URLhaus Database

You are currently viewing the URLhaus database entry for http://gk725.com/bulletmaking/OCT/etra5e/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	697816
URL:	http://gk725.com/bulletmaking/OCT/etra5e/
URL Status:	Offline
Host:	gk725.com
Date added:	2020-10-15 12:25:14 UTC
Last online:	2020-11-01 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-15 12:26:07 UTC to xieyong{at}sudu[dot]cn)
Takedown time:	16 days, 23 hours, 11 minutes (down since 2020-11-01 11:37:14 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-17	MAGM_NQ5188084459VN.doc	doc	af4011781c0a2add45a6f72b8d52e5bd7d7381ff28c93e478dede0ff100ff237	50.82%	Heodo
2020-10-17	FILE_WRK_100120_RJM_101720.doc	doc	72bc6543f22de398e1374caed638e9a1d24ec0b37a5fa9b5ac10ade7559ab839	50.00%	Heodo
2020-10-17	REP_3GOAFNK82UVDMC.doc	doc	99acccb026919eac0d3249c8a9207a71d032fbe59c7540c12aee398ae86e6780	50.00%	Heodo
2020-10-17	FILE_PO_10172020EX.doc	doc	1f9fcb8ad3585c6cbf7250308fc58ebd7fd913baf350cbd3d7fd8934c9e33e43	50.00%	Heodo
2020-10-16	JYI_100120_MQC_101720.doc	doc	c25321d27755dd74dfcb51c16c96a607d16b09b59b1cbe7f025dc89763d9d630	50.00%	Heodo
2020-10-16	DOC_PO_10172020EX.doc	doc	70c3e11a1960c379e6be0215b70999623bb37cad12e932cf4d222f70f078c6d2	50.00%	Heodo
2020-10-16	75644268.doc	doc	34470931a684a070f70a0ed741a36c388fb0c082426aebf15aeedbc28a4d778b	53.33%	Heodo
2020-10-16	INV_PO_10172020EX.doc	doc	39dced6aa4d3785efffcddc9b87bb1744c386d811cf509ac1baef383eb0c38ce	50.82%	Heodo
2020-10-16	PO_10172020EX.doc	doc	dae05fe983f37d53c614de68c40f3da714bccb7dd377adecaf6a7592c31cdc4b	51.61%	Heodo
2020-10-16	DOC_FVW_100120_XSS_101720.doc	doc	f8b980774cc06cbfa822245a47e48d9bd3280bf6cf2bd96628d02e54c84baf3a	51.61%	Heodo
2020-10-16	REP_OEM_100120_OVW_101720.doc	doc	f9e446821e7544fb3343aa3a069112853a802cfa173c8ff3650af2faf9b22cae	53.33%	Heodo
2020-10-16	A6Q6OLCWNUNK.doc	doc	4c9d27731506fe5559fc9219325d333f4f23342a95d4deb70fb7a96f01c47448	52.46%	Heodo
2020-10-16	65171100.doc	doc	65e2d908e6ada4277630aa4113bdde311bd7e49c0e6e656f3102bbb4f61924e3	47.54%	Heodo
2020-10-16	93623179.doc	doc	01b41659d4b3ca5ad9f986d2029f5aa621310edb658267e5f478bd784df82874	45.16%	Heodo
2020-10-16	MVGLVJV.doc	doc	ebb3b2f3e028448f7177bbd45d2de8b72115e600efa71bc4f649ef66cb30e2be	48.39%	Heodo
2020-10-16	BAL_342879675123518400.doc	doc	c1fd24a9deadc257d29b97063f9923762034a656723d87a0196f23b1cf899e53	48.39%	Heodo
2020-10-16	INV_RJ9729773270FC.doc	doc	b790075cf1b5ae9592d7b61d5513b6b4ae15e0df4e08226b9152f878e0ef49b3	45.90%	Heodo
2020-10-16	M_IU2662722111TK.doc	doc	a9aceace56c828f6185a5d3c739ae2a2e43d825c4b884faf02f5acf460a6be5f	41.94%	Heodo
