URLhaus Database

You are currently viewing the URLhaus database entry for http://sqcustomboxes.com/cgi-bin/BK51XVmQAE4NFA1p8XQnav60iNYWE6kBxdqeWxxnvCsAcLbMJgYv54KVGVh8w/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:761032
URL: http://sqcustomboxes.com/cgi-bin/BK51XVmQAE4NFA1p8XQnav60iNYWE6kBxdqeWxxnvCsAcLbMJgYv54KVGVh8w/
URL Status:Offline
Host: sqcustomboxes.com
Date added:2020-10-28 13:34:08 UTC
Last online:2020-11-06 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 13:36:55 UTC to abuse{at}eboundhost[dot]com)
Takedown time:9 days, 3 hours, 29 minutes Bad (down since 2020-11-06 17:06:13 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30Rep_71547335964213922430.docdoc 8ead4e972ba536f428fbee5bb8f687ff6a1efdae4456aafb1bbb176b37672180n/aHeodo
2020-10-30rep_KH4711233077LL.docdoc 2004d64ee603572e13a168eca558d2ade8169581208022e51896e0589e07116dn/aHeodo
2020-10-30K_PO_10302020EX.docdoc 721a801f52c7641ad68e3e7975b2dc98e5908a41803928d13434b180d6add068Virustotal results 23.44%Heodo
2020-10-30Dat_RM0YTY3GU8J4.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948Virustotal results 40.62%Heodo
2020-10-30list_861012344454278310445841.docdoc fbe079c5cd46bcc371fedd49df3189de10406984e2882c76b08947941f1726fdVirustotal results 40.62%Heodo
2020-10-30dat_14745097.docdoc a120ab7f12256c4b260034ecf26910f2eb405bb2c41ea9d1d78fcd2f529d2debn/aHeodo
2020-10-30REP_LL9553985256HQ.docdoc d81b2611e96c81a6be50bbbfbdc04309f10b987317f1bdbae24d2e90a216df11Virustotal results 40.74%Heodo
2020-10-30Arc_WB0317616930GC.docdoc 2a2cd3fa6ea3c1207553da6896b030a743a3893ec1b95b494ba27d6423f8857dn/aHeodo
2020-10-30File_UN5305033816OR.docdoc 78896f92d061592d98c06fc87245d2cf4074475faf24d2470912e785760c29b3n/aHeodo
2020-10-30Rep_IK4925248779SL.docdoc 7bfa1640c072951be3fb17704054b151541525eaa8a22606d94fc2d037a6a663n/aHeodo
2020-10-30File_79843233.docdoc ceac47b63a26dc75f489b8882600b4a6ffee7b0c5b5dca3ef7732746cd3ec229Virustotal results 38.33%Heodo
2020-10-30DAT_XYXZBBF3R3TG.docdoc 9e9808cc54536ce74b6ed5c426e0e175fac5915b344a9b0c802688fef6dfb918Virustotal results 32.81%Heodo
2020-10-30arc_PO_10302020EX.docdoc 0b7f26dc76b83127cdf687f818e652f050a9b3726aa76bc30947f94e4e25ffd4Virustotal results 39.34%Heodo
2020-10-30MES_80642745720470068.docdoc b8e37cb47da5ecf96e85afba207c615504c6e0d63335b4d2b9304fda9543eeafVirustotal results 34.92%Heodo
2020-10-30Mes_PO_10302020EX.docdoc 635a74416fba185c2d901ad6c437ddc2258d061fb43e420653cb07f071e62075Virustotal results 35.94%Heodo
2020-10-30DAT_FELHPWS9F2GL6.docdoc a51d194ff7cccab7defe2f64127934a4ff3699de37c60019b40dd62d631baf04Virustotal results 34.92%Heodo
2020-10-30FILE_PDNJEXHLNESS1YC4.docdoc 2fe61550011a52e12cb324aa8cd06faeece3d1f05ae42f1c51bb7e055a647877Virustotal results 30.16%Heodo
2020-10-30REP_43326657.docdoc c0f5989eb238c0d187f0a5341698ac293ee524d1132278aaff5ab4144a4b91a2n/aHeodo
