URLhaus Database

You are currently viewing the URLhaus database entry for http://www.kentschool.co.uk/scgi-bin/invoice/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:723392
URL: http://www.kentschool.co.uk/scgi-bin/invoice/
URL Status:Offline
Host: www.kentschool.co.uk
Date added:2020-10-20 12:22:08 UTC
Last online:2021-01-11 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-20 12:24:27 UTC to abuse{at}aptum[dot]com)
Takedown time:2 months, 22 days, 20 hours, 43 minutes Bad (down since 2021-01-11 09:07:58 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22FILE_18196079.docdoc 5216126689ce29d0ead65c0774e9b395ade4b5c2ce71e69d464f3a603a22bdb4Virustotal results 50.00%Heodo
2020-10-22DOC_EA9551371824ZJ.docdoc 9b4d04d1dad15a8a798ceba5f12e03c81a04335dca8703f2e4790675688590aaVirustotal results 44.26%Heodo
2020-10-22G_57567426.docdoc 6c95fbebb269357839fdfbcd944c7cae0609949190e1cceb995fa07ee1a2f5dbVirustotal results 42.59%Heodo
2020-10-22DPG_100120_OSR_102220.docdoc 2da1ed7b630f4a606c6c65a41dc9c852015d64174113023eff5a63c64f5eac0dVirustotal results 40.68%Heodo
2020-10-2191330726.docdoc 5d0aa0758ab6ea6f3bde55fd7a21fdc8813fe575af13e19a7d0b134a65508638Virustotal results 40.98%Heodo
2020-10-21REP_24195066.docdoc 890535144da2084ee8e9431e6521be9719100cc5bec7679a4d7bdce3763a692cVirustotal results 39.34%Heodo
2020-10-2108600116.docdoc 33e33d42123328ea3e0a1826ed952a84ba6a0972e21c71d6f9b607b1d1fef8c5n/aHeodo
2020-10-21A_34936226.docdoc 0a5d824ca0ad50ddefe5b2ec81f933ffdbcdbe615da5a32ae460f4ae70a85be5Virustotal results 42.31%Heodo
2020-10-21REP_DLB_100120_FDX_102120.docdoc c3caf9f914df7b8d90ac3dd35fd1ad24ec34a4d1af94293e9002a9f8f943703eVirustotal results 33.96%Heodo
2020-10-21DOC_FKG_100120_LRX_102120.docdoc 8e07255af4832bb03936bc032f7fd259b6b71374752c924256397c8ab56d2e09Virustotal results 30.77%Heodo
2020-10-21TNMCH9VMRC.docdoc 65afacffdde9c2202e28125192dbfc1094522200913e53bd6d003b6a1754f3f7Virustotal results 20.97%Heodo
2020-10-21BAL_XS3991512998MD.docdoc fe647619aa21d737e9f948fb92a9286a5f03bac06ab881535069fe060bfd622cVirustotal results 33.96%Heodo
2020-10-21KMLZ_COZ_100120_NLU_102120.docdoc df23f7673bff775b6e684f5ba9d205d51e926537e185534fb4726ce87e541f04Virustotal results 30.00%Heodo
2020-10-21REP_XQE_100120_QVX_102120.docdoc b27ba8b639475544466c43ebd426609308dcc0c1f4842f45627c564e96678335Virustotal results 32.69%Heodo
2020-10-21Y_1758450141872.docdoc 1e61f3c2c68fda87e0f2ba6a98d5e8ef53a5aab53b29c60be7ec3260412dbd0dVirustotal results 32.69%Heodo
2020-10-2166651365.docdoc e88388bec3164944678627db062b753e76b6f7f710a9fabc43dfe69e7df2f366Virustotal results 27.42%Heodo
2020-10-21Y_11290580.docdoc 71e55ad14abd213d5627b65f8f045b2c9337c629a556868c692376c331d9fa58n/aHeodo
2020-10-2172705386.docdoc 442199396365c09418756cb80ff20ce46129c4a0cc2cfc6dabf5e8bb2cc42437n/aHeodo
2020-10-21N_44852751678.docdoc efc52b61116de71a3b3191b7bf3d79f9152dd3d3fa3d34889a4f11ef178d9e68Virustotal results 50.00%Heodo
2020-10-21B_LJ0419669355WW.docdoc ecf5ecbbe5e2904306de22bb28532af5b7e0cbadc8446cbb2fa456255683e972Virustotal results 50.82%Heodo
