URLhaus Database

You are currently viewing the URLhaus database entry for http://virtual-event-service.ch/cbd-distillate/lm/n7fwcuvi7bwa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:719904
URL: http://virtual-event-service.ch/cbd-distillate/lm/n7fwcuvi7bwa/
URL Status:Offline
Host: virtual-event-service.ch
Date added:2020-10-19 21:05:04 UTC
Last online:2020-10-20 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-19 21:06:40 UTC to abuse{at}internet-group[dot]net)
Takedown time:15 hours, 56 minutes Good (down since 2020-10-20 13:03:19 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-20DOC_53005426.docdoc b44bdca0b57d988b3f79fd7800cd0a520220048454d242516043c696a40fedd8Virustotal results 32.79%Heodo
2020-10-20FILE_KLKFIRBG64Q.docdoc 7662b0553d21014cf864eda278f0660d88df84a5d5be9258f2b862fb35e96c03n/aHeodo
2020-10-20PO_10202020EX.docdoc 9782f883772fd3776f442d517be050c3161dffde995dfec724d30a0aa6e40874Virustotal results 49.06%Heodo
2020-10-20INV_TGM_100120_PBM_102020.docdoc 6d6473dce1d0909d2bfe4fdb8cfd9373b90bc755d947c283ff53624b278a00ccn/aHeodo
2020-10-20PO_10202020EX.docdoc f5434fc590101707d60839d45f0da90b59a859ea342ca10fb508fe6dc8e6366eVirustotal results 50.82%Heodo
2020-10-20C_OMZ_100120_DSB_102020.docdoc 389bc51d53600d25892c976e3a9d694dd7cdb9e681dccd8d7f4a6f601959dee8n/aHeodo
2020-10-2091640341.docdoc bfcabe02aac68b07c32d86eeda208b75b2029527fad4cdc4839cbe14245d6d7cVirustotal results 49.18%Heodo
2020-10-20UXK_04511006.docdoc 59b11da7af351898590c99795dabaa6165941fec5c5e377a4b8edab164b057ddn/aHeodo
2020-10-20PDT_100120_PNG_102020.docdoc 8bbe1f406856f389e692b36a9a8da4626a6db9c8266164dc7443034c1162ea87Virustotal results 50.00%Heodo
2020-10-20K_T8TZP9F.docdoc 6034c3f10da662027ef2a9cb8754ae7c41fc080aa19c9f3218a50c744750cc19Virustotal results 50.00%Heodo
2020-10-20INV_EQJDSR6XMA.docdoc a154e3be027b6d907af8e8cc512ead9256db1d95c1de5aa16c40d39bab5bca81Virustotal results 46.67%Heodo
2020-10-20FILE_70183063786784205399350.docdoc 56089345642352de4d58ee77f62457946a127b7d69ad8dd5e519f447bc23f52en/aHeodo
2020-10-20BAL_77467537821098623.docdoc 50c9426575f1d5d3e6a7b47ff0fd82095b8e376b08a2388d8de17256f0997d3dVirustotal results 48.39%Heodo
2020-10-20P_JJ3154288303TK.docdoc 5c2800e73f66d8ffd5060d01074dd76a5f63dfd7ef6bd2c73b63bccb6fddf9bfVirustotal results 50.00%Heodo
2020-10-20FILE_822107271700443935156.docdoc 74afe87260e0cdd043828e9c02ff4cf56de8b36e0bd111f6423f32aff0814d1dVirustotal results 49.18%Heodo
2020-10-20R_BT5863983041QK.docdoc ac4497714502f4bf322f828da883f67da03d102cfc3991b1e9b2c6d3bfa1f15en/aHeodo
2020-10-2019890934.docdoc 25fbd5d4abfc8825056faeb812b39029cb907bf117d1bccb5935d2c8f091dc24Virustotal results 45.00%Heodo
2020-10-20PO_10202020EX.docdoc fb18155007bad9715366d6fb5775ade392b27d5dbf1e85c5d4216e088be20a6dn/aHeodo
2020-10-200876526440409.docdoc 8b254b8c0abac1adb9499fbbebe107f755b3ab4344672c7c8f293c22968737a5n/aHeodo
2020-10-20PO_10202020EX.docdoc 2a990db8252967a804aee88ff79d1b79b83bbd2ae730096cd6a5e04a6405d2f9Virustotal results 47.46%Heodo
2020-10-20PO_10202020EX.docdoc b115c55302deeae4e7e088c8dd801349c25089e867dc300251bb75936f96260fVirustotal results 43.33%Heodo
2020-10-20DOC_47894392.docdoc 7c97c02470de9409781c5d2124456af10eee6ca92664eccddf2ad51c9e729f33Virustotal results 43.33%Heodo
2020-10-2080248789887066688330.docdoc 8337cfc31ce0d2a11afe2ee6a21927a95783115eb07c10ad21f4f015338fc7d5Virustotal results 45.00%Heodo
2020-10-20INV_41457594.docdoc 06f71cd1c5534fb45c46484d93feedb1aa7cfd412094bd0d4893f79725a25e5bn/aHeodo
2020-10-20INV_PO_10202020EX.docdoc 8ac1680c0c5e8a7d29a679853b8f4bccac80d061e41b1fd2b5840998aba9911cn/aHeodo
2020-10-20OD3157390936HG.docdoc edb3881186a3db995e00c5909b9f64dbcc81f44d79277f0ab7a31cfb80bb1789Virustotal results 44.26%Heodo
2020-10-19INV_1144359662729.docdoc fcee7dbc5b468506c17395baa69a4ecf7efc61dc1994fc1f563c27cdd9792cd8Virustotal results 37.10%Heodo
2020-10-193065100203880065982.docdoc e7c568971c4cb61883d228c24f320f483676f136fb41d649e67edf9d5cfd2489Virustotal results 37.10%Heodo
2020-10-19INV_45359752729.docdoc 11a66c2f072fee7555919f55b2c48097db14cc1a757bac80867b69da1dc575cdVirustotal results 37.70%Heodo
2020-10-19BAL_141522406.docdoc 3ff8617732a305df8388b310d1848742bffcf5481aa9dc832a5c6b2e30cdeb1aVirustotal results 37.10% Heodo
2020-10-19PO_10202020EX.docdoc 7e69f33e4f71aaa1cf3811ca98c17f7d43b44d9553b166370556d17b0e5bbd81Virustotal results 35.00%Heodo
2020-10-1995483944268937980779.docdoc de03a7b73f65426eaf1bd2ce4ddb88c4e288be92a679a7390d760ec9a6017712Virustotal results 37.70% Heodo
2020-10-19DOC_97166919039264309508050.docdoc 9a1400c87eb903c4fa8bf92ef429307203a804d6e4a589f6472ea7b00c4b75fdn/a Heodo
2020-10-1930830233.docdoc d58cd29763a975f1b26a90e4406b8e1477794a8ab2762d2113e9e329c029ea04Virustotal results 36.07% Heodo
2020-10-19BAL_B9UKB20LS.docdoc 5e6567555b2e4a67f8f23c33992a9c668b4a43136bf33bd3c0cedebd8d99c290Virustotal results 37.10% Heodo