URLhaus Database

You are currently viewing the URLhaus database entry for http://elrofanfoods.com/buvlj/Overview/5p0cA4gYtebLpW/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	731635
URL:	http://elrofanfoods.com/buvlj/Overview/5p0cA4gYtebLpW/
URL Status:	Offline
Host:	elrofanfoods.com
Date added:	2020-10-21 23:38:04 UTC
Last online:	2020-11-26 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-21 23:40:04 UTC to DCAbuse{at}zayo[dot]com)
Takedown time:	1 month, 5 days, 13 hours, 53 minutes (down since 2020-11-26 13:33:42 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-23	MES_JU99062.doc	doc	c201dc04bed84411f216935bcad9296fdb3e99daa909ead17006846758dc8346	n/a	Heodo
2020-10-23	List.doc	doc	204b9018fcfca70a7d698c290ddd28c27b022cfb0a4440a566f4dc67c8cddc1a	n/a	Heodo
2020-10-23	file-20201023-8048.doc	doc	044fbfe6a7af7880a4a79b11351a8b657219c5717280368151dc6564e7b81715	n/a	Heodo
2020-10-23	MES 20201023 CFJ3500.doc	doc	02e4ce0981c521bd6a8ca1170e5d7ea8ea35c973d2692d1709b8ecf1db394384	n/a	Heodo
2020-10-23	Dat-42859.doc	doc	a129d723a80571d6c9f4402118e7a138d3ce0439cefeb6718c1e34d246586d51	n/a	Heodo
2020-10-23	UNTITLED-G271.doc	doc	25093bb7528311c4eee9c173590bd55d34e3101eeb80a3c3405eca6bc50ddd60	n/a	Heodo
2020-10-23	291438 508251.doc	doc	9cdddbc4ecd7167828b1ea5ef660f244b1230cc9dddb6c3f4843e1e0be81c0a7	n/a	Heodo
2020-10-23	MES-2020_10_23-135.doc	doc	88ede93bbd015607192a96718235dc0b427a8f654bec3ea00739a51abf19e5e0	n/a	Heodo
2020-10-23	2910675_2020_10_23.doc	doc	b0db3d5083a44747e1da01e6006e211a95e616455b85f9b9961c7dccd7f6e680	50.00%	Heodo
2020-10-23	97917 20201023 LGY603.doc	doc	d81d19a33f0ac7b353c71ae0ee3bbc4fe3072d9ac384f22725e48503df8d8260	50.85%	Heodo
2020-10-23	LIST-20201023-056763.doc	doc	ff799dfe689af4b7f91327702adf9abbf48fdeeae9400493c012692c7bb07ceb	n/a	Heodo
2020-10-23	UNTITLED_684040.doc	doc	31a65c0934f1ba04e9f8ff09dc95bd842b64d925bf09ee93fd20896f040b8c76	54.72%	Heodo
2020-10-23	Rep_502377.doc	doc	70fa07241369935edadd1ce5eaf42bd68603d3e67d3c0a2e6ec052f44a37e449	n/a	Heodo
2020-10-23	Rep 2020_10_23 AQ61906.doc	doc	0ffa03e1d13a9d92d4840fdbc9530e032e68446c2870ce96415cedd63a39e919	50.00%	Heodo
2020-10-23	mes_O024.doc	doc	9db5574575df7b99677cc046c4abdf4afe9f1f102500d53622bfdd7a0a862c7e	n/a	Heodo
2020-10-23	file_FJT933.doc	doc	7df71a638ddb96143a97778fcc28b8a4730001b82ef2c0ba7eff33a580b58023	n/a	Heodo
2020-10-23	rep_2020_10_23_0356.doc	doc	c08df1aaf320c5907f8fa026f4fb52764fde92489159d8793d79d4183af18380	n/a	Heodo
2020-10-23	598536-307283.doc	doc	2b29976707d6b55834f08e9915c9021314ac24d8a7d3c924ace21bc039764c35	49.06%	Heodo
2020-10-23	inf 20201023 XR473.doc	doc	5e0889b9d547518e82e6900b280c0074156f59920b4c1c585ba18cbd66ac3a1c	47.17%	Heodo
2020-10-23	MES_HV632849.doc	doc	0e1515fd40c1660f0b5e48e9eeed031127aad22126d6f1885b30a198f23559ee	n/a	Heodo
2020-10-22	0122197_ZT91923.doc	doc	74956b6fd8fb8af1c1cd21026338c5e52d19533087ce7d60541ec7180469db1d	n/a	Heodo
