URLhaus Database

You are currently viewing the URLhaus database entry for http://voguefitz.com/wp-content/bluaufvs090okoytbo71sqfi7b4co/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	697743
URL:	http://voguefitz.com/wp-content/bluaufvs090okoytbo71sqfi7b4co/
URL Status:	Offline
Host:	voguefitz.com
Date added:	2020-10-15 11:34:03 UTC
Last online:	2020-10-17 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-15 11:46:07 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	2 days, 9 hours, 9 minutes (down since 2020-10-17 20:56:05 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-17	INV_466615267491994.doc	doc	9fddabb44e0d01bdc8e0886790e1e34059ac1aedbe3faf4cdfa66bf9dec923cb	53.33%	Heodo
2020-10-16	DOC_VNC_100120_VPO_101620.doc	doc	ba25bd51dddd6e6b5f359d2e79ac6cafab5ec98ac623f412764253be9e449833	50.00%	Heodo
2020-10-16	BAL_PO_10162020EX.doc	doc	983555bf6e5340b9a14130644379b3ed4d7c6ccaf937b3e800ae1c1b1164dc25	50.00%	Heodo
2020-10-16	Y_760597723760576739.doc	doc	b8031f04cccc6be26a29ea7f8ce5296fcad48e7a2aa335b460b4c62015004cbe	49.18%	Heodo
2020-10-16	REP_PO_10162020EX.doc	doc	08c39bc35902925027d9fbcb94add1228e58eb5c4b52c63564ff142b0e186970	45.16%	Heodo
2020-10-16	PO_10162020EX.doc	doc	9c709e26cab4a752ef535629ca0789fa9454436ac24b8d5577c2cb420c60b20b	41.94%	Heodo
2020-10-16	XDVS_646647318.doc	doc	66ad2d1939fed89f992a25cbdd0aa594a8c4e2065358f7142dc648ea2f5d8317	n/a	Heodo
2020-10-16	INV_WK9833160893HS.doc	doc	edb4f70584295164d9d97ecd140501fed80903b2d3149447f60b6dff1a991a82	n/a	Heodo
2020-10-16	BAL_VAW_100120_BFQ_101620.doc	doc	de1e044b0692b4790189c84a6a3bff006ea424fc6ab7a94f3063c76dcf38b463	37.10%	Heodo
2020-10-16	Y_773551293314965402.doc	doc	da2a69c132b4eabb8906babde63fe2c5d82fb6fb40d94a025e2794eb845dae32	33.87%	Heodo
2020-10-16	XKU_100120_MNK_101620.doc	doc	98c32e5634afeb12572af35d8f3ebfa159eac74c5eada8c803894e12325b1d4b	32.26%	Heodo
2020-10-16	K_PO_10162020EX.doc	doc	064f7cb041df76c6246a2c7aa12ccb6e585d6bc9f0eb10f6375794805c8ce2db	30.65%	Heodo
2020-10-16	I_UH0307263721OU.doc	doc	c9146e559eeaafb38494a657eb583b6833b2c35dd60eafe2140ee8bc22150c96	31.03%	Heodo
2020-10-16	DOC_86740146.doc	doc	8c5946d83496491e60468ec85aa90964c00945bcbd8e72e8b05b9f230d85f7f4	50.00%	Heodo
2020-10-16	RG4614360813PU.doc	doc	72b44b8e255ace9d74a54f19671fdcfa1b296bb221e038ab578044b55b309afc	51.61%	Heodo
2020-10-16	BAL_PO_10162020EX.doc	doc	0132d7543ceb26d2709cd377cfaa3132827b865267e7b98d31bcf3f38e3b1c3c	53.23%	Heodo
2020-10-16	HII_IVCDPKXUI5IZ.doc	doc	874551f55294cc8838b596c8ffd8d4600ade4c1e932ea618012210a3ac7137c2	48.39%	Heodo
2020-10-16	FILE_SCU_100120_TDF_101620.doc	doc	598b4cf3fc5b97854ae8b54625407b4e6b7f05d8ad96b446baaf0855b754074c	46.77%	Heodo
2020-10-16	58022389.doc	doc	29d8f14d9aad7f7303bfffcff57109e4a24983050638c356af826bf4febc04a2	52.46%	Heodo
2020-10-16	DOC_RPE_100120_SJT_101620.doc	doc	b9bb517022d0b2c98532d6239bd55d7a33911467a4ca1d6c8d69736530a6157a	46.77%	Heodo
2020-10-16	748106984464166.doc	doc	52cc4044252ebba622acceb8374c67dac01416c08fc26a5a1e366be2d6a475ae	46.77%	Heodo
2020-10-16	VCAX_U9417PHT.doc	doc	dc7ade8fcae56fa5c268c86c9602ade9af26324733a73c86e60274a9f5b8e864	48.39%	Heodo
2020-10-15	LXT_100120_ODF_101620.doc	doc	3a655449935db1d07871d79739c4fe01d8792844b72e4bc0c3f2c936b6d5ee1f	51.67%	Heodo
2020-10-15	BAL_GLW798AOVYCHRRBJ.doc	doc	d9dee0ffa4b0f9f8ae5c312de758420aef5fa12d4489a8c5f3e5ee627ea966da	46.77%	Heodo
2020-10-15	INV_46861553614547.doc	doc	db94d5c4b06addbc9cf25f6314120acc65844c5992881c55969c97cec957012d	46.77%	Heodo
2020-10-15	MRY_100120_VKJ_101520.doc	doc	3a3dd7687c72a79fe44ec05be24ef77e62e6b1cdcf3f202251d6c12e94475dcd	46.77%	Heodo
2020-10-15	BAL_CPZ_100120_OLE_101520.doc	doc	5781607bc4d3aa2d65dc523aab5dfea022ffae444327c4463969d7e461822367	46.15%	Heodo
2020-10-15	REP_JG2402187646PP.doc	doc	6f0ceb3c0b3cd6f963d2f3fd18d56b6b2efc81264aae48892a3da6f028e9de66	41.94%	Heodo
2020-10-15	BAL_74463508.doc	doc	fa437d31c734102e84da67e8db9d8af76a88f24bc9fd85ac6e53f60ac3d98726	41.94%	Heodo
2020-10-15	M_PO_10152020EX.doc	doc	680221d36ed6fb5e4e98995e827e0b4e4e54b17783b70834fe88879a5b54b400	41.94%	Heodo
2020-10-15	BAL_70917916.doc	doc	d04f49d5a7da98df4a83199f7e7774d37e26204185184aa8a05abaab485874aa	39.34%	Heodo
2020-10-15	KWC_100120_UUL_101520.doc	doc	c36a82cf21da13695879467eaaffcf4d8f3278e11c03ac535fea556e715abb7f	n/a	Heodo
2020-10-15	DOC_30554427.doc	doc	302feabf564340c14d1f92d13de41df335b09e8258375d7b778f67a69f57459e	n/a	Heodo