URLhaus Database

You are currently viewing the URLhaus database entry for http://freespiritmind.com/MASD/HowTo/css/Documentation/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:597758
URL: http://freespiritmind.com/MASD/HowTo/css/Documentation/
URL Status:Offline
Host: freespiritmind.com
Date added:2020-09-22 14:58:04 UTC
Last online:2020-11-04 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-22 15:00:09 UTC to abuse{at}liquidweb[dot]com)
Takedown time:1 month, 13 days, 4 hours, 8 minutes Bad (down since 2020-11-04 19:08:20 UTC)
Tags:doc emotet link epoch2 heodo link ZLoader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-24DOC_28178568.docdoc 460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974feVirustotal results 33.87%Heodo
2020-09-24O_WT9607969070LG.docdoc c84034e8688e0d58d35845c4ad72561fdedd79c6ec344ec1dc7ed759a126a7fdVirustotal results 31.15%Heodo
2020-09-24678100458041117661592998.docdoc 36d85a22ed91060a9856d8e691083a49da8ba00d0d3d7fb87819e36fe325c31dn/aHeodo
2020-09-24G_903164661568611647545790.docdoc bf6caeac64ebd3eca96f936635d26ea90e62f1093b72146a98a20623a13688cbVirustotal results 27.87%Heodo
2020-09-24REP_DX4423198716KZ.docdoc 994f606a00cbfa00d23303bdaf545487afedc4d6fe4d580890a702d11411885cVirustotal results 33.87%Heodo
2020-09-24B_XAL_090120_WGX_092420.docdoc 447465de32a94153d18ec88201122059c81c4d5e43fad6bdace0fc4b7b788a57Virustotal results 27.42%Heodo
2020-09-24REP_PO_09242020EX.docdoc ad3cc6eb7a75a0347dc31dcd03afb293c1165a9ded2cad9fd9effbe448d6d816Virustotal results 27.42%Heodo
2020-09-24FILE_PO_09242020EX.docdoc 2272f7dfb66fc89d7009e57d66837d63d1e4296c78eed8333b156d7bc0eaee14Virustotal results 29.51%Heodo
2020-09-24JPEL2CULXGRF3I.docdoc 35fdf71d1156a709edbfc6250568a61a62afb183218e5fc5ffc1249ab07bb4b3Virustotal results 25.81%Heodo
2020-09-24598596152057796898031494.docdoc d6f4d312b2434777abc97c10e41bb86186836a8a9a2e08b5365e301afae8d0b3Virustotal results 23.81%Heodo
2020-09-24JWD_06053610.docdoc 47c8e3e92b05f289d4c090f3405365aa37f8e0d0bfce6535dc59d999117a2fdaVirustotal results 20.97%Heodo
2020-09-2462201677.docdoc f2566951b2f270b88cd2a864576ae53db3bd5f3fcea221a1b088b8ec0d6f6eedVirustotal results 22.58%Heodo
2020-09-24REP_BLFULK135OF34XJ0.docdoc 6e5bcd9db826f2b855f63e8a591e02ebb0bbd141387d2922e3e251fc8ddbcbb8Virustotal results 19.67%Heodo
2020-09-24DOC_BY8Z5D9TU.docdoc 994c514f41d20931aa98bc87ccd2de05af9f8245435c55b0f29f7d2062c9b5f5Virustotal results 22.95%Heodo
2020-09-24I_PO_09242020EX.docdoc 04c40043a6f85ced583227c163faec46ab1ea268357293dea65e35744895955cVirustotal results 21.31%Heodo
2020-09-24SM0222336172BS.docdoc cfbd97481c83537fad9115e2c33ad3cdb1c05c7cac4aec15f2aaaf6acc3d1006Virustotal results 45.76%Heodo
