URLhaus Database

You are currently viewing the URLhaus database entry for http://gordon-and-son.com/content/INC/laLjBjZxRefspP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:698460
URL: http://gordon-and-son.com/content/INC/laLjBjZxRefspP/
URL Status:flame Online (spreading malware for 5 years, 2 months, 0 days, 5 hours, 30 minutes)
Host: gordon-and-son.com
Date added:2020-10-15 20:27:05 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2025-09-20 04:13:11 UTC to abuse{at}cloudflare[dot]com)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-09-20da6e21ee8729c6f1404ad122e90d5d1688e2460954e3d6f61b432af1bf26cfae.txttxt da6e21ee8729c6f1404ad122e90d5d1688e2460954e3d6f61b432af1bf26cfaeVirustotal results 16.13% 
2020-10-17FILE 6596945.docdoc 294c6f87d8514072c30988bd55dd643c5c018b9f9ae05b9db1a97d034b31e092Virustotal results 55.00%Heodo
2020-10-17Inf-2020_10_17-SA037511.docdoc 73c8e321733773d7413efd1447245567bceaac2f4f85447e1196884a898cbea2Virustotal results 53.23%Heodo
2020-10-17dat-2020_10_17-THY25024.docdoc 8763a9868e952dfb5be76162ed10b0d62fa00e1ba5baebe53f7cca486cb89542n/aHeodo
2020-10-17Rep-2020_10_17-52667.docdoc c8e0ee6566b5536ea46f25964313ce3c6d88ef6329133772236f4afe57bdacd4n/aHeodo
2020-10-17MES.docdoc 2a71d0ad9193b9a5ec07c7040baf6aee1049bde63cdd81fdf346e9f295b95760n/aHeodo
2020-10-17UNTITLED 321918.docdoc 90e7a0a9f215c30d103034801a89e4b61554c48bff10a98df0d09257cfc716cen/aHeodo
2020-10-1765081668_NF687.docdoc 4885a6fe3e6e3cf17f4b9c157b848115b2b51fc4b8e3e478650c6d8401062476Virustotal results 51.61%Heodo
2020-10-17DAT.docdoc 203a54f8692f6554ad685a3d9e94ec1f3482366c3c455312540f744cbda4f479Virustotal results 53.23%Heodo
2020-10-17arc WHU929313.docdoc 78f2969b92269cd9a3e1cc7003b0949f47421d551c323dbeafa94ad0a836bf34n/aHeodo
2020-10-17File.docdoc 674b59aa10f963845214c91833225375d26e69ccece07609e8a5425a8d952346n/aHeodo
2020-10-17mes-20201017-459.docdoc 49bfab81e7c83836e13d24a1c3e607ce00aa745e850f110ef848cf96ab0b5b30n/aHeodo
2020-10-17inf-20201017-EMJ759.docdoc c14604804cc32fb30b522dd9dff211839670ae27b989326efce1e69589bc9d36n/aHeodo
2020-10-17MO255_2020_10_17.docdoc 1e59616d8d30b5c30b132e96368fd13723b10d8111db17a2c7aded6d311983e5Virustotal results 52.46%Heodo
2020-10-16MES-20201017-927.docdoc ff58a7b1e34b5e2de40fa9fa020ecc46b3c1cf0eedd40653e719e2fba15ce05fVirustotal results 52.46%Heodo
2020-10-16Doc_2020_10_17_CB971106.docdoc 622c685b93473b545637dfeced3852e83ae18b3144058f11856f73eb76b5cdb3Virustotal results 51.61%Heodo
2020-10-16DAT 2020_10_17 BS64050.docdoc 5ee53916c491a77206e7a09eb75c02983fae90474ddcb7d0099a47113b4675acVirustotal results 50.85%Heodo
2020-10-16INF_O900.docdoc 691b2fc6acbee6cf5fb93b6afad38eb2f61c4a211cb17cb3c617c2bdebd48f61Virustotal results 49.06%Heodo
2020-10-16file 2020_10_17 5371.docdoc 5c58c91ffdffd84690c6746f6afc2eaeacd03df2e4a83c6e662755624113cf5bVirustotal results 51.61%Heodo
2020-10-16inf-KQ3932.docdoc 2ad3ea37b37feb3b6b0640be566089ddd917334bf3033b741f48bd508a252530Virustotal results 51.61%Heodo
2020-10-16list 2020_10_17 012995.docdoc 49cdf52f6974aff3348c2c2ddb75be089f05da06c6dbc7f5b28fb6b5ee4cbdfdVirustotal results 51.61%Heodo
