URLhaus Database

You are currently viewing the URLhaus database entry for http://genuineandgorgeous.com/content/dd3vwuo/5d20s2078me2s8yq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:699368
URL: http://genuineandgorgeous.com/content/dd3vwuo/5d20s2078me2s8yq/
URL Status:Offline
Host: genuineandgorgeous.com
Date added:2020-10-16 05:43:07 UTC
Last online:2020-10-20 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-16 05:44:02 UTC to abuse{at}digitalocean[dot]com)
Takedown time:4 days, 0 hours, 45 minutes Bad (down since 2020-10-20 06:29:37 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17YWIU_9040012194422597484533334.docdoc 360a5cb7eed923017b4ef07460e7652362cdf1fc0a902516addbb8e244e30134Virustotal results 53.23%Heodo
2020-10-17UG_GKXZDDZI7.docdoc b61cc94625d0aec1674d3ffb90ade5b30575e1eb8a755f9944cfcb4d40378041Virustotal results 51.67%Heodo
2020-10-17RPZM5HA.docdoc 5ab2456a7a5d44a28ef32f5ac8c55e8eaf4b24802b2d326a29cd9aa4199e0b97Virustotal results 53.33%Heodo
2020-10-17DOC_PO_10172020EX.docdoc 169fa4037e8c45a38a3b2e862d860e955fc810c63682c78155bbbd45820b83bfVirustotal results 54.84%Heodo
2020-10-17PO_10172020EX.docdoc 08171ab9613c40f0cffda97d95d104eabd33aca151d19a4315b8e2ec2142fb63Virustotal results 53.33%Heodo
2020-10-17PO_10172020EX.docdoc 8eed16b7e0a64351cb06ea437eeae8f69b227cac04237187ed17cff470a3cb0dVirustotal results 52.46%Heodo
2020-10-17BAL_NS1102761375MP.docdoc fdcbcd4f6d22900775055fa03ab8643f72041e73d6af1c271a672ce65268e0ddVirustotal results 53.23%Heodo
2020-10-17DOC_0695889039.docdoc 797ebeb27b3af7fa872d899601baf807800f85a84371fbee97e2232f841c4ae4Virustotal results 51.61%Heodo
2020-10-1719998765.docdoc ea065a0dbc3ca645237d0c98e82887ca636451f3fa822c6c0a087a2fe98c230fVirustotal results 53.23%Heodo
2020-10-17FILE_89630187131824784537254.docdoc 82886986ef5507c85b6e17a8904a70bb3b67212863f5f835fa7bc3392d070f80Virustotal results 53.23%Heodo
2020-10-17INV_13969190.docdoc 7f7aaae8116f26c7d91c5c3d87ab7c7a752e628195c25563cc7c3074669e6c7an/aHeodo
2020-10-17REP_PJ5928554447BC.docdoc 6d5ed047cba0f40a2bd108fdb285520a5590c29ac64b7a9d32a20719905f1e7cVirustotal results 53.23%Heodo
2020-10-17DOC_ZW4382824561XE.docdoc d718b0058aaa9406fd6bfdf6d7f13e8963789c2c0b331e70fd6e8edd6b1f22ebn/aHeodo
2020-10-17INV_6229077115858120184027425.docdoc 4f1b55b5cbbaa28b0d87b93dd256cebd16df18a51e081378940ad152fd24da8eVirustotal results 54.84%Heodo
2020-10-17DOC_RF8025293135BB.docdoc 0b6de51a7fc8020fa3be7dfd2c2b6665da9ebc357d07f70828653ef7191b9dd0n/aHeodo
2020-10-17OIA23PQ3L9.docdoc 252e05a52d4bc9d3d266533b1a75bfab674989b8d3a4f0ff8d898529379329afVirustotal results 51.61%Heodo
2020-10-17INV_232928873.docdoc cc0b6720262ce77c846acb19ec1f31511f0f465f1bfd03bd5e8bfb3c6b3e9828Virustotal results 57.38%Heodo
2020-10-17INV_7DFE7GF1YD9.docdoc 33e3f84944619fd92c3e53215fafb2b4b962f3e7b97ac0e358959d8ca710de70Virustotal results 54.84%Heodo
