URLhaus Database

You are currently viewing the URLhaus database entry for http://practiq-consulting.com/cgi-bin/public/hmwl6x5qn7t/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:609507
URL: http://practiq-consulting.com/cgi-bin/public/hmwl6x5qn7t/
URL Status:Offline
Host: practiq-consulting.com
Date added:2020-09-24 07:37:05 UTC
Last online:2021-02-04 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 07:38:12 UTC to abuse{at}centurylinkservices[dot]net)
Takedown time:4 months, 13 days, 8 hours, 31 minutes Bad (down since 2021-02-04 16:09:41 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25R_NO2557529940SJ.docdoc 8a73bdca97395b9f659104c200734008fe685faff6734fc31ce0cd575090f1b2Virustotal results 35.48%Heodo
2020-09-25DOC_LC1529239828SX.docdoc 870bc543d566751893f393fcf0c7abd3bceadb183ce2f7384e8922bb56a5bbb9n/a Heodo
2020-09-25FILE_824019576362284443665175.docdoc af8ff28fb4ea041b8cbe3e93a2c9984e483b0fbda6945bc0172d0946d5c1cb7dVirustotal results 22.58% Heodo
2020-09-25INV_CW7408381986BY.docdoc 802f04236dcc8416e167f809dda60e5623b54d39bd04e74dd1f1db148afca2d3n/aHeodo
2020-09-25DOC_7405732550.docdoc eefd694ad7a3c1d10441452c651459410143b5ce0d56e19d39c16c1114105d09Virustotal results 31.15% Heodo
2020-09-24YFY_090120_IKP_092520.docdoc 30a0c59711e06c411f4e1a20c649f507a1ef69742192df4ede24d92289aee591Virustotal results 31.15%Heodo
2020-09-24EJD_090120_OTX_092520.docdoc d4aeeadcea8487c5cde690583d8fb442c9334208e54fd53d3714e0ec9bf0da91n/aHeodo
2020-09-24INV_65972205.docdoc 356e4701cc94b7ffbf517afeef9f5c0bbe45782f861d51859f0bf099df96581bVirustotal results 24.59%Heodo
2020-09-24INV_KH5669514062IS.docdoc 029de7c595a68b46233e28bbff65f065f8baf48178b6998928ebadafb8d3368cn/aHeodo
2020-09-24INV_B409BW7TNNR.docdoc 35774d12164e3314ec57dde2f5948d18c0e60439fd49b21753e4e0954b3325d3n/aHeodo
2020-09-24FILE_38960067.docdoc 7e1935fab86166df5d6770468bf12c57a50720c0b7ba90e21accf2ca8493ce15n/aHeodo
2020-09-24INV_98993677204734747132612.docdoc c4fc9ec7954c1bc71dc415464f2813e6151dd7c106526dfe3aa8d97ec3b8f9deVirustotal results 20.97%Heodo
2020-09-24PO_09252020EX.docdoc ff6440d9c01fb2fc8526c683c418271051ec21b1b730972f02ab6442bb0f83afn/aHeodo
2020-09-24INV_PO_09252020EX.docdoc 02ef96f4a3c715053acf327bd61196658034d30887f0bb1a9769e4bfedfe0a41Virustotal results 29.03%Heodo
2020-09-24BAL_PE0272795198AZ.docdoc 5bbcb03cbdf0fa9eb5854ee7d5c7d3669e469fbde2dd1cfe0b6c4767dd19d138n/aHeodo
2020-09-24INV_771699743561044516749929.docdoc 7ef0c540f3c535a1789981bcbe5e3dd3ba3809e8d6ef1a9745f00ccd018db031Virustotal results 29.03%Heodo
2020-09-24M_PO_09242020EX.docdoc ea20a59b71ee8c21c84eece43e58023ef1be9265e0198df81b95d6af3b4d38e9Virustotal results 29.03%Heodo