2020-09-24PO_09242020EX.docdoc 60443647991cdcd0fb310b965e853672e8c5c83a64629a83d7ee568b23e44296Virustotal results 42.62%Heodo
2020-09-24ZJK_E9Q2I9MO30Q2T4.docdoc a92c46f200df0158c9798071b11a95d81eea54126f75084d6b9b381d992d4d0cVirustotal results 40.98%Heodo
2020-09-249646876997113765.docdoc 21d6462af9e28cac11c5b8bc20c9f07e953c7af99c15966175e8b8cfc8ee9363Virustotal results 38.71%Heodo
2020-09-2494516889.docdoc 353903d7b90942b9e45059e7a1ea56eea91c412f5cf0864982870f55f9e61e98Virustotal results 37.10%Heodo
2020-09-24XN8394759901PZ.docdoc 2ec5659b0eadb3f644298e5c297be25451dff898c0551365d0d757a4e5975556Virustotal results 35.48%Heodo
2020-09-24REP_09418678.docdoc 3f165297835a1afd80d7c9fcf087b03e04dd420e6e747ae16a5d0cb6da8eaa97Virustotal results 36.07%Heodo
2020-09-24S_MZ8892874618OV.docdoc 8f054924ac0e3a72b2725a18206bf1e2faaa327460d2e7199b1152126241d054Virustotal results 35.48%Heodo
2020-09-24INV_PO_09242020EX.docdoc 94a60a6851a52d97e35329b2b824437bf9dd5eeca3fd759e15f444e217f39635Virustotal results 35.48%Heodo
2020-09-24FILE_OB2250221608KB.docdoc 7f480dae416960104d9733a280be27c1a6381c1a310cb1f7b7b4acb7aa83fcdbVirustotal results 36.07%Heodo
2020-09-24DOC_04592479.docdoc a71d3dae8594c0336d66e366a3911fe4f349966e73fcb6c5fc9ed3077c8fcb6cVirustotal results 34.43%Heodo
2020-09-24X_RXRN4WJ9S.docdoc 0185c23ef468c062bc446ffc87e7af495c49e991d0a24c67634d8f0cd3d8bf8bVirustotal results 29.51%Heodo
2020-09-24DOC_81658455.docdoc 9ca8f66ca174af2d6d9944b2cfda4685bd8710217610c24b6332ae5436c52405Virustotal results 30.00%Heodo
2020-09-24DOC_55016358.docdoc 0b089eaf3134af01322c9b778303dd6bebd992f97ce0f6f5b81a06f6e6d85d78Virustotal results 30.65%Heodo
2020-09-24UX_71430817325936.docdoc a279b3d82c086e59725b814eb8f6ddde5387efb28b19f197dcb6a82e239f9906n/aHeodo
2020-09-24PO_09242020EX.docdoc a9654b509a80552021269008e33074d85ee269b8a579a23ef93bcc5aba20227cVirustotal results 29.03%Heodo
2020-09-23INV_DA4648461864NK.docdoc d74a0a2af76d37b9621074bc15dee942c972ea0fe761110f8767c1b836dec555n/aHeodo
2020-09-23I_QK8721970366UW.docdoc 904d90bfbc81471348f882ff514202163724e2e016e942a659e5e7cacfe5c9feVirustotal results 29.03%Heodo
2020-09-23REP_77595273.docdoc 7340c303b5ff42ef74e8996ab95aa2b6b742e4efcc852b96349ea6085e592f37Virustotal results 29.03%Heodo
2020-09-23FILE_DP3896098274ZZ.docdoc 13b44fe04aec7fdc7dce67de3a987317ad25ab9301110382847ca08bd645f2ben/aHeodo
2020-09-23INV_90466215281587552.docdoc 76435bca763f869f80daabd795435e20bd52e2cff25a5594ccc20c8be946a2e8Virustotal results 37.10%Heodo
2020-09-23PO_09242020EX.docdoc 15d9c4a8449193c0406c1005887328daa93d847ea063f9097f0eee39bc404df0Virustotal results 37.10%Heodo
2020-09-23U_PO_09242020EX.docdoc c9de56d138a927505138fdf267dafe6d598cdd4338db121b7d7b5f9a982a3a49Virustotal results 41.94%Heodo
