URLhaus Database

You are currently viewing the URLhaus database entry for http://abstractexplosion.com/fire/3236396948/5RL7wlT2D3YOdmYISHSp/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:703090
URL: http://abstractexplosion.com/fire/3236396948/5RL7wlT2D3YOdmYISHSp/
URL Status:Offline
Host: abstractexplosion.com
Date added:2020-10-16 17:47:08 UTC
Last online:2020-10-22 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-16 17:48:31 UTC to abuse{at}a2hosting[dot]com)
Takedown time:5 days, 9 hours, 47 minutes Bad (down since 2020-10-22 03:35:54 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17Rep 167.docdoc 294c6f87d8514072c30988bd55dd643c5c018b9f9ae05b9db1a97d034b31e092Virustotal results 55.00%Heodo
2020-10-17File-20201017.docdoc 0f4e937ecf4435c0d84956b70e83ca82c0cd15fe9184709e7616c8cc60512590n/aHeodo
2020-10-17Attachments ZYG759992.docdoc ba1aeafd7f85b7fe6d27c96a0fc87b47c20150c8adb74124716adeb6ef26a98bn/aHeodo
2020-10-17Rep-397.docdoc 1cee91ca2689e165e0a72614f98d0dc71da6671ecd0e7f32bb3d6d2710e8dd0dn/aHeodo
2020-10-17LIST-6996984.docdoc 7e8f0d3a035cc6aaf58e4f892900fd85148d09fb03b8b258eaca0db120d1c628n/aHeodo
2020-10-17ARC-2020_10_17-0195.docdoc 308b5a0affafedcef7431861d7785ddf4db3314cf5e18d5fdbc4c0168cc63ea7n/aHeodo
2020-10-17Mes_20201017_OG96604.docdoc 4885a6fe3e6e3cf17f4b9c157b848115b2b51fc4b8e3e478650c6d8401062476Virustotal results 51.61%Heodo
2020-10-17Inf 20201017.docdoc 6820620122b2210629007eaae85c11949f1d113edfa9e10c0a0678069bcefa83Virustotal results 53.23%Heodo
2020-10-1701227706-2020_10_17-727909.docdoc fca525a70cdbc09d5adb7e320849a4e9958f5edb129e2accce15281a340edf54n/aHeodo
2020-10-17inf 2020_10_17 7464643.docdoc ac172c6a7fb2f8004f019c9dd8d7400f660d58187ed3adcf2502c5effc15271bVirustotal results 51.61%Heodo
2020-10-17UNTITLED.docdoc c64264c7336d7e9f516999fa287be55be63b634b63f5ebbf1bab24e38ada5e8en/aHeodo
2020-10-17file-33317.docdoc b5ea62943f3b8f07f8fc66e4e35a1d4d12022eae32ee901b016f48bf66fec06fVirustotal results 51.61%Heodo
2020-10-17Mes 2020_10_17 4905909.docdoc 64791e6b0eec05add1dc9e363173e850e7d26305d1f3940a7f966c42544b2147Virustotal results 51.61%Heodo
2020-10-16inf 20201017 7967.docdoc e6c583d968049b133209f01abf2a46bfb3fdb4abd68b5f0ef3e74881c438d1c5Virustotal results 52.46%Heodo
2020-10-16Attachment_2020_10_17_SCR0601.docdoc 38a7276166183fb51e2c60c91165d139295de90105097cb4e24b077d3fa5d56fVirustotal results 51.61%Heodo
2020-10-16Mes-20201017.docdoc 691b2fc6acbee6cf5fb93b6afad38eb2f61c4a211cb17cb3c617c2bdebd48f61Virustotal results 49.06%Heodo
2020-10-16MES-888.docdoc ea0d3c6f16a0b6c751479d44c06e9fc4ee4f7e47803b008c8ac0ea1ae93f5171Virustotal results 52.46%Heodo
2020-10-16List 20201017 L114.docdoc 4773da38da0ba3154bbb3b813c803bd6e1f9ab3bad1888f1402f7b17073620ecn/aHeodo
2020-10-16mes_2020_10_17_115058.docdoc 10b0ede6060dd0c9b69d6519e93f211c940959e36b1e98a6dcc1ad9a4093c4acVirustotal results 51.61%Heodo
2020-10-16Inf-20201016-TGR6469.docdoc 0d613e3b8dd87abdca992787394ba93c986820dd46d13b63128699ff814aa6e7Virustotal results 52.46%Heodo
2020-10-16Arc-2020_10_16-KI08511.docdoc 14fb23d425064edf96ba4acb656479002d69054eccbae3688760eda138dbb67cVirustotal results 51.61%Heodo
2020-10-16list_045951.docdoc ec0b8068eb55934e5173fd8006c8cff634922830e46673abcd0c0a2e2e6d3b4fn/aHeodo
2020-10-16REP-2020_10_16-U8484.docdoc de085b2aa71406dd284396b50a4931dc24c0648c58b6b5f8dc22b9d7b2d491d7n/aHeodo
2020-10-16ARC LHX030.docdoc 946f2932db99a282d3ebdec264e3de1b8c260b12f95769381d8bc99433b66b93Virustotal results 50.82%Heodo
2020-10-16INF.docdoc 0ec477654d5520def268531ea738a0d3bd64694440a9185716a92c79625e408cVirustotal results 51.67%Heodo
2020-10-16Inf_20201016_HQ52718.docdoc b4c0e8d0e75a368f062085d1359814e8f1735154278231aa2b701d875f0f6cfan/aHeodo
2020-10-16ARC 2020_10_16 7496.docdoc 0e044c945bad69533f1cc676a53ed59d287e4681c239be2a61e9e4c46775da4dn/aHeodo
2020-10-16UNTITLED-FVI12833.docdoc 3cc8c557bf3d2dd43a937e6a38d78f32dddf8e118a06663c5eb8f3dbb4bb9afcn/aHeodo