URLhaus Database

You are currently viewing the URLhaus database entry for http://myorgadiet.com/piyasaveri/Scan/UdvS1uLxxE/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	755683
URL:	http://myorgadiet.com/piyasaveri/Scan/UdvS1uLxxE/
URL Status:	Offline
Host:	myorgadiet.com
Date added:	2020-10-27 10:07:09 UTC
Last online:	2020-11-02 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-27 10:08:05 UTC to abuse{at}godaddy[dot]com)
Takedown time:	6 days, 4 hours, 45 minutes (down since 2020-11-02 14:53:31 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-29	Dat 2020_10_29 PZS85318.doc	doc	00f6aef85aa7271733b6791b7e95c9709f34b8e9ffde03a9bb30a858313348c4	15.87%	Heodo
2020-10-29	list_71428.doc	doc	c9452f9ce9e0141a4dc2ceead4836096348a151ab227d3d5aa64ee46bb7d85f0	n/a	Heodo
2020-10-29	List_2020_10_29_415.doc	doc	7dceb5e45e6892cc8bc258b38ee24048483be36d547d8be7958a6c93755c2a67	13.33%	Heodo
2020-10-29	dat_20201029_TP550621.doc	doc	8b60926cf9d5804b5b4c7900d12d19836729d506ea04601e39c1d72ef37eb703	15.87%	Heodo
2020-10-29	FILE-2020_10_29-326.doc	doc	f53c2a8fd9611f1da72ac43dfc9b40b081bce987f7704773f4b9c7b29873dfac	n/a	Heodo
2020-10-29	doc_2020_10_29_U327.doc	doc	2459f003d4b784c960c6fbf68be74cdd02277d11ded9f0a6be0f969c3061d54d	39.34%	Heodo
2020-10-29	ARC-2020_10_29-Q13502.doc	doc	d06c24a09106daa1032a15c8cff9c4eb399881b463ccefee9a51744197fed53c	38.10%	Heodo
2020-10-29	file.doc	doc	bb9b42355cd9c3b2448099c344e24ceab8f54de4c5e7f3e68ee997dc8e1bc678	38.10%	Heodo
2020-10-29	Dat_Q016206.doc	doc	6838da271d0d1b3e87290168d3717f5b627a6021ececd73b0408522c0f5f3aaa	37.29%	Heodo
2020-10-29	mes_2020_10_29_9871.doc	doc	29069c8ef4147aa42ee5cc01d2dcc4f0a5dd6d8116c4122852845a08f2e5fea2	35.48%	Heodo
2020-10-29	Rep 637.doc	doc	4651a840ce23c966bafea880bb08b5293365ec6eea71de68cff57961d6aea421	n/a	Heodo
2020-10-29	list_2020_10_29_QPM604516.doc	doc	43ac0bbd19c8d0a845fa3ca8b23e7f2fe7c7acb071a288271ad08b3cbc9ed06e	n/a	Heodo
2020-10-29	UNTITLED_2020_10_29_AL9073.doc	doc	10c94a3d88a422c85906a4cbad6406cab9fe1af930057c9701f890bed8b26ff1	n/a	Heodo
2020-10-29	Attachments-81344.doc	doc	99db7a0e3b100982f31ffee540f8fd2418200a74e24ae05dcbbd1974be87525e	35.00%	Heodo
2020-10-29	inf_2020_10_29_331.doc	doc	c0351b2b65f42bb0e32e612db2f556a0daa8962bde4491a6f16275680833ddc5	35.71%	Heodo
2020-10-29	ARC-20201029-241163.doc	doc	131c6bd5dfe6fa22b22ee9a089ef38bcbf255dfd62f14fd565acc4c2c65f5b85	n/a	Heodo
2020-10-29	file UMJ485.doc	doc	7ef43d002962412af376282a6cf98344219f97bc5ae5ab70b03204fdea131fc9	29.51%	Heodo
2020-10-29	FILE-2020_10_29-DO5575.doc	doc	baa7a5c8cd03cdbad3f018274a9ce821b056f2d7bbb6bdbd6285485e3b56338e	26.98%	Heodo
2020-10-29	Rep 20201029.doc	doc	1b8f86c4ebb6d4e560a7ecb82b42f8dc43dd044dac4dc0ff93161529f524f03e	26.23%	Heodo
2020-10-27	Attachment-Q2918.doc	doc	613835c721dd3c08cdfd8351af6898020af8eeab52448666f8af503efcb80862	n/a	Heodo
2020-10-27	Dat XC2524.doc	doc	bc9872776628a1915e2e9c078e5a813f7a316084c695d314e34181c0e09d49fa	n/a	Heodo