URLhaus Database

You are currently viewing the URLhaus database entry for http://genuskinusa.com/wp-includes/sites/EpVlfbI1JBvyGL/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:585760
URL: http://genuskinusa.com/wp-includes/sites/EpVlfbI1JBvyGL/
URL Status:Offline
Host: genuskinusa.com
Date added:2020-09-21 12:04:17 UTC
Last online:2020-09-22 02:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 12:06:03 UTC to CloudFlare Anti-Abuse API)
Takedown time:14 hours, 13 minutes Good (down since 2020-09-22 02:20:00 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-22mes_NL55719.docdoc 217d18116ca119751a9e29f6ed27a4fe97fe6fc8bfe088610cf7841c4fd8dab8n/aHeodo
2020-09-22inf 20200922 BFV46677.docdoc cbc24d09773cf56460c3a9cda7b497317ec61632c48aaf8615d94fe4a58ac642Virustotal results 32.20%Heodo
2020-09-22REP-2020_09_22-K2944.docdoc 08eddac7838ced651892ee94e145a639d010807c45f3bd00e9752dbc1590add9n/aHeodo
2020-09-22Dat.docdoc ba2753c69b06b5198fcc5ab9d75dd5760f634a64845c40f9d1518228e8611079n/aHeodo
2020-09-22Doc 2020_09_22 XE012.docdoc cbf5b0482bc2cdc04d1f4ffa6c39d4517ef6793289339305a64f7820553bdeacVirustotal results 31.15%Heodo
2020-09-21ARC 2020_09_22 YD04063.docdoc dd5ce5ffcf0c62e6fce916b040418dc3bcb7a74ea6b11c3f31123106f04ad6c5Virustotal results 29.51%Heodo
2020-09-21Mes-S309890.docdoc 0394eebf7602baf22b2e45b390f4aa5854b0179e671b3a2607dbf44a5130870cn/aHeodo
2020-09-21ARC Z8740.docdoc 752cfdd4b5bd5525a1b48d12b73710003b76530b232e19a33add7a21712daa98n/a Heodo
2020-09-21Dat_2020_09_22_I068.docdoc f58761d6abe3ad15dbd476209b0096437914904488af5c5be9aeeafa6d598a6bVirustotal results 30.00%Heodo
2020-09-21Attachments 20200922 PV55419.docdoc a8516766300b452a46b02941f4c26fb6b396ca990d85f6e0b7f660e2c3129e05n/a Heodo
2020-09-21inf_H24871.docdoc 6aaab241dd8288bd9525b1a50b7a9bd3573f1b5574ab80fbac7aeb6813e553ebVirustotal results 30.51% Heodo
2020-09-21ARC.docdoc 0400334c3a2a7e2dbc243a57e54e084c789afd40e5742a3deb2f991d9574ea7an/aHeodo
2020-09-21DAT-20200922-NS66437.docdoc c1fbade9d5f7c2b5705288400f77ce167e2f71ae4bda087c52e2983d2dffbdf2n/aHeodo
2020-09-21dat 20200922 044641.docdoc bf472ca39b5a4407fe40c2130b3bb1495772cfe47feb4c79046e811be37e8d95Virustotal results 31.15%Heodo
2020-09-21LIST P991.docdoc f7f053dd4de2a47cc943feb6ef87471b7d30cc0b7dfc7de91dff8a4c32af9746Virustotal results 27.87% Heodo
2020-09-21UNTITLED_2020_09_21_477.docdoc ee0c171a228697ac111f2fea82463d7b64680e80f9c7ebce77deb08b6aa5bf2en/aHeodo
2020-09-21Arc-20200921-5867.docdoc 98d06fc771715c436b8ecc3bf03aa2b900ed0bdc897aa050d293666191dd1a78n/aHeodo
2020-09-21INF-20200921-PUB737.docdoc 35cde8868a2076e10e0dfddb3ec487a74ca52b6643cef4d514deb69d11e9edd5n/aHeodo
2020-09-21inf_2020_09_21_061.docdoc afd45922c3589ecc0dd6a70924ddb82a913798343dd9d425a83b655e94517da7n/aHeodo
2020-09-21REP-O350766.docdoc 716299f97023ee3e7f0a20ad1843ee7284684da8a503b9031fdaf0aac7e81671n/aHeodo
2020-09-21ARC-20200921-RDK040.docdoc 474af9dc6229c515f3c206208e9a7bca0eb884b0c6a647428054d521427deaden/aHeodo
2020-09-21Arc_2020_09_21_517.docdoc 06ff769ddd838638dd933879a8a930aeacbcae74bf6df79aa7c9899d90222eaan/aHeodo
2020-09-21inf_VKT184350.docdoc 22a29b66bba17966a31c3cd3286dc31fa1c99e45ab2fa9bd84eeee1bd847f58en/aHeodo
2020-09-21LIST-2020_09_21-419.docdoc 1c1d6a7d2690d01c33afbde392a68bb12a53fd56aeaef85282b81661b0b06ed8n/aHeodo
2020-09-21Doc_2020_09_21_WQ271696.docdoc 25a45e935d58087ef1e9dbc5ccddfcf223d44a45aec64f99670a5ba62cf8ec73Virustotal results 27.12%Heodo
2020-09-2136523721-AIT818882.docdoc ec6306040730f010ec7bcab442c87da9436370a6f1d6294572705570644ece4an/aHeodo
2020-09-21Attachment_NCJ811221.docdoc d54c82bc2188424a79d137dc8dc9cd7764a0e62e8af9ba7a37fec7058efc20ean/aHeodo
2020-09-21file_2020_09_21_9278.docdoc 70dbc4cb021488253faec5d8447c680d8bf7285fe74e0728c0c8051719877104n/a Heodo
2020-09-21Dat-20200921-2787.docdoc c569edbab23423ba1e8b07d887e2f627f83169707deb8987fd9a8466b998723fn/aHeodo
2020-09-21Rep.docdoc 356b82eeebe4eebc57579bc3932589783542b3b169a2f2c85dfa0c78fddb7ac1Virustotal results 25.42%Heodo
2020-09-21Rep 2020_09_21 WBL07856.docdoc 012c334db958a84f1f475fe44c1a86195a783c7701b6aadeec5c06b539158fc8Virustotal results 23.73%Heodo
2020-09-215361266.docdoc f515aa20198574ad28264b78c6e2e4387697c8d8854080321942c2036133eb53n/a Heodo
2020-09-21List 20200921 VV301400.docdoc 4dd537ac46ab8a39db41647d215caf9b042be8faf2ef929cbf48b5582a02e85an/a Heodo
2020-09-21INF_2020_09_21_ENG218.docdoc 0b8beb84b2712c9627f2eff3aa31e2d64307a0dd3d5d535d01af5842da422a0bVirustotal results 32.76%Heodo
2020-09-21MES.docdoc f7702d1f529ffaf4f63ff3e1f187bf299215f423fc8fdba43e49f337ce1025f1n/a Heodo
2020-09-21INF-2020_09_21-X5229.docdoc 8107e9bdb5b253a1ba409281b6c4196958c41efad1ed86ba7a7ab2e2d58520b0n/aHeodo
2020-09-21dat-2020_09_21-53024.docdoc c5cf5d5d6629f30577d484019efc27d16e13d2c833b58c71bbd163cea36a163an/aHeodo