2020-10-16doc_2020_10_17.docdoc 4c125553bd2edbf5672acedb290d618c67fab2f3b02f055bf22af25030b3cb34Virustotal results 51.61%Heodo
2020-10-16mes_20201016_872250.docdoc ec0b8068eb55934e5173fd8006c8cff634922830e46673abcd0c0a2e2e6d3b4fn/aHeodo
2020-10-16LIST 5275723.docdoc a0851102c87a910c627e0d68a5e41dd1b448b75e66fab4bb0623715d71b6a43cn/aHeodo
2020-10-16Untitled_2020_10_16_RMR697657.docdoc f4af9d4a8529e7b2cc1ffc59afc271f35f63fd2f0b043cecdc60553c2ff8259cn/aHeodo
2020-10-16UNTITLED F3413.docdoc 87955bd537228add4702cc4c61db1af1de1ecef23a67ab74fa37955d95b4e4f6n/aHeodo
2020-10-16dat_7930349.docdoc 862ce05b2f4d570225ef0b53b414638426a854c01a5ea7405554ae43e7206950Virustotal results 49.18%Heodo
2020-10-16doc_2020_10_16_RIC854069.docdoc 0e044c945bad69533f1cc676a53ed59d287e4681c239be2a61e9e4c46775da4dn/aHeodo
2020-10-16arc.docdoc 94a0a04aea0ad4241b0d8f3aa2bd2d01d289c6be4188d30ad71ae7fe65473ffcVirustotal results 48.39%Heodo
2020-10-16Dat-2020_10_16-X9647.docdoc bddf126e79e9a62c235c0b9b763a594d8c49fc76d38f39400409262f43373d43Virustotal results 48.28%Heodo
2020-10-16file_6330527.docdoc 411727e51c4712ff788de42e2407b0dc89a76b7a9ba1c5dfc3095bd82e957841n/aHeodo
2020-10-16INF-2020_10_16-WV116.docdoc 972e7361c2d19e014ecac21f0ce7881a86a5b85a886d192cdb0f50786a3b9c43n/aHeodo
2020-10-16DAT_121.docdoc f40f5db1426fe2f7cad79d90340b062bbb4c7a8caa8669516cd3f68245d6a075Virustotal results 44.26%Heodo
2020-10-16Arc 2020_10_16 4603.docdoc b458f12a6949fee524edefc720811a94bcdae2ba4403be20f0b1df513f4c7ac9Virustotal results 45.90%Heodo
2020-10-16dat 20201016 928609.docdoc 2278a6affb021c01407640a3bdee3c0cdee192eb4b8326f90188c57e0e428856Virustotal results 45.16%Heodo
2020-10-16REP 2020_10_16 4566.docdoc 682c65a21c88785eb45b7596c27eb24784a6d2415bfc04fb99c12bbb8f3b6da2n/aHeodo
2020-10-16Inf_WPW770.docdoc 7fad063ed10c7c689ae21121013478caf87d581c06116428977538c209b82ba6n/aHeodo
2020-10-16Dat-0707.docdoc d382b252799d94951c351f38f54c1154fed8293f5018c4441b345e556f5fc26fVirustotal results 43.55%Heodo
2020-10-16HZ84920-20201016-SAP494.docdoc fd2e7ec691bc46f3e457732fec4f096dadc2d01c09ea3fee29bdd327fd1e322fVirustotal results 39.34%Heodo
2020-10-16Doc 2020_10_16.docdoc 37f1cc77866340d05866022da9d24b26a5823d5d559b9a19e421fabcc495c8c0n/aHeodo
2020-10-16arc-2020_10_16-J35268.docdoc c71a347dc1b4b4f771859fa46e9bbc78f503861b6af6501a3a1106c154df7830n/aHeodo
2020-10-16REP_2020_10_16_EN908.docdoc 69874c7feab365398b8a2342c45603cb063161bedcdcf1f58839bbfb7a6b0620n/aHeodo
2020-10-16rep-2020_10_16-R592089.docdoc 3b61674adab1cb0ec78733ae1e4c07cefd9023e0295b9a7067e7b38ba35cb107n/aHeodo
2020-10-16mes 2020_10_16.docdoc d5e4ffaabd8f09215933e9c32133e2145be1c2ac3ce4e78d991981dc3f3382cfn/aHeodo
2020-10-16INF_2020_10_16_66523.docdoc 5a7c0727bce9bda88cfda9cdf642a0d8e636d781c70576f32c983a9f48190bbbn/aHeodo
2020-10-16Inf-20201016-58196.docdoc 9b09ea8a8e81f20dae59ea433945d803d0af60b3a74ccf6c04bf1a17e5abaec3Virustotal results 29.51%Heodo
2020-10-16Untitled-2020_10_16-0664102.docdoc 7866efd7e1341548d5b729f004133719303c3761ff095f569d692b31f64f3e33Virustotal results 32.26%Heodo
2020-10-16rep_20201016_WF540983.docdoc bbb7624d95e01bc02d79430556247cd0111cf701a4d9a51adee33a487c2c30e9n/aHeodo
