URLhaus Database

You are currently viewing the URLhaus database entry for http://epspipeband.ca/wp-includes/esp/55o/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	623601
URL:	http://epspipeband.ca/wp-includes/esp/55o/
URL Status:	Offline
Host:	epspipeband.ca
Date added:	2020-09-29 15:09:04 UTC
Last online:	2020-10-01 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-29 15:10:35 UTC to abuse{at}ovh[dot]net)
Takedown time:	1 day, 13 hours, 30 minutes (down since 2020-10-01 04:40:58 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-30	OYI_434613799940177.doc	doc	8292af351e1a3422b40ca14a730c4a8c4e65bf1fe1daaa33852934cac3a2d43c	45.16%	Heodo
2020-09-30	S_10018674.doc	doc	896b1086164f16900fa21fd364f85761da882abeb87573d0eac49e7dfaf2524b	n/a	Heodo
2020-09-30	BAL_43527431.doc	doc	1a2856f6dfce0f239bb89c2fa41ba26f9d1761dd09caa8312e58c26aa1411369	38.71%	Heodo
2020-09-30	UEA_090120_HXG_093020.doc	doc	d2effbe4f93f76b3ee990f84ec39bf4705e34ee0a3925f32097fa08db254e4ff	37.10%	Heodo
2020-09-30	F_PO_09302020EX.doc	doc	8c21463a0b127e2db497f399810180572cf5e4027f3942919aeeccabf1d3753b	n/a	Heodo
2020-09-30	FILE_47531279.doc	doc	31096733d8d5f5ecff8a6a1f0bbf9b3af3fb5f1e8f0b509b342a38cdb0a01b43	35.48%	Heodo
2020-09-30	JEV_PO_09302020EX.doc	doc	aabd54aa244d3a19daa025d685a63495581f02a35c44e11bdb76ea7bbf7360ba	32.26%	Heodo
2020-09-30	DOC_GC2763515070BG.doc	doc	020aeaa470dfa7a4e9fc3e8d88db9d7f89b1bd64df67a963467490068a6f3d6d	32.79%	Heodo
2020-09-30	YVWH1ZO3IW4.doc	doc	c23dbe57bf9ad222746ad89939427a3fec7c2b13f26a03922e9450f6d07ea0cd	31.15%	Heodo
2020-09-30	2133535278225911.doc	doc	48e23cb77f6629ddf1c1b70ff1af00789fe9ed39014db2e97b4be24c2e13a168	30.65%	Heodo
2020-09-30	VKD_090120_DPE_093020.doc	doc	4a9f3550003b6a5732c04dafb0112c4a68a0e1b9b00f0244bbf65efc7561823e	n/a	Heodo
2020-09-30	081355114402.doc	doc	587adcb5768ec9aa8b3be79e9ea740bc5052b9d0f09d4b2854fac3ff667edd4c	32.26%	Heodo
2020-09-29	INV_44991080872454.doc	doc	b11de73e98459e676a482af2c4e52dbbaf7d6cc9fe43b57ab758f3ffed754223	n/a	Heodo
2020-09-29	INV_UJW_090120_HLN_093020.doc	doc	defbca721d5850239ce954155a629ed1728ce578781b3e387d8c6305144f0838	31.67%	Heodo
2020-09-29	INV_DPK_090120_DXH_093020.doc	doc	f3156f2dd9bbd4c0f1164e92165433c3f689d7777297b5149c47299dfbb1d840	27.42%	Heodo
2020-09-29	INV_275587025976.doc	doc	91d4d101c3e8a665106bb48847dbee3791e2a9a04c0adb2f363ae7767e463337	29.03%	Heodo
2020-09-29	REP_PO_09302020EX.doc	doc	a7bac9b6662da2eb4c3fa6f12c10d790ab6b8ef1735241fcd2a4d35a152a8965	27.42%	Heodo