2020-10-30FILE_6406882137211.docdoc 87582434c0b62f10bd24d5f8fe2636dcef3e0046373b8e05dadb27942be901f0Virustotal results 31.25%Heodo
2020-10-30list_SR7121324328UJ.docdoc 38ca20f2aeb5bde0d23de8c284f5f9b6eefadf3e2bfe1d44526548f434478f2eVirustotal results 29.69%Heodo
2020-10-30file_OU2295996094TN.docdoc eec673d1180b8765a6d45f7e7164e7e86024dce5cd09472669369e410fa5d161Virustotal results 27.42%Heodo
2020-10-29Rep_PO_10302020EX.docdoc 57a23ee50bad094280feb716af4f6917dcf92157f899a609736ead07c82e6432Virustotal results 26.56%Heodo
2020-10-29arc_23213739.docdoc b716fa67c934451161c1be78e1587b3c68a53b5e219dc5452e9ea883d32a274cn/aHeodo
2020-10-29Doc_BRB_100120_PYY_103020.docdoc aa9631cdb98dbe55b81b029660a0589039561664b34f249207dc0d83e273a030Virustotal results 26.56%Heodo
2020-10-291081223886717243.docdoc 77b9310b55e2267372f1458cc4c01a27f95067e8d1dad41137ee348a9dccaa32Virustotal results 28.12%Heodo
2020-10-29file_UYOPERM.docdoc 9f944d45d5e7d40e9f1fce8f48c7fae48a14b56666b6c149b9a2f028567d2019n/aHeodo
2020-10-29Inf_YJ2741270554GA.docdoc 30afb0ba6cad7d0adca2d6200ecc891e79a8901808aa35a78dc2e03b6b1b3feaVirustotal results 34.38%Heodo
2020-10-29INF_PX5430461346FU.docdoc 88f7d3cfd21b28cab6cac1289a7b2365e0f18c89f5510713244d083fee7ee769n/aHeodo
2020-10-29file_12208736339555542971.docdoc c61fca273223598ec29bcc70b0f716f3cb0ff9d9e293a02c8e0328dcf0011153Virustotal results 34.38%Heodo
2020-10-29Untitled_31874709.docdoc 37ce904c25d97f1199866c304c053e85219d0b201d3015981963506a9a65e327n/a 
2020-10-29Arc_ZO1YCFGGB0.docdoc c3ceef3dcd36af85ab9eb1dfbe12d3855abfa16fdf70a040f1198d7d266be08eVirustotal results 33.33%Heodo
2020-10-29inf_Y7K9WD6R73TS0.docdoc 98a507399c617fc492438aae1e2f0f8c2f01dbb954b3055846dfc5c48e84c7eaVirustotal results 29.69%Heodo
2020-10-29Attachments_PO_10292020EX.docdoc d51925f43c610d0116c831c9282a4b3fcbca83fce4a02bde7f425d81eb7a2243Virustotal results 31.25%Heodo
2020-10-29INF_ML2701531416JW.docdoc 37eae2de855efcd2b436b67f1145027884a51d652c6870d4170cbec5ee21dc73Virustotal results 30.16%Heodo
2020-10-29rep_53295336.docdoc 1ab2c18698d8ba798a968bcef9fd682cee77024e80c4b75783798da8a1fe89bcVirustotal results 31.25%Heodo
2020-10-29YC1764200182VD.docdoc a5d70f05d98720bd04c84440dd37092752ad5412805815ee92472cfc5c2aa1b7Virustotal results 32.81%Heodo
2020-10-29Attachments_65408326.docdoc 7a764435560ee65bb945e950ff5aaed0c4a6f15e01b91a4f8dc40746ca9b5c4eVirustotal results 31.25%Heodo
2020-10-29Doc_08181948.docdoc 8346b2d45100fecf34dce32ed484ccecf682c1d43684638368b5d23cc8cdb83eVirustotal results 28.12%Heodo
2020-10-29FILE_GXEXE0LV9PFUICC.docdoc cc18834ee43070da990675aa77ca54b1f00e3af5bb607464447c3ebdcd2cb356n/aHeodo
2020-10-29arc_94980333.docdoc 75df04fe2bbfe95af6c2ff3ad6beb372645597b0350f6cc16f995a09e27da829Virustotal results 26.98%Heodo
2020-10-29REP_PO_10292020EX.docdoc 62a00d40cc12aa508ac276663bcf8a77077e394977dd3682be09139582ac29c2n/aHeodo