2020-09-24REP_PO_09242020EX.docdoc e065d7a8263671a9d5afd66e671dd1d8cb12ccadcde39686f63b37c411d977ddn/aHeodo
2020-09-24BAL_NF6648827241MW.docdoc 35ef0a522e2f7f98db76cd53d203d6389d65b2c0337b598482f1ca0fcfe5953dVirustotal results 29.03%Heodo
2020-09-24BAL_PO_09242020EX.docdoc 8ffd33471d8e180b9ff498aaa84ef11bf50e846252c62e42e416fe68c1698d06Virustotal results 19.67%Heodo
2020-09-24X_TVL_090120_ZMH_092420.docdoc df802c906676713581817048e135afe20200029ac5ff1c840ba82b5bbcda75caVirustotal results 22.58%Heodo
2020-09-24X_PO_09242020EX.docdoc 7f2909dbaff2ca4d076322b968a100de8c38b257858149d44dc8976189d2571fn/aHeodo
2020-09-24VS0670249645QY.docdoc 8845dd7a737d5dc44971ca503bd120028edc33db789f8155a39c0651c11caf72n/aHeodo
2020-09-24AX753UCRKSAXA8H.docdoc 37b5d86751a2c999901df382ddadc7aa72d891a4e24ef527e02266ffab2efa41n/aHeodo
2020-09-24UJY_090120_GDD_092420.docdoc 460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974feVirustotal results 26.67%Heodo
2020-09-24AD_N91YAO508UOT9O.docdoc d038ad9d31d6764ec9e5ad2246c2f2a99e0c06ca8798bd54e73deecb05dab14dVirustotal results 30.65%Heodo
2020-09-24DOC_XAM_090120_PRL_092420.docdoc 2e3f0cba76c76de6beb1d7782576c1913d7a5ec9e471a36bac04827d26b0185dn/aHeodo
2020-09-24REP_PO_09242020EX.docdoc 994f606a00cbfa00d23303bdaf545487afedc4d6fe4d580890a702d11411885cVirustotal results 28.33%Heodo
2020-09-24DAIBPDDZX0.docdoc 447465de32a94153d18ec88201122059c81c4d5e43fad6bdace0fc4b7b788a57Virustotal results 27.42%Heodo
2020-09-24425335265314122.docdoc 3f0693ecde0d7c9983bda3bfa22fbb8243695bf8a48ae127e121813ae527334en/aHeodo
2020-09-24W_OJ8288949829TJ.docdoc 27dc3b44a37b8d1d2c9fb8be66fc68db20eddfd82efd9aec4a13681328129242Virustotal results 27.42%Heodo
2020-09-24N_KVG_090120_JGB_092420.docdoc 94b624741c1f94566cdff34893b864991875391da2ac00168f15691c48043367Virustotal results 25.00%Heodo
2020-09-24REP_PO_09242020EX.docdoc f57bae29b433bbff72dfe50e3dda325580fedc58d7c032948cf5360ce803b390Virustotal results 22.58%Heodo
2020-09-24FILE_CPCY6FS6TEKBRWOW.docdoc 1c66ec5827934e0744220674a8ae91d47bfa027376d756dd4722ecc165f09878Virustotal results 22.95%Heodo
2020-09-24DOC_U4PSGT8T2ND.docdoc eded433f531513b960d540a5a009de4bf991d6ef3a525317bc5c1ee9f10c1192n/aHeodo
2020-09-24CJE_090120_BPM_092420.docdoc 573cf8b0e537a825c17e7f74be98dc2516d0b509eb22cc7a259717e53d50ec53n/aHeodo
2020-09-24Y_33003392.docdoc e009e8425fa0d5b45b611b840745257948eb8d154a75046329e7bf699f3a60d9Virustotal results 21.31%Heodo
2020-09-24INV_XKH_090120_DOK_092420.docdoc 9002b2aadfaa8b371cdf11d233531ba292b5dd90cc161bd7e132c3d49ce79fd2Virustotal results 20.97%Heodo