2020-10-16	NI6325635518DA.doc	doc	f7843f9dea6ba5411f94a3fb69fd520310ae4ed660632a9adbdb40a7aa65a85d	n/a	Heodo
2020-10-16	INV_ZLYK6UTZKVCP.doc	doc	e07a28bf930b88ae86abcb35ec1ebfafde47d78f4eb537440b0b37432afdbb30	47.54%	Heodo
2020-10-16	X_YF9ZZECS.doc	doc	93e36cf759135535e4fe279fe87067e379a38aa62e41daaa7cde30368bcfab00	n/a	Heodo
2020-10-16	63J48CGU.doc	doc	7dc98dbcc601ceca44a529dc8b1f2aae3ad1479e17974321024e0c584914bf42	39.34%	Heodo
2020-10-16	FILE_80148364.doc	doc	0e12f49796d6d8f40e96ccabd14b42ccbd1c2097b8e8419790c0d793c3226bd1	45.90%	Heodo
2020-10-16	FILE_98301736.doc	doc	84e8abea7d9cd4e2d9c01114ed11fb7e62c9ca8ee2b0f89c9d99430189e2b02f	37.10%	Heodo
2020-10-16	BAL_30633964.doc	doc	e8cf2d2aeeef9972177572c05c58a7659515a991f2601167d7512ea389672c6e	n/a	Heodo
2020-10-16	INV_11810412.doc	doc	c7db25cfd29e119cdaeb8f214282a5e9ac3ed037f953d598deab8d916838a63e	32.26%	Heodo
2020-10-16	B_UQ8457134476OT.doc	doc	c776db8d620c054dfc36df81dcd693dd59598cce84323f83c4677fec5fc8eb4e	37.50%	Heodo
2020-10-16	K_DAS_100120_QMC_101620.doc	doc	50582c9e06f7726c40ab166de684e95a6f0de3f3fe6a0d8a749e6b18a5047f23	42.62%	Heodo
2020-10-16	REP_06894515205132488302681.doc	doc	31d6b7258df89266703cadb66afc3728ffbd629f68ca60c950bd3b27d4cae086	37.70%	Heodo
2020-10-16	INV_VW4191802005VN.doc	doc	ebd9a7a7b9549c9d6181a8972c532d559d5495d9a7decad112cb1d13c8a6e664	36.67%	Heodo
2020-10-16	XK6930220322IK.doc	doc	74f63318ba7dd16ddae51e0b9e1e8a253d02156b7ccdbc947aa9559b49ed49a4	30.65%	Heodo
2020-10-16	59102586.doc	doc	fc806b39237bec90a8815cf600d9f371357926be080869be6a1cfce9c6a2e9ca	32.26%	Heodo
2020-10-16	WE4663450033RQ.doc	doc	b3900bcd297271f2e9a902ee2c398ddb51468949bd90a5cbfb6f0531360cc22c	32.79%	Heodo
2020-10-16	BAL_PO_10162020EX.doc	doc	9e16a1c487318559bca602d0c341d760109650549d600ab32ea6c5b07b9c838d	30.51%	Heodo
2020-10-16	INV_83318973.doc	doc	c4e5490b2508ceaa3f196549d3c7d2865225ebbd56af97bc4a753542204c6641	32.26%	Heodo
2020-10-16	XLC_DTNZNJ8C01C0TV3.doc	doc	c59e2b34bd786dc40f7b4947cdcbe562e452d68fb278dcc853636a7c53a769a8	n/a	Heodo
2020-10-15	INV_BD0576753689NJ.doc	doc	2889aa2818bb6b697ece0258b29a039f5f46f85444792ecad4d3667806bb5610	50.00%	Heodo
2020-10-15	REP_SB7863672036UE.doc	doc	f3aecd021c57be4a051eb58488f96cd6183ea34153cf79876db7f699d5ce1032	48.21%	Heodo
2020-10-15	PO_10162020EX.doc	doc	b1ebf8efae5ce8d163d465c5ed7b819bdcc16fdbe03f723da2d0b61114721d04	50.00%	Heodo
2020-10-15	DOC_PO_10162020EX.doc	doc	c584c1bd086b6f8007e1a594498dd51149f97a492dd8113493a6dd21f9134ad6	n/a	Heodo
2020-10-15	FILE_PO_10162020EX.doc	doc	d9dee0ffa4b0f9f8ae5c312de758420aef5fa12d4489a8c5f3e5ee627ea966da	n/a	Heodo
2020-10-15	END_100120_KMR_101620.doc	doc	598b4cf3fc5b97854ae8b54625407b4e6b7f05d8ad96b446baaf0855b754074c	46.77%	Heodo
