URLhaus Database

You are currently viewing the URLhaus database entry for http://timegonebuy.com/closed-resource/attachments/5szlpgK1MHfRmVxEq6LQ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:731694
URL: http://timegonebuy.com/closed-resource/attachments/5szlpgK1MHfRmVxEq6LQ/
URL Status:Offline
Host: timegonebuy.com
Date added:2020-10-21 23:56:03 UTC
Last online:2021-11-27 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2021-11-27 06:03:03 UTC to abuse{at}confluence-networks[dot]com)
Takedown time:2 years, 3 months, 11 days, 12 hours, 52 minutes Bad (down since 2023-01-21 12:50:35 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-23I716-2020_10_23.docdoc c201dc04bed84411f216935bcad9296fdb3e99daa909ead17006846758dc8346n/aHeodo
2020-10-23rep 20201023 1923995.docdoc 5aa69f039b296badda988d4dcfa6971c4f3ed38b860725fecc70a99d091cec40n/aHeodo
2020-10-23Mes 2020_10_23 4071.docdoc 8dd6f9470c3b3dc2cfd0895916a700d3ab5acae0a092e3b4113791cbac23d08bn/aHeodo
2020-10-23list.docdoc eddb68023ee76dfd8b79f2f5c37d4e7c4edcfb6b994803e737f53b7922c88aa2n/aHeodo
2020-10-23Attachment 20201023 8344.docdoc f67f7afdf8fd65b04eb4266ce341dbb4554298dcd0c24c6cc6db49695fe78701n/aHeodo
2020-10-23QN7198 2020_10_23.docdoc 25093bb7528311c4eee9c173590bd55d34e3101eeb80a3c3405eca6bc50ddd60n/aHeodo
2020-10-2387566_653493.docdoc b333f4edbcd85640a50a2cacf9a116caa96e2026f2d2089c90b9c1b72e929581n/aHeodo
2020-10-23File_70108.docdoc 185382e8a67536b4ee2d828ab8b2477fc82d6de13e085231dc28569b46329b9dVirustotal results 49.18%Heodo
2020-10-23dat_2020_10_23.docdoc c0d98e619a2f9b108045a5619b549a0ee90c530dbbfb72af185868de869e8f0cn/aHeodo
2020-10-23Untitled_RM85145.docdoc 8248f6adbd725296a4c377bc8ecd9f6a00c09218d334e342776786cb9d6b903en/aHeodo
2020-10-23mes RSL9527.docdoc 31a65c0934f1ba04e9f8ff09dc95bd842b64d925bf09ee93fd20896f040b8c76Virustotal results 54.72%Heodo
2020-10-23dat_2020_10_23_IQK061.docdoc 6804dbc9724d112e604b0a8c2fa2bdd8d5067918c5479d73632c6258ff83888eVirustotal results 49.18%Heodo
2020-10-23Inf 2020_10_23 097.docdoc e43dfdcd88770dbd138a35c2776f6343edf13246fcb951b6a95aefc628f6bcb4n/aHeodo
2020-10-23V900.docdoc 0ffa03e1d13a9d92d4840fdbc9530e032e68446c2870ce96415cedd63a39e919Virustotal results 50.82%Heodo
2020-10-23Attachments_2020_10_23_KE6630.docdoc 0d4c32de2a17f33ad0504b5ff2bf0cd32123f1cca11d58dda141b0929a266837n/aHeodo
2020-10-23Arc 2020_10_23 TAW82449.docdoc 30c013e0b232e1e2eb26305b7f22b89299297bfcf5304f5d2901989d9a0510e5n/aHeodo
2020-10-23DAT 52670.docdoc c08df1aaf320c5907f8fa026f4fb52764fde92489159d8793d79d4183af18380n/aHeodo
2020-10-23Attachments_938.docdoc 0c55dae4a75373696f7af6d0a7db5092fbe4f15c3c92d8dc9433949837b5db92n/aHeodo
2020-10-23DAT-NN391.docdoc 5e0889b9d547518e82e6900b280c0074156f59920b4c1c585ba18cbd66ac3a1cVirustotal results 47.17%Heodo
2020-10-23Untitled_Y388.docdoc 2df60a3a0b069c063741a94ff2a1c19bd0da7088ec932c4c12d7dcb186aabb06n/aHeodo
