URLhaus Database

You are currently viewing the URLhaus database entry for http://webinar-service.com/assets/LLC/gu24DlCoFg/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:719721
URL: http://webinar-service.com/assets/LLC/gu24DlCoFg/
URL Status:Offline
Host: webinar-service.com
Date added:2020-10-19 20:10:06 UTC
Last online:2020-10-20 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-19 20:12:03 UTC to abuse{at}internet-group[dot]net)
Takedown time:17 hours, 3 minutes Good (down since 2020-10-20 13:15:09 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-20DAT_992892.docdoc 36d85e7b590d027ee48f10add640279d408c58137c90337b661ea084c08e78d7Virustotal results 32.26%Heodo
2020-10-20rep-20201020-MG824603.docdoc 450586378cf2949b4f467602bf40e4b8df5e2dd0bea988a634c1761552d5a09an/aHeodo
2020-10-20LIST_30290.docdoc 3f9097ae9a69048066939b773ee8003971659e39a80c2d587d25053612b78e08Virustotal results 32.26%Heodo
2020-10-20Rep 2453.docdoc 51b513cca5a4e90be640d97b66c713c274532ca0da6b3001c9c9bdf5aed5b050Virustotal results 29.82%Heodo
2020-10-20list-2020_10_20-056708.docdoc 6a73c8bf0bb87860076895464ed0da18a763d1401ea65bc5d68a172c2fd309b5Virustotal results 32.26%Heodo
2020-10-20Attachment 183.docdoc 268aa7df3be7ac167b651a571104e3bc18dbb5be66fa909b97fc9dc19792e88cn/aHeodo
2020-10-20Dat 2020_10_20.docdoc dc96ddabfd3f1213f7ee69ef80a111a67b3addf58bbd7e76518419f909e44aa1n/aHeodo
2020-10-20File.docdoc 2462812480e5804ab1a69d151bc6d95aef35a95e12e92b1fdc38baac4f87d9bfn/aHeodo
2020-10-20Mes_WOK3921.docdoc dbe7faf6030a69a441f4ec95b28e6d1bb79ed96a58798991cf2a86cd84b478a8n/aHeodo
2020-10-20DAT.docdoc 380ce3ace72784b8c33d60d1c012e291f20a96a8669707634b45ca07a35d5c57n/aHeodo
2020-10-20mes-20201020-1009.docdoc 8ba4a55821ab5c4ace72ff6864e380be096da53fc6fafae9b434e70cfb7b6fb6n/aHeodo
2020-10-20file_2020_10_20_67800.docdoc 47bd310d0911794576424dbd3ddb4295abe16323e10b691e7d54a0626e592170n/aHeodo
2020-10-20list DA51680.docdoc af1f9f4fd3ac6ccfd6df6dc63ef0133a9cb178361995c6bfb566d83531c6b882Virustotal results 33.33%Heodo
2020-10-20Attachments 2976966.docdoc 89fc864dae609f9e368dcfa7e141e1633a1343cdc90442aee73c094bb2e81ccfn/aHeodo
2020-10-20PG614 20201020 Y20627.docdoc 962a17d2cf91c9f5df4b767c711ed445db675831bfbe3f2f09faa707807e5fa4n/aHeodo
2020-10-20list 2020_10_20 0487633.docdoc 72f45b367198360b01de63433ce0d0cf962dcaad9942827ed5b30724197e51bbVirustotal results 31.15%Heodo
2020-10-20FILE 2020_10_20.docdoc 872c04229a897aadbcf7c85748e963c376926e75a2af466f18a02d24970687ffVirustotal results 32.73%Heodo
2020-10-20inf.docdoc 9fa23e7bdcaa378dc4c515ca09f6ab664fa5e32c7ec857baef39a7425281535dn/aHeodo
2020-10-20Attachments-N4621.docdoc d0e1f8621980227b8293b9c8c52aeae9743b9ffefe8adab468cae79c72bd2d71Virustotal results 50.00%Heodo
