URLhaus Database

You are currently viewing the URLhaus database entry for http://canyonplastering.com/wp-content/12360796/qBsoZNiL/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	731616
URL:	http://canyonplastering.com/wp-content/12360796/qBsoZNiL/
URL Status:	Offline
Host:	canyonplastering.com
Date added:	2020-10-21 23:35:08 UTC
Last online:	2020-11-05 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-21 23:36:25 UTC to abuse{at}liquidweb[dot]com)
Takedown time:	14 days, 18 hours, 25 minutes (down since 2020-11-05 18:02:05 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-22	Invoice #4571745.doc	doc	59235980108e00a0011ebeca9348c5a39ef6d6ec0b052e15ddeb825e9c21e3d5	39.66%	Heodo
2020-10-22	Electronic form.doc	doc	eedc1f3d57d4274cbfc97e09ca0975f97fff204e89fe92574f9e3964a569c9d7	38.71%	Heodo
2020-10-22	86012.doc	doc	86ac3d592d28aef479ad69aabb33de92fa7dc8f50a31a4ccb8090cd1c6a3fa98	n/a	Heodo
2020-10-22	form.doc	doc	8b5f6da01149406c0cd0e243ce84b34813ff8c9f09fcf645859516d085f9ae3b	37.74%	Heodo
2020-10-22	Invoice.doc	doc	bab576869057f9b8b6fe6b4af08a4f7bbb0a5fa017889aa985bd8a7ab6ba4602	n/a	Heodo
2020-10-22	PO# 10222020.doc	doc	a92e9fd1aaea72831f29e20e4afe829f2fd63c7645e2ae3b8b4786a8ade2b0b6	n/a	Heodo
2020-10-22	invoices 983 & 7883.doc	doc	69ffe894394d85585f7b58a501710dd783a3cece15ba7964b4080f3c0de17353	39.34%	Heodo
2020-10-22	07660349.doc	doc	8ce84cc08c61ef8da560dab9863109bab6dac208bdb030c9d513aa71dc7b3492	39.62%	Heodo
2020-10-22	invoice.doc	doc	709d844ebb9040838314e0bb22f53af41eff662d3b322cfac5858710def23245	39.62%	Heodo
2020-10-22	Invoice.doc	doc	dfb6817c6e31d81f6a98945394150b500c04fb563d8fe9ae170733fc922f8421	n/a	Heodo
2020-10-22	form.doc	doc	5406fe66b809829db1393154a39470f8da4d7b86a2c0ef2e451ad2f19effdb27	37.04%	Heodo
2020-10-22	Inv_200008.doc	doc	7ca299ab33e852a2cee3c4afa00aadea67b1d21240fa68de497fed12c1a0d31f	n/a	Heodo
2020-10-22	Inv_46479.doc	doc	01b228cd4f024acce23be7b762797915e8ece1d47c301e20f9596a98aed2acb5	49.06%	Heodo
2020-10-22	Invoice #417121.doc	doc	ba76faaf67244b22ede91ccbdb43e3988b58539eeac446392d0c61afbb5ef437	49.06%	Heodo
2020-10-22	October Invoice.doc	doc	8849667217cbf5aaf17be7bc7eaef3b073f32d6d7d7a6f36a022c270228a0d8b	50.00%	Heodo
2020-10-22	AI-100120 MYSV-102220.doc	doc	30aa3f0d8ff2254375695811a076d309440d33b009b142827eb9e890dba07864	n/a	Heodo
2020-10-22	Payment.doc	doc	b25f82dbf33bc9cc154be6c8bef79aa2b570c84eba334f3fc27ae55681f6c154	n/a	Heodo
2020-10-22	invoices 32712 & 0472.doc	doc	64ee7027b8c1fc6f5a53589c1b063a42cf59f5a99924588ae219a9950fbe7130	46.67%	Heodo
2020-10-22	Payment status.doc	doc	495313b4809b48cfad065e665cb9bc04759262897b08b142734ff1f15316f5d9	44.07%	Heodo
2020-10-22	Electronic form.doc	doc	7a7a2516e4e6b2d50bbb5b8074b5fe49a5d700ab685fa768406ce1a8fcaa8646	45.16%	Heodo
2020-10-22	invoice.doc	doc	2c746449ae089b436ecab1058c035e9ea8e01fd8f45508ed2ed720ff30ee2c01	45.16%	Heodo
2020-10-22	invoice #16691.doc	doc	e5ed1f6d9906107a56334a0f4903201eeeda7aa77f349ac217c53c9540b03c17	43.55%	Heodo
2020-10-22	INV_11478.doc	doc	889113bf50a9e3543f97ca07e4e572f2328587944be4de82f441ba1b23e6ece1	38.89%	Heodo
2020-10-22	October invoice.doc	doc	ab4a558e5f07f221ed6052698d5a9d1b3654ab56380486df8f091e1176d3af1e	42.37%	Heodo
2020-10-22	form.doc	doc	2964a315de69bb8d274293c5de39c877468fa8f5395e04639fb3029533bc4c45	n/a	Heodo
2020-10-22	invoice #550605.doc	doc	948302725f3208d721629436cfe1abbf592c813da68627c3c158cc6547e1cadb	43.33%	Heodo
2020-10-22	0069734127.doc	doc	055119f6a2254b8e3290900b29c2b27583428faa9f051bcf3b7c9a31f309f052	45.16%	Heodo
2020-10-21	014878.doc	doc	90828b96547b35641ebd76b91c0200f8f057974be00f528002acf24663c9991f	51.85%	Heodo