2020-10-22mes-8310405.docdoc 74956b6fd8fb8af1c1cd21026338c5e52d19533087ce7d60541ec7180469db1dn/aHeodo
2020-10-22Arc-20201023.docdoc de17fe1232b69d5a889e5478613d1bc67355827d803bcec0779a120a0c933f51Virustotal results 40.98%Heodo
2020-10-22mes-20201023-LEZ221780.docdoc 24ec183ee778cc4230c8f2df01ebb719356416cf8ed85a928c4864c57dd62befn/aHeodo
2020-10-224193 20201023 DF405.docdoc d87a93ae2eb91cfb925982e62a821b9798be7fd9fd307604af79f96c5810e156n/aHeodo
2020-10-224469-2020_10_23-KJY494.docdoc 9b1126a7dcaab56164020fba3bff26f128ad35ad6b3afd288479b18850668535n/aHeodo
2020-10-22Rep 2020_10_22 LNP558913.docdoc 91b0149df45bd0240de0e0b27a10f2c130ae4084b7fb310ffdefa6819c0dedc9n/aHeodo
2020-10-22Attachment MN454788.docdoc d5474138a81425e37468ee96b8d51972e4f39cb3485625f90cedb9f9eec62e4cn/aHeodo
2020-10-22dat 20201022 O26612.docdoc d1dcedd7b80d448216607ca5831c042cac714ec9143424a7cbfff5dae30f9d1fn/aHeodo
2020-10-22006-50316.docdoc 744510232f86ddaa90402827ce8b9d806fff2827c08f1b27cfa01e9ec5787d7en/aHeodo
2020-10-22Inf-20201022-4593298.docdoc fbe8f5c905f6775ad3a8e659e3d46f73e57c9b9e88dd2ab3274568a03545cd15n/aHeodo
2020-10-22INF-20201022-E18000.docdoc dc9b5ae32262f697360bc1b92f520a8211cfc0360bcebec5a1155bbed03f9ccen/a Heodo
2020-10-22ARC 2020_10_22.docdoc aba2852c2ede40d00712d4f0bf753af374f10fa332d165c7bf62b40803c6b393n/aHeodo
2020-10-2201942B_20201022_WE713.docdoc f8238ca73eb3fdeb1f88f5688f5a30fee420309ae61ee7ac48a63b367e174c68n/aHeodo
2020-10-22File 2020_10_22.docdoc 00844bafd3dc1431f9661d11e58935bcce4d3b622801cf77904fa51330a84b85Virustotal results 32.26%Heodo
2020-10-22054853.docdoc 1897a70790c07d00de31ac18813c0c1c5f3344f9251634f3e8152603cdf6d13dVirustotal results 37.74%Heodo
2020-10-22REP_2020_10_22_686270.docdoc ed1aa667877338aa66e291884d7ea0531ab7668bc263424702edd2496c6505fcn/aHeodo
2020-10-22list_2964.docdoc a4d62fab68ef1d6b045a87b9ad2d4caa489869d665aba8129c7cd85333163fd3Virustotal results 39.62%Heodo
2020-10-22Untitled_20201022_F4246.docdoc 00ad72bb1e58786803aaee6dfa9219f44508be27c7806c618bbd5928d4c3b647n/aHeodo
2020-10-22List_I964.docdoc a91c82c5002dd214e1438bb8246a6b28bec02bd7c4dfdfa2dd45fc0341fc0bf0n/aHeodo
2020-10-22PB0527 20201022 AZ777.docdoc 7088de375896b1287a4dedeec8070264a6dced5b2ad3323d4deeb18fd8eb447aVirustotal results 35.48%Heodo
2020-10-22Arc_UT0832.docdoc f866bfe66ec6e3cc8be75c57bc75b4ee56e8b16ed1804ad9ac89337a3548fd71n/aHeodo
2020-10-22file-2020_10_22-C215931.docdoc c5c17a071d5a806c3bb2dd0479a5108a3221eaf7fc8f569d501ef1a26d5c8396n/aHeodo
2020-10-22LIST 20201022 17788.docdoc a9aab448fb96800b129f7f912d5da900789df5ee3ce7b94a02b89a9ed3efb388n/aHeodo
2020-10-22Doc 20201022 486.docdoc 014e852d65d32bb545e5d8df486acf4cb24901e87bbe0a9cc7e2d96890a91efcn/aHeodo
2020-10-22ARC_040.docdoc 0f2bcf1cb715e9a6d68742144e1873d1b155918aad4f06fd6f1400c1652e6907n/aHeodo
2020-10-22File 9658645.docdoc 02c384bf4a6d500961e8d9df6f3e28c5dbabeb2f8a8b88980dee90e66642d141n/aHeodo
