URLhaus Database

You are currently viewing the URLhaus database entry for https://blog.qgdxzs.com/wp-admin/Scan/Q6lr95CDwOyi5uBP2Py/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	593903
URL:	https://blog.qgdxzs.com/wp-admin/Scan/Q6lr95CDwOyi5uBP2Py/
URL Status:	Offline
Host:	blog.qgdxzs.com
Date added:	2020-09-22 07:10:11 UTC
Last online:	2020-09-27 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-22 07:16:16 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:	5 days, 2 hours, 54 minutes (down since 2020-09-27 10:11:12 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-23	Attachment-2020_09_23-EO46638.doc	doc	135b150b7ea1a24c7c8ddea3054657448457991dea76b3c0548d677f0c74284c	22.58%	Heodo
2020-09-23	Mes 20200923 OU472350.doc	doc	0569044120c296a2826b7d0b0697cea36d7b071c883946e33d688dba77d83ad7	n/a	Heodo
2020-09-23	arc 2020_09_23.doc	doc	16f75edb898e43ae44ff9318faed5391597f8d7c77da9893a18293408da5194c	22.58%	Heodo
2020-09-23	file-YQN34573.doc	doc	5b7ccfd2508f2963e79bf2a2c32904419e6331451c5d69dc9c70d64f85be9da3	n/a	Heodo
2020-09-23	Doc-OQJ37369.doc	doc	092411219381bb8b35bcd7ea775398ec1351f0d52972ca88a8c6bc0c521f0cc9	24.19%	Heodo
2020-09-23	File-20200923-737.doc	doc	3f1c3853cdfc7f86b866fa519619dafd939366c297122500bc810aae2406ff5b	19.67%	Heodo
2020-09-23	file_20200923_OCH196.doc	doc	157369508a680552109742d725d9ce198466b3df0f1c2110ef7c1a2afcf7522e	n/a	Heodo
2020-09-23	698 6041.doc	doc	5c71823fdb58d87974e42984373f86844a885139266a5998286d3a8af69a85a7	n/a	Heodo
2020-09-23	Untitled-PPF389630.doc	doc	66ca6aa4a2876f6c0f4cc71e7c05195ac1aafe85746223bc9c9368814d71d0a0	16.13%	Heodo
2020-09-23	Untitled-KL087.doc	doc	cf38c161e0cff2758dd124885d9f615cbe3144de9bec628de65b4cd5d9fc101e	n/a	Heodo
2020-09-23	47984045 20200923 HTR827.doc	doc	a74bb4fe8856890718cfe6e74662170dfb7510a006f324b6b71f95bed8a0da31	17.74%	Heodo
2020-09-23	rep 20200923 L9613.doc	doc	2971ebd1e5d3eff2a0fd1f656733581c994f9a4d8aba09d051e9472104ac8a49	14.75%	Heodo
2020-09-23	rep-287.doc	doc	6b7169e1405cbfde9ecf5e41b1fda35ad6727c74121fc498048ad01e905d51de	n/a	Heodo
2020-09-23	arc.doc	doc	1f9c03e5ba2b408ec1d67b5ccdcf1e472281899feaf1979df12059e834e416bd	16.39%	Heodo
2020-09-23	854-20200923-A40909.doc	doc	5938520931f9ed2b806f384e82f9f2e7e3616c63f0c5859b030b2842831257e0	n/a	Heodo
2020-09-23	List 20200923.doc	doc	b71d184f486039f630a8a6d1d799c4ae1dd8c0526173f079a600813bf858bc0e	n/a	Heodo
2020-09-23	doc_20200923.doc	doc	2cf51f03103e236d2a42df898a2ae579d3ef195bae73212387c9f6c9b2830888	26.23%	Heodo
2020-09-23	REP_2020_09_23_6515.doc	doc	d0d7df17ee2b527c512b0d572c5874ff26d2f6744c0c25a35d62c7d114fda0fd	24.19%	Heodo
