URLhaus Database

You are currently viewing the URLhaus database entry for http://projects.bigprint.pictures/cgi-bin/public/pzx10o27/0fprs9c/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	693900
URL:	http://projects.bigprint.pictures/cgi-bin/public/pzx10o27/0fprs9c/
URL Status:	Offline
Host:	projects.bigprint.pictures
Date added:	2020-10-14 18:54:06 UTC
Last online:	2020-10-27 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	unixronin
Abuse complaint sent (?):	Yes (2020-10-14 18:56:02 UTC to support{at}hostdepartment[dot]com)
Takedown time:	12 days, 17 hours, 30 minutes (down since 2020-10-27 12:26:34 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-15	OJ9802381595NJ.doc	doc	a251d76425f1841e17b9efa9ab58b8a0f26c25f997500348b2c5a7cac89daa78	n/a	Heodo
2020-10-15	BAL_276843202234549.doc	doc	5c7bf87f25048aa29b2dc1fa1e55bdc9f7e986a118e7b3de17dde9547796f9cb	32.79%	Heodo
2020-10-15	FILE_1777353606.doc	doc	d000ec56fd7a5ad82add1c1e5a04c56ccad42829b2d99b18e228d9c920def501	32.79%	Heodo
2020-10-15	DOC_IHZ_100120_TFK_101520.doc	doc	df9f9bfb4fc32069c7c16951cbbccf0e42af8b59304d68f1945e21aeabdb5a51	n/a	Heodo
2020-10-15	R_27127300924.doc	doc	1cc454d75dc586cd5025eab16ed2a8097e3d412f9efb96ddd568041631aa0ebc	45.00%	Heodo
2020-10-15	X_72982729436973165554.doc	doc	1f072b17e37be55625aff57161b8ac013692ac5b2e621133d1fc6ed1ad3b20b8	n/a	Heodo
2020-10-15	INV_PO_10152020EX.doc	doc	48caa70a3b31ff976df78f2b4525b27307a53e88d1ce4f1846dd5801dd2c9b76	33.87%	Heodo
2020-10-15	FILE_DR2966531858JW.doc	doc	40cd7ad9c0ebdf03adc1f14bb7d6554f74a043088f9aab4a39e2bbf0daa01932	37.10%	Heodo
2020-10-15	P_PKJDHBGXL.doc	doc	09b2a0a619eef827aca5df812a125f278c915c56afa75e6bcbd55e47265034bb	n/a	Heodo
2020-10-15	XGS_100120_LVG_101520.doc	doc	d2d28ce9e628712a8478ea1439e111036497efe3d10a12bba622baf2952ded06	35.48%	Heodo
2020-10-15	AM9967883533JG.doc	doc	5fefd7066e7cb6344aa6f4ceb150de371e98cc1de2af7bfa2fa46cb4949ff0ae	31.15%	Heodo
2020-10-15	BR6027183870NG.doc	doc	b716ead26e4edc1ca7925f26ba16cdbe932e9cff3fbb636630f3d7bad4ad487d	32.26%	Heodo
2020-10-15	DOC_8FDK4CH271JT6.doc	doc	9c3dffbaa146c61c106f2b76127fe024ec9193641c046de19b1d144335206b7e	35.48%	Heodo
2020-10-15	INV_HV7301012810RG.doc	doc	bcd20ead58694ee7adb822b6a4c40c62433fc6ca968f2a728a7e10fd21d0d1b1	29.03%	Heodo
2020-10-15	S_MQA_100120_SLH_101520.doc	doc	25aa35b354712a75a1fa86936a9f4195ea8e3c08a6e6f2c3b9820cb4dd28209d	37.10%	Heodo
2020-10-15	29367610.doc	doc	a81218fa6f93ea8937a48dd0a2f9e44226d1cc1d0c14f973d4c4b2d8199aaa8d	31.15%	Heodo
