URLhaus Database

You are currently viewing the URLhaus database entry for http://destinationsunli.com/wp-content/esp/5OXzLxebhATt3a/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:585387
URL: http://destinationsunli.com/wp-content/esp/5OXzLxebhATt3a/
URL Status:Offline
Host: destinationsunli.com
Date added:2020-09-21 11:14:05 UTC
Last online:2020-12-01 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 11:40:04 UTC to phil{at}belugacdn[dot]com)
Takedown time:2 months, 10 days, 20 hours, 34 minutes Bad (down since 2020-12-01 08:14:55 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-22FILE_2020_09_22.docdoc 050f8c672a68de19be1fc1f6137e6a572d8abc551e67d2477a567dd5f94d4e5aVirustotal results 33.33%Heodo
2020-09-22Attachment YKH5637.docdoc d05527f19cbcca0953e287b0b76194570b3c3e64eaff273f6428446e1a4379dcn/aHeodo
2020-09-22file-9681430.docdoc 6d4f23d40a95b290b13a19d670f3f64798aa3126e82c867064caebd137e64493Virustotal results 31.67%Heodo
2020-09-22List 20200922.docdoc 3cb78e2ab36c72f8292da6808ae005ee3aa17c694c35a65fea4a89d0f972d121n/aHeodo
2020-09-22DAT 20200922 220.docdoc 6b4419d45974ab12fe3b7374e5821a249e8b7b426bb15389e6f70897ae85f630Virustotal results 31.03%Heodo
2020-09-22852_2020_09_22_9058.docdoc cbc24d09773cf56460c3a9cda7b497317ec61632c48aaf8615d94fe4a58ac642Virustotal results 32.20%Heodo
2020-09-22573-2020_09_22-NKS355.docdoc 08eddac7838ced651892ee94e145a639d010807c45f3bd00e9752dbc1590add9n/aHeodo
2020-09-22doc 2020_09_22 UV036.docdoc f9c1f50a35c2941949d6ee8e91935c1fcebd4b1f46849f8870ff3267bc5a88e6Virustotal results 32.79%Heodo
2020-09-22arc 20200922 IJ28820.docdoc ceeeb96a381895e4e8e1b6d7a37870865d0d21d8202c86996ceea054fdc6ad4fVirustotal results 31.67%Heodo
2020-09-22inf 2020_09_22 B151.docdoc cbf5b0482bc2cdc04d1f4ffa6c39d4517ef6793289339305a64f7820553bdeacVirustotal results 31.15%Heodo
2020-09-21152FK-M1191.docdoc dd5ce5ffcf0c62e6fce916b040418dc3bcb7a74ea6b11c3f31123106f04ad6c5Virustotal results 29.51%Heodo
2020-09-21list.docdoc f2936defc5fc2976c78eb875870a7e003a079975fdeae34fbc2a652f0b488ba5n/aHeodo
2020-09-2190082-20200922-628007.docdoc 9d856a82f0899be05fb4c7d81837230640ebef104a02ed0e95bf00f88409ad73n/aHeodo
2020-09-21Doc-20200922-YD21846.docdoc 457b6a08f7e1b6cf8d09929198bf73710085c58f346b256d31d99645df480e67n/aHeodo
2020-09-21MES 2020_09_22 15973.docdoc 408b12e331000ac29de83635501b2c1ad800d8465e28a0a8054f10c4fdcb091cn/aHeodo
2020-09-21Dat 202616.docdoc ce9b37abd7ee0050b9d074b7d04a2b2a3e7c18576c690d5859b8053726e0870aVirustotal results 30.00% Heodo
2020-09-2168097160-X787.docdoc f0e77efe2ed5bb775bfcefae4448ed8dfc00f824d1e9a9b5f6ea63624ee6a360n/aHeodo
2020-09-21Mes_20200922_VT69922.docdoc b780fd500d7fb2592181acab87281172189878f82ed6ea34f97fad5614203e9en/aHeodo
2020-09-21Untitled_2020_09_22_O7054.docdoc be5f3f383dff8f273492551b54b9226c2bd6326187ccfb87be8556ac0fb5f5b9n/aHeodo
2020-09-21mes-2020_09_21-W233410.docdoc c8ec1b5a11693054c13c42e45d83be353dc88a30205b63b6e820c12c9b38a13fn/aHeodo