2020-09-29	C_QXV_090120_QDL_093020.doc	doc	ec406f315de493ed38f3fc8e7bdd65664965b74a7215c69123b3e1c08ec28fc8	n/a	Heodo
2020-09-29	V_PO_09302020EX.doc	doc	e5f9589d75c37d8f0e19865bd55869dcdaad810a52dcfbfc824bbd87e485f4b4	n/a	Heodo
2020-09-29	REP_II0991072650KM.doc	doc	dc1dc0d9f3e322497b2ddb2d945203e60988d77b574c286dec470e7cf3c90c8c	32.79%	Heodo
2020-09-29	XQUO_VJ7734987055RY.doc	doc	70964b49112dd7c4c7cd09edd46cb06f49b2a874d906b2757fb00942e733d2fd	32.26%	Heodo
2020-09-29	REP_PO_09292020EX.doc	doc	cb9fa076c152b43bf6144934c0db90d82803057013a15d526acbec0b6144e979	30.65%	Heodo
2020-09-29	RU1036727245QS.doc	doc	ec4b522711c9c62c60b3f21fccf23311177f5c1181cd87082b613116f0b793dd	32.26%	Heodo
2020-09-29	Q_PO_09292020EX.doc	doc	edda9cda5227aaf1c5490691422022a91aac808a0c2b6707291068ac611dabaa	32.26%	Heodo
2020-09-29	BAL_FL8813642330PK.doc	doc	3aaf9d87f200afabb589944540ab256fe76be08830881af24d5c40dd48cef8f7	32.79%	Heodo
2020-09-29	BAL_21250440.doc	doc	9243618e3533ddf75d1106555b3aad908b5a34d8ae7a1065a683bf73e6b21a4d	31.15%	Heodo
2020-09-29	BAL_BX4450402793KE.doc	doc	d68b772804de699fd2f1abb0735015fbe96bb1e7d89c9a1358ba210724b39b52	30.65%	Heodo
2020-09-29	DOC_PH5740420677YG.doc	doc	d9bba8eff420c97eaf7e8f26ce92baf8646ddf33062d5d704439c490b454df1b	n/a	Heodo
2020-09-29	YB1EQ1CF8.doc	doc	5df6cbfa0bdc098fc0cd65902c6d6da3b7e62512eb0b6cd8f2f4ba4227a32c5d	30.65%	Heodo
2020-09-29	GCDO_5043509255783831246163.doc	doc	1a5c6149c4447267a0c56f3333aa587c52c6e3b0aff4f5a2df9b4d8b33ea1af2	n/a	Heodo
2020-09-29	INV_TSJ_090120_OQR_092920.doc	doc	a1ff4c3cc94952016f96e7696b9d0eff572e92076bc8f88bab00ff2dc752a676	n/a	Heodo
2020-09-29	DOC_30228696.doc	doc	f3bfbdc45f33d12c9a3b74c9524c63fd1a3358ebbfd8ee7a9fb3dbbc14d339aa	n/a	Heodo
2020-09-29	PH_712751795715973450757121.doc	doc	844dc7bc8eab502d43f5eb0a7501fc0b97ed3192fe06e4e2f33d69dd28fb63f5	n/a	Heodo
2020-09-29	FILE_KNB_090120_ITS_092920.doc	doc	44227b77d84cd888cb5d44f59159a5bdc0c7b3021042e2d2814718e870c2b237	n/a	Heodo
2020-09-29	LF0007235604ZS.doc	doc	8735f3fba355d62e151499b2d1420f146f803f54119070ff76d6e23e7e35b412	n/a	Heodo
2020-09-29	BAL_99OZV1ZHPIR6J.doc	doc	3bf884e5ad0e7ae1e5bda8efd025ebe7502e8446e0675345a83138de1f052c2b	n/a	Heodo
2020-09-29	W_45936099.doc	doc	cc633359c9ead5109a405c7198a5d2459585c688f6e42c72ed529e48012ecfc1	33.87%	Heodo
2020-09-29	BAL_01784136.doc	doc	f973136adc63c4e41033c24a450790d40f8fa1a4e235c23d9c3a61e42b439be7	n/a	Heodo