URLhaus Database

You are currently viewing the URLhaus database entry for https://x4fire.com/css/mowk3f/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	620776
URL:	https://x4fire.com/css/mowk3f/
URL Status:	Offline
Host:	x4fire.com
Date added:	2020-09-29 04:41:03 UTC
Last online:	2020-10-04 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-29 04:42:06 UTC to abuse{at}axarnet[dot]es)
Takedown time:	5 days, 6 hours, 23 minutes (down since 2020-10-04 11:05:17 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-30	REP_5S8J911ZJ7FYAL.doc	doc	a3d743d11312e842641d3124985266cfd1471f8d21881fb7dfc8dfa9cbd1fe47	26.23%	Heodo
2020-09-30	PO_09302020EX.doc	doc	e8a8b9fc12cfa3ee4f3cd91504cbf5b9af3281a25798c9c23c319044b39b551f	27.87%	Heodo
2020-09-30	INV_98023522.doc	doc	74824146908abe5c7caad5b6c9c7f86a6aa087b0422fc5066abd490ae864f456	n/a	Heodo
2020-09-30	DOC_01565648.doc	doc	f8436c00fcf874848a7d3c13607746123ab1f7c3926648ecb627363ba243de66	n/a	Heodo
2020-09-30	EVY_090120_EDQ_093020.doc	doc	79b57cc855cd58d4819bb711bb59dd13e35949ada72c908e0f968d51aefc35e8	n/a	Heodo
2020-09-30	REP_PO_09302020EX.doc	doc	54f93880d0f4c65aaa29acd1dff0cb761aa8dc7388f96435e8c55ead32b30dfe	n/a	Heodo
2020-09-30	ETF_090120_HNQ_093020.doc	doc	efa9c669d5b042ca0892a07861b3f039c3d61f0fa89c57348ee5058445f2db1c	22.58%	Heodo
2020-09-30	INV_IFZ_090120_EWB_093020.doc	doc	539ecc7287a68226e1bdd0520eea775a58754f306ed17c7a8bb6c48193b7f64c	22.58%	Heodo
2020-09-30	ERNY_MJ2840139513WN.doc	doc	ea04aeb35f3ee924c978225fd95f2fa3df8a4847a761685ad79f96c82886f80d	23.33%	Heodo
2020-09-30	BAL_1956447484.doc	doc	a4ba9b07b2355a1be394ecf01c4d26aae440491439fa0db4e7905eaa82a79e81	23.33%	Heodo
2020-09-30	EE5022568157UR.doc	doc	2d09a2c2cc27e1e5e697d5c7fd6e7cbba00b82f6e118d417147a336d7c4fe92a	n/a	Heodo
2020-09-30	087097193248538180.doc	doc	110b8287dac073cfd63cca6a49c82963d72e5883bd93e56f99445993e41bc097	22.58%	Heodo
2020-09-30	AY4570676021TX.doc	doc	380569af88b834f9d208236fa12e84cab31e0caf8793dacf54e7d8bcb290e5ad	22.58%	Heodo
2020-09-30	W_98333327.doc	doc	e001efbf2686566c49c1a6428a0d6574deeae2c830622f40f5cf6fd46c6d8654	22.58%	Heodo
2020-09-30	DOC_AU7540700339MI.doc	doc	19d2f19f8fb5285fb364123fb36a69d0bb65beb57b8bbf7d47364b53b6e60317	n/a	Heodo
2020-09-30	HD4768608964II.doc	doc	cdd0c1df94d8411b9502cbba720232d682901752e9c2adca68104f2d07f1b2e1	n/a	Heodo
