URLhaus Database

You are currently viewing the URLhaus database entry for https://cardinallandscapellc.com/wp-content/FILE/OEGGZ3gkCUTv5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:728774
URL: https://cardinallandscapellc.com/wp-content/FILE/OEGGZ3gkCUTv5/
URL Status:Offline
Host: cardinallandscapellc.com
Date added:2020-10-21 10:46:05 UTC
Last online:2020-10-24 02:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-21 10:46:09 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:2 days, 15 hours, 22 minutes Poor (down since 2020-10-24 02:08:27 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22dat 20201022.docdoc 4bdeb7f1d2695cf2ca448bfa344a7ea3244f67d6a64d6f2da062aba2c1eefec8n/aHeodo
2020-10-22rep_20201022.docdoc 01ff0e16a69fb1f02f3fc51b9910ecf23c3fa2345da49c19b8ecafe7d7c4c5a0Virustotal results 45.16%Heodo
2020-10-22Untitled.docdoc 55af2999ef4a7118f17a58133c8b13ed9e74e53d4cc3bd3f19e9e2e2714bf315n/aHeodo
2020-10-22file_UJ3855.docdoc 47c3224e2a5dc641bb1d173d7012cb94f2a98b2feb1bafc18b4f172b3f923afaVirustotal results 44.68%Heodo
2020-10-22Rep-2020_10_22-XEE4355.docdoc ed5ed0dbdb32d5a4e93b6b07d2e19fa2e0e0c9d0d1276cb316f733f4345c9a45n/aHeodo
2020-10-22dat 2186979.docdoc a76299d22a2643338172ebec3e27885892ec71198d34b1d8e32ad7fded995701Virustotal results 43.55%Heodo
2020-10-22REP_2020_10_22_387.docdoc 8a2f80866837174e4da1cb7a9aff1ad0f70f397222edb54c3031d4019061b91dn/aHeodo
2020-10-22INF_2020_10_22_MK387394.docdoc bcadbfbc5486bef46f055a4327cd0ad2960e25cb078ed37ad99191369d2c8aa6n/aHeodo
2020-10-22REP BL41070.docdoc 0cbb61a68e8ab2a5c0c7fc5ec5803c8f0e8e6f86626e0b7dab42080c2b6b7f39n/aHeodo
2020-10-22arc-20201022-1289.docdoc feb5a9983c4e4f52a466de22aaaedfa7483cf156cc5c91512a7027414bb8ea1eVirustotal results 43.33%Heodo
2020-10-22Y618_02811.docdoc 1459b59e19d9b2356290f0524af52e795d375d764a01d1345e7f0a46df041f56Virustotal results 46.15%Heodo
2020-10-22DAT_MJ60233.docdoc 801d2ae370c4e9631b5740affb87d1628701bd436a299ea95ecc2df89a18e164Virustotal results 54.72%Heodo
2020-10-22Rep 2020_10_22 KHO0177.docdoc 6df55c3f911ce158760ac06b0e28baa8315645d1dafe03ad8c6fdd0cd38c4e71n/aHeodo
2020-10-22Attachment-20201022-8911.docdoc f9129c9f5ad280b2fc327f6b8399d107ae082284f42b7fa1e6939a39c52ee243Virustotal results 54.84%Heodo
2020-10-22file-20201022-078566.docdoc 949394bdc364c283732e10d165b523463c5e3415f4ca80269720f45609aaf1a8Virustotal results 53.23%Heodo
2020-10-220529JGM 20201022 DW652.docdoc 90aeee97e0274703c7aaaebf22decaa0c4c4e1c626f2bb0713892ee662256842Virustotal results 53.70%Heodo
2020-10-22inf 2020_10_22 1081576.docdoc e8cdc278eaa95810ad409fa3670e5cf1dafae7c1532c014bf7e62d4b860a6559n/aHeodo
2020-10-22INF_20201022_UQY551945.docdoc 605694ee757245ee98eda85068e6c58c327f8e7d2c139299cb86ed537f3e979dVirustotal results 54.55%Heodo
2020-10-22rep_O7601.docdoc 4383bf7294fdb4566c7926a8f3c514bc052b8c345d1a69db6bc9b03f502537a8Virustotal results 51.61%Heodo
2020-10-22FAQ1104 2020_10_22 6081173.docdoc 64d785d18d4dd4904a4ea1c9d9493cfc2e7cbae4856956062bcacda90ddbbe02Virustotal results 55.17%Heodo
2020-10-22list_20201022_A108.docdoc 1866b19498cdc839b6b01746deccdbd4fb5ee2689ea7b5dd49d2af60d6b4d620n/aHeodo
2020-10-22rep 20201022 QW676.docdoc 0923b2812da72c87a2b0f3220f7acbcf86b645f91404486bfe51591cd73f9566n/aHeodo
2020-10-226224H_2020_10_22_770.docdoc 7512e266ad38f56ffe78e660347c98f0decf6bb495e53125976d71042800b3f4Virustotal results 50.82%Heodo
2020-10-22file_20201022_07251.docdoc 7e06d6e4416c03c57f49e313a7c39e11b679c1348500f209711decaa97496614Virustotal results 50.91%Heodo