2020-09-23	doc-28003.doc	doc	2ac49c37103d289aa4823783d3aee291af2851db8ffba9ff3a34980b516780e4	26.23%	Heodo
2020-09-23	Attachment 20200923 8309.doc	doc	c93e96002e6926d37574ee7c43277336b3e33749eb169c7be0ab4e4ca47bde5e	25.81%	Heodo
2020-09-23	FILE 20200923 4719226.doc	doc	453b69010023da795bba1876cd362cefe28c387fc05257ed7037b766a101779c	25.81%	Heodo
2020-09-23	REP-2020_09_23-657.doc	doc	ead850998ef19987a2e21771e9b09484af3bb04bb923249ef8ff2ca79cfbb4ac	25.81%	Heodo
2020-09-23	Mes-2020_09_23-730518.doc	doc	8b325fb501e6ccef51fd001b0841c524018bc29a230fa989db00f3447496b3be	25.42%	Heodo
2020-09-23	list_20200923_AD551818.doc	doc	5381708de7bc9f2a55940cb8ac21917588c212a9082fedbfa32e062c686e11f1	n/a	Heodo
2020-09-23	Rep 2020_09_23 09327.doc	doc	0990a5ce9af5ef021c1ff33b8203d94b316af05b9cc835d92d94d50fd19c2bc2	29.51%	Heodo
2020-09-23	Rep_MO8069.doc	doc	48860f05fa54eb5e2a2d97f62a59f8bbc2f3df78ea0a6093fd26420a7c7c860e	29.03%	Heodo
2020-09-23	Doc-NM321.doc	doc	a61f1b45b06305829478c9c58b8b8e94fff53017fc1e735bcd18e288f0efbabc	n/a	Heodo
2020-09-23	Rep_20200923_VM612.doc	doc	d077391f811e9aa25621f5140c96860cdda3b56bceaf5245e4d4cbc6a961e6ef	30.00%	Heodo
2020-09-23	Attachments-20200923-29980.doc	doc	7295aebd2a618cef25261555136c8dbef5344ceabfd9b5088a41276c05b48cb3	29.03%	Heodo
2020-09-23	Rep_2020_09_23.doc	doc	4f09397b6219cc33b6d317121c35865043663d6bead47a855a9d33820f8f49fb	n/a	Heodo
2020-09-23	File-2020_09_23-0628430.doc	doc	f45a45fe0b9b279c6941ec5956a271d1e7bf706c54b2a744f1606237721ccbc8	30.00%	Heodo
2020-09-23	DAT 20200923 C649257.doc	doc	799375bc17349fabb727d209dce766f0f790222a89a95d7783de4428c113320e	29.03%	Heodo
2020-09-23	Attachments 20200923.doc	doc	013135853714b2a8873f816a10d899512ba749d4ff178cb5322c96677399ba71	29.03%	Heodo
2020-09-23	FILE 2020_09_23 Q09970.doc	doc	98c795928098a062d1d20e701e289fad2b5c3e3824cca0715df4bc23d5e3c52d	30.00%	Heodo
2020-09-23	Arc-2020_09_23-GM797246.doc	doc	66fb0ff0bc019411aae249302066f28d3d4a17f14d79cb2d743b4b3f86cd2e0d	30.00%	Heodo
2020-09-23	file-420.doc	doc	64c7907e94da2ce9a18f7ad3c62a54d7e9afb9b0be47c3bf44d9e94298fa4e8b	n/a	Heodo
2020-09-23	list_2020_09_23_BD77643.doc	doc	bc8d7a492cc45195a67d8500390b631b8106bfba0c324869264f3a255fb0ccb4	29.51%	Heodo
2020-09-23	UNTITLED-8695083.doc	doc	033162fdc60c2d8188ff7d79a8a860e806d15dcef06a00ae9a68ea0cfb1f6916	n/a	Heodo
2020-09-23	MES 2020_09_23 MN1926.doc	doc	23aff50ac3389334abb3560b23550c5849e7d2837d24dab1b1874048977ff19f	30.00%	Heodo
2020-09-23	dat_2020_09_23_8369743.doc	doc	2848cdf9e7ce3d808191531f2a46ab11df4f948725e708cd401944cbf333f7bd	24.14%	Heodo