2020-10-17BAL_XTC_100120_ZLC_101720.docdoc 61cf4ff84de3e35dd24e8df00464aa832912b8c378cbffc5da91abc576c809fdn/aHeodo
2020-10-17INV_JTR_100120_JVU_101720.docdoc 19b133b4ad7b5c3072ca746a89f06864d39ca4c8985ddfb2eeadd125ff5cd7a7Virustotal results 53.23%Heodo
2020-10-17R_PO_10172020EX.docdoc eb06448eea7b0d73132945671275ea572688e13de195a89974d8315900ff8cb7Virustotal results 52.46%Heodo
2020-10-17R_LJ8636419730QT.docdoc af4011781c0a2add45a6f72b8d52e5bd7d7381ff28c93e478dede0ff100ff237n/aHeodo
2020-10-17B_PO_10172020EX.docdoc 5990f98a0aeffb24181deb144a8519e54f7695794e545b9ba0cb52fe28e3f987Virustotal results 50.00%Heodo
2020-10-17XK8715019375RW.docdoc 99acccb026919eac0d3249c8a9207a71d032fbe59c7540c12aee398ae86e6780Virustotal results 50.00%Heodo
2020-10-17FILE_9OBUC64XS7WH.docdoc 1f9fcb8ad3585c6cbf7250308fc58ebd7fd913baf350cbd3d7fd8934c9e33e43n/aHeodo
2020-10-16CKLF_YRR_100120_KBP_101720.docdoc c25321d27755dd74dfcb51c16c96a607d16b09b59b1cbe7f025dc89763d9d630Virustotal results 50.00%Heodo
2020-10-1608311444.docdoc 53467ef76cb2d0f4cc9404439089220dd6d34680c167f2f062307713724ee9bbVirustotal results 50.00%Heodo
2020-10-16BAL_QG6282838538MW.docdoc 2d4a3ae690cd64017a114de08ffb095c8208ca65f5647809600f6caf8ff7cd97Virustotal results 50.00%Heodo
2020-10-16BAL_PO_10172020EX.docdoc 546efc6d0a2cf1ff3052b328188d26e9576664e7795de51b7ac16d3e5513208en/aHeodo
2020-10-16Z_USQ_100120_IHQ_101720.docdoc dae05fe983f37d53c614de68c40f3da714bccb7dd377adecaf6a7592c31cdc4bVirustotal results 51.61%Heodo
2020-10-16INV_PO_10172020EX.docdoc f8b980774cc06cbfa822245a47e48d9bd3280bf6cf2bd96628d02e54c84baf3aVirustotal results 51.61%Heodo
2020-10-16AX_9U8VUSPW.docdoc 8215f350c6c5d2b5f615bcf7260cb9eeb60747b75a9e6a8e4b9c3ef3b70b8cfeVirustotal results 50.00%Heodo
2020-10-1639556339.docdoc 66c7e2fbf3c8c1188e708104ba2e10cb445c38f0aba80cf91527d2d1a36f2be9Virustotal results 45.90%Heodo
2020-10-1663YY2RTYS568E82.docdoc b5bfb66f6635a3c1197ff846a3c54681e117da7e608d1447f0c34861f88ef070Virustotal results 50.00%Heodo
2020-10-1647546792.docdoc 7b8b2d4ca133105321f5881616be8cc7960257d1f6abbbe026c67e10eaa6ebb1Virustotal results 45.90%Heodo
2020-10-16REP_MBW_100120_MBJ_101620.docdoc 8b5585bc3f128dd3a3ef10f180c3a5cd06e2f68e9894551fe177b09b5b1ee0c6n/aHeodo
2020-10-16REP_PO_10162020EX.docdoc 58d9abbb83b6f4df5a5dc7b782ecfc3a0a400197866d76f14500b97d206a7eabVirustotal results 46.77%Heodo
2020-10-16REP_QDW_100120_GXM_101620.docdoc 457b10f1fc21e30d9630120fbbd7f0d7681e7ae38d1a3738cc07621995830543Virustotal results 43.86%Heodo
2020-10-167658347212070.docdoc 0a0ac374574dd78365ae4b5e84357a2387d99dd14752f6a53391324841412b19Virustotal results 48.39%Heodo
2020-10-16BXS_100120_IPF_101620.docdoc e564165bf09133c12a55224f2d789bf423c8ea87814c3e11a7d068a951ec3fb1Virustotal results 43.55%Heodo
2020-10-16BAL_15323534.docdoc a9aceace56c828f6185a5d3c739ae2a2e43d825c4b884faf02f5acf460a6be5fVirustotal results 41.94%Heodo