2020-09-21Inf 20200921 833.docdoc f49e5be00aeff785a79ef91f4ddcea3c074c7145f614e63dc439657f8068c49dn/aHeodo
2020-09-21Dat.docdoc f6809265a7460ab3d0e927c5fb9399a263172140778b4cc34f6698d9521b3b43Virustotal results 25.86%Heodo
2020-09-21list 20200921 QA079666.docdoc 8c3a4338d7f182b5a61fca23d6848bdf9a3bb775d6c5c938b82cfb845aec45a3n/aHeodo
2020-09-2172300-2020_09_21-791.docdoc 35cde8868a2076e10e0dfddb3ec487a74ca52b6643cef4d514deb69d11e9edd5n/aHeodo
2020-09-21list-20200921-M2967.docdoc 817dfa0131f4686e1849deaf26ff7ffe1f5b2eb30526bc09a6753ce13185f502Virustotal results 26.67%Heodo
2020-09-21FILE 2020_09_21 IQ6039.docdoc ce17c43a0cf8dbf2a3db7e70dff4273c7330dd42cf83c3145453eb94bb51974bVirustotal results 26.67%Heodo
2020-09-21arc 20200921 BUR753000.docdoc 716299f97023ee3e7f0a20ad1843ee7284684da8a503b9031fdaf0aac7e81671n/aHeodo
2020-09-21INF_ZGA439.docdoc 61eb0d422b0465e3df0a4d5167d820688c9b0435aa4d28b8a09cf216487399afn/a Heodo
2020-09-21Attachment 2020_09_21 KC89382.docdoc 622102e5267a380d026748ec3e0790747cf94774b47588e8474d1ea5c8b86d16n/aHeodo
2020-09-21mes.docdoc 22a29b66bba17966a31c3cd3286dc31fa1c99e45ab2fa9bd84eeee1bd847f58eVirustotal results 27.87%Heodo
2020-09-21Attachment-2020_09_21-EV9562.docdoc 82fd021a09f56eb6c9c4129caab80c81c416871df51ed92e6649100c7373ff85Virustotal results 28.33% Heodo
2020-09-21List 20200921 MUW3249.docdoc 22288c34f43e04e40516c1928c92199cfa707badc18b23cdadb87511a06dd140n/aHeodo
2020-09-21Attachment_20200921_A122.docdoc 3fec38315e25ce05e197bc39a6136959cf4cdf2b9fa9229fc188a71d464a5846Virustotal results 25.00%Heodo
2020-09-21LIST 20200921 QD409.docdoc f2e681ee5b79805f8cf54b83b821ad59c1c4b7daa53deeac54ac5ac3ee7a6421Virustotal results 23.73%Heodo
2020-09-21File_2020_09_21_5200.docdoc 569910897c96b5385d7869be7cf95e003220e6e7319f785d1e8748d46fc7c1d8n/aHeodo
2020-09-21Arc-20200921-9992553.docdoc f2047aa88b10b376fa4c25df0838bdd2e523b1e7593ef46bd6b460604d5c9505n/aHeodo
2020-09-21Rep-20200921-888287.docdoc 356b82eeebe4eebc57579bc3932589783542b3b169a2f2c85dfa0c78fddb7ac1Virustotal results 25.42%Heodo
2020-09-21DAT 20200921 JR973565.docdoc 012c334db958a84f1f475fe44c1a86195a783c7701b6aadeec5c06b539158fc8Virustotal results 23.73%Heodo
2020-09-21dat_20200921_75036.docdoc 42f29aa41b1f7d9de698db6b2a4512a76e4c54af72ab7ce26542fc3666438084n/a Heodo
2020-09-21Mes_ZZN171028.docdoc 04136b8270e1d84f73c175123aa7f38165f56bd7641fb172dca3caa593f6546dn/aHeodo
2020-09-21INF_2020_09_21_UPI64946.docdoc 164898a09b7b291c8898d773c7d1bbf378552734b76b9ee7ce6f8ec296cca217n/aHeodo
2020-09-21Mes-2020_09_21-NA23964.docdoc 78087064fd94215cc6a0700120c55c2ec63db11fd810dd5e175bca51ab8975b0Virustotal results 32.20%Heodo
2020-09-21Arc_20200921_5787.docdoc f7702d1f529ffaf4f63ff3e1f187bf299215f423fc8fdba43e49f337ce1025f1n/a Heodo
2020-09-21Dat_20200921_6224.docdoc 8efec761be2ad1d9d1759aaa87162aaafe6d8abf893d3ca22b1530ef6a561f3en/aHeodo
2020-09-21Attachment 90899.docdoc 067eb151263b210a180acec91b442c110a21200820760e17f408b1fbbfe4f67an/aHeodo