2020-10-16Attachments 2020_10_16 KWB296036.docdoc fd54878ba1ab07b8293894762ac0087df9caab94c768ece743e345eecb287f16n/aHeodo
2020-10-16Mes_2020_10_16_HS484433.docdoc 2dcbeebedb0b14deca837e1a7f3b4f77103ad6f0c28e4bb94f5bb8d5d3c65940Virustotal results 32.26%Heodo
2020-10-16arc 2020_10_16 R0978.docdoc 3b7f8920c7db99db8aae73225dfd19e4519781f7cb79ba47fba3f0b57cfc8713n/aHeodo
2020-10-16Dat-20201016-7975982.docdoc e52f2635e68a8f40c8e47ed31a932dbd89ca5e423bc8565b71df778c2c7c2eb7n/aHeodo
2020-10-16dat_NN5318.docdoc ad29fba32bbfa20e1769369f3a121ce461433fc55e719db4c522855e858262a1n/aHeodo
2020-10-16mes QW155822.docdoc c4493f30d0f99ad1a4256ae563fe215e3a21c036ad2b4cc1ceb4792eae8600d9n/aHeodo
2020-10-16361DPZ_20201016_X0514.docdoc a47762c209b57d46904972127a1289ee6b304fad012783b113472df47b76d81fn/aHeodo
2020-10-16inf_Y689.docdoc 8d55bfa88aac7102ed41f043d7266e85bfd3e83d0d8f7d298876419eb1bde683n/aHeodo
2020-10-16arc 20201016 O844890.docdoc 5072f3218fa0300943629458afd87b56759783ef8776b3ca783f282ec185e33en/aHeodo
2020-10-16UNTITLED-20201016-HUZ2035.docdoc f678f5043446e55feb1f5969b96cfc3958a6019bdfa30607e3a029347600d2ccn/aHeodo
2020-10-16Attachment_20201016_XIC03731.docdoc d779a23df9f672a173e5db73dec484b9b58435f3cc4db430e5b5a97c6021fff3Virustotal results 46.77%Heodo
2020-10-16mes_NM97133.docdoc aabb9ea2a83771f9921f5d074e4cf99314607d95cb6f4b069f4ffbca8b18a8f8Virustotal results 46.77%Heodo
2020-10-16LIST_544.docdoc 2cd480285c229f6c283e419429281d8b7cc49b53571d826558fe50931338770eVirustotal results 41.94%Heodo
2020-10-16Rep 2020_10_16 040.docdoc e1fa8ab1bc95406a6ca6938a72337e0b9206e90dcd5517bdcf36c487c5a92bd0Virustotal results 41.94%Heodo
2020-10-16Doc_20201016.docdoc 476b7bf1aa229f05d66696a3bfbea19b4dd3a2a7e504e5fcecac84fe1819d91dn/aHeodo
2020-10-16list 2020_10_16 NY9603.docdoc 23da77ba922f1456341c04679f2fb38e73b253b7a6e8a2994471072e2029e5d6Virustotal results 41.94%Heodo
2020-10-1621196059-597.docdoc 519a143d1332d1db35e19ba538eff942e18c6260c55f4fc634fcceecef9d3dc1Virustotal results 39.34% Heodo
2020-10-15Doc-CGT824.docdoc d1fea8b66cd1bf042820cc0c454cdbc6863c24dc54b90afec02b4b0c51394734Virustotal results 39.34%Heodo
2020-10-15REP-2020_10_16-9716402.docdoc 7525f0fcd1c0d8d3e9ed758923b6e0ee0090ecdd93dd35f2a901b1bc3bfd8135Virustotal results 37.70% Heodo
2020-10-15rep_33215.docdoc 609112e04613f2eed3ecfddccfd458d553696c160e8d452d24621c02e2ecd9edVirustotal results 40.32%Heodo
2020-10-15Dat-2020_10_16-56345.docdoc 47ce9bcd74cf07f1e9312e71da59c363eb8c6b91f592da4c37aada97a38318bfVirustotal results 38.71% Heodo
2020-10-159987721_2020_10_16_BKT630.docdoc b6a29fa485514c193ba2a233797415547a50dccb1b774ac2c80ea3809d4dc7aeVirustotal results 39.34%Heodo
2020-10-15Attachment-20201016-059759.docdoc 8103d04629a03039728f51f15d3b206bec5bb301efdcf69dadecbcee0c613b74Virustotal results 39.34% Heodo
2020-10-1585489_20201016_8955803.docdoc bb0d9d8cf3e5d3fb3e4652b1bdf66f7e687ebb79f7a388a116abbaf16a4653f0Virustotal results 38.71%Heodo
2020-10-15Arc H441.docdoc 087d4ce4b2eda3a5b3163a35e16fd76ec394796385ba25d0fe279bf11b725571Virustotal results 38.71% Heodo
2020-10-15Attachments-2020_10_15-042.docdoc be2d72ee1a4da699026d47683395cd063bc94662a384bc7352e9596f63f6c843Virustotal results 37.10%Heodo