URLhaus Database

You are currently viewing the URLhaus database entry for https://cliffordtradings.com/member/images/alien_epin_receipt/INC/6kj9qm9qimvtii/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:703060
URL: https://cliffordtradings.com/member/images/alien_epin_receipt/INC/6kj9qm9qimvtii/
URL Status:Offline
Host: cliffordtradings.com
Date added:2020-10-16 17:42:10 UTC
Last online:2020-10-19 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003017587 created on 2020-10-16 17:44:05 UTC)
Takedown time:3 days, 0 hours, 36 minutes Bad (down since 2020-10-19 18:20:25 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17M_UXK_100120_TBF_101720.docdoc 360a5cb7eed923017b4ef07460e7652362cdf1fc0a902516addbb8e244e30134Virustotal results 53.23%Heodo
2020-10-17INV_YFA_100120_PWF_101720.docdoc b61cc94625d0aec1674d3ffb90ade5b30575e1eb8a755f9944cfcb4d40378041Virustotal results 51.67%Heodo
2020-10-17BAL_922619881.docdoc c5b951c65f67f1136dedc670dfa0cf0fe59abb9172a0fe5a6011e2882e129e8aVirustotal results 54.10%Heodo
2020-10-17F_PO_10172020EX.docdoc 169fa4037e8c45a38a3b2e862d860e955fc810c63682c78155bbbd45820b83bfVirustotal results 54.84%Heodo
2020-10-17DOC_FK9308372079BW.docdoc fa3c245c0bfe5a4b95d229481cbdac5dc3798f1948badeecb3dc692f589c5f7fVirustotal results 53.23%Heodo
2020-10-17IJVQP813I.docdoc 2b95f52b2f665277c1b271f68b7ac017b7653d398e73877b7c8db4bf2ccaa52cVirustotal results 52.46%Heodo
2020-10-17K_NT6129210764VZ.docdoc 4ff23dc1f01527658819824659e03edb6ee7d16cdf8704e61548acf040415238Virustotal results 48.33%Heodo
2020-10-17FILE_ODB_100120_KRO_101720.docdoc ff9996026d66c80170010bab3d84d0ba1ecac3a6b87f8e694008feb0bc0b3d4fVirustotal results 53.23%Heodo
2020-10-17QGZW_HCJ_100120_DJF_101720.docdoc 5ee50b193e5286fe85dd62d6111cc21718bc601d35eccbd1257b46df999d9d69Virustotal results 54.10%Heodo
2020-10-17PO_10172020EX.docdoc 82886986ef5507c85b6e17a8904a70bb3b67212863f5f835fa7bc3392d070f80Virustotal results 53.23%Heodo
2020-10-17FILE_46699369.docdoc 9e5f94414bcc33c4f9405dd2c0747ccc8c79921dbaab834a1ce8cd0205bb1f9bn/aHeodo
2020-10-17434999685305350384406.docdoc 85a42a8d612d20af55e105cdd7caa6c881ebae398c26dea03e0cf147e543f917n/aHeodo
2020-10-17XR6258766178WM.docdoc ab8be8e21a7c5f0a158818bdf5fa9883acaffa78d8cfa5cae36ba7d756b8fed6n/aHeodo
2020-10-17INV_26583778.docdoc 499b6b84f53cf364ec9102e8947398e3435340efcc0638338dc94d2ffe7f635dn/aHeodo
2020-10-1763262557.docdoc 7563b098e425087d70e59bc0ad1d712d39ec6286fc63eaa9a9eea68f9a7ede26Virustotal results 51.61%Heodo
2020-10-17INV_TX5646304044PZ.docdoc 252e05a52d4bc9d3d266533b1a75bfab674989b8d3a4f0ff8d898529379329afn/aHeodo
2020-10-17DOC_JS6873238792YF.docdoc c85fe8825461de0503c8b9b612f01c88a1124e0c33ace58d20c22cf40c4bd03fVirustotal results 51.61%Heodo
2020-10-1769577220302527358.docdoc d19c1e922354570a8700f8dc25900a7c8ae4bee4b08908a4c6cad2309eff1ba1Virustotal results 51.61%Heodo