2020-09-23	doc-20200923.doc	doc	690391009290bc441dcc05095630d2785d34b18b64819ce580f3bdf2d45b1d19	28.33%	Heodo
2020-09-23	FILE-606.doc	doc	b9acb7d689f3f8a078c45f040c5a975fbdcc8be5eb88ee1ef98579350e3d99fa	27.42%	Heodo
2020-09-23	Dat-2020_09_23-S157.doc	doc	835f71195c622e6d5dee5f8d307078c0efd97045a75c08947600350fb2da5a5a	n/a	Heodo
2020-09-23	REP_20200923_N3097.doc	doc	4936a865fa30aaf552649f3c14f7333565da60037a34a9ec243752662b79c6b0	27.42%	Heodo
2020-09-23	Doc 2020_09_23 JW91576.doc	doc	e98190a409ec70f224b71425bddf57cb8ed96eabd6e92497579714952e93fe4a	26.67%	Heodo
2020-09-23	Doc 20200923 LW293.doc	doc	3b12b9e3c5bb951db8bd86ba2ed902362a034487b029eb22199b2a7c28264480	27.42%	Heodo
2020-09-23	inf 20200923 N159057.doc	doc	e654ead5a64c1a9508e1824c6e391f25e0dedee6db74de85549d1c8527a359f2	27.87%	Heodo
2020-09-22	700928_96111.doc	doc	41324ce5731ef12252c333f6b777f49fc8d45e9a7ab785823e48e08c8c6c330c	n/a	Heodo
2020-09-22	arc-20200923-0421.doc	doc	ba855ac67ccef2d1b59e693dd98dcf5cdc266adcb47b0f857e22007d1108086a	26.23%	Heodo
2020-09-22	Rep_2020_09_23.doc	doc	c9c86f6533b9f61a31f465205c905eb1bec6f4ec0aa28152439f806a95d98419	25.81%	Heodo
2020-09-22	MES 20200923 29826.doc	doc	e012356e1eab3dfbe537c3011127d4e313ea9515ab04c71150782d4f0f118ba0	n/a	Heodo
2020-09-22	dat_20200923_8180.doc	doc	8d2251dc615f9d04a6658ae1257db2447c607432e32cab8e52403bef7de84872	32.26%	Heodo
2020-09-22	77550-20200923.doc	doc	1d52c4d30c2bd004ffb8989e076f203d6c0a4b7902b1e1e53d64f2401ecf4d49	n/a	Heodo
2020-09-22	Arc 20200923.doc	doc	df43c0c9f2b9b29df1176b2c57cd9e0189322520d52fd6a4120ae33ed249c375	n/a	Heodo
2020-09-22	FILE 20200923 2194.doc	doc	fbeb9d04cda2cdc25d0f83cf72853d3c3240b72ed8047f657e576061c0157037	29.03%	Heodo
2020-09-22	Doc V76549.doc	doc	41e6b271c4d42b952c300b7772f78ccdf76279c2357380936a0a4d520e511a60	29.03%	Heodo
2020-09-22	Arc_6731697.doc	doc	5118e3bd72677f8cda269a8e2c50571beffb5dc3f7dbfb1b05cd1e44a904a214	29.03%	Heodo
2020-09-22	Inf_20200922_9435.doc	doc	3c8a083cba6f42eeca7d197da85d0ab24ee5e9e03de7d32eb976903c4bf4a604	27.87%	Heodo
2020-09-22	K4683 2060.doc	doc	b81572e2a4e03017153d413982112512dbfe50f737b9a8cb5a82a1e5c35ab61e	29.51%	Heodo
2020-09-22	LIST NB892933.doc	doc	35da0079ad4c7418f72ded6c49a5c942485909472851d3e8d71f289dbead4146	29.03%	Heodo
2020-09-22	Mes_20200922_6796695.doc	doc	807f0fb8f94f16a66f2cba86e04982b3c8cce542eb80678040264f2a5f3ea051	29.03%	Heodo
2020-09-22	REP_20200922_88761.doc	doc	70f193ff1df17ecdd4cda5e1e3712248c6cb690eae5e961b2255f2fe80750c84	n/a	Heodo
2020-09-22	inf 20200922 M11151.doc	doc	bc5691f0d4d9c0fc260effd42b99bf104b3249363fe4d023330189d735c822d6	n/a	Heodo
