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-15 22:58:17 UTC to abuse{at}asmallorange[dot]com,eig-abuse{at}endurance[dot]com)
Takedown time:15 hours, 9 minutes Good (down since 2020-09-16 14:07:20 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16UNTITLED_20200916_DWA303.docdoc 6588df39b1cfd797af1644aedff24c2f62e80a5c800b8e8187becb4d8881c73dVirustotal results 25.00%Heodo
2020-09-16Attachment-2020_09_16-5797564.docdoc 8efdfcb0b3a9703826f1b40480b0b22a522318c46e7be7ab9f412ed0078d0640Virustotal results 23.73%Heodo
2020-09-16inf_3661152.docdoc c4d44340a8baa31b2d02c6c9b4596ce0500bc64e34c61a4b1e87aa2a0cfcd174Virustotal results 20.34%Heodo
2020-09-16Arc_2020_09_16_NJ25393.docdoc 45998854f4b2d479996acd5525ecf1aaa8472e2ffea11d64d73cbe5b767382ccVirustotal results 20.34%Heodo
2020-09-16REP.docdoc fb8ad7a942d6259844caaefcc87f660c6116f86fef0e477fd4047d3eb797c8f7Virustotal results 20.34%Heodo
2020-09-16Arc-7448.docdoc 4142cb49199a7efe52b944caff9ab5b07d61438a9fc89a413199b2f801aec9d8Virustotal results 26.32%Heodo
2020-09-166244_YQ54249.docdoc 3345219199def661640c5182b7491c413702216149790bcddd8d884e9bcd112eVirustotal results 25.42%Heodo
2020-09-16doc 20200916 PH555.docdoc 219b5d039e4a109011e021799762a7dddecbc2c5e6f75294daac8bb6454790a5Virustotal results 25.86%Heodo
2020-09-16Inf-18115.docdoc fab310e91d04203eb4a5911d81b2d387893e1913d380f5bd01a0d7d28bfbecbfVirustotal results 25.00%Heodo
2020-09-16arc_20200916_AS5071.docdoc 082b657e6fc18dd578b33ff31b260c6951ccebcb4cd71e19852a609ca723a27bVirustotal results 22.03%Heodo
2020-09-16Inf JZ894701.docdoc 1ac42c93a5c7ed2032a573c91d229836148d58174b546d68fad1283466142b01Virustotal results 20.00%Heodo
2020-09-16inf-20200916-MDN61576.docdoc cad02354c378e66ee28f1f256b75d0f535a9194e63a01964d3d11be1b791ae2fVirustotal results 20.37%Heodo
2020-09-16Arc-20200916.docdoc a731a3c41dd40020c149cf5fbf79157f21492d204b600431988a9164a999ff38n/aHeodo
2020-09-16arc 20200916 7609075.docdoc a409d8733c759dd2b57bb235f4bfad154c64490fbae59ab2715a9d4839840770Virustotal results 20.34%Heodo
2020-09-16REP-2020_09_16-S0780.docdoc 60ebb60bdbd9d062410367b982c74e9f4d3a5a857f4b3cbbfd64f9521d01472cn/aHeodo
2020-09-16LIST_CJD1834.docdoc d64753842bf0d8413fab16e2b4f48fa311d7eb3f1ce485fd003052016e3c6b8fVirustotal results 20.34%Heodo
2020-09-16doc-20200916-109.docdoc 5622b336e3d79de656ea598448be37dc32d517b1f9153dcda0a7ac07aee15223Virustotal results 21.05%Heodo
2020-09-16Mes-2020_09_16-YHJ3437.docdoc 5ce29bd706cc814176635cf7134f9cb9220e06390e5791fe1993289a93a27e3fVirustotal results 20.69%Heodo
2020-09-16mes 20200916.docdoc 4bf59afb77b6c07c47039cb97d4498853fcb96aee97d91ea04e96ad6df7d5420Virustotal results 20.34%Heodo
2020-09-16Mes 2020_09_16 5206.docdoc e1823ace02b32f55d504e6b3dd9216cd2c11f9df3497aea11df0319d200e402an/aHeodo
2020-09-16Arc_20200916.docdoc 7f31e09db1f488e4f6fec7662774f13150ea94c0dd43b241b895478e97b8951bVirustotal results 20.34%Heodo
2020-09-16MES 2020_09_16 39903.docdoc 16f861770a0fce369ed5f6a5082844ecf21c3acd315452f28a8d75bda5aef6d0n/aHeodo
2020-09-16REP-20200916-5837054.docdoc 9d3428dcae9abc07e2cc52efdca0abcaa71083d4d516255b807b775d83b1aa11n/aHeodo
2020-09-16ARC-20200916-YQH3239.docdoc 25e32aa862bdd2d9fb9e14dbc9ff76094130b674dcf3e18a107ed96d4532fc41Virustotal results 33.90%Heodo
2020-09-16WW497 20200916 26987.docdoc ef071674b1f2a1834422f4985e7adc827df001a12baf597c43e4214ca4690951n/aHeodo