2020-09-30	IZS_PO_09302020EX.doc	doc	19377355e91331d5f2438275b1af46c6f266bd250c9e6a421feb6deaa86f7cad	20.97%	Heodo
2020-09-30	BAL_46536634.doc	doc	8cc454cbd44284ac4a4b398e7fb7e8ef64466cb44537458d884f54fea7d6374d	n/a	Heodo
2020-09-30	PO_09302020EX.doc	doc	786c646aec87e25c98dfbac09f886f13f05a1e6690baf9974f99f1b37b6f3713	20.97%	Heodo
2020-09-30	FILE_17102629.doc	doc	0008ec3cdaed6559d71c8368c3edff8fd35d8f85816c950e8a8cc049ee6bc812	20.97%	Heodo
2020-09-30	REP_NYH_090120_VQL_093020.doc	doc	9db3206fcf75456b25ae104157caaac6beaca60e9105c9e6e0eb08d78616b1c9	n/a	Heodo
2020-09-30	EGH_090120_YUU_093020.doc	doc	f8fb4db3104cc2c9f261f3b3b43acb4132f5759f8e485677651a52478610f5bc	20.97%	Heodo
2020-09-30	BAL_XJ1627875650SY.doc	doc	fc6f0ac3e38b970866e30342911b1f72bc2a028a33a093badc8c5694321d5808	n/a	Heodo
2020-09-30	75620980.doc	doc	8ab2e6cb8892b88bad960fc01887038298cebc93804c11f3bf92624541fd00de	21.31%	Heodo
2020-09-30	INV_97687379.doc	doc	24e3ba16d86892e3c786b97123151b7a2294602a61bafd3c546475d0597a2a37	46.77%	Heodo
2020-09-30	REP_867516839805208922834622.doc	doc	a9b4569007c2822d7d717a8ea3a4e3a496c52a3f2011519ca3c4dd5e42011465	46.67%	Heodo
2020-09-30	DOC_TK5491985704GK.doc	doc	9c8962de4c40c27a546d2347cc878f099354ae9f5cc7e799e78d864d74a6a72e	43.55%	Heodo
2020-09-30	38AUKHHT6.doc	doc	f69c957e912e4eb54ca00ba379a5808d47ebcb4667393b4b986d2d50ee35e7b6	43.55%	Heodo
2020-09-30	BAL_II5GUH42ZEO.doc	doc	3d322e72fd831b7624674c0a9ed650c75bf0cf2d05e5c2dcf7746ee4187260b3	45.16%	Heodo
2020-09-30	REP_463399203268.doc	doc	5b04551305572c828c0ac8143249ef7e94223b0fbf7d12b43f77c4e3da8bda45	41.67%	Heodo
2020-09-30	G_10499899.doc	doc	1a2856f6dfce0f239bb89c2fa41ba26f9d1761dd09caa8312e58c26aa1411369	38.71%	Heodo
2020-09-30	DOC_PO_09302020EX.doc	doc	d2effbe4f93f76b3ee990f84ec39bf4705e34ee0a3925f32097fa08db254e4ff	37.10%	Heodo
2020-09-30	99153602.doc	doc	8d0311de9248f3fc0efd38e822a2d51fb26ec893e9cef6a0f81a2c2b2ea62bd6	36.07%	Heodo
2020-09-30	PO_09302020EX.doc	doc	aabd54aa244d3a19daa025d685a63495581f02a35c44e11bdb76ea7bbf7360ba	n/a	Heodo
2020-09-30	R_ZL0269036295HB.doc	doc	020aeaa470dfa7a4e9fc3e8d88db9d7f89b1bd64df67a963467490068a6f3d6d	n/a	Heodo
2020-09-30	223281410451.doc	doc	b3e10600287dfaee56f53325acb38c44c75d92fdda24bce58c9d231eebc0bd06	n/a	Heodo
