URLhaus Database

You are currently viewing the URLhaus database entry for http://thecentralbaptist.com/dYzjVW6I9H/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:7421
URL:http://thecentralbaptist.com/dYzjVW6I9H/
URL Status:Offline
Host:thecentralbaptist.com
Date added:2018-04-25 20:12:11 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@JRoosen
Abuse complaint sent (?): Yes (2018-06-11 10:43:53 UTC to abuse{at}inmotionhosting[dot]com)
Tags:doc emotet

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-04-27New order.docdoc6f6acb726082ac203a58c274063873fc0faeabb9d40b6b4af9808ff17cda979dVirustotal results 12 / 59 (20.34)Heodo
2018-04-27Paid Invoice & Credit Card Receipt.docdoc6dca4db8a6f401ec960f644706745a494d520b8d5aef2ec17ad040dc778e84cbn/aHeodo
2018-04-26Paid Invoices.docdoc1476bceee8a4d3f929f24c437228b80bfc5936626a904e7d2ff704c8a6c0edc9Virustotal results 8 / 59 (13.56)Heodo
2018-04-26Need to send the attachment.docdoc8dc19d36c2c55fd56a3bd05b9c87db91413247d16bfaf5bd37d7fcd910912e80Virustotal results 10 / 59 (16.95)Heodo
2018-04-25Past Due Invoices.docdoc1c3d473ceaa11e181275fa654d8df3af342240bc948c5dbfcb5f1179044fe500Virustotal results 12 / 59 (20.34)Heodo