2020-09-16Dat-2020_09_16-C044.docdoc 55ac884b2c0ec962f21ca52a5d19dd1a36ed009113269c5cc0cd158b2831db45Virustotal results 34.48%Heodo
2020-09-16list_2020_09_16_JG457496.docdoc 55a20277ae9c195942274d3621049acafaff844bff9155821b6e8e55b5b288dcVirustotal results 33.33%Heodo
2020-09-16Attachment 2020_09_16 UG72578.docdoc e2856823514e781c3064f6c95e874baece347db00d628a4d0c34acdebb7b15e3Virustotal results 34.48%Heodo
2020-09-16list 20200916.docdoc a9f1817bdd8b8fd5c6eef9b6bdd9ad215cb27e6dfac05fec7397d8fd44cb6e80n/aHeodo
2020-09-16inf_312568.docdoc a977df922c14467cec02915c17c287e36ce57d3556a944d637211ad9e2453761n/aHeodo
2020-09-16DAT 20200916 CCQ261.docdoc 57c55ce3943b5424de0f259dfd11a755a3fa502bb80433cc12891f1c50694998Virustotal results 33.90%Heodo
2020-09-16FILE_2020_09_16.docdoc b6c369aa5d1c7381b6dc6a49054428f659335685ccc912120497d9a650f6152cVirustotal results 33.90%Heodo
2020-09-16176.docdoc 33f6ecee507be4798c3b12273264de128550d5c2baaf1a5b67d16a47aa9281f0Virustotal results 34.48%Heodo
2020-09-16REP-2020_09_16-26850.docdoc 8a3279538720914f40bcbb0e8350344e0cc20ae2189a177335c7e210034ff97bVirustotal results 33.90%Heodo
2020-09-16Doc-2020_09_16-558.docdoc 844cec396fc4101ea19516fcf94e49a932b7516c672f15cbc8e6cf51f5fde41dVirustotal results 33.90%Heodo
2020-09-16mes-20200916.docdoc 09cb84e8d363ec5ca85c03388d7825595a61580b58cf26eddcef15b96be2ca92Virustotal results 33.90%Heodo
2020-09-16dat-2020_09_16-J365.docdoc cc46278232b76bb6de046f82e165c924ab3f718c93fd6fd2a8436e8679e0ddbdVirustotal results 33.90%Heodo
2020-09-16inf-2020_09_16-567.docdoc e604baf73198099b301317a9e4e3bfe1b09b40d9f3d2adce7623f8d90fbddf7dVirustotal results 33.90%Heodo
2020-09-16ARC_2020_09_16_TK07618.docdoc 9bbe6656d238339ae8b2e4eb7afdc2c30b877f1274b56eaa0cb1c0ec7212edaeVirustotal results 33.90%Heodo
2020-09-16Attachments-6277.docdoc 4f85795e1697a598462cdd1a1c4c26b4f27e39a1f2b8882f4a27e033ad6a2906Virustotal results 33.90%Heodo
2020-09-16doc_20200916.docdoc 9d5aaf57f58d435632b896bf1d4b37a2c63288b939d15d5ad25ab532e22149a8Virustotal results 33.90%Heodo
2020-09-16File_2020_09_16.docdoc 7f57a659e3265b22c0cfded64ea3a0a3fb8d36c8f10aad23def7e1399d99a656Virustotal results 33.90%Heodo
2020-09-16Arc-20200916-H709.docdoc 82ac6817a3e36a939990363702ea2f1314bd610d6374575a5b7afefde85c7065Virustotal results 32.76%Heodo
2020-09-16MES_2020_09_16_82813.docdoc 19373a5983bf61ef115b229e00b461a097c97187dbbbb075ac90f4240cad9224Virustotal results 32.76%Heodo
2020-09-16file RL958003.docdoc 2c8883cc6f3db8b4a0ef8a232338ed2435dfbe727d0a346170aab4a199d4d141Virustotal results 32.76%Heodo
2020-09-16List IW720.docdoc 7504125a6d20afa52bca1888f1402f956e471bc9ba2c4e1c5815536c5631822eVirustotal results 32.14%Heodo
2020-09-16list 20200916 JCM33448.docdoc e8884dfbee7597c4e44c12b9bc0409b2fd6cf948a7ab95abc15b49b62df6274bVirustotal results 32.20%Heodo
2020-09-16list-2339164.docdoc 9e421a68ace7a8e2fd8e963f6b58f1bbbeeaaa5ceff8b01390316312e6f52cffVirustotal results 32.76%Heodo
2020-09-16LIST-C091540.docdoc 431aee0407caaa5732b272d3edcb43227f6c0686b25969044e413934bb64ff05Virustotal results 32.20%Heodo
2020-09-15REP_20200916_EHI8940.docdoc 801147f2dc7b49cbc2907525e54d3bcd41a7ba4be9d648de5e2222d068e63d9fn/aHeodo
2020-09-15Dat_2020_09_16_6958.docdoc 03cc121fa7423385a2cb58565982f5d30c4b855db53f9a46511e051bdb9b31a3n/aHeodo
2020-09-1529034HD-20200916-GZS94173.docdoc 29dbb3c580d6d972886fad68fb1a0025424d1315e237fed9957560fc814ef283Virustotal results 30.51%Heodo