2020-09-30	INV_PO_09302020EX.doc	doc	75f032ed1b4c5d9738c4ebee1d878f1fe5307cba5c43dc44ce2443a640e7fb2f	n/a	Heodo
2020-09-30	DOC_BZ8294535311KO.doc	doc	c7e94b09a7bf83d363a7949d7aef5bba5516bd5b0e0c149bbd1dc341b9cd5180	31.15%	Heodo
2020-09-29	BAL_QK4020531255FG.doc	doc	5bc9314961b874f09854775cf9f6bce09cc9c8106200074edb961cd544efb675	30.65%	Heodo
2020-09-29	INV_PO_09302020EX.doc	doc	ad21f91ac048eeb669e0a9cc8199225d755cf89a9f5d79d7fb39ef2659f04a9b	n/a	Heodo
2020-09-29	BAL_FVV_090120_VJO_093020.doc	doc	f3156f2dd9bbd4c0f1164e92165433c3f689d7777297b5149c47299dfbb1d840	n/a	Heodo
2020-09-29	JEPU_HX7196323516TJ.doc	doc	a863d09af176344fa94c7820a54398bd505f2ee93f7f66a6f05d3e60b71479ec	27.42%	Heodo
2020-09-29	71637934.doc	doc	91d4d101c3e8a665106bb48847dbee3791e2a9a04c0adb2f363ae7767e463337	n/a	Heodo
2020-09-29	INV_XTL_090120_KFV_093020.doc	doc	76d3bae4ebe683a5d3ff0d90971119c287a3acbab073e28b979ad7eaa60e37bf	27.87%	Heodo
2020-09-29	DOC_J39JA8AVIDR1TZGV.doc	doc	0581f0969b158a86c635f6c5a3931c57571aaaae1eb93475efeb0fcb6a99d1f9	n/a	Heodo
2020-09-29	REP_26369667783084102678.doc	doc	11100f29550f9f249ed0327bea61368816cd31217a92c786e124fe1a4ca8e50c	32.26%	Heodo
2020-09-29	INV_PO_09302020EX.doc	doc	dc1dc0d9f3e322497b2ddb2d945203e60988d77b574c286dec470e7cf3c90c8c	32.79%	Heodo
2020-09-29	REP_75957539258891.doc	doc	a095afd7c5b07a957a1d143f7546b88f867b12a2d7ecd78c22c68f7db4f75e4a	n/a	Heodo
2020-09-29	FILE_PO_09292020EX.doc	doc	7cdee39270f137f336d212ea12891255c2c592f1ceb9953b87c8957a15098c43	30.65%	Heodo
2020-09-29	INV_PO_09292020EX.doc	doc	2e997b7baaa8519fff2a756670247b75a5b9fd00addafb830d7ad6ebc7ad18d1	n/a	Heodo
2020-09-29	INV_PO_09292020EX.doc	doc	4c12091055b16db3d329d221e16a7de91f9dbc93593c907716507d7e3eeb8a53	n/a	Heodo
2020-09-29	AF_NHB_090120_OHY_092920.doc	doc	a2ba88f7671dcd2ff21e4527d40086f45df3c3bf24c6041e9aaf60af189f22fc	n/a	Heodo
2020-09-29	INV_5MSDBAAO.doc	doc	bbc7fbcbe9a84c0271f2831e76f7f01c0ceed58176f6f387bf129dd76c6edcd3	n/a	Heodo
2020-09-29	F_8064123705.doc	doc	b0c275db5c6e2b2561dad11fbdfa5c13e15f1d68d6a5d1018bde46ab9f80cb8d	n/a	Heodo
2020-09-29	PO_09292020EX.doc	doc	5df6cbfa0bdc098fc0cd65902c6d6da3b7e62512eb0b6cd8f2f4ba4227a32c5d	n/a	Heodo
2020-09-29	24480889.doc	doc	f24ccbb78792f8c22271d8ca930b6d77b3c843db571b12f11007e1f043ebb8cd	30.65%	Heodo
2020-09-29	FILE_QL2413116886OD.doc	doc	1a5c6149c4447267a0c56f3333aa587c52c6e3b0aff4f5a2df9b4d8b33ea1af2	n/a	Heodo
