URLhaus Database

You are currently viewing the URLhaus database entry for http://geometria.nyc/wp-admin/esp/fudra5JJxwMLgrN4U5EP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	734381
URL:	http://geometria.nyc/wp-admin/esp/fudra5JJxwMLgrN4U5EP/
URL Status:	Offline
Host:	geometria.nyc
Date added:	2020-10-22 11:52:10 UTC
Last online:	2020-10-25 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-22 11:54:07 UTC to abuse{at}digitalocean[dot]com)
Takedown time:	3 days, 7 hours, 4 minutes (down since 2020-10-25 18:58:20 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-23	INF 2020_10_23 B0968.doc	doc	c201dc04bed84411f216935bcad9296fdb3e99daa909ead17006846758dc8346	n/a	Heodo
2020-10-23	Arc.doc	doc	dc449047057bb16de95db4e34192d9da2711671aae299bc381e7a5ab2f37cce3	n/a	Heodo
2020-10-23	Arc_2020_10_23.doc	doc	5aa69f039b296badda988d4dcfa6971c4f3ed38b860725fecc70a99d091cec40	n/a	Heodo
2020-10-23	LIST_20201023.doc	doc	044fbfe6a7af7880a4a79b11351a8b657219c5717280368151dc6564e7b81715	n/a	Heodo
2020-10-23	Rep-2020_10_23-6579567.doc	doc	eddb68023ee76dfd8b79f2f5c37d4e7c4edcfb6b994803e737f53b7922c88aa2	53.33%	Heodo
2020-10-23	MES 20201023 0231.doc	doc	8a528d954a8f9a3fbcc3da7a1888a95c3a827ef426f2ae24e57ca2e774f0b803	n/a	Heodo
2020-10-23	Untitled 2020_10_23 S302006.doc	doc	55dacaf8b4f0198a5a10b579913184626f2d3025e754b3d2ee80cb1fdd66a5f6	n/a	Heodo
2020-10-23	ARC-20201023-2168035.doc	doc	fbb6079c0fd409beaf6bde2232c010945ffcb79079ea98e3279769464908ad3c	50.00%	Heodo
2020-10-23	L107_WR238.doc	doc	623493fea7d7d2f6e25e4e0c6d64d8bc684086cf8258e543f4a859b5e2080eab	54.72%	Heodo
2020-10-23	Mes_631.doc	doc	b0db3d5083a44747e1da01e6006e211a95e616455b85f9b9961c7dccd7f6e680	n/a	Heodo
2020-10-23	ARC-20201023-V6468.doc	doc	c0d98e619a2f9b108045a5619b549a0ee90c530dbbfb72af185868de869e8f0c	n/a	Heodo
2020-10-23	FILE-20201023-B29938.doc	doc	9207c7670fb6e70508d2f499abddeb5b8eba8131cb0a0929e75c83ee56d59cd8	53.57%	Heodo
2020-10-23	4065_20201023_48971.doc	doc	03290ac1a4a631b629b8ee0a0ccbe41e7e65fd76ce230251d8179173865e0e68	n/a	Heodo
2020-10-23	ARC-2020_10_23-755.doc	doc	e43dfdcd88770dbd138a35c2776f6343edf13246fcb951b6a95aefc628f6bcb4	n/a	Heodo
2020-10-23	24866A-2020_10_23-PCC0791.doc	doc	86eeb47ffd534154e6f1ef41bf80d2bb75d311a6f2ea21ca0ee51478e58aece4	50.00%	Heodo
2020-10-23	rep-2020_10_23-HJ34259.doc	doc	30c013e0b232e1e2eb26305b7f22b89299297bfcf5304f5d2901989d9a0510e5	50.94%	Heodo
2020-10-23	08210096_PPD4954.doc	doc	31a1196eff28cc5bc1abf437836a0f46235d224545bd9202c8d4e35743f5ece1	n/a	Heodo
2020-10-23	doc 20201023 CM504.doc	doc	2eb12ffa679fb839847b56e9a70f0636ea3452803d9faedb03948144d6857e45	n/a	Heodo
2020-10-23	mes_20201023_32505.doc	doc	0c55dae4a75373696f7af6d0a7db5092fbe4f15c3c92d8dc9433949837b5db92	n/a	Heodo
2020-10-23	MES_649465.doc	doc	8d9feff2d2f4118c47686321fe932cf19cf1ebe4b8c46b1f5e95e3df0032c4c4	n/a	Heodo
2020-10-23	INF 20201023 508.doc	doc	247612fcda0c42b16c95a6447a2c1fd50058e3b0795e129e46e5b9e4292da8b2	n/a	Heodo
2020-10-22	Attachments 20201023.doc	doc	74956b6fd8fb8af1c1cd21026338c5e52d19533087ce7d60541ec7180469db1d	n/a	Heodo
