URLhaus Database

You are currently viewing the URLhaus database entry for http://fashion-cactus.site/wp-content/attachments/obbo9avnxq6xa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	723397
URL:	http://fashion-cactus.site/wp-content/attachments/obbo9avnxq6xa/
URL Status:	Offline
Host:	fashion-cactus.site
Date added:	2020-10-20 12:22:09 UTC
Last online:	2020-10-26 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-20 12:25:00 UTC to abuse{at}icn[dot]bg)
Takedown time:	6 days, 1 hours, 57 minutes (down since 2020-10-26 14:22:53 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-22	REP_YBLCNV1D4.doc	doc	74fdfd61d063ce1229044436c55ac1dba3e3c765e8b26674587cbde6704601a1	50.00%	Heodo
2020-10-22	REP_SJ3350986334NE.doc	doc	056f25e8944119ad3d9d651d77cc32cef6621c5cb3498b47161738be7aff416e	49.06%	Heodo
2020-10-22	FK_17245501.doc	doc	5f78a5aca1e94c23a7419344cd314f2a898f88bd3890d483a4d651524f6b5b6d	47.17%	Heodo
2020-10-22	851176908864848918749.doc	doc	0b25fca35bd60d2257616a1c1adbf89fefba07969c5a0fc3aa22d3f43ad7c2f4	45.00%	Heodo
2020-10-22	REP_PO_10222020EX.doc	doc	9b4d04d1dad15a8a798ceba5f12e03c81a04335dca8703f2e4790675688590aa	44.26%	Heodo
2020-10-22	EQR_PO_10222020EX.doc	doc	9e346d2d5fb28544f1e3ef2c3219b91524626f60f602d04c87ae335086e6da44	41.82%	Heodo
2020-10-22	REP_YDJ_100120_RMK_102220.doc	doc	fe314a0b208937d0cb139970fc8d154fe4783a93df0596a8f15a61b273fa640e	42.31%	Heodo
2020-10-21	PO_10222020EX.doc	doc	6e31c3ec9f97261ccaa0df6af6c8492d10d748514620ec9c351beb1436269e0b	40.38%	Heodo
2020-10-21	PO_10212020EX.doc	doc	890535144da2084ee8e9431e6521be9719100cc5bec7679a4d7bdce3763a692c	41.51%	Heodo
2020-10-21	PO_10212020EX.doc	doc	c918e4496eda71d4934774f5bed0f956d1810ac516f9460cfe22f4abeddf2af9	30.65%	Heodo
2020-10-21	FILE_YS7991858594US.doc	doc	0f850282e2508eb5472f9cbae697cfca8675a66d6581f269509f5db6a9f30e53	31.67%	Heodo
2020-10-21	9596183258966680.doc	doc	202d0af84b5b68cf2a54ce8f9afa3befc8f994b934e380cbc1dab9dfdbd11bcc	30.65%	Heodo
2020-10-21	INV_PO_10212020EX.doc	doc	9bac5aea4e602665d813c11648cf1da3f9fe143d1e41aadbd68a146a050eb52a	33.96%	Heodo
2020-10-21	L_PO_10212020EX.doc	doc	8afe1388f2757e768a8714f2f6543de0464e092f33de3b865b11fa6fcdf38cbf	30.00%	Heodo
2020-10-21	BAL_PO_10212020EX.doc	doc	148588102731dd9742cd698c882b48c4b49cbfdd868647a83a15a0cbb1f0c8ca	28.85%	Heodo
2020-10-21	4796755048758.doc	doc	988037ab30e7fefdcaff766f160658d982522969787c02fddfd09ce912573dc1	n/a	Heodo
2020-10-21	OW_49321847.doc	doc	99e0cc7017a32fc566d969c88fae5cc8db236858e93bfe804e18a1c4a08e94e8	50.00%	Heodo