2020-09-29	BAL_68943513.doc	doc	a1ff4c3cc94952016f96e7696b9d0eff572e92076bc8f88bab00ff2dc752a676	30.65%	Heodo
2020-09-29	DOC_YHI_090120_LVU_092920.doc	doc	d3461e80df2f5fd3509e98212a3fa95e931e1311e382e800fdf0469d256a3e57	n/a	Heodo
2020-09-29	INV_MS9NLBF1PS.doc	doc	844dc7bc8eab502d43f5eb0a7501fc0b97ed3192fe06e4e2f33d69dd28fb63f5	33.87%	Heodo
2020-09-29	INV_RPU_090120_BJK_092920.doc	doc	21683182de4fec04da4b2d708665e90ce6eb04cb988221063c51baf436784a0a	n/a	Heodo
2020-09-29	66168207.doc	doc	3bf884e5ad0e7ae1e5bda8efd025ebe7502e8446e0675345a83138de1f052c2b	35.00%	Heodo
2020-09-29	U_38836195.doc	doc	15513b191f34ecc5434e13d6ff1294840e3ca161628edc0caa89e89f6988f357	n/a	Heodo
2020-09-29	PO_09292020EX.doc	doc	1999898a5441491078f5f533f24d54dc15a13e67d32ebe74c63c6be7aeaf2508	n/a	Heodo
2020-09-29	INV_G6GCMIRQ.doc	doc	a379c99d0452638d4c8f009ee52263def6724224858745b1828a7141006c8647	n/a	Heodo
2020-09-29	FILE_THH_090120_KBF_092920.doc	doc	67453aa858ac24a5403b4bd5cc27a734bc73baed1a8d891fcbcf0dafaf280d53	n/a	Heodo
2020-09-29	NAY_090120_LGK_092920.doc	doc	0a3926601b222023649d2bd84f51d092fb8130ef54371b3da9c9f7ac2fd4acce	24.59%	Heodo
2020-09-29	INV_12227670.doc	doc	745c43f7578cbd7dc997f5fcdb6f547c74055514e0120e14dbcdc4772babb5ac	n/a	Heodo
2020-09-29	O_537785678162640520888.doc	doc	930f463961fe5e9a4f12294d8b8971666d98014f3dd408c1ffa285c37276cd8d	n/a	Heodo
2020-09-29	INV_3JAS9JGCZ.doc	doc	172f07878ad71103b1c9a8be3f3ca39946fafdd803860893408283501eebbea3	24.19%	Heodo
2020-09-29	20431690.doc	doc	67f4162dc10c47db346af7d6dec0455ff634c84a41fc9b29f42a2af6cddaa849	n/a	Heodo
2020-09-29	FILE_VT2VHGGOAG.doc	doc	a23ae220744a77b4f8258813717519b846ce178047b5a0f8078bd1be4c80c392	25.00%	Heodo
2020-09-29	ZVBS_PKE_090120_ZFM_092920.doc	doc	21c42b3464c194f0cfb5308bffc5fa0290c1374a0f2da944adaa0c84330119f8	n/a	Heodo
2020-09-29	L_44388194.doc	doc	3cb011a2c44630292f7bb448f1b55f5a6a9e8c7b7514c335de2bca6bab587e22	n/a	Heodo
2020-09-29	REP_68970024.doc	doc	36bfa7a98a671adc28799b87a656330d4ea7cbd8c52fbd6d75d77049acbcf95b	n/a	Heodo
2020-09-29	PO_09292020EX.doc	doc	c3954486dd6baf409dc2dc6dfe8f865fc58f1d4ad1c9daac5ca0fb51147d6ef7	n/a	Heodo
2020-09-29	TOV_090120_QMN_092920.doc	doc	9d68d6c0dbd8d2b75891facc554399f92ee472d009e367d4d94f7408303ba258	22.95%	Heodo
