URLhaus Database

You are currently viewing the URLhaus database entry for https://staging.progressmediagroup.com/alfacgiapi/GWCACW80V/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:728020
URL: https://staging.progressmediagroup.com/alfacgiapi/GWCACW80V/
URL Status:Offline
Host: staging.progressmediagroup.com
Date added:2020-10-21 07:52:08 UTC
Last online:2020-10-31 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-21 07:52:37 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:9 days, 16 hours, 40 minutes Bad (down since 2020-10-31 00:32:46 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-225GCY6MJZ1DN970SZ.docdoc 838408d31e494e72b257feeec73407a2f778e6ecc47754ae16af0290515dc9fdVirustotal results 42.00%Heodo
2020-10-22FILE_PO_10222020EX.docdoc b8ece70cf490f0972af7d834da13670c73176dc58bd1d22e254548ea64220df4Virustotal results 43.55%Heodo
2020-10-22DOC_XN3OYVJ4WYMYHLOW.docdoc 799c5537098f4e928a07c4c977fc56f159cc71437f05efa2b2fb6676d89b771cVirustotal results 43.33% Heodo
2020-10-22DOC_74879589031782.docdoc 6698965fefdd0e4da0faecad2dfff4bae9b0371113409e9d1888465917aec066n/aHeodo
2020-10-22BC_FQNW0XP.docdoc 1e3244c762ed0a0174d0fc5a1754358ab515f7beced76112f4234ef4b48767a3Virustotal results 38.78%Heodo
2020-10-2227339462.docdoc 510f6a8a1701b5399083a1f7805f3d944b330676d573a3d33c1aa0ab3df91f41n/aHeodo
2020-10-2294373509.docdoc 9240c94cc6ed0ba3216b915f27c3b8ed8995206803a332f664297fa4d5e1c72cn/aHeodo
2020-10-22BAL_4819969796464439307.docdoc 28061fbdc60d3031a20e1c8f75d20d703307a03ba696fc87e507c3a356e0ae68Virustotal results 37.74%Heodo
2020-10-22DOC_XFHNPK5P.docdoc cf87079fcce12a74d668c62692ec9ba58f422f1474443c9f74283afc2c2e671eVirustotal results 40.32%Heodo
2020-10-22PO_10222020EX.docdoc 80674fb8973e2a7ee31596d9105d1d897a92f7bbcbf6f07b3bf7a9444f71ca9cVirustotal results 38.33% Heodo
2020-10-22BAL_KU3899054607XH.docdoc 6c1a970155c3756aaddd02ef3f1e5f266292a97f661fada4a11011b3eb8795c2Virustotal results 40.98%Heodo
2020-10-22OXJ_100120_DWP_102220.docdoc 7a2e6cd2e23620e7dd3ac4811e5b79b7532fb6d910e96109e46bd47b0b4b5c2bn/aHeodo
2020-10-22WDS_100120_OLT_102220.docdoc 7bf5865edd1cf7fbc77de4691736ab60bb0d5163db0f3153bb804de1d88953feVirustotal results 38.60%Heodo
2020-10-22BPG_8XDPYMPKK8FWUTUE.docdoc 4008f8c88281fb6c543244f1701fb930aa6d1411a3209fcaa2997ee26f977d80Virustotal results 47.54%Heodo
2020-10-22DOC_PO_10222020EX.docdoc 2e45410e293f870df9a2729fd8d3e0aabac8b6aa79365b502a849f90ccb67b67Virustotal results 45.16%Heodo
2020-10-2241123025734.docdoc 8a2460eefaab1e7c970a1836dfc66aacd55610790f20f1074e9b30d4eeb71890Virustotal results 48.28%Heodo
2020-10-22F_IK2818786350NU.docdoc 23433b6ffc030c13d0f346dfb92144b3b2e92a4b5ae3c6e1d4d16e7a3e8ce48bVirustotal results 46.67%Heodo
2020-10-22REP_PO_10222020EX.docdoc 220e3645890122715ff1e995b86a7d014cfce7e53b2576e862d9c686c7fcf553Virustotal results 46.77%Heodo
2020-10-22ZL_14975584849.docdoc 81212e2cfa49f33852afa0465e2c4c9fd4a245340e8847009dd5d40bbb0f6751Virustotal results 45.00%Heodo
2020-10-22DOC_PO_10222020EX.docdoc 7eaf0df9dd2a33ee958384a9472366f58f1c0a204360efea6a7f8b0d298560d0Virustotal results 45.00%Heodo