2020-10-15	INV_PO_10152020EX.doc	doc	9954017c3108e9f6fd524436830144dcc04c49f339486dba48e2d3dd3dfbd0a7	30.65%	Heodo
2020-10-15	FILE_84980038.doc	doc	97c5d59d160a9c7c2cd3b9038cbd57f37010bfd8b6038b0a7423ab5fb471b28a	n/a	Heodo
2020-10-15	BAL_PO_10152020EX.doc	doc	8f3c3e1754f55a7a12976a177f7c9f34b9bbcc33b440d59073feed741fce870e	33.87%	Heodo
2020-10-15	BAL_YMS3JF3B0F.doc	doc	275d247b675319a0e083b29b0e1c88b3bae28687e80b83a5b6db109ae72d954d	31.15%	Heodo
2020-10-15	BAL_2ZEKS01U0Z56.doc	doc	f2749bfcb47ccd5ca2d9a1a0707ed06064ceb9ad0549c3bbff8475d01668d9b5	29.51%	Heodo
2020-10-15	BAL_AS4989799667GD.doc	doc	5b4c47d73226347391f06e552ff9caa035e74cdcd652ac424c4364ab6fcca280	35.48%	Heodo
2020-10-14	FILE_PO_10152020EX.doc	doc	efcdcddeb3af5c4adfe778f16974560901ff95704d36d10c3c7969b43e1e5e10	30.65%	Heodo
2020-10-14	B_5349674767.doc	doc	9c89c629514bf2387f6c00a5c10903227b923f18741a52982877996be1ea5811	31.15%	Heodo
2020-10-14	RV4714895793AZ.doc	doc	90e36d2990e1c86b71a77c96196d4fbe57e9e5d274d37bd085edf57d4058a55b	27.87%	Heodo
2020-10-14	FILE_0155153725268476731.doc	doc	920d7ec805f0244e56b11e65c785919fc4e9222bc5976ab7f88ebb7212c2aea0	n/a	Heodo
2020-10-14	DOC_336283104197415.doc	doc	9670351cda3385021054e49a74fab0df1f24d4e7d1344baddab81bfc1a4ae963	n/a	Heodo
2020-10-14	BAL_3666937621315783154174526.doc	doc	046d2903486b485aed8851cbfc6b22fd2629535434227112ef1366e0c783d369	30.00%	Heodo
2020-10-14	INV_JFH_100120_RLL_101520.doc	doc	4a7f05c5c06cb3f75d70817224ccfcf9b1e70312484b1c46286b672e218129dd	28.33%	Heodo
2020-10-14	B_PO_10152020EX.doc	doc	51c5985ef24ede55a5446682821fdd52ed3f7c5a78f003cbca23e2412bd4971a	33.87%	Heodo
2020-10-14	DOC_PO_10152020EX.doc	doc	8b335f22a41c3fafca9c21e3d8c381b4678dc3c812a98f60fdfebf6762fb8fc3	n/a	Heodo
2020-10-14	BAL_CI0679739158NI.doc	doc	ddf5dc01672e436635664913967a082edb4a0efe0bb3c4c29ffe7e0016cfd353	27.87%	Heodo
2020-10-14	W_PO_10142020EX.doc	doc	5c7b156fd6b9354bd06a52a236aa1a8105d48828e751f5cba72d01a0490af88e	27.42%	Heodo
2020-10-14	IL_HUE_100120_OCN_101420.doc	doc	e7f5e90df9b0934c38d4d8953f7f209d8c4cf6baa312d7da7d9ff5280f3ce14a	27.87%	Heodo
2020-10-14	865268925564689606.doc	doc	dff04a292f708be6dc651f4164c2f711a836eeab00529793693a3f25518a0341	n/a	Heodo
2020-10-14	PO_10142020EX.doc	doc	f8682dff194df2aeec3387ee4554f0374cac8d776c24a84061dd127d67a86aef	27.42%	Heodo
2020-10-14	W_PO_10142020EX.doc	doc	11b6433cc50996eaa60f48be87ac8627f7ef22e82111415e743daee3d32b613a	n/a	Heodo