2020-09-23P_PO_09242020EX.docdoc 0bab9cd9401d43739be303f2f040aa4559bdcfce229754a8c6f2758d3046b54cVirustotal results 35.48%Heodo
2020-09-23DOC_92915947.docdoc 887fa6a834121789518a2119d59559b212de2d235e454fd67d1e000e8ee7df1dVirustotal results 32.79%Heodo
2020-09-23DOC_BEZ_090120_JZO_092320.docdoc 56cbf96af906adc2960627f7308bbccef3283458499dad9a032ec264a6e46644Virustotal results 33.33%Heodo
2020-09-2377250743.docdoc b2f9a597db846fff8f8fed8d950d0b3be1f06ba1dfe8add6aef001f6d469acfaVirustotal results 34.43%Heodo
2020-09-23L_I7OCHIGKCVED.docdoc e8822b2b3f880e8a943b016c15c44664ac13696bcd6262ebb0563a68e77767f2Virustotal results 33.87%Heodo
2020-09-236792170953177403.docdoc 5d0b46e5ac5ae916c339102eb13396bf43d1c7c757bc63c6ddad859b8ba97f05n/aHeodo
2020-09-23FILE_10635995.docdoc 26614fe04700998a42fbb7c3d84cbce63bd4a32aa9de3efe130ee1366827c094n/aHeodo
2020-09-23DOC_977849510.docdoc 19a24c966abfca03a9b378497958b7a78167e51a43af3059a5eba3f3eb725e73n/aHeodo
2020-09-23DOC_TE6103193856RP.docdoc 914b8769a89b16d3231958e8a03e2af289e32de76df9839de1c4ab3c2679f9f4Virustotal results 36.07%Heodo
2020-09-2341005955226571243787.docdoc e59549b96cdcadc16e777d0a62eb4b96353dd65ff6714e68f61e75ce526e7178Virustotal results 32.26%Heodo
2020-09-23DOC_FY2306783852HJ.docdoc 3ba38e83f83b750a49038ddb3d3cbe2bc947625807973346210a77e5d22cee43Virustotal results 35.48%Heodo
2020-09-23PO_09232020EX.docdoc 45d80072d3caf8df2c3d54d35168efdd6a9e53c59a5f5118d1a1c459fa5daa25Virustotal results 32.61%Heodo
2020-09-23REP_PO_09232020EX.docdoc 33624b9d31b189eda28dd4ac76bea17844e79f229e8aff90f0a7f0e56ef90860Virustotal results 33.87%Heodo
2020-09-23DOC_65172363.docdoc 1e0e7d2681a3e9e867a6dcc1c47ace2c85c1cdb60f751585adff359da52f7c87Virustotal results 33.87%Heodo
2020-09-23FILE_RB8750681923FN.docdoc 83fea429143a296d2ee25541c1ba6861d46671d6ec7aa0aeeee4a81b6e252696Virustotal results 33.87%Heodo
2020-09-2314480285.docdoc 8e12da0d14bfcd77133c21065f6b32fd171fdf8ca5f94b6c2aa11d1c0d3f30dfVirustotal results 33.87%Heodo
2020-09-23CLK_090120_FQK_092320.docdoc 837c550fff034632d2b0963b5cbef7f23f932fb6439d9ec26b324655c31b1320Virustotal results 32.26%Heodo
2020-09-23DOC_B6LKHR2QP4UTW.docdoc 27913bedf548875b064d7c6316b3afad4aaaaa8998e4d9640f179a7a11da73c5Virustotal results 22.95%Heodo
2020-09-230318973419145.docdoc 33debf417ff359cd96e0bb0884610933181957da9e965e52c2f02a2c698ac306Virustotal results 32.26%Heodo
2020-09-23LOMJ_FIF_090120_KYS_092320.docdoc 20ef957f84144a3fad2d3e3b68b6159c70b7fc25c13fc2185d1686235fe49676n/aHeodo
2020-09-23JKJZ_3SZ5HV5QFID.docdoc a877dd61b25805e938555868388a8543768fb01e9c45ae6072c261f61264d466Virustotal results 34.43%Heodo
2020-09-23C_ZAQ31DGFX5R.docdoc 936e0b3b696a31047618a5ffe005e0500e2dd472581d4df1580db803e19cca8aVirustotal results 35.48%Heodo
