URLhaus Database

You are currently viewing the URLhaus database entry for http://ccsfw.club/wp-content/DOC/X1H70jm4KB4uuyN/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:585432
URL: http://ccsfw.club/wp-content/DOC/X1H70jm4KB4uuyN/
URL Status:Offline
Host: ccsfw.club
Date added:2020-09-21 11:17:08 UTC
Last online:2020-09-22 02:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 11:18:44 UTC to abuse{at}alibaba-inc[dot]com,intl-abuse{at}list[dot]alibaba-inc[dot]com)
Takedown time:15 hours, 13 minutes Good (down since 2020-09-22 02:32:19 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-22Attachments_20200922_350.docdoc ce99d6a97e21495a2133ae942cc02e674461cbcbd4065b65eabdb8bbcfa5743dn/aHeodo
2020-09-22S425 X57508.docdoc d54e7732d4686780c94f902037c5855a15032d82fb5236e42e072640e767a034Virustotal results 32.20%Heodo
2020-09-22J9296-WZ7275.docdoc 3e9bc12768764f53a95fc9e48930aa1dfca0a76533a5935290d78f24a2ade89cVirustotal results 32.79%Heodo
2020-09-22inf-2020_09_22-H717.docdoc ba2753c69b06b5198fcc5ab9d75dd5760f634a64845c40f9d1518228e8611079Virustotal results 31.03%Heodo
2020-09-22FD3236_20200922_H0622.docdoc cdf5919973d03aa5d92173567d3c3e48098f193247a8c61802af9c5bb0c10852Virustotal results 31.67%Heodo
2020-09-22ARC-4312.docdoc 071213621eabf1fc4875132e9bade6ab8f1b8311427be3fc1fa626449a7db799n/aHeodo
2020-09-21ARC-244.docdoc 47fc0c61caa3805d7cb0fcc8a8466dbf5cd3f4df9456bfea6583b9ac2d83c0aeVirustotal results 30.00%Heodo
2020-09-21Doc_2020_09_22_WY96394.docdoc f2936defc5fc2976c78eb875870a7e003a079975fdeae34fbc2a652f0b488ba5n/aHeodo
2020-09-21rep_20200922_47447.docdoc afeb53f8204c23e2ff8f5733e97220ecfb71466eb4f3f9ad1aef0807fd216973Virustotal results 30.00%Heodo
2020-09-21Attachments-2020_09_22-12087.docdoc 408b12e331000ac29de83635501b2c1ad800d8465e28a0a8054f10c4fdcb091cn/aHeodo
2020-09-21Mes 2020_09_22 1452480.docdoc 0ff979ea9674b24eaaf44e80354ff0126f6a59acc790907ccb1fc48c8e1384b8n/aHeodo
2020-09-21907496_20200922_37921.docdoc f0e77efe2ed5bb775bfcefae4448ed8dfc00f824d1e9a9b5f6ea63624ee6a360n/aHeodo
2020-09-21doc 2020_09_22 8556005.docdoc 868eaaf542a2552458dbab990542114b9eae6c1c9ab0de7dbab93ad7d932cb24n/a Heodo
2020-09-21Arc-DZM631754.docdoc b780fd500d7fb2592181acab87281172189878f82ed6ea34f97fad5614203e9en/aHeodo
2020-09-2178674 OB2502.docdoc be5f3f383dff8f273492551b54b9226c2bd6326187ccfb87be8556ac0fb5f5b9Virustotal results 26.67%Heodo
2020-09-21Mes-2020_09_21-S50218.docdoc c8ec1b5a11693054c13c42e45d83be353dc88a30205b63b6e820c12c9b38a13fn/aHeodo
2020-09-21Attachment_20200921.docdoc f49e5be00aeff785a79ef91f4ddcea3c074c7145f614e63dc439657f8068c49dn/aHeodo
2020-09-21file 2020_09_21 TVQ842745.docdoc ed7bc4f1b9ac349628e94398a36080786308437d690b0633909a72a3f2c6bcd9n/a Heodo
