URLhaus Database

You are currently viewing the URLhaus database entry for http://www.productszone.in/wp-includes/YQLXOCLEX/B0Sd0SyuqxlXQ5PgQi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:704309
URL: http://www.productszone.in/wp-includes/YQLXOCLEX/B0Sd0SyuqxlXQ5PgQi/
URL Status:Offline
Host: www.productszone.in
Date added:2020-10-16 22:21:04 UTC
Last online:2020-10-19 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-16 22:22:22 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:2 days, 7 hours, 49 minutes Poor (down since 2020-10-19 06:11:23 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17File_20201017_974653.docdoc 61a22d08e168e2bce5feaf96a0859d60c6bd10b4c9f1a32f302c9e75a4463650n/aHeodo
2020-10-17INF-6987070.docdoc c147f6f4d8e08ce92756aea055fb18dc3398e77ce2ba5a71bfa3d6eb5f3de750Virustotal results 53.23%Heodo
2020-10-17233EFZ 20201017 UX5732.docdoc d9d1d86f914b8355d89051497be99bfa6c7ea7a57c53b22aab03d867c5e3a531n/aHeodo
2020-10-17FILE-2020_10_17-4696221.docdoc c8647133e45a641a9cefb6726994df00dcfc9fa481d38e667eab8f74f75c54b0n/aHeodo
2020-10-17T985_2020_10_17_97775.docdoc bf49014159c593f5f2cf87f3a240cb41dfb19400169039b8530fb844a82b722cn/aHeodo
2020-10-17Rep-20201017-1711.docdoc 3fef345a1fa8f779f98589ca704dff21e59f8842175c3cdab8caeb16e5e61ad2Virustotal results 53.33%Heodo
2020-10-17inf 2020_10_17 086.docdoc 559b9d806bede7814d4c85984a6e6815356e1ce8e730ca7907309e03eed5fcaeVirustotal results 53.23%Heodo
2020-10-17dat 2020_10_17 ID7458.docdoc 115b344de8011d635adae59417a4dab2f992101ce81619ffe1b1b0423d9df79an/aHeodo
2020-10-17doc.docdoc ac172c6a7fb2f8004f019c9dd8d7400f660d58187ed3adcf2502c5effc15271bVirustotal results 51.61%Heodo
2020-10-17inf.docdoc c14604804cc32fb30b522dd9dff211839670ae27b989326efce1e69589bc9d36n/aHeodo
2020-10-17List 2020_10_17 498.docdoc b5ea62943f3b8f07f8fc66e4e35a1d4d12022eae32ee901b016f48bf66fec06fn/aHeodo
2020-10-16Rep 20201017 XLA654.docdoc a9d9b8357ff803bd36d7bd0c12c770487fe774ccd22e81318606bad0f6ddaf90Virustotal results 52.46%Heodo
2020-10-16inf-8234.docdoc 528b63ef8c44d0a5b08974fb6ad9efa60e0021ce6993d25b30ef1b90c00df222Virustotal results 50.82%Heodo
2020-10-16ARC_5330.docdoc d546749eeff6828f731a5f79a2352276696d9ce6d5614dc6e9779fa2dbbe6799n/aHeodo
2020-10-16list-2020_10_17-MA8162.docdoc 691b2fc6acbee6cf5fb93b6afad38eb2f61c4a211cb17cb3c617c2bdebd48f61Virustotal results 49.06%Heodo
2020-10-16Arc 20201017 ON811708.docdoc 164394c49305b99720cbc80504c003fa10b45232decac5c6e7ec20bf1827374eVirustotal results 51.61%Heodo