2020-10-20Attachment_20201020_T8634.docdoc 3481523719c66d648c8519ec510a81d054cbaa903c5ae60b4ac642a20748d587n/aHeodo
2020-10-20Rep OA042052.docdoc 193df1dc2f0c0e1a9f636ebe31c7e5f6c1a9f2187aeb7f7aa815e7ba3a2e5188Virustotal results 47.46%Heodo
2020-10-20dat 20128.docdoc 4d7b7e3f966e9c61fa57d5d9fca513ffd348f8e0127ae7d177c075110fad122eVirustotal results 48.39%Heodo
2020-10-20LIST-20201020-QCB160106.docdoc 0d9efcea665e28dc8d2c3e8de13fec5af94bea6e35a96b42a8e70567c7876b80Virustotal results 46.55%Heodo
2020-10-20LIST 2020_10_20 Y941184.docdoc 13f6fe0faae4985f8c67dc4b96ecad1e6235069ed7ca4178ed0e78db8feaf67aVirustotal results 47.06%Heodo
2020-10-20Doc 2020_10_20 177740.docdoc 3e8d19e4337bc955ae013db74df80e9f8de66632369f3f0d6609a42135243041Virustotal results 43.48%Heodo
2020-10-204896_2020_10_20_471209.docdoc b548be3fe343498e82f9fb62fe50ccb099b09df567f62a6a557a14f5d3773fbeVirustotal results 43.33%Heodo
2020-10-20INF.docdoc ca174bdeaf9ffc3d735be12a465e24262c0f887defdde6818f3e0118e11a182eVirustotal results 45.16%Heodo
2020-10-20ARC_969.docdoc 17bcf85c3e8000d32daecede094fee54c474bc66ab96fad5dbc428959ee0166bVirustotal results 45.16%Heodo
2020-10-20DAT_40215.docdoc 44c2c1f67fd38ab65b3a8424f7d5ace8c5ed6e044ee2cf9171a215b37481999aVirustotal results 45.00%Heodo
2020-10-20arc-2020_10_20-O741226.docdoc 639663610cca6441a36141da55733332d7cc089dad3fb409b8857db78e0e6ac0n/a Heodo
2020-10-20file 20201020 P8783.docdoc 427356e6cb2bd5180118dd4c2cf522c27331b85388ddf6405839f2a60baf8d49Virustotal results 41.94%Heodo
2020-10-19Mes_20201020_BI95581.docdoc 9ae6be8f5b646a1862d814e91092889f433abe7f883de9dd29de175305e3ea45Virustotal results 40.32% Heodo
2020-10-19Arc-FA24081.docdoc 3b15710a3ff2b8f40af56ef3f69de2a7d1bc5f6213ed69d4c26e8362ac7e8a68Virustotal results 37.10% Heodo
2020-10-19619IYQ_2020_10_20.docdoc 53a8e85b580a174428b6aea5df11ebd5adc7e51dda9f0a65f02dce58d7fdaf41Virustotal results 36.54%Heodo
2020-10-19dat_20201020_7812.docdoc e0ba3e59dc27ee7783d5cbf288d39d0c0587f3f63f3a7806fd5d2cec5d2e9ed0Virustotal results 37.10%Heodo
2020-10-19list 432.docdoc 690a4efeaba7d8fb29ee6f9d39381c4f7ac5f540bd5e6ee68505e61e3969d07cVirustotal results 37.10%Heodo
2020-10-19Attachment_2020_10_20_MJV3057.docdoc 462d667db40bf34b4c87eac6795e3be18930efb8cf95f78c3a6eda8d21d6c95bVirustotal results 37.10% Heodo
2020-10-19dat 2020_10_20 NL292.docdoc 71e4ec3e11f734f0ce73a46fcbe3079f4418154382d6389da01859b9ad74bd99n/a Heodo
2020-10-19DF06527-CEE747960.docdoc ed95e2423b60e7aed421c0a27101fd4fe4da1410dd3ef2543c5cd37fa64d367dVirustotal results 37.10% Heodo
2020-10-19L203-2020_10_19-YVS394.docdoc 91e9ec22d3f510e1b7ba947611f13faf6b0d80eac73e3672b1d5fffafed7b759n/aHeodo
2020-10-19UNTITLED-2020_10_19-2568.docdoc ad3a5964b5ee30bc6c4ec2df2b461d50098115a9d71b598817ea93b2a1004ae8n/aHeodo