2020-09-21MES 2020_09_21 R99285.docdoc 6351168d14cfa0372803482062882590c98d717dc4f4eb2541fe3a154e8dc40fVirustotal results 26.67%Heodo
2020-09-21arc-20200921-AW748270.docdoc 65836f35189720691f30ed8f88638a91183cfbf994e08500b8ec1e1c39d54f00n/aHeodo
2020-09-21ARC 20200921 6760304.docdoc f85e575ddd651c3d60580fc1e2a4c74eb93f0097b1141daaab16fcc6ec843279n/aHeodo
2020-09-21Dat-2020_09_21-D029480.docdoc 716299f97023ee3e7f0a20ad1843ee7284684da8a503b9031fdaf0aac7e81671n/aHeodo
2020-09-21801LI 2020_09_21 4528.docdoc d8e606128ea6abf4af62e98e8f0de8e37080dc6aec867ab0a5d2d4a8ad68ebb5Virustotal results 26.67% Heodo
2020-09-21INF-2020_09_21-Z4178.docdoc fada4708605505ec08d2045110877e6a7cd8fb2037b0d9bc3c32c5607a23c21aVirustotal results 28.33%Heodo
2020-09-21arc 20200921 16045.docdoc 400ce9c0043e68540e0e6d31efc1165cd0e4d696ccefb033d77e6f9fe45e0f5dn/aHeodo
2020-09-21Rep SI10056.docdoc eec5de4b7b0f1cc511f1bd917e05c187785ea211748aba8d6dc3ca62007dc905Virustotal results 28.33%Heodo
2020-09-21IYG8583_879.docdoc 3d53561b3bf1124d38edeb67519a5abdf7951c6ff3abe5918b8458b5e9f94453Virustotal results 25.42%Heodo
2020-09-21LIST_NUF94710.docdoc bbfbfa4b74ecbd22841d49fe5721601886838b5365ca2da11e07e046670cbf3bn/aHeodo
2020-09-2121277804_52683.docdoc 3fec38315e25ce05e197bc39a6136959cf4cdf2b9fa9229fc188a71d464a5846Virustotal results 25.00%Heodo
2020-09-21MES-2020_09_21-8918754.docdoc 4b6f866b4d3e232b0bcb99a08d5ec72e495a8a4eba816436ac390f80fb01288eVirustotal results 25.00% Heodo
2020-09-21rep-559114.docdoc c569edbab23423ba1e8b07d887e2f627f83169707deb8987fd9a8466b998723fn/aHeodo
2020-09-21INF_2020_09_21_B55379.docdoc 5bbc50e7511d96f3499f30c3000fa522641f4988ac06bab6016fe595a5f31ef7n/aHeodo
2020-09-21752 2020_09_21 KX18507.docdoc 012c334db958a84f1f475fe44c1a86195a783c7701b6aadeec5c06b539158fc8n/aHeodo
2020-09-21Dat_20200921_5464.docdoc 2cf740fe002fcb52b76e9121ef2b1c0efad8f7829310489bf59e7a045742deb8n/aHeodo
2020-09-21list-2020_09_21-862073.docdoc dd82c62bce75cfe9cc3d63c50d2108210a4a7307bb05d0155ce6690d326df384Virustotal results 24.14%Heodo
2020-09-2107615193-20200921.docdoc c3f490b02f7c353e9e3482fe9ab964aaade540105541a0bad12f0451c25d4866n/aHeodo
2020-09-21mes-20200921-P660.docdoc 164898a09b7b291c8898d773c7d1bbf378552734b76b9ee7ce6f8ec296cca217n/aHeodo
2020-09-21MES-2020_09_21-494114.docdoc d514c46c30e752ee22291f4cfce174467d0b7c6ee1506f12d854a4090fb65ef0n/aHeodo
2020-09-21List-241.docdoc 8107e9bdb5b253a1ba409281b6c4196958c41efad1ed86ba7a7ab2e2d58520b0n/aHeodo
2020-09-21ARC 2020_09_21 751619.docdoc 155fc45f0849e7a83587aedc0cb028a587bf371a518ceeebbd95492f5ee666ddn/aHeodo
2020-09-21Attachments-20200921.docdoc 067eb151263b210a180acec91b442c110a21200820760e17f408b1fbbfe4f67an/aHeodo
2020-09-21Doc ORX0470.docdoc c00090beb2d80d6e3b59ffd4c07c6577a6afc9dfdd74f749db99092a10f559b7Virustotal results 19.30%Heodo