URLhaus Database

You are currently viewing the URLhaus database entry for https://overflod-lr.com/intercessory/esp/Csw6ao8VBwXa8786s/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:698596
URL: https://overflod-lr.com/intercessory/esp/Csw6ao8VBwXa8786s/
URL Status:Offline
Host: overflod-lr.com
Date added:2020-10-15 21:18:04 UTC
Last online:2020-10-18 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-15 21:20:08 UTC to abuse{at}hivelocity[dot]net)
Takedown time:2 days, 11 hours, 25 minutes Poor (down since 2020-10-18 08:45:35 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17UNTITLED XP9723.docdoc 294c6f87d8514072c30988bd55dd643c5c018b9f9ae05b9db1a97d034b31e092n/aHeodo
2020-10-17Attachments_20201017_ANL481.docdoc cbabf68dbf69bbc9e13cf1c4decc549416db53379348b45da4b5fedff65152afn/aHeodo
2020-10-17Dat_20201017_623201.docdoc 8763a9868e952dfb5be76162ed10b0d62fa00e1ba5baebe53f7cca486cb89542Virustotal results 53.23%Heodo
2020-10-17File HY842.docdoc 560cbfa962587b928c5ba13f5cce70b94a0a90991ee4f4db32f2a6c6a3936237n/aHeodo
2020-10-175969-2020_10_17-373.docdoc 7e8f0d3a035cc6aaf58e4f892900fd85148d09fb03b8b258eaca0db120d1c628Virustotal results 53.23%Heodo
2020-10-1701858U-31643.docdoc c8647133e45a641a9cefb6726994df00dcfc9fa481d38e667eab8f74f75c54b0n/aHeodo
2020-10-17file_LH334408.docdoc 8b3323767793829332133050855ac69ea1a0cd1b5a51441f1baf16d09f47e663n/aHeodo
2020-10-17851_2020_10_17_R9458.docdoc 4885a6fe3e6e3cf17f4b9c157b848115b2b51fc4b8e3e478650c6d8401062476Virustotal results 51.61%Heodo
2020-10-17file-20201017-SS118.docdoc 559b9d806bede7814d4c85984a6e6815356e1ce8e730ca7907309e03eed5fcaen/aHeodo
2020-10-17FILE_2020_10_17_HJ3250.docdoc 674b59aa10f963845214c91833225375d26e69ccece07609e8a5425a8d952346n/aHeodo
2020-10-17EH163-20201017-8335.docdoc 49bfab81e7c83836e13d24a1c3e607ce00aa745e850f110ef848cf96ab0b5b30n/aHeodo
2020-10-17list-CQ1406.docdoc c14604804cc32fb30b522dd9dff211839670ae27b989326efce1e69589bc9d36n/aHeodo
2020-10-17Untitled 16137.docdoc 1e59616d8d30b5c30b132e96368fd13723b10d8111db17a2c7aded6d311983e5Virustotal results 52.46%Heodo
2020-10-16file.docdoc 64791e6b0eec05add1dc9e363173e850e7d26305d1f3940a7f966c42544b2147Virustotal results 51.61%Heodo
2020-10-16DAT 79768.docdoc 528b63ef8c44d0a5b08974fb6ad9efa60e0021ce6993d25b30ef1b90c00df222Virustotal results 50.82%Heodo
2020-10-16mes-2020_10_17-88621.docdoc 38a7276166183fb51e2c60c91165d139295de90105097cb4e24b077d3fa5d56fVirustotal results 51.61%Heodo
2020-10-16MES_20201017_61855.docdoc c5480c5bcd7c9b06e744ebfca49ef98e45da1200c5e3762d6b47d9825189f3eaVirustotal results 51.61%Heodo
2020-10-16dat 2020_10_17 VX7167.docdoc cecc7a6d54b23fac9722185d9674512f5b51840e9909978de84128d07172791bVirustotal results 51.61%Heodo
2020-10-16dat-2020_10_17-5020.docdoc d0b24fe52a88df1055812d9b2a79e7acee0b02add126d467c4054a93771b2ba5Virustotal results 51.61%Heodo
2020-10-16Rep-20201017-7835.docdoc 1d74d9c148d2a786425f0447d4415368184fd896521dc5054434c999fce03a31Virustotal results 52.46%Heodo