2020-10-17REP_PO_10172020EX.docdoc 02730b23749bb5e945d78771425520fe94a15b5647f34a7efeca54a72c9297c9n/aHeodo
2020-10-17BAL_PO_10172020EX.docdoc cad389f338446345616f9a4f005b47f186be55fdd914d1b88f42bc4f26220685n/aHeodo
2020-10-1738142362.docdoc fd0ec2733cb7fc4d8f934cf81b56a9a6fd2dd7290c257cdf4c2a1b3da2bcfc10n/aHeodo
2020-10-17INV_691242242857776947.docdoc 4f6043ed53481592c3b9db4608a157df568b466062cba2018b8e5c59bfb40563Virustotal results 52.46%Heodo
2020-10-17Q_37039911.docdoc 72bc6543f22de398e1374caed638e9a1d24ec0b37a5fa9b5ac10ade7559ab839Virustotal results 51.67%Heodo
2020-10-17H33I5B0V7XDGL09.docdoc c40e490d1149a43b982a7c65d5f04d36117a86623374f75bf8d47f31090f8b18n/aHeodo
2020-10-16SEE_100120_UUE_101720.docdoc c25321d27755dd74dfcb51c16c96a607d16b09b59b1cbe7f025dc89763d9d630Virustotal results 50.00%Heodo
2020-10-16PO_10172020EX.docdoc 3772d83153c2d54a8a3dd72055370d3db69948bf4eafeb69018ce518c7801d05n/aHeodo
2020-10-16REP_QISI0QMPY9RHR.docdoc 6647111dcc98f3a01470eee7de5a3b93b579a08c585cd3553cbfbdf3d54db556Virustotal results 48.39%Heodo
2020-10-16DOC_BM8237116814ZC.docdoc a6c0c0fb1ee9b17a84de711e159b1334026597a8484768ca42e1a0955b445b60n/aHeodo
2020-10-16C_BBY_100120_MHJ_101720.docdoc 6539d2ac4a847b3444866e22b642a335e3d8b92d40031a090fa315aef1af2930Virustotal results 51.61%Heodo
2020-10-16REP_9767681520.docdoc 23600bb2ceb80154b049764a263e10cc02148048a332d10edf6458fc4b2cc34cVirustotal results 46.77%Heodo
2020-10-16OTL_100120_YRR_101720.docdoc 7bc4797a66cfb8dbdc6f95c5568595d0229200838644a798b7228d1bde86b554Virustotal results 46.77%Heodo
2020-10-16FOG_100120_RST_101720.docdoc ca85dbfecc73cb293b1af1230d6087dbab85c700a767a552cbadf40af3eeb745Virustotal results 46.77%Heodo
2020-10-16INV_PO_10162020EX.docdoc 1c3dd09ac057aa6b432e637992b2d3f2dac3ec4212fbd51771b0bfd7be470110Virustotal results 48.33%Heodo
2020-10-16FILE_BKH_100120_JSD_101620.docdoc 153c0d18a1b3639fe85f33bd426a65c66aa6af75ba5aa2ebfa89d6cdb7cc62aan/aHeodo
2020-10-16REP_49147348.docdoc 9051dea430fb5eea96e34f2c938f3eaa2e672eeb73fa5d8ee44680ec0b906f26Virustotal results 46.77%Heodo
2020-10-16REP_AF7392382974YT.docdoc f05cfe8aae97657d11e98c72cd612a7d57f949a47efcf75125edfd9e7a7caa4eVirustotal results 44.26%Heodo
2020-10-16FAE_100120_YOO_101620.docdoc d178d1b7e7e72e0374ee8770b3ad646873f142609a03a65c4585c5f5e27777fdVirustotal results 43.55%Heodo
2020-10-16ZV0489760955HK.docdoc 0a0ac374574dd78365ae4b5e84357a2387d99dd14752f6a53391324841412b19n/aHeodo
2020-10-16PO_10162020EX.docdoc e564165bf09133c12a55224f2d789bf423c8ea87814c3e11a7d068a951ec3fb1Virustotal results 43.55%Heodo
2020-10-16Y_11384788.docdoc 9d28dd58c8ee62277f91e152a8c7e9964052f5025f10424ec75b9563e6b50cf2Virustotal results 46.77%Heodo
2020-10-16JSVP_03303265940569206361.docdoc eee6727eb427510fdf3fc2a8dffc94ab47b897f5c20b69a87cff6f9a5024fe89n/aHeodo
2020-10-16JE7742821738HC.docdoc 89157919f283aad6306a78ae43e54b55c2431a0a64dbfcef22df553bf09ae681Virustotal results 40.98%Heodo