URLhaus Database

You are currently viewing the URLhaus database entry for https://workingroofers.com/parts_service/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:726747
URL: https://workingroofers.com/parts_service/
URL Status:Offline
Host: workingroofers.com
Date added:2020-10-21 05:52:30 UTC
Last online:2020-10-31 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-21 05:56:15 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:9 days, 19 hours, 17 minutes Bad (down since 2020-10-31 01:14:05 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-2299130176100920280.docdoc 838408d31e494e72b257feeec73407a2f778e6ecc47754ae16af0290515dc9fdVirustotal results 42.00%Heodo
2020-10-2293888831.docdoc afd227b07c577d52646f947182d3f65be45a70cb65bbc5316ecfae58e51e33bdVirustotal results 41.94%Heodo
2020-10-22O_PO_10222020EX.docdoc 238792d4ba0b88404023737e62f4d3768816f979249a65ede0d4ef2cd227f9ban/aHeodo
2020-10-22DOC_375869718012879964764583.docdoc 143a635255333363ae3017af09505f23784d4fe518164c2c25d97f8b8ec77e4an/aHeodo
2020-10-22REP_1655302743791646.docdoc d856d9672b0763c2939f8c0c9ddc6b7899e3945619e73fe01c74eeef6c739eeen/a Heodo
2020-10-22FILE_9ZW0RVYA43MSHQNR.docdoc 925ed11830fec50e20b4c723d541a1fdb62509d4bae13118c400ed2bc76fca4fVirustotal results 41.94%Heodo
2020-10-22FILE_YVS_100120_BFO_102220.docdoc d2e5fecca0f50a65f669ec7b288a2dfc7058179d08831ede0a548433ed90eb88n/aHeodo
2020-10-22DOC_DDI_100120_XPL_102220.docdoc c4d6c72ac1f2925c2af592fd65e1bbdfd5327d959321403faf797ec85d658a6fVirustotal results 38.18%Heodo
2020-10-22DOC_6408976486894625.docdoc 6e73ed5041166e3aa6f7ce070efab391259a868771d35fa7f6b8aa64d8a3065fVirustotal results 37.04%Heodo
2020-10-22INV_954569089900349274892903.docdoc 016ee663cf0779e773c6fb5644bf4f69f509afe3733132a014cc9fb1c777dcdfVirustotal results 41.67%Heodo
2020-10-22REP_67863168.docdoc fe5ff5b44dde8df916f46992574027192d8a8bf4ab36091fcb25905c0afa6afbVirustotal results 40.38%Heodo
2020-10-22INV_FH2029439796ZV.docdoc 7a2e6cd2e23620e7dd3ac4811e5b79b7532fb6d910e96109e46bd47b0b4b5c2bVirustotal results 37.74%Heodo
2020-10-22DO_TBK_100120_FRS_102220.docdoc 3f0f9c6cc34e60cf9dd9c8479ef08f97d80ffc7bd5135fda5eed8189c7a31f2dn/aHeodo
2020-10-22DOC_39464167.docdoc aea5323b8ec31304c294e8225cddefa8aa8a5df30873dc0b5af266062972583fn/aHeodo
2020-10-22DOC_VM4630246486FI.docdoc 2e45410e293f870df9a2729fd8d3e0aabac8b6aa79365b502a849f90ccb67b67Virustotal results 45.16%Heodo
2020-10-22YBRW_76391765038491230683.docdoc d7aaad6773873f2f9419d99407b5160aef1799db14f54629f82d831d54c25806Virustotal results 52.83%Heodo
2020-10-22IGTRSSXF7O6QVS.docdoc 1a6ddadc772f06b99c0286b4d3d96639582499d811601fa4b402619a7ffa4c80Virustotal results 50.00%Heodo
2020-10-22AV_15859791.docdoc 69246d46d3c893a3ee3740f371c6d72698daa05ba77e3dd8a2c9a4aaaf86aab7Virustotal results 46.67%Heodo
2020-10-22QR_HJC_100120_WIT_102220.docdoc 7ed0141f0a2a5f88f9be5418ff02a2fcc1e18b7a11d58fb68581b21b99b5eba0Virustotal results 44.07%Heodo
2020-10-22BAL_67634924.docdoc d846ca5a520f26f0d6c01d2033a9ad5f5a23deb72df286bc23fa92e4aeadeefcVirustotal results 45.00%Heodo
2020-10-22INV_9278513572881.docdoc 7eaf0df9dd2a33ee958384a9472366f58f1c0a204360efea6a7f8b0d298560d0Virustotal results 45.00%Heodo
2020-10-2221K363JIYEWSF.docdoc 6bc2d7d48d9f0085333ac13895043ae58da0bf60848ae38c3733a470ab313643Virustotal results 45.90%Heodo