2020-10-22A76832-20201022-MT497.docdoc a25344257babd179c56bc660bff618d3300aa4de550c84dba1e3e0a46ecafe13n/aHeodo
2020-10-2295017 3023878.docdoc 794eaaf7e3009055d7e4e5baed069553785993a378dc0dfd454467efc7c39e90n/aHeodo
2020-10-22Rep_2886429.docdoc 68bdf237183f84c903d36ca5c784bdaf03918f5273f5370f188ad2a934d97f70n/aHeodo
2020-10-22List 2020_10_22.docdoc 28aecaaed6def34a0f480dc2a61d20cf12720db808b320fb1e886a86f08686c0n/aHeodo
2020-10-22inf 20201022 XJY1575.docdoc 546072464b8ee9b02eb89fbbbf549139a0543727442323913a1c7ce22110eaa3n/aHeodo
2020-10-22Doc_2020_10_22_RDI457855.docdoc 01776da98f2ac077981a29489f399705ddc19dcfcf9584190b858fa1f894a6edn/aHeodo
2020-10-22INF_20201022_9953167.docdoc 8a2f80866837174e4da1cb7a9aff1ad0f70f397222edb54c3031d4019061b91dn/aHeodo
2020-10-22Untitled-20201022-M805450.docdoc 2ff6d19afb85204f40ae48717a474273df3f77aaf11084e5162b1e8c057e34fdn/aHeodo
2020-10-22ARC 2020_10_22 287164.docdoc 0cbb61a68e8ab2a5c0c7fc5ec5803c8f0e8e6f86626e0b7dab42080c2b6b7f39n/aHeodo
2020-10-22File 436970.docdoc 762eef538d0c4d105cc6ed8ab380f60021363b0a9569aefd66752a02939244e1n/aHeodo
2020-10-22List LES299.docdoc c53ffb4639e68722e714385b3296c8ad388a6f6004e2905dd2f7a86f3e2f59d0Virustotal results 57.38%Heodo
2020-10-22Inf_20201022_4557796.docdoc f95182213ce7c6c1e585a1a0a4a11d9c9dd07358a8acef0539def794f40182fdVirustotal results 55.74%Heodo
2020-10-22inf-STQ1376.docdoc 6df55c3f911ce158760ac06b0e28baa8315645d1dafe03ad8c6fdd0cd38c4e71n/aHeodo
2020-10-22Mes_2020_10_22_RZM358.docdoc 4fd05f115fa19fb83772d3774cbca589e514557731f2a46ac032052ab63e3cbfn/aHeodo
2020-10-22Untitled 20201022 954.docdoc 34745d391369025eba2dc5ac8ec4d7811eb2fd3c56857a550e9bf863d20472d1n/aHeodo
2020-10-22ARC-20201022-YFA0318.docdoc 4832bb1b17e1e57818b0c72a60b9e26cd2d7e5b9cdfff90349cd1e4af3e0c5a9n/aHeodo
2020-10-22inf_VW9844.docdoc 6468266c5994c400937bb96f344756a764ad1fcf5b00cc3135183b89bc60eb4dVirustotal results 49.18%Heodo
2020-10-22dat_2020_10_22_S35586.docdoc 9087f71d3212d9993850675dbb49738d95935583898777aee073b8fb35cc3150n/aHeodo
2020-10-22list-2020_10_22.docdoc 64d785d18d4dd4904a4ea1c9d9493cfc2e7cbae4856956062bcacda90ddbbe02Virustotal results 55.17%Heodo
2020-10-22file_20201022_D59181.docdoc 7721cf1daa797e7d3937a27f69b99ef2a6151487a971903c12c6974ced209725Virustotal results 50.00%Heodo
2020-10-228552VN.docdoc 1866b19498cdc839b6b01746deccdbd4fb5ee2689ea7b5dd49d2af60d6b4d620n/aHeodo
2020-10-22mes_4244.docdoc ccda7e2a1aa2d6ecff5cfbf3878c3146d9116ef8a288f4ad6e2763ea9f7c46bdVirustotal results 52.54%Heodo
2020-10-22Untitled 20201022 841.docdoc e67a507d777e002eee507ccec06969302b4e54c01e686bb88b3368c97fd09fa6n/aHeodo
2020-10-223800830 WF2416.docdoc 87810aa6765f1c09d6d20ffb8a1d9384bd668189fe36938f7d9172d3f5ba4fe6Virustotal results 46.77%Heodo
2020-10-22Arc-20201022-1152567.docdoc 910e134d02b73187854b7d88fd60571f7603335d01d4e8514fc92ed70e2a0908n/aHeodo
2020-10-21Doc-EQ94161.docdoc 79923f0eb061a4a9ab9b4cd495ac19c821db61e54e38f752ada4e128e3c28c40n/aHeodo