URLhaus Database

You are currently viewing the URLhaus database entry for https://pottershousedurban.co.za/cgi-bin/FILE/xzbx0cb5wywuw5/179vj6b9dpsp7advozp/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:733906
URL: https://pottershousedurban.co.za/cgi-bin/FILE/xzbx0cb5wywuw5/179vj6b9dpsp7advozp/
URL Status:Offline
Host: pottershousedurban.co.za
Date added:2020-10-22 09:54:06 UTC
Last online:2020-10-23 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-22 09:56:03 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:1 day, 8 hours, 56 minutes Poor (down since 2020-10-23 18:52:21 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22PO_10232020EX.docdoc 838408d31e494e72b257feeec73407a2f778e6ecc47754ae16af0290515dc9fdVirustotal results 42.00%Heodo
2020-10-22B_PO_10222020EX.docdoc babd6a080477d8f6f7854fd6b50a264c6e6fd601388dfacb28ef224a8b08b8c4Virustotal results 43.55%Heodo
2020-10-22EKWO_AN0910192581WX.docdoc 238792d4ba0b88404023737e62f4d3768816f979249a65ede0d4ef2cd227f9ban/aHeodo
2020-10-2262313368.docdoc 799c5537098f4e928a07c4c977fc56f159cc71437f05efa2b2fb6676d89b771cn/a Heodo
2020-10-22HDX_100120_QIX_102220.docdoc 1e3244c762ed0a0174d0fc5a1754358ab515f7beced76112f4234ef4b48767a3Virustotal results 40.00%Heodo
2020-10-22EOIV_483454075662687.docdoc 510f6a8a1701b5399083a1f7805f3d944b330676d573a3d33c1aa0ab3df91f41Virustotal results 41.94%Heodo
2020-10-22REP_M4WOFLNM0.docdoc 937c87496e98fe97075f0ae5ec35a64a75cc04b533f0a1a937d8a50096183519n/aHeodo
2020-10-22INV_37571296.docdoc 0dcf5051405a8df1087b5cf36dc02c73c8625397dd38bbee394b11858055e85bVirustotal results 38.89%Heodo
2020-10-22MEEQ_PO_10222020EX.docdoc 0b9036fd0fb6b0170883b15323d34e278388c2ee3e9639f5341c44b7cc9f3403Virustotal results 38.89%Heodo
2020-10-22INV_52XH0QUKA6369EPZ.docdoc 016ee663cf0779e773c6fb5644bf4f69f509afe3733132a014cc9fb1c777dcdfVirustotal results 41.67%Heodo
2020-10-22INV_GZO_100120_DKK_102220.docdoc a0c3617197a6bcd01ceb39b73663300421eb77c56391c866abab0deba5c94078Virustotal results 38.46%Heodo
2020-10-22F_AP3104996694AT.docdoc b56dbb47b8ccce583801528377d4979222c7ccdcc3bcab559a7fa6469fe02008Virustotal results 38.98%Heodo
2020-10-22257708632901907.docdoc 2e0fa43a2843fd83402b86b0ac90f8cb04e7397a167793ccb42d7fc69de3a987Virustotal results 38.89%Heodo
2020-10-22L_PO_10222020EX.docdoc a6540f229c21ccaf245ddbce5fea77f216483b5dbd6ca26ed2fa92997426d6bcn/aHeodo
2020-10-22INV_61586385209147387.docdoc 253503dd210f77e068fa385be863442f8c65307dda3743925de307f93d4e7fban/aHeodo
2020-10-22DOC_Z05HTPF35.docdoc 5f797ffdf10fea5ee7b50bc74647cac73cfc4cef96e92d346c842e6cf3df339an/aHeodo
2020-10-22PO_10222020EX.docdoc 1a6ddadc772f06b99c0286b4d3d96639582499d811601fa4b402619a7ffa4c80Virustotal results 50.00%Heodo
2020-10-22VZE_PO_10222020EX.docdoc 7672ae3ab7ee30ee3ef086ec0b9ced8c85e56d045f12305531d826ba491237b2n/aHeodo
2020-10-22BAL_43048527.docdoc 2c353218e1a20d8e435f57ae45682506c746562bae6f4761e2398d7caf09791bn/aHeodo
2020-10-22BAL_PXA_100120_OHN_102220.docdoc ae5168eab14a38621615d44a35ff6af0052fabf8af421ef2c66f783169b808e8Virustotal results 45.76%Heodo
2020-10-22FILE_4041824922749805757.docdoc 7eaf0df9dd2a33ee958384a9472366f58f1c0a204360efea6a7f8b0d298560d0Virustotal results 44.23%Heodo
2020-10-22419409256.docdoc 6bc2d7d48d9f0085333ac13895043ae58da0bf60848ae38c3733a470ab313643Virustotal results 45.16%Heodo
2020-10-22D_LV0GM1L0VZF8PB.docdoc fbb11ed6ce463e4a5598842961d2199f7264331418e806b4d15fa38b06600e7aVirustotal results 45.16%Heodo
2020-10-22S_YO7030331825LY.docdoc 5547e0e56d071bec65265c21ea88ed4a9d8103d45eadcf69ca86c09f445bdd32Virustotal results 43.33%Heodo
2020-10-22TRHR_07372715.docdoc bfb7f5292586b3c2fd3673c21c2d9471162c4924bc2cf06259c5c83f610989cdVirustotal results 43.10%Heodo
2020-10-2242881112.docdoc 3d37409bc0560c15a5641dc06d70f3eaefa42f6dd518a40ee05b1e0d37474b2bn/aHeodo