2020-10-22	Inf_20201023_319.doc	doc	02e690dbfd6ef074801125231bf4d4b402338b8103a7d35d43d223bf72fb3647	n/a	Heodo
2020-10-22	mes_20201023_P900.doc	doc	f4ddff9e93151f064216eeae4a8fef9f66e00e41b2a8f30e45768e33e5788f4b	n/a	Heodo
2020-10-22	LIST 20201023 GH04003.doc	doc	ff00742ee2e924330820490dd85ef3ebae24558e2aea9bdf91cef583bb047cfd	n/a	Heodo
2020-10-22	arc-20201023-10298.doc	doc	b1008c8c9b01a91bdec5cdc1d007818db8d185b24c77cf53ac433a3168a14e05	n/a	Heodo
2020-10-22	doc-2020_10_23-539.doc	doc	9b1126a7dcaab56164020fba3bff26f128ad35ad6b3afd288479b18850668535	n/a	Heodo
2020-10-22	REP HQ04874.doc	doc	ad4489fa8048ee324f4ae551ab55ed496add23b3ba98e5cdf0ca1fefbe310858	n/a	Heodo
2020-10-22	Arc 394015.doc	doc	678c31137a5b814bda48ddc7a0c580fec6b06bbebdc6e3b56e92a511cd067c8e	n/a	Heodo
2020-10-22	mes-20201022-5612552.doc	doc	a075a9add68d086b44892ff7bfc40312c62961d3d7cf07167b5af6d1beb284fb	n/a	Heodo
2020-10-22	2216 2020_10_22 692.doc	doc	df69fa85298378b58491a076e19ab941269531a8a65e907a147c39d9f6d8dafe	n/a	Heodo
2020-10-22	dat_20201022_OOL977.doc	doc	89c5765fc3e39bac59c026e5ed7a0bf104ce4d3fb907d1e9c0ce1a1f6e0ad884	n/a	Heodo
2020-10-22	05818804 20201022 903218.doc	doc	c35e562c1aa1e4913a418054632e81a9d31789e35abc8cc889fef8149c346abd	35.48%	Heodo
2020-10-22	DAT_2020_10_22_13344.doc	doc	fbc8e9d942c6523ed01531042fa5274ee9e33c6cabe90af9f0a1f5281fe2824f	n/a	Heodo
2020-10-22	arc 3763942.doc	doc	eb9616bfd8da0e060124c17de4c7503345dc4826ba9fadcd6da738aa42937c48	n/a	Heodo
2020-10-22	Doc-2020_10_22-2443590.doc	doc	b207b4e2ee615bf475155bc5b10c48021a833865836e97e724e93fb03e91cf6a	n/a	Heodo
2020-10-22	inf_2020_10_22_7786102.doc	doc	00844bafd3dc1431f9661d11e58935bcce4d3b622801cf77904fa51330a84b85	32.26%	Heodo
2020-10-22	arc CVA3664.doc	doc	9f91c3c1109d3edf8276cf3fd48cde191da77831bbafaef50fab8d2ec88d2d51	40.98%	Heodo
2020-10-22	Dat 2020_10_22 SIZ743.doc	doc	02c69c0974296daf841d2b66c309e713f6b20bc899ba4e7df6f8632bdcd81ef5	41.67%	Heodo
2020-10-22	01387.doc	doc	33d8282536536c651d28cb08401045d2a01d13e2606369788ecf8ffe2136a4b6	n/a	Heodo
2020-10-22	FILE-20201022-BM07874.doc	doc	f0719f4bb3c2e7da30303c7a5e390c500f99785254b72947b619b0c1d96dea22	37.74%	Heodo
2020-10-22	inf_20201022_102.doc	doc	6e16bf7d72def557837a5b25b9cc55bf2bd3b45d7fc68ebf97ca8b76b1a56569	n/a	Heodo
2020-10-22	file_20201022_87456.doc	doc	984ab8845985bebedede05c24fe9d78430626ca6805e0a85a0a7dd9085d1b395	n/a	Heodo
2020-10-22	doc-KBT245717.doc	doc	f866bfe66ec6e3cc8be75c57bc75b4ee56e8b16ed1804ad9ac89337a3548fd71	n/a	Heodo
2020-10-22	file 2020_10_22 MC86234.doc	doc	e6ca842f6dc22d3d1bbcd7d115cea469179cbec805078040c652d199c28d6a06	n/a	Heodo
2020-10-22	file_20201022_CO924148.doc	doc	16aafc537262e63d74f2af32b6c610ffb08d8fb387d0c7ee7f5bf9bf6150df29	33.87%	Heodo
2020-10-22	Attachment_20201022_7313.doc	doc	cbf4191ae57c3cc2c4446c4a362ca2df3006b675f1d8f99e4c6d715c9874d79e	n/a	Heodo
2020-10-22	UNTITLED 20201022 DN83801.doc	doc	9207b124eae6ade64899f349f47fadc93ad1684be693e6110ac409fb9d186213	43.33%	Heodo
2020-10-22	Dat 834.doc	doc	02c384bf4a6d500961e8d9df6f3e28c5dbabeb2f8a8b88980dee90e66642d141	n/a	Heodo