2020-10-15	550546099921910189.doc	doc	98852e4e9b18aaefa6bf7599dca0b76b3e9990ec9b0cbf54ce1dd3a03015cc9a	n/a	Heodo
2020-10-15	PO_10162020EX.doc	doc	9e6ccb86ca25351f22a9960687787487cd93476f21e943368886f63c03167222	47.54%	Heodo
2020-10-15	DOC_WE6532721333HN.doc	doc	2ea42eea9abe81ee4415154eabd2fc00bb951b3a234e1b3ef9e824d77ee97732	46.77%	Heodo
2020-10-15	0X7X4DXCGA81O7.doc	doc	a0af2c0d46bfa10fc4589560d7055a18babee6615726fb2893b817e111f9ecbf	46.77%	Heodo
2020-10-15	PO_10152020EX.doc	doc	1d9754d306c2afe8fd501b6a7449ce2b31988935a52af20866fe321c5a5b0645	n/a	Heodo
2020-10-15	NHL_100120_ILP_101520.doc	doc	3a3dd7687c72a79fe44ec05be24ef77e62e6b1cdcf3f202251d6c12e94475dcd	46.77%	Heodo
2020-10-15	VUZ_100120_HWK_101520.doc	doc	35063a36e2a9b2ea2f0a17e4f4c22a81de62a240888fbb22195984501125bc34	n/a	Heodo
2020-10-15	RGVWZ7P.doc	doc	df301a07bada1a07adbe33c638f8c00159a565bafec1b7fc1ff5ff69b6a7946c	44.26%	Heodo
2020-10-15	INV_16160314.doc	doc	39c25de18abaccdff5bdbe5fb490b60e00e8b38d1c30556115d11f468d4b6a76	45.16%	Heodo
2020-10-15	TU_XAC_100120_KTD_101520.doc	doc	0ab272f979fa9aed2035beb2f578c7dd1b689f64452457def9e7aca2d1c91a3a	45.16%	Heodo
2020-10-15	798NKNTE583TPY.doc	doc	d9b7b5c042c7906658d29f0f2ce9d72212853dba41328c900b11987b9c264639	41.94%	Heodo
2020-10-15	105366367757674588171681.doc	doc	75d886d075adebfd7c1f94df3158666fc565f14797f59d50cd7a2026d0e8c3a3	n/a	Heodo
2020-10-15	INV_PO_10152020EX.doc	doc	3f6955a4c8030234f81c5371a9fe055356a777586aec5021a269eb74083d6ce6	40.98%	Heodo
2020-10-15	YRPJB7DH2BX0VF.doc	doc	e47782d222656eecd0843cf18982e7c6ca8855403c91fab58cc8b109f30aa1e7	41.94%	Heodo
2020-10-15	AY0492066017ZC.doc	doc	80b86ab3fd2dc47857dfaed61fdc9398efa3f97a1ac898fdc453fdcf5a36091a	40.32%	Heodo
2020-10-15	PO_10152020EX.doc	doc	5ab7feb155d115d799a41194045fc38c07b387a68020f3a94e1cbc64c18d4893	40.32%	Heodo
2020-10-15	DOC_PO_10152020EX.doc	doc	35167e81519fe2cee61cea8f8989390c7c4142bb2639f430a40b9645a9eece16	n/a	Heodo
2020-10-15	TJY_100120_ZRH_101520.doc	doc	108c2c7c6598b9ff017de74522cabbaee096e3a62cc018573c6ce7c759a7dcea	40.32%	Heodo
2020-10-15	OFK_100120_RBT_101520.doc	doc	f8457744d57ac43ed030c56ce2d081580dc5a363b43da11cb63cdee6085dc527	n/a	Heodo
2020-10-15	PG_IIQ_100120_CHF_101520.doc	doc	361fb5f143468200213bea5b095c5524ce0bf1d54d56d49604f8328fa918e169	39.34%	Heodo
2020-10-15	BAL_PO_10152020EX.doc	doc	3fa7f08147bbe9cac8737585a82df70bbf3fda10bcad5546958b1020f3258a0d	n/a	Heodo
2020-10-15	DOC_62122469.doc	doc	d78facd499d94ec13b381733eee00bd566ddd24ee98d4a1a7316fcaaa126e043	38.71%	Heodo
2020-10-15	BAL_IG0407685616NW.doc	doc	c36a82cf21da13695879467eaaffcf4d8f3278e11c03ac535fea556e715abb7f	n/a	Heodo