2020-10-22Rep 2020_10_22 932.docdoc 4533627b4348507c5c05eb7090b96e31e60b845f30f585af35267657efd11cf5Virustotal results 48.33%Heodo
2020-10-22UNTITLED 721.docdoc 554ff1a900c5b97921e83840914338e5cf8141643ab9e5a4e3a5744599c8850eVirustotal results 50.00%Heodo
2020-10-21File-2020_10_22-AF010339.docdoc feb428de94cd42d3f8a3e5d5b95134902ab3ec4b06299008cad8569a71e466c1Virustotal results 43.55%Heodo
2020-10-21UNTITLED_2020_10_22_FXT305.docdoc d65ac49f3e3c26aa5a64eb44cd03e3d4e66f10dfc24adb8dba89260852589e14Virustotal results 44.83%Heodo
2020-10-21UNTITLED_2020_10_22_7877511.docdoc 917994ccbabf6d6480a31a433491e371a63fc34f4de8fb8fb53fa5dc8fad5bc4Virustotal results 44.26%Heodo
2020-10-21REP-2020_10_22-8700.docdoc d9bd69f241ea307af694ae3010651af65a9fdd62cef9dcde429d8ce6fdb9ecfaVirustotal results 44.26% Heodo
2020-10-21rep-2020_10_22-RZQ125.docdoc 6e9c7d2344a9b04e3cbf19b720c085623b1e42f65a465b8014ff6ae68016fcd3Virustotal results 44.07%Heodo
2020-10-21dat.docdoc 42538e931722bfc76683ba8032a3f9771599b561326a105c20053210ee28d4c2Virustotal results 44.44%Heodo
2020-10-21mes_20201021_X726.docdoc 62b13b2b46266429dc16ef57510143aadc8b8d4c43363b03d787eb44a98cd410Virustotal results 43.33% Heodo
2020-10-21arc 2020_10_21 RJO742815.docdoc 21082eef7d510f46f7ceb201a98ba645e1b08862d5b41b7877cdd59cf55388e0Virustotal results 41.94%Heodo
2020-10-21Dat_2020_10_21_3648.docdoc 81db04b572cdadc14cb46b27ef12139a47d676a3f110edd88cfa1df31b03f5e1n/aHeodo
2020-10-21NO85420-2020_10_21.docdoc 8fb54ec8a9d9e11931e0436c858e72e052585cafd56ca4060f09a65f85061220n/aHeodo
2020-10-21List-20201021.docdoc 0cd4327f88216c586d6a55c043f3f6d131be5492eb05597a705f45b4f4763310Virustotal results 47.17%Heodo
2020-10-21Doc-UHL980340.docdoc 6de36a0ec9634543dd4b2bd99a9da772db767288f7616b6065906b913d08013dVirustotal results 37.10%Heodo
2020-10-21Mes_2020_10_21.docdoc cfbfb22c4436d03bf602519de9c24b9ca5a1028bb9718f1387853ce83d44942dVirustotal results 40.38%Heodo
2020-10-21MES_20201021.docdoc f5e06729985a8332d74568dff36ebfc8dac7e0b52b6629c78df8d6095f8d5413n/aHeodo
2020-10-21LIST-2020_10_21-73338.docdoc c6ff49b3bc2ed6e3e775a15431c71f5264799248321b4a95fbb2039da227c729n/aHeodo
2020-10-21Mes_20201021_R760.docdoc ef613896b6dae13013f72c27afbabebb56995eb5f3dcbee3b1847d0bab3f0406Virustotal results 32.76%Heodo
2020-10-21OC2563-20201021-49586.docdoc 9108ca23d908dda4dec8fb03dc119e054b45ac8bef157933a4034f5992ca7ce7Virustotal results 29.51%Heodo
2020-10-21Dat_20201021_U1159.docdoc a1d14cef317aece443bc010579448ed548c495541c8540cf423fc5f1d8a20fe7Virustotal results 30.91%Heodo
2020-10-21list_2020_10_21_449839.docdoc 9bef99c8e12327ded16455d788af6804370777cf4cdf3d260f60e189cec14401Virustotal results 32.69%Heodo
2020-10-21ZX173_20201021_DPO739606.docdoc 15be5be4afec63a2c86195f7b5733fa641998ca2e269c2059104ece44f9fc883Virustotal results 30.51%Heodo
2020-10-21DAT_2020_10_21_0984702.docdoc 29564909de0dce6cc92e8ef8478d45b07ebca92b9232fb59a116539a508b4574Virustotal results 29.51%Heodo
2020-10-21doc 2020_10_21 78572.docdoc d66507e04664bc245fc279c53f5be49bc10b2677f4a82db33eb921845d8000baVirustotal results 29.03%Heodo
2020-10-21Doc-749.docdoc 22ef4dbbe29239577c7904c9aa615b3dd0fcec7a93fce97d7230478dc1008361n/aHeodo
2020-10-21Y228-2020_10_21-753423.docdoc 6531b0ec21c07726a5ffd07358273a78cff9d8df4475f1bf34e27d1b8214dd63Virustotal results 32.73%Heodo
2020-10-21FILE-20201021.docdoc 0429da48f2a7712f9d48d30212b70720b93dbd7106a1f848b47eeb5765b3898eVirustotal results 29.03%Heodo
2020-10-21inf-2020_10_21-N731.docdoc 7b379e5dd60536e28d876fd99a019dbf070807482a1aa9e2f29ce9957914c93eVirustotal results 32.14%Heodo