2020-09-23BAL_36018659876622.docdoc 93fddf6220e95dc443df2a8bea1bd77d75a502ca3d7ba4428a6f7eccdf3c659en/aHeodo
2020-09-23M_GDT_090120_HTJ_092320.docdoc 5ee7aea51b23645203711f5af8db6a5ed697f0bf9ece2adb34c6a23a6e220dbbVirustotal results 36.07%Heodo
2020-09-23REP_YHTFN8YMBVDXJ.docdoc 15b6e8645e321e35774c5f7b9e295ba0e3d31d3f116e7a67724e6e0e5f8f3ed8n/aHeodo
2020-09-23DOC_HHL_090120_CRJ_092320.docdoc 27a9009cd17248d4d19b35988974f0e755e69a439f1025ece6b2ffb357087846n/aHeodo
2020-09-23BWI0UO6N0TB.docdoc 90bb75f0c88bcf2a5196f73f5bfa35fe230b05ebd75d6b6f61a1440c763aebb7Virustotal results 36.07%Heodo
2020-09-23DOC_IT5533680721BL.docdoc f732dff0368dd8ff983021f4786d2c04ecb2f9196327138f25d6ca5272c9b556Virustotal results 35.48%Heodo
2020-09-23ZH7283112772KW.docdoc c118e4b8dce9cf6e593a4ce06e9352d91200eefd7d939af1e1fb8891671620fcVirustotal results 35.48%Heodo
2020-09-23BAL_PO_09232020EX.docdoc b853cd46658fd7e0fc597e041702404ceb38bce2a718061faa3170d5389828bfVirustotal results 36.07%Heodo
2020-09-23E_GJF_090120_SXB_092320.docdoc 3ccb6e15d1d669f80a3b40e294920eda308017848943e5539c5493a5e39cad03n/aZLoader
2020-09-23PO_09232020EX.docdoc b336f37fbeec6b771c4d1282df6155ac6cbf6fa00c89ecf7447ab97611be4d97Virustotal results 43.55%Heodo
2020-09-23A_12561905.docdoc 33a6f42c04954c40c73042c64938ba9035f2881570d0797c83ce59c19b50d767Virustotal results 37.10%Heodo
2020-09-23UPJ_090120_PUU_092320.docdoc b171914b2e5a10fd997e51268f01a70b254f0aa55080906c36c6159bd325c9feVirustotal results 30.65%Heodo
2020-09-23INV_RBW_090120_LSE_092320.docdoc e757a53e573f1584dd56ed851acc303473be8922e8f879bd1dd8f9b8dbec4eadVirustotal results 31.15%Heodo
2020-09-23LH_MU2CPXGO.docdoc b84c54a1704a22ceac88f79804b5a23b2a64547cadf21d76291d01f84b0e77d6Virustotal results 31.15%Heodo
2020-09-23REP_3141240452060919920950727.docdoc ed8554b439c265332707e99e7be35db1e9e217801ed277161fcf7c6bcf98bea1Virustotal results 30.36%Heodo
2020-09-2382836753.docdoc 07e10c57641a11b12fa27dd4b62a01b1f1db583eb0f33e25154c1e495d45066eVirustotal results 27.42%Heodo
2020-09-2354720447.docdoc 96d1563a935b2b69580ef4ad19410bdb741917fc4d0aa8855e4eba258db0645fVirustotal results 27.87%Heodo
2020-09-23REP_015328447330751874827.docdoc a0b12fdc4f5929ad169ba50c79da1722abb70cdb418ce0cac2275aea75431d9dVirustotal results 27.42%Heodo
2020-09-23FILE_KR9861584795IA.docdoc 770a13e4b2ad169f027bbdb1dbd5317f83cdd7a7b28e6ac67e30614cdd534a29Virustotal results 27.87%Heodo
2020-09-23DOC_AUI_090120_CZU_092320.docdoc 04648ce7223361494ad5620c674be88a869710007f672d05721b77af59be70fdVirustotal results 30.65% Heodo
2020-09-2286773629828162656512407.docdoc fa7f4b3fa89ce1e3cf1f45674f36346e729aced2de513c5a058f935c65b3cffcVirustotal results 27.87%Heodo