2020-10-22	UNTITLED-20201023-83999.doc	doc	26d7685602eb095c34ab91bbf5b63480114c8a5168221cfb42b530c964ddd50a	n/a	Heodo
2020-10-22	Untitled-20201023-7598841.doc	doc	24ec183ee778cc4230c8f2df01ebb719356416cf8ed85a928c4864c57dd62bef	n/a	Heodo
2020-10-22	Untitled-82645.doc	doc	ff00742ee2e924330820490dd85ef3ebae24558e2aea9bdf91cef583bb047cfd	n/a	Heodo
2020-10-22	List.doc	doc	d87a93ae2eb91cfb925982e62a821b9798be7fd9fd307604af79f96c5810e156	n/a	Heodo
2020-10-22	doc_2020_10_22_NZS5202.doc	doc	44680e4b146ceda2dbbdb6e68c5389c0ad6230f8cda0600f065a67df09e0ff3d	n/a	Heodo
2020-10-22	FILE 20201022 14838.doc	doc	91b0149df45bd0240de0e0b27a10f2c130ae4084b7fb310ffdefa6819c0dedc9	n/a	Heodo
2020-10-22	9719T 20201022 DH407953.doc	doc	d5474138a81425e37468ee96b8d51972e4f39cb3485625f90cedb9f9eec62e4c	n/a	Heodo
2020-10-22	Inf-1648.doc	doc	cd5beffd387885c6bf015a3c8a0d4523936d06ae88179a8b4a50ea4ef7d5b08f	n/a	Heodo
2020-10-22	J00922-2020_10_22-7837433.doc	doc	744510232f86ddaa90402827ce8b9d806fff2827c08f1b27cfa01e9ec5787d7e	n/a	Heodo
2020-10-22	INF_541257.doc	doc	fbe8f5c905f6775ad3a8e659e3d46f73e57c9b9e88dd2ab3274568a03545cd15	n/a	Heodo
2020-10-22	FILE 20201022 4569.doc	doc	b7758be40eeb57934e1c9eb369fc6dac10dae365c63ae2627ba882425b1992a6	n/a	Heodo
2020-10-22	LIST-2020_10_22.doc	doc	9ba251b5dc945ddf16170c88b0c54d965a8d6de7c55566a9f1078a20aeb4c324	n/a	Heodo
2020-10-22	arc 20201022 CMZ927.doc	doc	9473776ba71d7fb4c1ce5c3d5d0b87d00fc361ae37fd75fd5b7375f30b9c3107	n/a	Heodo
2020-10-22	rep 2020_10_22.doc	doc	7399fc6f61590ec699b38e20e9a8d38684ccd43941cd42f7c4d8fbc660de7736	n/a	Heodo
2020-10-22	MES_H1319.doc	doc	3b02b55c561605e9c0ac4654750d40e7fe6d788636d2368186e5aca8cbaf0b2b	n/a	Heodo
2020-10-22	Attachments 2020_10_22 N0264.doc	doc	995844ce9bd711bc028686f4bb4082d547081a2e28ac5c1f030dd2beb38ac73d	n/a	Heodo
2020-10-22	dat_2020_10_22.doc	doc	0c1e9db213b4bd4e65ad7efd5c37b96b478ce170f5df4707ea0920c5c217c8c1	n/a	Heodo
2020-10-22	Dat_20201022_53356.doc	doc	85177e9fdb0245b4bf82bacf584df357798f47c9cb8da3c5d7d2dc29b26137db	n/a	Heodo
2020-10-22	Inf-20201022-03687.doc	doc	d9dc3781437235ccf4204c9b287ebdc320c13d76e3695b06bb4973d6a1604685	n/a	Heodo
2020-10-22	rep.doc	doc	dfb80aa65a1ced749e2a5507506b2326aef825e1ed5d97a64cc93eeca2d8c9c3	n/a	Heodo
2020-10-22	Doc-2020_10_22-EH4949.doc	doc	269a92de6b0936970cd1faea29d7ab8c010125279fbd063d8b494759bf6b3532	n/a	Heodo
2020-10-22	Rep-2020_10_22-5236477.doc	doc	a9aab448fb96800b129f7f912d5da900789df5ee3ce7b94a02b89a9ed3efb388	n/a	Heodo
2020-10-22	doc M44741.doc	doc	532d406257d0e5d1fc13711a03f02ac9233c13c4b720d30316a3ac0c512d35e6	n/a	Heodo
2020-10-22	arc_MJ1788.doc	doc	8a689f2d19b100a22054241d81fd818a9a397a60701cf7af99f559f7049ef87d	n/a	Heodo
2020-10-22	arc_20201022.doc	doc	7a5d143f061f77beae7a31802e2ef8950751b83be5318a370196dd784508361a	n/a	Heodo
2020-10-22	LIST-2020_10_22.doc	doc	f95cd6cae1ad58e0f1552f62e6c8d0b47ed21e023ac6f10758fcb47fd7002d8b	n/a	Heodo
2020-10-22	ARC 2020_10_22 WSY292048.doc	doc	768e6d291827c0a75bdafb995ee050735e1d0b71f154baf042ec0bf464fa9b21	n/a	Heodo