2020-10-164430086 GU605.docdoc e329b5a0bec19b8be7c318fff46735619fb207c0836b1143b676858a695ac352Virustotal results 51.61%Heodo
2020-10-16dat 20201016 HK120467.docdoc 14fb23d425064edf96ba4acb656479002d69054eccbae3688760eda138dbb67cVirustotal results 51.61%Heodo
2020-10-16503_2020_10_16_3875403.docdoc 0f3f04ac85e78d80efbda9617f67a8790049ba50df890fc992c9b0ea0688cb96Virustotal results 50.82%Heodo
2020-10-16Attachment 20201016 KN785.docdoc e78b57e96d5a3632c93a56a0bbc199107c194dae316c84dd64473a513a3b6745Virustotal results 49.21%Heodo
2020-10-16DAT 20201016 3354689.docdoc 87955bd537228add4702cc4c61db1af1de1ecef23a67ab74fa37955d95b4e4f6n/aHeodo
2020-10-16896_2020_10_16_FY7293.docdoc 0ec477654d5520def268531ea738a0d3bd64694440a9185716a92c79625e408cVirustotal results 51.67%Heodo
2020-10-16list_2020_10_16_574.docdoc f57355bd1efba81163d91947723bf0beb7e259ecb320963ccec0c38d46cbbbedn/aHeodo
2020-10-16Arc YOC746315.docdoc cddaad4c09d5c497f3c53c286d7d3bef737c2e484a95701735a5b80175d92ee2n/aHeodo
2020-10-16Attachment-20201016-4360.docdoc b2d8f711c8c33e4a8812e05875095c445ca95ad54ba0cc33ca3474867b98c7e3Virustotal results 49.18%Heodo
2020-10-16Dat_E810.docdoc 976d1b0555a69b79a1a01dd58e80dd429dbfe59685a55280a005df0a62a8ba38n/aHeodo
2020-10-16list-2020_10_16-626048.docdoc 1393a509d3636597224811966d26db77105cf9e68c236f014ff603742fe1c610n/aHeodo
2020-10-16Attachments 2020_10_16 W254.docdoc 89e516fc6c98fb8cb00f9206a5b84a90ba0afa94363227a3e8b0504075ebcc66Virustotal results 45.16%Heodo
2020-10-16inf_20201016.docdoc 459ec3d3a51c5d0513bc13602acfefb53dfa779eafc8a34e85764f40c7b90ae8n/aHeodo
2020-10-16Arc-M660.docdoc c53f12dd4e72249838859cc93e6240a4a329860fea0678a5b2961457ee8b64c1n/aHeodo
2020-10-16UNTITLED-2020_10_16-AGD377.docdoc 18f9f98dab8623a8b0c06b6d25747d727601b4551df382ffb88ff536f6df2762Virustotal results 45.16%Heodo
2020-10-16inf 20201016 VS97034.docdoc fef1542f85d70667aadc0ed3e4755b0fa709566515c2768f4edd721979046efan/aHeodo
2020-10-16Arc_20201016_SX0554.docdoc 1d2cd0ca96a56fed43de994ae2cc29cb330c9b815af03200a9ee1c88761e1c1aVirustotal results 43.55%Heodo
2020-10-16Mes 20201016 YZ598242.docdoc 902d3b48f1baafaf6f2c85572b13693b97da55c7f52fe0833634a73227137570Virustotal results 40.98%Heodo
2020-10-16MES.docdoc a4aac0dd8e4cb6d02d7af6f4e360585829d4b18d1c32bb69e09727ec2f0cb8b5n/aHeodo
2020-10-16UNTITLED 20201016 11524.docdoc 87c5e9b3096c5f62c32a8cf5d8f039d34b3a6332ce4664871f3fba6f90ef0c31n/aHeodo
2020-10-16771-44370.docdoc 4726971e191eb1357a218df3bb448de308f7ea68942b55589bfb54b5bdc2e6ben/aHeodo
2020-10-16inf_2020_10_16_L6728.docdoc fd599aca746e2e35846653c92d10fb3ca09d419e9cc624a4641def19859c8c82n/aHeodo
2020-10-16Inf 2020_10_16 236.docdoc 3e906902a5589a447ba6e4fca5505c950315faea8582c6f3093fce44e18ace47n/aHeodo
2020-10-16Inf_2020_10_16_8057.docdoc 9b09ea8a8e81f20dae59ea433945d803d0af60b3a74ccf6c04bf1a17e5abaec3n/aHeodo
2020-10-16Inf 2020_10_16.docdoc 1bd4395a76b6ed6c809259f58a36266882c9a3f79e1064a5ba0277561ff8addbVirustotal results 32.26%Heodo
2020-10-16Mes-80840.docdoc 482a9136d1dda15269085f5cfb180a08dd5f02bc4b744ceef7c6f3340929c6d1n/aHeodo