2020-09-29	H1UE55CB1BE5R.doc	doc	e14d5e952754ea4e70d6b4e7fa8492b977440f96102fd4b5962df2b34c5ec4a6	n/a	Heodo
2020-09-29	48703721.doc	doc	9837d0e98959e8df159836eb545f5246cb56cfc6834a2c5e7165a3d6ab093ade	24.59%	Heodo
2020-09-29	REP_08418362346403351434947.doc	doc	e32364f053e1ab52c7871c0ee65de7c7b8231a1ab67f3c3ef459af3c1bcdad2e	n/a	Heodo
2020-09-29	08183083.doc	doc	68e714389908d4d898ffd0f0fd49c69ba2f2eacbd946353d493d6f9c878313f3	n/a	Heodo
2020-09-29	REP_SOD_090120_QUZ_092920.doc	doc	55df7a80e87bf471bd9e82d03e9cdfaf29005dfdbc4e7759ab4425d3ffd09725	24.19%	Heodo
2020-09-29	B_PO_09292020EX.doc	doc	f5013fbc3f4e685f68f19711624f55a63fc7ff5dfa0005f8c16803761c7d2788	n/a	Heodo
2020-09-29	DOC_667519670481.doc	doc	c44638748bc8cb1ffa71bdf33c4168a31fe040d6d5dec68f28650b86a4b23c53	n/a	Heodo
2020-09-29	REP_59846966.doc	doc	e2d5c58fe96c8c07e41d295cac04880d46d517456bbc99dee797b7d2d2c1541a	n/a	Heodo
2020-09-29	INV_OF2914446028FS.doc	doc	4912920161a89e77767bb63e569fe20ad422dc4efb1d8f794fba70345f16be56	n/a	Heodo
2020-09-29	BAL_78468156.doc	doc	3d8a783425d8282e9559a75a4f06d8c18791c61dfc931c9f54e50a92b5a5f285	n/a	Heodo
2020-09-29	OVII_GP4167040097CD.doc	doc	93e49c537d860ec3dbcb23e79f1eb2c52610596ff0dc6e7fedd5e41ade84841f	n/a	Heodo
2020-09-29	PN_O4X600GO4PKD.doc	doc	1b42960531845b815714f61fff4022939441d337491d719c2f2c3c08ba21cfdf	n/a	Heodo
2020-09-29	REP_48928127.doc	doc	63f795ea1096d9e86352f2bbb2ba0c971a7b61a187e273268a48876faff51592	45.90%	Heodo
2020-09-29	PO_09292020EX.doc	doc	28cdf515dc964aa7304e7310985a26e21fb5092f77a3f116e70940f6e96a4c54	46.67%	Heodo
2020-09-29	FILE_1093401056.doc	doc	b2e71daf0ebe60a19e0b62852d7198b9e94b1d5cc89227fed97ae2054e7e3d71	45.16%	Heodo
2020-09-29	INV_PO_09292020EX.doc	doc	f4ad95a20290c41dbfd7f5f6f7c7ba9b8112cf7de810f89d92476e31e6c42e9f	45.90%	Heodo
2020-09-29	REP_YG5561128063HN.doc	doc	acfc7c7ed7491c577af0b27a6ad5a3b553df2d12ea4ee0cd53e5781b6c0247b0	n/a	Heodo
2020-09-29	31961751.doc	doc	bf35b638bcaab59d7bb620b51eb5fb40f92ac82a99c15d3c0519c2bc2578208e	45.16%	Heodo
2020-09-29	0667922315117001041924.doc	doc	89f5b88958abac65d6204a2ac80a96cc1d696d85feec26f1dab1119c707dc0a2	n/a	Heodo
2020-09-29	FILE_3GMNL4UDXX6MF.doc	doc	95fa1bcfffab52ef3369485e107935640a7121689c367c4bac71e80fa76d5387	45.00%	Heodo
2020-09-29	DOC_MO8701737237TB.doc	doc	1b4294152cd807e23b698599e9be39ec531fc28ab159272ea894cc5633ab2cbf	45.16%	Heodo