2020-10-21DOC_01I7CMJT06.docdoc 44ba6008506a7673feb84fe893ea958153dae8b82def146db7f497d3537bfbceVirustotal results 48.33%Heodo
2020-10-21KC_N9WWRDS.docdoc 9d3040374b112258a669d0ed8b5cc9bf7444e7ab0e937ebff0e3cab6286ab626Virustotal results 50.98%Heodo
2020-10-21DOC_VW0936639710WQ.docdoc 459f18e2e1fdb9743211b063f7639026f6f6123fd5bae86b4c345dfb76f1d152Virustotal results 50.98%Heodo
2020-10-21INV_74867709.docdoc b886042bae6dcbb3ff1e2343630f7c873d2fedbc6b59147c40346b16f69c8603Virustotal results 48.33%Heodo
2020-10-21FILE_A0TARL4X38SVM9I.docdoc 844d9efee04baab149ff86c31963c101151796f861eb84cd816fde655e3f7f78Virustotal results 54.10%Heodo
2020-10-21N_UC0432271099CD.docdoc ec57f3677533e2cfecee42c14801e99d80ee3ef3bd8044c0b11040b1383fe435Virustotal results 52.63%Heodo
2020-10-21G_PO_10212020EX.docdoc 74062d2800c0daf15d47d761483d2279e98ec058f5999f708bef73eee0c514caVirustotal results 47.17%Heodo
2020-10-21W_07270904.docdoc ff560f270317afc9d31e1eae55c277c99bdd45f9fbd3a2dc44e8929a25ff065cVirustotal results 48.33%Heodo
2020-10-21REP_SRW_100120_LQB_102120.docdoc cd230affe2cef8dd5938e3ea670dbd706c65f93341c35d2eaecf1a5ae6d8203aVirustotal results 48.28%Heodo
2020-10-21HI0ERRHLNJD.docdoc d0337f9e3f826764678ff11fd7e2b49a84db21bd33615cd0cc63e6654c502d9an/aHeodo
2020-10-21BAL_BO4936428591UU.docdoc a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225Virustotal results 43.40%Heodo
2020-10-21INV_I1CPFCS7UM1FT.docdoc 730dc7281140bb144e159ad27638ff4f4d3a021999727a26b7731250343a3f76n/aHeodo
2020-10-213T648O2Y0V.docdoc 076c6a22ade8278559bc05b10009c61e2bea31bec02ae5d2b92466600ecbb446Virustotal results 40.35%Heodo
2020-10-21LY9603161694QC.docdoc 8db61b871aac2949105b26c1ca2a22579e3b3d6e99aab20279c3bbea5dc87b8bn/aHeodo
2020-10-21REP_OQ4KH6H2A.docdoc 2465db836fb8ce33c72ba9c55528a00a290b770a2bb977ecaed539b453c1211bVirustotal results 40.38%Heodo
2020-10-21EK_XA4937912857YD.docdoc e3b58bc04eecbb1fb55ace8390236594852afd2f07faf2b8bb7c84dec2fb1da1Virustotal results 40.98%Heodo
2020-10-21PO_10212020EX.docdoc 17ac0ed02b6127efefaa0cc936604bc12947c394e902bb8bf88e37b6f0829d9fn/aHeodo
2020-10-20REP_H2WVVL9P64XYN1.docdoc 681fa75f785a2b6eede8e0045ce0ba666fc0be736b8bba8d23f474b0bc400a7fVirustotal results 39.62%Heodo
2020-10-20BAL_7248479696182704825913.docdoc 8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915eVirustotal results 44.64%Heodo
2020-10-20INV_MXT_100120_SEW_102020.docdoc d5f91e755ac8a30effb49d42cec3f28324efed4fa814de5d5ec2464fd1136a62Virustotal results 41.67%Heodo
2020-10-20REP_123562455776487.docdoc aec70c8b5a7b8868a095ff2fb70741ad4fb204eeaf4b64d0c3663979d867753fVirustotal results 32.26%Heodo
2020-10-20BAL_JTG_100120_GOG_102020.docdoc 6ca4a6fa67974792ae6a65a43d14bdfefab9b3f279f3a0774c078f9f561a5eabVirustotal results 31.15%Heodo
2020-10-20PO_10202020EX.docdoc ddfed25e7057b0ce36b9d4e9543d67b6533c84e1dd80a99777a26a0841ecc6c2Virustotal results 37.70%Heodo
2020-10-20MEK_100120_SPU_102020.docdoc 9e1bbec7e9134cf807896248560151efff4f98cbeaaffe5a400a24de26aabcd0n/aHeodo
2020-10-20HOG_100120_EJE_102020.docdoc 24fdda7a45a8fd1c89cd8b6fb30b6b6e90fbf41b947936afade517a394dbf1edn/aHeodo