URLhaus Database

You are currently viewing the URLhaus database entry for https://www.cenfeng.top/wp-admin/Pages/2zkn7HO9l0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	750904
URL:	https://www.cenfeng.top/wp-admin/Pages/2zkn7HO9l0/
URL Status:	Offline
Host:	www.cenfeng.top
Date added:	2020-10-26 09:33:06 UTC
Last online:	2020-10-26 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-26 09:34:03 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:	5 hours, 11 minutes (down since 2020-10-26 14:45:13 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-26	INF 8628580.doc	doc	af5bec962b175e3e4f5df0a4f2717783bf78df335fcc78d65762cda9a39c626e	n/a	Heodo
2020-10-26	Arc.doc	doc	9643f549d482e6be9950a7ed247dd56080bbf3a13886de1c941e48199f11bcb2	33.33%	Heodo
2020-10-26	Attachments_2020_10_26_LTH929114.doc	doc	77eb4c7120067d48b4170418e4b3e3fc183c4164d4d4fd4986b52e67c27cf5e9	31.75%	Heodo
2020-10-26	Rep_I6825.doc	doc	9051c3262b2cf8fe3c7d6e53b49107c37a032d9a2e542c5f7ba91c45eaf7310e	32.08%	Heodo
2020-10-26	Untitled-20201026-9534.doc	doc	5ecb598ee6956d9ef707aa782dc3cb1df34132b0d9402a303a5f7e9e27f12604	33.33%	Heodo
2020-10-26	Mes 20201026 DKB55159.doc	doc	b09c1e57573cb81b0caf6e7689249181086b61251099164768fe6546c4caa9e6	n/a	Heodo
2020-10-26	Doc 20201026 44057.doc	doc	a0022dd3bfc83d3b114afdd94b9fdcc716c5d68befa55c21ff1b7ac91defa798	n/a	Heodo
2020-10-26	9451GBE_20201026.doc	doc	13e88cb0531b6aa50e377b366ea172183d59ea40224f08de97fb1b979dd60f32	n/a	Heodo
2020-10-26	arc_9156701.doc	doc	76e0827be9357a1ff7eac067a0a1e6041c71f5d0d6577c6c51114136d8d43150	n/a	Heodo
2020-10-26	Inf_20201026_7456.doc	doc	38c14dd44d07e90b9ef6f45e6cbb218b3ff3d99721455910a3b5054c2e3b19ce	n/a	Heodo
2020-10-26	doc_KU633.doc	doc	2bc26aa0c65df591c12916f46ff55e5a6b241a3306a07f6bc71c74affc78d401	n/a	Heodo
2020-10-26	dat_4965659.doc	doc	5eb5558d4c71465be427ddf9b051aa164d5ae1dd3b28ca9ff2d0e40ddc2d01d7	29.03%	Heodo
2020-10-26	Rep 2020_10_26 740492.doc	doc	4a56faf2105cc8e1a37accab9e4464a990ba0e6ed853a5ea074c18f3a4d582b2	n/a	Heodo
2020-10-26	ARC_2020_10_26_87115.doc	doc	6d91807585909756c047d6afd49811e9e0b4ff3bd9f57329990dea30b6948dd0	n/a	Heodo
2020-10-26	FILE_20201026_0100.doc	doc	6a64b3fa74a681a170803db2fc82075c2d1aa71b3b85f19b53250a32ad672db5	n/a	Heodo
2020-10-26	inf-2020_10_26-RNU4785.doc	doc	001c7f2cf9518d78d50711633e4f0cb168bbc4ab2c923ead7c41febf6e3fdfad	27.42%	Heodo
2020-10-26	file_20201026_5419.doc	doc	6c73d0f17a9c1e3d6139834005569d2622fcb6c0b85c46b91e924b0377e9d997	n/a	Heodo
2020-10-26	FILE_60468.doc	doc	6c8bfd57277439037aeb95048c523ea5d18f98bf548d73dd699989aafda23971	n/a	Heodo
2020-10-26	Inf 2020_10_26 Y659.doc	doc	bb0bd4259f7a68fcbea33a17f5f1694bed9d55db4c224ce81cbdc771c2ef3b90	31.48%	Heodo