2020-10-22	list_P804.doc	doc	172c6306e56373fba4c6d4d6e3cff10f8b46a5e2d492dd1212fdab4be69064ee	n/a	Heodo
2020-10-22	rep_2020_10_22_60397.doc	doc	7f61b7ce4755a5fafc9c72d93d476d31dfa8986c59f81295dd2a7729a95d90c6	n/a	Heodo
2020-10-22	arc-E530.doc	doc	8c23e578f16b2d703020b370b1baf6a954bdb081411b4195a07acd937e31f879	n/a	Heodo
2020-10-22	File 2020_10_22 17036.doc	doc	a76299d22a2643338172ebec3e27885892ec71198d34b1d8e32ad7fded995701	n/a	Heodo
2020-10-22	inf-2020_10_22.doc	doc	6bcabdc4f54569d1844998741b631e0a5cb9b9a83643ab9709e1b73aa721f86b	44.00%	Heodo
2020-10-22	Doc-2020_10_22.doc	doc	be96a344b2fb3d43c0a4871f97a13c41633df469861f7cfbe9dfa3cc6ebe020b	n/a	Heodo
2020-10-22	LIST.doc	doc	051445a7b1b9b0f6f20f835fe8986c838a361380fe4b78f774869d8a77b3a192	n/a	Heodo
2020-10-22	6216584.doc	doc	16c3cfe1d57d913c326c72bc65e0476284bc3063d2027cc711612cdb8e4d5c42	n/a	Heodo
2020-10-22	ARC-QBM994.doc	doc	135cb539c0d9f861723acdc30ab6950ef610e097e40409ec4fcf9aee99fb40a5	n/a	Heodo
2020-10-22	Attachments W6559.doc	doc	e5c2ffeab6f37ff23cd3ccd112fc6a1be2c17cbfd33455e736ae991ba27db0e1	n/a	Heodo
2020-10-22	Dat 20201022 FA040.doc	doc	801d2ae370c4e9631b5740affb87d1628701bd436a299ea95ecc2df89a18e164	54.72%	Heodo
2020-10-22	Untitled-2020_10_22.doc	doc	44825c2bae3d56eabd7956d7f042f944a78988f626e43a3e94204ace8c69cbde	n/a	Heodo
2020-10-22	JQ4453.doc	doc	cdbf8419848b3e25541c5b07f18e858bfbf617cb2243f88043155b945098a90a	n/a	Heodo
2020-10-22	Dat TZI91618.doc	doc	624a776ecf3335ca75e6d84922925f0c24e3bd9c382e148ec031721415ce111e	n/a	Heodo
2020-10-22	Attachments_2020_10_22_HX1920.doc	doc	90aeee97e0274703c7aaaebf22decaa0c4c4e1c626f2bb0713892ee662256842	n/a	Heodo
2020-10-22	rep-HVT06149.doc	doc	e8cdc278eaa95810ad409fa3670e5cf1dafae7c1532c014bf7e62d4b860a6559	n/a	Heodo
2020-10-22	doc BOG858312.doc	doc	9087f71d3212d9993850675dbb49738d95935583898777aee073b8fb35cc3150	n/a	Heodo
2020-10-22	arc-20201022-270.doc	doc	f3cda1830eb3782eba4b5fd88c607cad17aab9e75cfb871fde33247cfa1176ba	n/a	Heodo
2020-10-22	MES_26534.doc	doc	916610eecd9e0faf3813f4af060d636722a3a3d148e16373514ba8ef022ac631	52.83%	Heodo
2020-10-22	ARC 20201022 45316.doc	doc	1866b19498cdc839b6b01746deccdbd4fb5ee2689ea7b5dd49d2af60d6b4d620	n/a	Heodo
2020-10-22	INF_DMK862.doc	doc	4adb138d8a23b32849309c792bab7949cdff073d4d2c42b0f65860480aacce9f	54.72%	Heodo
2020-10-22	5240-2020_10_22-4366481.doc	doc	7e06d6e4416c03c57f49e313a7c39e11b679c1348500f209711decaa97496614	50.91%	Heodo
2020-10-22	Dat-20201022-O842.doc	doc	4533627b4348507c5c05eb7090b96e31e60b845f30f585af35267657efd11cf5	48.33%	Heodo
2020-10-22	ARC 20201022.doc	doc	554ff1a900c5b97921e83840914338e5cf8141643ab9e5a4e3a5744599c8850e	50.00%	Heodo
2020-10-21	FILE-2020_10_22-ATY546164.doc	doc	12c68e1e99b281571fac81330a1178884fa80cd2487d5687440f1df72e8fe9f6	47.17%	Heodo
2020-10-21	File-20201022-IX0995.doc	doc	8b7b1d3a7f7ba09c903b61c93243abda2dadc43a36441e7f2d52707089625f80	n/a	Heodo