2020-10-22LO6164496217US.docdoc c41bcade49f3e2413b5d95ce09c2ecf30c21b43ab6b306206b9b737f1cd10450Virustotal results 42.62%Heodo
2020-10-22FILE_12233472.docdoc 6bc2d7d48d9f0085333ac13895043ae58da0bf60848ae38c3733a470ab313643Virustotal results 45.90%Heodo
2020-10-22DOC_PO_10222020EX.docdoc 7cd6a76199b264747b5a649c770e2ba84a31960ae8ebf52b5bfceeac50a97676Virustotal results 44.26%Heodo
2020-10-22PO_10222020EX.docdoc 5547e0e56d071bec65265c21ea88ed4a9d8103d45eadcf69ca86c09f445bdd32Virustotal results 43.33%Heodo
2020-10-22PO_10222020EX.docdoc 84f4bb653bce1ba25b6a2fa6fd300f406fa8b0cfa812b07794f3cc657e327a3bn/aHeodo
2020-10-22INV_99953926.docdoc 6bd0661c70220213e5161537b5d9a940d39a35ce628077f45d1a7423a3fb8bb7Virustotal results 45.16%Heodo
2020-10-22F_EEK58XT6.docdoc a38321c667c6b33ab54aa7a5af2f21aab5771ee420032b140ada803af1dc368dn/aHeodo
2020-10-22R_17926735.docdoc b55af8491b36883ce6fd045e8bf6eda70fc53c4ec9fcef3b56dca6ec970f5c09Virustotal results 42.62%Heodo
2020-10-22PO_10222020EX.docdoc 0ed13bfe440f265ced87a03e27334e5bb59ad3d45b345e526577b6d168922975n/aHeodo
2020-10-22REP_PO_10222020EX.docdoc 0183b5d51eda544d62b1cd8c412328d860d3f567131825824900cc45936aa78dn/aHeodo
2020-10-22F_Q9O1HSDZ6EV.docdoc ed5ed9c256dc24f5aeffc1b9b0e7dba316c5c13a1966b7243770318805567ec9n/aHeodo
2020-10-22PO_10222020EX.docdoc e01b2dd423d602c30905f88e9c829c72498492b0ebc8c6625f81b78ad77dcaa6Virustotal results 43.55%Heodo
2020-10-22REP_PO_10222020EX.docdoc a78a2682db9e96335294df8912a7cd0a843bc011ae898a7fc211f79aea919fa2Virustotal results 48.39%Heodo
2020-10-22INV_HS3661605265SK.docdoc 933160e989dc335e391fdfba72751039c4c1c68f1648aa634af269e0e0600ab6Virustotal results 50.94%Heodo
2020-10-22N_8FCEDVEA0GE.docdoc 56126f16e90d28b3bc7e4a1460c71bd6ffb7763f79d17ecc274e8c6988c8531an/aHeodo
2020-10-22V_75915601827.docdoc f4485fe8056305da48ac8453716ea0fa9c6633da1a1f87e01dae3908da1bbbe6Virustotal results 46.55%Heodo
2020-10-22FILE_WHHRBEK5QU1RD3.docdoc c343246a8b6df26e48dedc87a71762563be3e241ea28994ad1e2d0700b823f8dVirustotal results 51.92%Heodo
2020-10-22KGK_100120_SNC_102220.docdoc 75c8ade3a5fe3b9731e5581729dd4a6d9c459624b08730109c7be0b42a7bc424Virustotal results 50.00%Heodo
2020-10-22CG4830646781OL.docdoc 6f75f81099546304948463f0c2305a97be38e42d347794714ea76831f8f507f4Virustotal results 48.39%Heodo
2020-10-22PO_10222020EX.docdoc 638d64989d1dd97fb0243d59735dcc9441f106f3eaa6288d3c6e18a2b11aaef7Virustotal results 49.06%Heodo
2020-10-22BAL_WG8971587254ZE.docdoc 00be3474f86c64b8ed871822ccfe02e7bdcbb4b5132682ee36915e8553952648Virustotal results 45.00%Heodo
2020-10-22EI_IV0864145523WO.docdoc 4876b24f79e4db4a3df03efb480f32506ce94c7c60c1410d47b6722a66765552Virustotal results 42.00%Heodo
2020-10-22INV_CTCY8IVG4YUS.docdoc fe681aba1adcf7e82fd0daedeb3af000c89d34693b1dd0022c273e936ed660cdVirustotal results 45.90%Heodo
2020-10-22YQ9455566837RZ.docdoc 8cf9bf37fe3de456cee48cd50ac6487278290ce4038eee214389512625297016Virustotal results 47.17%Heodo
2020-10-22I_PO_10222020EX.docdoc 9b4d04d1dad15a8a798ceba5f12e03c81a04335dca8703f2e4790675688590aan/aHeodo
2020-10-22BAL_16487654.docdoc 9e346d2d5fb28544f1e3ef2c3219b91524626f60f602d04c87ae335086e6da44Virustotal results 41.82%Heodo
