URLhaus Database

You are currently viewing the URLhaus database entry for http://www.kentschool.co.uk/scgi-bin/FILE/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:733335
URL: http://www.kentschool.co.uk/scgi-bin/FILE/
URL Status:Offline
Host: www.kentschool.co.uk
Date added:2020-10-22 07:08:12 UTC
Last online:2021-01-11 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-22 07:10:10 UTC to abuse{at}aptum[dot]com)
Takedown time:2 months, 21 days, 4 hours, 33 minutes Bad (down since 2021-01-11 11:43:36 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22BAL_43452328.docdoc 838408d31e494e72b257feeec73407a2f778e6ecc47754ae16af0290515dc9fdVirustotal results 42.00%Heodo
2020-10-22T_AAJ_100120_LQU_102220.docdoc aea5323b8ec31304c294e8225cddefa8aa8a5df30873dc0b5af266062972583fVirustotal results 56.45%Heodo
2020-10-22AUNP_JUX_100120_ONF_102220.docdoc 4008f8c88281fb6c543244f1701fb930aa6d1411a3209fcaa2997ee26f977d80Virustotal results 47.54%Heodo
2020-10-22UW_WUV_100120_LYE_102220.docdoc 2e45410e293f870df9a2729fd8d3e0aabac8b6aa79365b502a849f90ccb67b67Virustotal results 45.16%Heodo
2020-10-2239531841.docdoc d7aaad6773873f2f9419d99407b5160aef1799db14f54629f82d831d54c25806Virustotal results 46.67%Heodo
2020-10-22FILE_XIVEMSSQRH2O.docdoc 8a2460eefaab1e7c970a1836dfc66aacd55610790f20f1074e9b30d4eeb71890n/aHeodo
2020-10-22QJ_665008003933792952.docdoc cde66e97754d63a5b326d528c221fbc522946139ba0f6500a6f1dfda5db6ee80n/aHeodo
2020-10-22FILE_CX6ZEO7.docdoc 86ef36a4a86d0844c160dfbf6782566fe6c8d99281d919454df54dff6fb5411aVirustotal results 48.39%Heodo
2020-10-22BAL_PO_10222020EX.docdoc 81212e2cfa49f33852afa0465e2c4c9fd4a245340e8847009dd5d40bbb0f6751Virustotal results 46.15%Heodo
2020-10-22INV_GN0076931133RZ.docdoc 7eaf0df9dd2a33ee958384a9472366f58f1c0a204360efea6a7f8b0d298560d0n/aHeodo
2020-10-22BAL_63487002.docdoc e2d2ebafc33d7c7819f414031215c3669bccdfb255af3cbe0177b2c601b0e0cdVirustotal results 43.55%Heodo
2020-10-22FILE_OAV_100120_LQS_102220.docdoc 9c4152b0286e58648f1b01752c6704efdcc9aeabbb9c46833ad401d48ff81decVirustotal results 45.16%Heodo
2020-10-22BAL_7304307222853457947562984.docdoc 5547e0e56d071bec65265c21ea88ed4a9d8103d45eadcf69ca86c09f445bdd32n/aHeodo
2020-10-22J_TPT_100120_LKL_102220.docdoc b77d0f1db9365317aa34125ce7ef0a68615d90082791c7d921d7e5173bed6d8cVirustotal results 45.90%Heodo
2020-10-22BAL_49966465.docdoc f3bdfdeda759d384ba2dfe4792bab80ad4aa7354badad324c69e0f4c095cdef2n/aHeodo
2020-10-22G_92141234779.docdoc b6055d889e7ac86545888a5da746c4c231ead0afc40a036c3927188e99d7ae9an/aHeodo
2020-10-227VWYNC1NKJHODR1C.docdoc bb66afe308a4f9aac368840effb767d5fec62db675e7d03e6f7d4b9dc52fd30eVirustotal results 41.94%Heodo
2020-10-2211193253185.docdoc 39f8421b6ac7a025203dfb27d7b193171c2b08644ff2d4521672875356541571n/aHeodo
2020-10-22E_ZGME1QMF4G5WU.docdoc f39d13c26959e06eb9aa04ec31a8822178439aa7347af0f06173b5a6217c5102n/aHeodo
2020-10-22AFYT_03386631.docdoc ed5ed9c256dc24f5aeffc1b9b0e7dba316c5c13a1966b7243770318805567ec9n/aHeodo
2020-10-22FILE_YOH_100120_FVJ_102220.docdoc 04cc7e58a9ae2257d242a09a708b0034473e30df655cd4ac34e817bd37253ebcn/aHeodo
2020-10-22DOC_PO_10222020EX.docdoc 2eef34160c2eb32badd3a16ec6ca60426491b8c7d8e986350d5646a66074e640n/aHeodo