2020-10-1657050022.docdoc 89157919f283aad6306a78ae43e54b55c2431a0a64dbfcef22df553bf09ae681Virustotal results 40.98%Heodo
2020-10-16FILE_77RGM3BS79IME.docdoc e07a28bf930b88ae86abcb35ec1ebfafde47d78f4eb537440b0b37432afdbb30Virustotal results 47.54%Heodo
2020-10-16FILE_AE3650032086IV.docdoc 03fbe322a6456e5d9dba965551b7e114ce5e60b069c859a2f86c9026f3b02ac7Virustotal results 45.90%Heodo
2020-10-167KK0YI7TH5KYDZ.docdoc 7dc98dbcc601ceca44a529dc8b1f2aae3ad1479e17974321024e0c584914bf42Virustotal results 39.34%Heodo
2020-10-16DOC_SM4126839928CZ.docdoc 691f5cbe4e05b980ee84be377f07bf6659cb32cbb7011c4ea835b730c293891eVirustotal results 43.55%Heodo
2020-10-16REP_6966123936.docdoc 2c1c8cab0d411952c802de9667aca0d5ce72024da289e07685554f1a17ef5e73Virustotal results 35.48%Heodo
2020-10-16CS37NE0Y6BO78SC.docdoc 92dc665b7b2d60b59bd68c238a5afc7a39185bd6e0909a003a0a25bab691bedcVirustotal results 35.48%Heodo
2020-10-16ECK_100120_HSF_101620.docdoc 66ad2d1939fed89f992a25cbdd0aa594a8c4e2065358f7142dc648ea2f5d8317n/aHeodo
2020-10-16T_82704641.docdoc 3b04250db2ef046c1d2ade7e659477dd7e7b1a9a9e170e99793f5aee3c8db885n/aHeodo
2020-10-16FILE_261474642038091133610.docdoc 47d38038ded63e7475f52b11190a88ecf7f16b7bc13b5a277cfaea452e6bb240n/aHeodo
2020-10-16JA5SOPVPFGN9.docdoc de1e044b0692b4790189c84a6a3bff006ea424fc6ab7a94f3063c76dcf38b463Virustotal results 37.10%Heodo
2020-10-16BAL_FU2771949485IA.docdoc 928ec3474e204aa23a9fe0971c55669cb5ad9a752f46fdb16c46c974035fdd9fn/aHeodo
2020-10-16INV_PO_10162020EX.docdoc 85cafbd8a7231965377fdf168bcf3ebbf41b13c90266dd1bc18d4b20ca6b5f61Virustotal results 37.70%Heodo
2020-10-16INV_PO_10162020EX.docdoc 33c9159cb870c324fdc315846558083363dc9560f0156ba73478128c25a3b38cVirustotal results 32.76%Heodo
2020-10-16REP_SX7O4IC15XD.docdoc 331449b7cf090472612be3eaaf098869cd351983a12f809e5b6dc3860d35c556n/aHeodo
2020-10-16INV_FA7464982429MU.docdoc 8f3f984fbd71cc396aa42dd0f50f3368055a81b68e63712dfe482c04b6ac804eVirustotal results 30.65%Heodo
2020-10-16DOC_YHJLP01ETGIO.docdoc 0154d4baf810e1f7191ed4ff48db32d4b68684b1bde2a4f2d829de96a0ba428en/aHeodo
2020-10-16REP_UMEFE21RO2HKI.docdoc 13dd027c7d676424966985f919f6af29ceaa868e93910717ac651e65201aaa08Virustotal results 32.26%Heodo
2020-10-16REP_6826833635568953176511391.docdoc 6e1929d0be05fef19f8c294a2323971b7e2127acf7000f5e02e0a1a6555abee0Virustotal results 32.79%Heodo
2020-10-16G_PO_10162020EX.docdoc e6896dad4ee0bc73a3114762b88c9d93732c631e64c537334ac38f7c7c421141n/aHeodo
2020-10-16REP_OAE_100120_FLT_101620.docdoc 44b5ac3a1688e978f2ab497cb9a2b77b9a4a27edb617212e27b63035becfb148n/aHeodo
2020-10-16INV_PO_10162020EX.docdoc 8c5946d83496491e60468ec85aa90964c00945bcbd8e72e8b05b9f230d85f7f4n/aHeodo
2020-10-16FKI_100120_TEE_101620.docdoc 147b9616588be0def766828cbdc415348543d772fbf13e9a7fbe0b37b0ebf3fdn/aHeodo