URLhaus Database

You are currently viewing the URLhaus database entry for http://municipolitics.ca/wp-admin/balance/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	588332
URL:	http://municipolitics.ca/wp-admin/balance/
URL Status:	Offline
Host:	municipolitics.ca
Date added:	2020-09-21 18:21:40 UTC
Last online:	2020-09-23 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-21 18:22:51 UTC to abuse{at}idig[dot]net)
Takedown time:	1 day, 15 hours, 37 minutes (down since 2020-09-23 10:00:02 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-22	REP_XM3219571336XO.doc	doc	3e7b30f4a48f9c8e35cb2a878c36655b2fd98de59c8c7bf9c7e708918584f2fc	49.18%	Heodo
2020-09-22	PO_09222020EX.doc	doc	615c56cc17f59eb078578e1e87284456a83a3ed4427b94dc1698828f278148fa	48.33%	Heodo
2020-09-22	T_BN7200484195ZA.doc	doc	8d49090e5ad1ca487645e8dad8b6e90d267b4a7f5d4cdf4d9c4441d969f088ca	45.76%	Heodo
2020-09-22	FILE_FBR_090120_KON_092220.doc	doc	57ba4b4fdcb75beec5d6d63154dfda3510f28ac094da0ca819dd8677ca37a924	42.62%	Heodo
2020-09-22	XKP_090120_OYZ_092220.doc	doc	49a1ffaa1b08021d92dd0139fad4b585e8b601c2ca7c74eca69ea9f3ff06ad79	40.98%	Heodo
2020-09-22	M_9405172569621332642875249.doc	doc	b014c2416d9b6457a33a1c69cb00a1183b6342db10f39dd9b9ed3ce8b14e3be8	39.34%	Heodo
2020-09-22	5487411925396.doc	doc	9607e3321e8b588ead936b5c46607981cf642a9a5abc9a7d1d0f7474dea3b6fa	37.70%	Heodo
2020-09-22	59212738664.doc	doc	718113e004b811df9d311a7edec1092b2aab2d9173d762022544a74b5ba02657	32.79%	Heodo
2020-09-22	UD8393109314WY.doc	doc	58dca36db6814be3bc7016599693d84cc074f17451bebe7eb98baee99cef0ac9	32.79%	Heodo
2020-09-22	FILE_23920041.doc	doc	d9f03fa12161b634159a69d97eaf66f6e621ecf8cea896527a14510f0c7e4ad4	33.33%	Heodo
2020-09-22	FILE_16140119.doc	doc	7cb0e900a796ae5c53375b1dca69897de5ffe140cb72224a428bcb8327937f23	28.81%	Heodo
2020-09-22	PO_09222020EX.doc	doc	b9ae26c8fc56943d82223a7d3c26671f4247a42d3d56fc25a455217cb84674b7	32.79%	Heodo
2020-09-22	806BHMGZPQE5S.doc	doc	c74d9dd73470acf660bc458fed146e653197422214956ce6dc4abfaa8a8a1544	n/a	Heodo
2020-09-22	INV_1IX01DJJTKZ3IF7C.doc	doc	09354d76c301e3e65f29aceb76a3bbfa8cd5bc590010a3eaf044b7050c3e61b1	n/a	Heodo
2020-09-22	REP_PZ6232667275FB.doc	doc	6f9bccda375580566f4824b5dad0662ea49be1f410eb2bd5c38f3561dbac29e4	33.33%	Heodo
2020-09-22	P_57785979.doc	doc	62f036b925c8b4c5c90b88eaf15e774481a952ac6e1c7596916e10054b82dace	30.00%	Heodo
2020-09-21	DOC_57618158.doc	doc	0ecb8f0ac3c2c27f213dff3752b70d6832343dd6e1ef7e95e066e0446ef384f8	31.15%	Heodo
2020-09-21	V_74902870.doc	doc	0b406d237fa37888f1acd0ffc4b59577ffd5e45b792a835c2141483e2206ce9c	30.00%	Heodo
2020-09-21	REP_PO_09222020EX.doc	doc	eed638e68fb63c08e3dbe230dc2a66544170ba12c92aacb9571a99fe355f0878	31.03%	Heodo
2020-09-21	DOC_XNX_090120_EQX_092220.doc	doc	ce745f41bc3c216b25b5d553cff68854d633377995317973429dc64180aa89ef	30.00%	Heodo
2020-09-21	DOC_CH9806255352KN.doc	doc	04b6915557c386d4219e56049dca6eeef6f30b41f45fb525d36977e248fbf4ec	31.15%	Heodo
2020-09-21	49166657.doc	doc	e5ef583d80780947a6660111040fef17af94bb4a2b32611f0ad9605d8815e17e	30.51%	Heodo
2020-09-21	INV_EYD_090120_GSW_092220.doc	doc	5ec6bed566afb4a94fb1fa92fbc8b964ed670f2627e8de8df3eaef0dee7e7f50	30.00%	Heodo
2020-09-21	DOC_36762574026998835.doc	doc	5f48ec62b70130e2ebbdf504c0de8057499f87bcf6bda3462f498f3d2e08c22b	n/a	Heodo
2020-09-21	YIT_33328872984936572705.doc	doc	292a48621b6f7863d1a7d04f25cd2c6ddbcbf5abac1282941d3ba20ae076b776	27.87%	Heodo
2020-09-21	BAL_36920883.doc	doc	e6573ea6cfe0bdb4f9b3d43b7b68207d18fb492c9ed35aaf6bee52d0d681a9dd	28.33%	Heodo
2020-09-21	6HV45YJL3ILQZLU5.doc	doc	20c91a51721e21851a9378758513e3d0ec631985cab6f862b783627792f1f127	n/a	Heodo
2020-09-21	40736644683317583.doc	doc	6ca00f6d839ec9a1a0d786abef71fce3d2d88018968bbd427a8e2d25f6099c57	27.12%	Heodo
2020-09-21	SDFO_13269397696293390067.doc	doc	9ac42de81707bd470c8974966355b1c4ab5b4be1ff55ffc4b0e38a197d1561c9	n/a	Heodo
2020-09-21	PO_09212020EX.doc	doc	3ab0702a3d820e15619e9125350d5275da998abed6d3231e31428a8443a2b604	27.87%	Heodo
2020-09-21	FILE_78818620.doc	doc	f87c10d05f454254da53ad0717ce0f42871dd7293e1b24157355fc0544ac8926	24.56%	Heodo
2020-09-21	REP_BRWRTPFR1VG2KEKM.doc	doc	b28378e6974a53507bdc9ccccae320e4998c79966ec3a03aa0fbbdd5465df93b	24.14%	Heodo