2020-09-22DOC_AX7530823494KT.docdoc af31068680a432b4d1d2164488f6353795fbb745479373bbafc6a60e9cf25169Virustotal results 30.65%Heodo
2020-09-22REP_84698841.docdoc 0c850e85bc3e92d0551863e1ce5cd03c3c3404ceeb7e38aed586706c4134f4a2Virustotal results 29.03%Heodo
2020-09-22760520360311549.docdoc 7fc71d784c714360d684b4c25382fe807f04a3cbd861352f3c19fa0fd789e59dVirustotal results 27.42%Heodo
2020-09-22N_WFY_090120_NSL_092320.docdoc 096e7d0d8016a7efe13a6bcfe45e2b78d115eb681a6f855b639a9ca3c8db22c4n/aHeodo
2020-09-22KV_MG1343839599WM.docdoc 5503f97a821a1c8dee9c3e1bcdc31e1fc7d98157b552c7cc79605a9d68dd8b12Virustotal results 30.65%Heodo
2020-09-22REP_ERRK33IIYM3GAR36.docdoc 10fe3df8f6540696c8eaf649bc752e30d5533b0203869ec0839cf045227620ban/aHeodo
2020-09-22DOC_7786723449070618072.docdoc 8f8f1029e9909427e27aa6d225db5eb6d8767560af23836c44a0abff203eae4bVirustotal results 27.42%Heodo
2020-09-22XU1A4JTB48I.docdoc e446be795bac5464b1bb80859e2ffd0857fe8d26f1f6973457b491498010f0c1Virustotal results 27.42%Heodo
2020-09-22HUTX02OQ6S5.docdoc f8f2dc63225fa38d16de547469f9c418f3093385a270836e7431aad8bf52eebfVirustotal results 27.42%Heodo
2020-09-22WCN_090120_QDB_092220.docdoc f94576c2ff082f8f5ac03f20eeb1be3c83b209f14f3c70834719faa2398405can/aHeodo
2020-09-22FC1081064787PB.docdoc 65da347c17ea74a9ddd129c6a7d05a42b72f4d4588b3d53e70ce9e96a118cd69Virustotal results 27.42%Heodo
2020-09-22W_549835977555065.docdoc cc43bfd0ea39a3afc6283e4734d480bf62fbbb227016a5cb42d288a8f5f3c956Virustotal results 27.87%Heodo
2020-09-22REP_46053230.docdoc 158dba6d537edd9c1fb56cc2c1307f00634cf5188667321946c2247e02eb6c40Virustotal results 27.42%Heodo
2020-09-22INV_54782367.docdoc 9a6b203c12f1d1c246e01f1027af5b250945a7be48670d3a36e23638e53b44a7Virustotal results 32.26%Heodo
2020-09-22UDZU_47857398751066.docdoc d75a00b374e19973a894a4dba2d79f146e8f3745a82478ec933f2fd58471786fVirustotal results 46.77%Heodo
2020-09-22DOC_332657602810.docdoc 3867403fc0ef30b2ca95ffaeeaf103e4d2eef4e04c211e3a85bc2ab35cb0285aVirustotal results 33.33%Heodo
2020-09-22BAL_74030423336913203351.docdoc 5edac9eba4b9acb19c34761cd2f8631ea31814b300b760c31c1d42569fb7c50aVirustotal results 33.33%Heodo
2020-09-22INV_BZ3GGXRSVO.docdoc 9bd65ed372648b57b43a68e9d36831cb79aecb3c241b3515c3086ac2b16fb995Virustotal results 23.73%Heodo
2020-09-22DOC_81455186350018.docdoc 50938c1e8bcfd60435f294949bf3b07533f8b5ccf1cf92d08a77f4a222037092Virustotal results 46.77%Heodo
2020-09-22INV_WTH_090120_USQ_092220.docdoc 364d8ed83a4c199e391c403f9b749444e21f648fced33ec6149055a9e12ecd18Virustotal results 23.73%Heodo
2020-09-22INV_24808487.docdoc e9eef03a2437c273d0745bcc0b14df9ad8c3cb2807330029d609796172ad5d45Virustotal results 22.95%Heodo
2020-09-22INV_M32IM7NTRME6.docdoc 8937064c7ab860bfd3cba7621752a85796caa4092d34225474a42f0f6a5ce234Virustotal results 46.77%Heodo