2020-09-22	File-2020_09_22-4369.doc	doc	fee44ec3b333796685007e96f4c1478fc810a6a4549ed0d18c4e26fb91e508f0	46.77%	Heodo
2020-09-22	Mes-6801505.doc	doc	17d458a76189b8fcbbd8bb4ba3393ec337aeeef13c4c0cd2ae40c45355d32f1b	n/a	Heodo
2020-09-22	Dat 930841.doc	doc	c4699bc83e2c480aa53af341f4b67b5dfb27cb5d28fb09a7619b55689b686ae3	45.90%	Heodo
2020-09-22	INF-3418.doc	doc	15587e3981acde8cea14506a7eec74bb7254104c7b3020773de4fe4b17cb9cc3	45.16%	Heodo
2020-09-22	UNTITLED 20200922 4857.doc	doc	32c8a986a400721c89ff872dabe5fb5a485720706e240f6f7cda0d6dece17d0b	45.16%	Heodo
2020-09-22	arc_20200922_O03711.doc	doc	d83de81a9bb5c00f7dec021f2109de66a4fa5ce8d19e94bfd7f790d1a730a7ad	40.98%	Heodo
2020-09-22	UNTITLED 3446.doc	doc	0e3e2b366fd6d1d8225f1df04d4a0ad7fe396753f20fae73f04b3cd497cd85a4	37.70%	Heodo
2020-09-22	File 2020_09_22 RUA59945.doc	doc	aa023277e7c4a82947af555cd343fecf048c1c044e4e2fa8bd830e3d09fc5adb	n/a	Heodo
2020-09-22	REP 20200922 5727.doc	doc	650b390c56eed72a6309b925bb07185de472eb81ef4bb982bcfa8aae5a2b93db	n/a	Heodo
2020-09-22	UNTITLED 2020_09_22 W727512.doc	doc	9d69feedac414e2e1554965f077deb501f1f7a47ceb72ab2b68539c8314e602b	32.79%	Heodo
2020-09-22	arc_2020_09_22_820140.doc	doc	04a59fd27c9e7a341ef783391b5b5f9402eff1857b83838fb0a7e1b6cd013bca	n/a	Heodo
2020-09-22	Z1624-20200922-G705837.doc	doc	9317f453ca55ce18baa93709a335b01868e4ba019129b7a6a6bfe5cdffb6ae04	n/a	Heodo
2020-09-22	Dat_2020_09_22_215.doc	doc	52f9ea87553e8dd3d5114a2cbebefadf66d7f310e84c02a4c04863e8b638252a	n/a	Heodo
2020-09-22	5534447 7639131.doc	doc	de59e3702c57121f05f1118e444ddc475d182adaa11c98c5cb254a7c2ac6281e	23.73%	Heodo
2020-09-22	Attachments.doc	doc	b218573be430d04bc85df63886bc59d6608ed0e84d058f52456224f9f7f06a8e	24.14%	Heodo
2020-09-22	list G01503.doc	doc	edb38f20a57df9726e7a8a2f78f122e7a968a390fa006a996d93e06a040df87b	24.59%	Heodo
2020-09-22	Untitled_8856.doc	doc	9031b4f3cb08f9c5c30d6213371de41fb67360b5c420cf4c277de80158ab622c	24.59%	Heodo
2020-09-22	96807HM-779.doc	doc	4f8e5670cb71d357da7b7eb48753d60aee76b24e8ad9bf8c7908c6410b488b64	n/a	Heodo
2020-09-22	doc-2020_09_22-OBV011.doc	doc	40d8d1b11903c0f14654801e16543c9636776341824af61d6b1c27a145ff4da1	24.59%	Heodo
2020-09-22	737J-20200922-KQ68567.doc	doc	094e2a3d577107bbcbee3a5a181971bc5aeac18624bfdf436f85d2d47b1ef697	23.73%	Heodo
2020-09-22	219-2020_09_22-WDF835148.doc	doc	1905997bc71b596381c75393456d143e27aeb93fec85e5b38a5cb4892d5da8d3	24.59%	Heodo
2020-09-22	mes-20200922-4980.doc	doc	aca1b2ac77d0e62667aa5d68dfd18480b6ed7fc43126ee4ab3a924d1a0601a0c	n/a	Heodo
2020-09-22	mes 2020_09_22.doc	doc	ccd5a83bccde7f2627df67502fbbda6f949e14c13b08885aa7bb710d55142a2e	52.54%	Heodo