2020-10-16doc 20201016 0943.docdoc 043bfe23c72df96ce773d46e7b722e475c04e868f22ad1cfbe8415c36a510350Virustotal results 33.90%Heodo
2020-10-16Attachments-V300422.docdoc 651e2fae54aae6799b64327aba5925cac20ee68263d8049e0d03e32f6e077dcen/aHeodo
2020-10-16FILE QYQ846.docdoc 59bc6c4c9aefc45191fcdc25edf0f1e99d98dacbd979ca2b917563ebb376b0f7n/aHeodo
2020-10-16ARC 2020_10_16.docdoc e92ce2936427af8c9ad098f7545082f5075cb392ae497589ae3335a9efb8d7d0Virustotal results 32.26%Heodo
2020-10-16REP-2020_10_16-MI5851.docdoc e52f2635e68a8f40c8e47ed31a932dbd89ca5e423bc8565b71df778c2c7c2eb7Virustotal results 51.61%Heodo
2020-10-16Mes 20201016 5487.docdoc 953e1db493bd64b85be6166ddc1fcd8c35fc618189477b578cd123fcfc86611en/aHeodo
2020-10-16UNTITLED_2020_10_16_38452.docdoc 75465934273d4a95881d769e7055c61f64860d7f9e51f5251241615b2b620993n/aHeodo
2020-10-16List-HJ2019.docdoc 643b123f7b3a0482098e2bd2b3df2061f3960ba6cdf75946a75a2ab78a836aedn/aHeodo
2020-10-16mes-2020_10_16-5267004.docdoc f9d5124fa2f49422eaacc95990935571a667118bbdebac076de0f178e54e9ce3Virustotal results 50.00%Heodo
2020-10-16Attachments-RXG9490.docdoc 5072f3218fa0300943629458afd87b56759783ef8776b3ca783f282ec185e33eVirustotal results 48.33%Heodo
2020-10-16inf 8343.docdoc d779a23df9f672a173e5db73dec484b9b58435f3cc4db430e5b5a97c6021fff3Virustotal results 46.77%Heodo
2020-10-16rep-20201016-8975675.docdoc 9254602e28d8cbcf21f9c2235f5dbb7deb8be9c6b331d735643b5892b2115cb9Virustotal results 41.94%Heodo
2020-10-16N811_QVS647945.docdoc 9347c2db740afe55d4fcd6c9346d63d399d3456bdfa1f8413ade5b083f64f0eeVirustotal results 40.98%Heodo
2020-10-16REP_2020_10_16_31267.docdoc c7cf5a3d5d7fa1c15561e9ae23236bca356132e283a8651ce8f9257bdf79f77eVirustotal results 42.62%Heodo
2020-10-16dat 2020_10_16.docdoc eab5eed41969a9071221c46da6c2e5cbad82ce39b400964b2a4cc2c05d5617efVirustotal results 41.94%Heodo
2020-10-16DAT 20201016 JMF801907.docdoc 77336efe637e5b6480a97a6764e16c75424a6c44345993fbc87a04fdb1a4437dVirustotal results 42.62%Heodo
2020-10-16INF TL1094.docdoc f937a97bd6491ef93fb7aaf9ba74ab45293543764c0c47415bc01da8b23e9a70Virustotal results 41.67%Heodo
2020-10-157146Z-20201016-QD9872.docdoc b060160af00ceb90812eb219ac8e72258f487365866f64374c5786171cd6c947n/aHeodo
2020-10-15Mes-382.docdoc 4be03f6e2d9d995b0c327a02bb5c0dd41b90691a3da98e256f2defb4695ef311Virustotal results 42.62%Heodo
2020-10-15096342_ZMR0123.docdoc 609112e04613f2eed3ecfddccfd458d553696c160e8d452d24621c02e2ecd9edVirustotal results 40.32%Heodo
2020-10-15UNTITLED-20201016-Q32246.docdoc 38852b2a879c31c5f6a1cb8ad7874b20c2142d496ad73f9901c2088d2e006ed3Virustotal results 38.71%Heodo
2020-10-15inf-20201016-184.docdoc 5ae6059ec64a9952d72dd06acc66b5a25a984f65a359ed2c2fbf70275f8f4204Virustotal results 38.71% Heodo
2020-10-15List 2020_10_16 4868940.docdoc 8103d04629a03039728f51f15d3b206bec5bb301efdcf69dadecbcee0c613b74Virustotal results 39.34% Heodo
2020-10-15Inf-885791.docdoc bb0d9d8cf3e5d3fb3e4652b1bdf66f7e687ebb79f7a388a116abbaf16a4653f0Virustotal results 38.71%Heodo