2020-10-22ZY_23176042.docdoc fbb11ed6ce463e4a5598842961d2199f7264331418e806b4d15fa38b06600e7aVirustotal results 45.16%Heodo
2020-10-22DOC_RZ9144872429SU.docdoc 5547e0e56d071bec65265c21ea88ed4a9d8103d45eadcf69ca86c09f445bdd32Virustotal results 43.33%Heodo
2020-10-22SF5145844783WI.docdoc 5e6f9a748268113d3da7867313c0be3f5891553c5690a01354fbbee0d530a136Virustotal results 45.16%Heodo
2020-10-22W0R3IQAF43YBJP.docdoc 0699c1bda793c7aaa9fc01940fe91bbe470ff01abfcbb32ab93d7a6a329e0d13Virustotal results 45.16%Heodo
2020-10-22DOC_CEO_100120_NRV_102220.docdoc a38321c667c6b33ab54aa7a5af2f21aab5771ee420032b140ada803af1dc368dVirustotal results 45.16%Heodo
2020-10-22REP_IS5401559583VE.docdoc c0936a09ea5471f2231fa2a66fff1dbb1c8f42f2a37d63e01ea45b4d40682d4eVirustotal results 45.16%Heodo
2020-10-22INV_99107647.docdoc cde7e6bf17321c078405537ce1fd9b5eafae22b397b12642e853cb12b3ad0f69Virustotal results 45.16%Heodo
2020-10-22K_57463124.docdoc 0183b5d51eda544d62b1cd8c412328d860d3f567131825824900cc45936aa78dn/aHeodo
2020-10-22YL9509479111DK.docdoc 0cb7923188e9a634088245ec66429aa8e07b0e7b004afe073f3df84f232513f8Virustotal results 45.76% Heodo
2020-10-22REP_WVP_100120_CPP_102220.docdoc 0da81935024d0599fd8d9347b3b1cd7d1c3224a851735ee92224a3f2cfe007ddVirustotal results 43.55%Heodo
2020-10-22W_48855847348012.docdoc c6e8d9c205634f463e769858902771294ea786e9a2e0880eebc166c4898a3344Virustotal results 48.15%Heodo
2020-10-2253410657.docdoc 1d2531f558d817649eb30142108364e3d3716712a0e17d4bf033d4b3013fc7c5Virustotal results 50.00%Heodo
2020-10-22FILE_63703024.docdoc 933160e989dc335e391fdfba72751039c4c1c68f1648aa634af269e0e0600ab6Virustotal results 50.94%Heodo
2020-10-22REP_UAM_100120_RVD_102220.docdoc 34b4f674b3fb2522db0c058e836245655b4588f4bd0b35b5c2bbfcc3bc75916dVirustotal results 49.06%Heodo
2020-10-22DOC_WG2461913076DR.docdoc ef3eda0a0ce827c44632df7b430f082bf54965ce02293734e942776bbfd2b1fcVirustotal results 49.06%Heodo
2020-10-22IP5812131731VN.docdoc 75c8ade3a5fe3b9731e5581729dd4a6d9c459624b08730109c7be0b42a7bc424Virustotal results 50.00%Heodo
2020-10-22K_DT9782097295RH.docdoc 167054c6f6ef4e6f6ec2dce63809ab09b3a1f42218769f931cf0c07ebdb42fc4Virustotal results 48.33%Heodo
2020-10-22F_BCS9G1V5Z.docdoc 884d55db64ae38575a793fcfaf4f07a6b4f67a7ee84374571189cc4bdb485608Virustotal results 44.23%Heodo
2020-10-2255320792.docdoc 2622c411514e2ebeb404ff72a11abb8b36da194d0f09dcc95869802a01cf4a20Virustotal results 46.67%Heodo
2020-10-22WLG_100120_DUR_102220.docdoc 4876b24f79e4db4a3df03efb480f32506ce94c7c60c1410d47b6722a66765552Virustotal results 42.00%Heodo
2020-10-22YSPR_PO_10222020EX.docdoc a1430eef6f6acc51cfc4215bd06407ebfc4f5ac126d9f05c27b3cf359dbb816eVirustotal results 46.15%Heodo
2020-10-22REP_G32C7MDZGX.docdoc bffe543ff321cb95dc82dc8c8a96c283d019176537290a63c6bc86d7ae98fe57n/aHeodo
2020-10-22C_28020311.docdoc 2ea760060d8e71ffce91d15fe31085ec999ed299d9d13e35dcd0544f8d361b59Virustotal results 43.55%Heodo
2020-10-22DOC_PUH_100120_BMF_102220.docdoc 9e346d2d5fb28544f1e3ef2c3219b91524626f60f602d04c87ae335086e6da44Virustotal results 41.82%Heodo
2020-10-22DOC_ALQ_100120_ESN_102220.docdoc 476b69835ad34811317226c4b0d9c78525fbb9770f4dc6c649da167a65359582Virustotal results 40.38%Heodo
2020-10-21NQ6122980156QR.docdoc 6e31c3ec9f97261ccaa0df6af6c8492d10d748514620ec9c351beb1436269e0bVirustotal results 40.38%Heodo
2020-10-21G_EWHSU4NJPKXD9CD4.docdoc 890535144da2084ee8e9431e6521be9719100cc5bec7679a4d7bdce3763a692cVirustotal results 41.51%Heodo