2020-10-21	BAL_ODJ_100120_YGF_102120.doc	doc	7bb0c64469d6f91a86db62a275cfbfa0b6bbf04e10bde77f507649c0adbd844a	50.94%	Heodo
2020-10-21	EM_ATC_100120_WOI_102120.doc	doc	f63551b5b6a12a9fe329cae332d0d952a9e56640ed81da22996a4ee0efd379c1	50.94%	Heodo
2020-10-21	43333831.doc	doc	844d9efee04baab149ff86c31963c101151796f861eb84cd816fde655e3f7f78	39.34%	Heodo
2020-10-21	FILE_FQN527SEEVOZ.doc	doc	7f908989bf2f5cff2696b9acfd100b4b53d53710a1ee8b56aff626fbad9ba829	52.54%	Heodo
2020-10-21	QMKE_18702279.doc	doc	bde4c84d280a8a946e6bc75242c05f9d2b7feb93f84625d34174f8b92b772a15	50.00%	Heodo
2020-10-21	INV_33674898.doc	doc	9a65518effade1bf32d7589d7f7a8a028f9fa7f1fca4491673680847d26d3f0a	38.89%	Heodo
2020-10-21	H_GGR_100120_XKO_102120.doc	doc	1393994f35a8a5910cbc519d9a9d9baa91d4dbc85080bea49d95c152892a2aab	40.32%	Heodo
2020-10-21	H2M053L7F9.doc	doc	a78451771b5a8e66fd912d10f9b621e52239473334785ec68755db5e60594ecb	n/a	Heodo
2020-10-21	SQU_100120_UGR_102120.doc	doc	7bf2ce4dd307b31f8b2eeff8a5ca658f7a680a9bb132d54d6182c711504b0ac3	n/a	Heodo
2020-10-20	INV_82298295.doc	doc	681fa75f785a2b6eede8e0045ce0ba666fc0be736b8bba8d23f474b0bc400a7f	n/a	Heodo
2020-10-20	INV_XW5603815784QW.doc	doc	bbd05af56a4dc95314278a40df6390cfc3ed9f3c4986801470aa7c753f4536fb	32.26%	Heodo
2020-10-20	J_78783079.doc	doc	8d58b7fda459a15a250badc4c86d3c51dc59296c28a73817d8f7dfb27bf47649	37.29%	Heodo
2020-10-20	BAL_49033618.doc	doc	dc4424c660cc882687e934977d90d1e7725602d1d702466653d1968d2ac1a066	38.89%	Heodo
2020-10-20	REP_11338544.doc	doc	b512afcd2e8231f4b0ed812b652026b433dd1189ff247fe75d31d6d9a9ac0c28	n/a	Heodo
2020-10-20	E_47702920.doc	doc	937cee303cc38262306e3f7b0d0203d2dce7610f5fbbcfe8d5799e1866704287	38.33%	Heodo
2020-10-20	T_73597185.doc	doc	312691c3e5c6b2bf2bd50d27f73bf47e5ac8c9d5cc25a672ee43ae578dae49a8	n/a	Heodo
2020-10-20	FILE_03DZ8T6.doc	doc	521d891d4ae509c8262b875df2e3d2dd21b8b638721d2aa59e5106ae666ce2e7	37.74%	Heodo
2020-10-20	BAL_01325287.doc	doc	90729f88ad312b680c7a276d76314c700589095e2b6b7507fcaf8b4457fafb68	38.71%	Heodo
2020-10-20	FPHGKDV91AWC1.doc	doc	d5f91e755ac8a30effb49d42cec3f28324efed4fa814de5d5ec2464fd1136a62	33.87%	Heodo
2020-10-20	REP_PO_10202020EX.doc	doc	96220b48da8d87785f5eaaf4bdbf6fd3b1b36215fada943ccbf3e4ef18455bee	n/a	Heodo
2020-10-20	08256528.doc	doc	8d265b2a1f4f7b4f035d094bb3c7e31a22449709662db50101e76b3088f309bd	26.19%	Heodo
2020-10-20	BAL_05289278.doc	doc	86ac7048f50c87d0174161d7d99e91381613dc2baa59b4c7b3a75174c1bf73ce	n/a	Heodo
2020-10-20	REP_BM8696523092FP.doc	doc	406f6bc163ccca617883401b8494b298b649d3560c3e1f59c9cb9f20a539eca5	n/a	Heodo