2020-10-22QVN_100120_FFP_102220.docdoc 476b69835ad34811317226c4b0d9c78525fbb9770f4dc6c649da167a65359582Virustotal results 40.38%Heodo
2020-10-21INV_744154675.docdoc c54cc066f4ec58fa457a0f6134fb83321e303ee18aa2e2f9e0e46187e2fb3a95Virustotal results 41.94%Heodo
2020-10-21P_FWQ_100120_WKJ_102120.docdoc 890535144da2084ee8e9431e6521be9719100cc5bec7679a4d7bdce3763a692cVirustotal results 39.34%Heodo
2020-10-21R_DFU_100120_CSY_102120.docdoc a05b8c753a48bba69740d8514a6250046f4fcbb93897bff83883371513947fd2n/aHeodo
2020-10-2161084127.docdoc 9ccbbb119271b882bcd53559aa7e60487f0a7ce757b9b4fb1b51b691142dd35eVirustotal results 39.62%Heodo
2020-10-2199337777.docdoc a28398627e5a0e0869aa7177f328559dcae1253a785594871a5f33792172413an/aHeodo
2020-10-21BAL_173687874328434.docdoc 7606c587c9a22687f99deb394aedd9be63d066c53c44d9cb78dc3a03319f670cVirustotal results 29.51%Heodo
2020-10-21REP_394223940875262.docdoc 8a2b904ad14790b5a69146c0f573dc2da8adc472159bba2aed0afdfe0a550d5fn/aHeodo
2020-10-21X_71463700.docdoc 69cd9a9ab934bb1319b54133cb01c26d6276bd7ad2c7f4ca73d0df4ad6600085n/aHeodo
2020-10-21INV_BV5216675965DY.docdoc a25f6b18acb33e6fcd32f81d686d793d38c299f1b42e561612c3ea67679975d4n/aHeodo
2020-10-21INV_9304992184344461473953.docdoc 25c71c161f7a916496cd76d407fc6a0863e2f36fa50e8b2cb886b5ca7b853dfan/aHeodo
2020-10-2124972895485142267890681.docdoc c795410a11e049b4c007e1648b82c47fcd32c76a3bdae2cc72ebe46aad435854n/aHeodo
2020-10-21NJ5256323546YC.docdoc c5a24c44676321aaf9dbcd1eba6df9c5ca6433f79184f914f8516a94077eb5cfn/aHeodo
2020-10-210267981671006597155.docdoc 0f254a04303e1e2af66659268b48d1e2617f5df9e21817a71a886128d221738bn/aHeodo
2020-10-21FILE_FK5337361230BZ.docdoc 48dcc11f86c806e63c91ec7c94212e16f1ce37001949a1c5ce938839122aa5a0n/aHeodo
2020-10-21JYY_100120_MPK_102120.docdoc 0ee34b08635cebc909a2b1768d921c645fb1cf94ddf18ada0c4a5bf5f9481bf2n/aHeodo
2020-10-21SW0807237923OA.docdoc e5775f86f29169ccf949e3eaab8795640598966ef0b75b159805360e853182d3n/aHeodo
2020-10-21FILE_T3DDOTR9I.docdoc 1ade5184899b623fc4bf9b7caacde819e06dcc9234a962622c056349092327c1Virustotal results 27.42%Heodo
2020-10-21Z_OIX9A70NMIR65.docdoc 64c0402c0b906a218b1e4c2101145066a57b5a034a16a82957081f8ca15b4763Virustotal results 27.87%Heodo
2020-10-21DOC_PO_10212020EX.docdoc 5e140e968dc7d972b9799ab18a96cc056bf78fe1d5340c72ba9bd4486ed71d60Virustotal results 32.08%Heodo
2020-10-21INV_PO_10212020EX.docdoc 07dbb0f511ef2ce6007a7b576be51073b953253a7e7182b361b06036e6a82f84n/aHeodo
2020-10-21REP_PO_10212020EX.docdoc 2e56fde4acc7cac043046e86b999a37aeb702d863f9024c4ce83e95d7c787d70Virustotal results 24.59%Heodo
2020-10-21OYNIOVGUFTKKK3U.docdoc 82be718b9899accb7da0f67cb57fe43902f7b3e35a17046fd69ebe212749b09fn/aHeodo
2020-10-21INV_502142307416687383.docdoc b7269623a45db722954c9aa554be08c14fb9b6cad622331bb2d5c35e17ca9be9Virustotal results 50.00%Heodo
2020-10-21REP_72163239.docdoc e7863e06fdf3830b0b5b4c8f97dac6420a04c0fae7f728aca4ebe046534b9b0dn/aHeodo
2020-10-2168057153.docdoc 3f28d23c6650e22fa69d824efc5153fd46fecbbdbd236ae7b4ee15bae4ef556dn/aHeodo
2020-10-21INV_PO_10212020EX.docdoc 7afb38a81dfd3bd90de1507b16ccc5ca62644ae6420c8701cb9fefad55f4309dn/aHeodo