2020-10-21INV_BOB_100120_EXP_102120.docdoc 140f99b8c86ce2cbf27556e78284f685e2cd53ff2e50838f444b115a6a04920bn/aHeodo
2020-10-21DOC_EUA_100120_VTQ_102120.docdoc 2b7d9ef7d6b56a86f2a182683da404a4f463386f1fca26f49d9a930f72d298a6n/aHeodo
2020-10-21DOC_ZGW_100120_MUJ_102120.docdoc 0aa26310a6be42d4304afc0e1af7040d7117389fdd1aa366e89d6791d226748dVirustotal results 37.70%Heodo
2020-10-21ZK0941174170ZL.docdoc 7acda67964abfefe6dfc1755e75b418e82bae70cd18d73fb0686b0c1910a6320Virustotal results 33.90%Heodo
2020-10-21XJZ_100120_OGY_102120.docdoc 3540a44b54c0f969644d36919294d3a1fefe6bca8742cad1468c56c0c04656ccVirustotal results 30.00%Heodo
2020-10-21NCI_100120_WYY_102120.docdoc c92778df4ae556cc2ad66979e6fafa9256ce4c9c7d0457c6525711429def55feVirustotal results 26.67%Heodo
2020-10-21CQBI_HRL_100120_MVM_102120.docdoc 4d2ca163c6d59789cde935b7d539ba3c8e4abd2beed45704fba11fe67fc983a2Virustotal results 30.19%Heodo
2020-10-21BAL_47737006.docdoc ab6539ae5c33961a6df3268df0a4473be52e6c8d99f87c1cab5aac53548749cdn/aHeodo
2020-10-21INV_OGNU2UWIT.docdoc d2a68a5159ea637fa9428d39a0d9469c6c2db0b16b2de2593070c17a0ad49520n/aHeodo
2020-10-21PE3994494714QT.docdoc 93ff8b0e61434ed88bac81ed669655c79777ecb7a4ef7e3a3e7c28e7a25f9312Virustotal results 34.62%Heodo
2020-10-2174561746.docdoc df23f7673bff775b6e684f5ba9d205d51e926537e185534fb4726ce87e541f04n/aHeodo
2020-10-21ZWV_GFK97N7JRLE0F0Z.docdoc 48dcc11f86c806e63c91ec7c94212e16f1ce37001949a1c5ce938839122aa5a0n/aHeodo
2020-10-21INV_FM9165138687HP.docdoc f762fa2e19b39567f9550fec095e6bf1f7655fee2bfa11190f293736f74f57b5n/aHeodo
2020-10-21BAI_100120_XQP_102120.docdoc aad3348c28dbb9e0a038508e8fde9f2771e550228320b8ebc0f6cf1d11c39945n/aHeodo
2020-10-21DOC_PO_10212020EX.docdoc f93730c27fbb9a6c6cc64e5f4d9127854a0c11d165e699569dd0828ebee3ec4bn/aHeodo
2020-10-21FILE_PO_10212020EX.docdoc 64c0402c0b906a218b1e4c2101145066a57b5a034a16a82957081f8ca15b4763Virustotal results 32.08%Heodo
2020-10-21BAL_CJ8ML4XF.docdoc ca0fddb21291a2fc5f13391576cdc877b2748934257b1294142481e3a734cd47n/aHeodo
2020-10-21REP_0040656679217136551.docdoc 6d21ebd2968beb17398f1ae51734c82dc41ee7eea21a41abf7ede25119c77b79Virustotal results 25.81%Heodo
2020-10-21G_HG6043690177WS.docdoc 58c9ea112ea67d4311a63c0cf87b4a97745c1e0f28e1a8a013047349d7d5bae4n/aHeodo
2020-10-21BAL_TY4130798417PM.docdoc 1865098fcd518717e48cae856ca1cb02c85a12a37eac4934fe3ec1a7ac2040acVirustotal results 30.77%Heodo
2020-10-21FILE_90130948.docdoc af36ad567085faaef5425d233641e227fdf842e426001e855103b942dde705efVirustotal results 46.55%Heodo
2020-10-21REP_PPM_100120_WET_102120.docdoc 0e7f06cdfc74e74e5e00123ac97222a4735cc7b8cb29ca8d7892df978f647a32n/aHeodo
2020-10-21LWX_57739338.docdoc aef69b034379dfae45642c5c2271b27f04298dab56a9de3b608ab2d3cb00fa72Virustotal results 45.90%Heodo
2020-10-21X_99108444.docdoc 70a369ce3943f743ffc7740c3c003a5f00705abf0505641d7d193d5cf79b8dc5Virustotal results 50.00%Heodo
2020-10-21DOC_568805083979200465967.docdoc f63551b5b6a12a9fe329cae332d0d952a9e56640ed81da22996a4ee0efd379c1Virustotal results 41.94%Heodo
2020-10-21DOC_791007460826051810.docdoc 39a7385578321db9d477ff19e7087b03d3c57076ceca16fc2af049c087f72343Virustotal results 38.98%Heodo
2020-10-21JOGU_PVK_100120_EWL_102120.docdoc 71ee0c6ba54fc6b648bd0b5a4a0a9856a061fd1c4cdbdbf677aaaf092bbd26f4Virustotal results 38.46%Heodo