URLhaus Database

You are currently viewing the URLhaus database entry for http://www.schedmad.com/colorado-territorial/esp/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	726448
URL:	http://www.schedmad.com/colorado-territorial/esp/
URL Status:	Offline
Host:	www.schedmad.com
Date added:	2020-10-21 01:09:03 UTC
Last online:	2020-10-21 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU003024892 created on 2020-10-21 01:12:11 UTC)
Takedown time:	22 hours, 13 minutes (down since 2020-10-21 23:25:31 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-21	FILE_PANK6ZQMVZ.doc	doc	3870c4b69f68d86fe116181343d8d6d97a22d191a028b02f300f0e5d1e33eb60	27.59%	Heodo
2020-10-21	DOC_PO_10212020EX.doc	doc	0ee34b08635cebc909a2b1768d921c645fb1cf94ddf18ada0c4a5bf5f9481bf2	n/a	Heodo
2020-10-21	PO_10212020EX.doc	doc	aad3348c28dbb9e0a038508e8fde9f2771e550228320b8ebc0f6cf1d11c39945	n/a	Heodo
2020-10-21	C57D9O49TJFXJJ.doc	doc	f93730c27fbb9a6c6cc64e5f4d9127854a0c11d165e699569dd0828ebee3ec4b	27.42%	Heodo
2020-10-21	INV_35659660.doc	doc	c9005b11db864adc5c5393451fc9bb77fc67fab38c00ad806790a4ac7245c80a	27.42%	Heodo
2020-10-21	DOC_VIVC4BMYQ.doc	doc	0564c8bd86a30a6d5f73adf8e176a2b82925865e9ab188708c901e865405bc34	n/a	Heodo
2020-10-21	DOC_MKKWQUCMT1STPZ5.doc	doc	6d21ebd2968beb17398f1ae51734c82dc41ee7eea21a41abf7ede25119c77b79	n/a	Heodo
2020-10-21	LP_VW4596237097DM.doc	doc	a2ff9d64e27e7cf089d0bfa4d9bae935db0cc9881bf6767dd311ccf653fe64b6	n/a	Heodo
2020-10-21	684816746386748725532.doc	doc	a9d1a8ff09fa0967ed2bbcd45b156698c20fec11fb07d5397bcfd5b8ffba1737	n/a	Heodo
2020-10-21	AMB_100120_QBQ_102120.doc	doc	71c25e3712abdd3d405b0a43f2819fb51d16dd9bf3c5fd5c9ecd04b028240533	47.54%	Heodo
2020-10-21	BAL_6LITNW5VY1NRX.doc	doc	44ba6008506a7673feb84fe893ea958153dae8b82def146db7f497d3537bfbce	48.33%	Heodo
2020-10-21	INV_PO_10212020EX.doc	doc	7c22299823a1e18a0b708214938185faee0fa695ce9e511d56cfe81cb1aaf58f	n/a	Heodo
2020-10-21	BAL_82084146.doc	doc	ffb659e12aeea991c1bca3702e7d3c01cb589251885cd53c4025994a5e3e1309	n/a	Heodo
2020-10-21	REP_CKC9SCZAG5A.doc	doc	f63551b5b6a12a9fe329cae332d0d952a9e56640ed81da22996a4ee0efd379c1	41.94%	Heodo
2020-10-21	DOC_VH1632882711KC.doc	doc	1c69c8db95ce9e60d2cd1b61601b96a3a5bca68602f2da10fb5cbcfd2e354401	37.74%	Heodo
2020-10-21	INV_XI0549821403TH.doc	doc	72ee93d05e4bd3913546a0db9808d690f708353470319f19b20235fd0107ec38	46.55%	Heodo
2020-10-21	DOC_WTBQ82PD3TSZ.doc	doc	5f21cb8fe8e76f9363dee1df0517de6b04e70c797c10a473a7acdd92048b1260	n/a	Heodo
2020-10-21	REP_40898374.doc	doc	def1d352d42981058ad1dc582336e6872aa190d9075c65fc3c7d1575d1eb696b	46.67%	Heodo
2020-10-21	PO_10212020EX.doc	doc	d8d4feb29b46ade146a7b8343070d2a975e4b0e186ca6aac31ea941e46a7af73	46.67%	Heodo
2020-10-21	A_QNR87KSVUL.doc	doc	230fc1531e7d113ebf83ea8dad03120965c293da08a2ae82305ac9cb61efe7b8	48.39%	Heodo
2020-10-21	DOC_PO_10212020EX.doc	doc	a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225	n/a	Heodo
2020-10-21	Y_PO_10212020EX.doc	doc	d6053ab1f8a8801a71b22ecf5257f4cdfee7138eb99345ad33ff208e175aac0f	42.59%	Heodo
2020-10-21	DOC_3RGNXDVNHEDZ.doc	doc	076c6a22ade8278559bc05b10009c61e2bea31bec02ae5d2b92466600ecbb446	40.35%	Heodo
2020-10-21	INV_DSSEEAE.doc	doc	6b85363b3e529eb9580f5c273816ad4cefba491ec3927872ee7570a550df965a	46.30%	Heodo
2020-10-21	REP_09248623.doc	doc	6eb67022c07e3f32436afc6e89eddb132a4c5d34d733c824ab3dabf51b7c712a	39.62%	Heodo
2020-10-21	FILE_SV1683109783RN.doc	doc	47fb7195961f2aef2f52452f43840ae416b6ef31d96ae1bd6a1a74fa7c5f7ddd	38.71%	Heodo