2020-10-29DAT_78170468.docdoc d94ef71ba973986a34d34bc222026baa9954d1849b3fa74a609967ddf8e6af17Virustotal results 27.42%Heodo
2020-10-29ZNO_100120_NLU_102920.docdoc 3e308530ffcd87a3ce74ee5cebbcd04da2ca4d3ab63a3570e033513ed4db19e9Virustotal results 26.32%Heodo
2020-10-29INF_49998878.docdoc 9fe969fee626debd81e116bda0f8fba99a6adf05e1a8265e3e9d93df703da84bVirustotal results 26.56%Heodo
2020-10-29T_OZ1ADDKBSC8JQU.docdoc d285ea691c4ccf35668c9aeb1166e56bea695d95174c38282af932e47157a46dn/aHeodo
2020-10-29Arc_7823486466751500428818980.docdoc 02ded378bb9171cb19579495299062441281f67002a8f88beaee43c2dbdd94b4Virustotal results 24.19%Heodo
2020-10-29Inf_X3DXJORBBXPVR.docdoc 66f64a0a15e1684f79b32847abcb12b76ab1c2e5223c4acd8d994beaff32d39bVirustotal results 22.22%Heodo
2020-10-29LIST_44899887.docdoc 93ef9ecf091dd0a2f463f8b10a73d301ad965547315b43fcd5c1a4995c513525Virustotal results 18.00%Heodo
2020-10-29ARC_83335246369468388719697.docdoc 8e33cf2204f19a828e1018b6ab9c762d52deb1ecd43a920491561fefd654086fVirustotal results 20.31%Heodo
2020-10-29inf_25927548.docdoc ae454b06f63308de7e1a613281feea2eef089041c67af45e72ceec804482b526Virustotal results 20.31%Heodo
2020-10-29Untitled_PO_10292020EX.docdoc 3a1dd7ec119b96ea68facb223082a398ff4c038e58e7d166c80d7a7d4a3758abVirustotal results 20.97%Heodo
2020-10-29DOC_VZ9783187853TG.docdoc c3c4c3d1a892c0244bc5d4911ad7533990556a3ed4a4561eaaf58379a82b3295n/aHeodo
2020-10-29mes_46763718.docdoc 8e812f35e13e8d4d2d376ab456fb4335c9468ba58bb5a4bc7fdf14c959388f6dn/aHeodo
2020-10-29PO_10292020EX.docdoc 5a00d4a9d8e50c06f30007460af1dc4f73950dff8ef4d1966ec4098c16712bf0Virustotal results 42.86%Heodo
2020-10-29inf_E54IH9CZBA.docdoc a68e38ba80539aaa99e4624f37df31a53410de47b3a76df0fbced21744a74d0bn/aHeodo
2020-10-29Doc_0XTHR1NG2N6DSU.docdoc dd50631890eedb25005e6c54404ae0debc8cc80a8fd10b6e71c9251bf760c9a3Virustotal results 41.94%Heodo
2020-10-29FILE_69437683.docdoc 4d660fe18f8a7a46884d491d3bc3632eb0d0de321fe085339324e55175c33ff9Virustotal results 41.94%Heodo
2020-10-29FAYUNAV5QT93MIF.docdoc 63df7914667bd2adc0b6e4b2db5b67f07a6154956568765321641b6dc1469cf5n/aHeodo
2020-10-29ARC_PO_10292020EX.docdoc 4b6b29d5c14a6ed0524d46202796bf0f9bd18650fa3f44dc5d01e1ab93652600n/aHeodo
2020-10-29MES_GVH_100120_QID_102920.docdoc 4a64cdcef15cb3314d81486a5c6c1fc590e6579da756365b73c08c8adae77b95n/aHeodo
2020-10-29list_69826543.docdoc 6a727c9f4dd9cbd0b46dfbe10424610f304eed108280c8e6bed80618b45fa65eVirustotal results 38.10%Heodo
2020-10-29mes_44763924.docdoc 6d8ce1a7fac9fd46d61f2fe0e3dff607971c0a6e830f3eac90a4b3145f06280aVirustotal results 38.10%Heodo
2020-10-29File_09243562.docdoc c848e58e6eda265a519b7b901623769948e5bba84d9d240638af3bb235587028n/aHeodo
2020-10-29FILE_424848897.docdoc ed5a9cf9f1dc54e472bd41658cb3f19ec7eafcb34da7257c6407697b879a0535n/aHeodo
2020-10-29Doc_PO_10292020EX.docdoc 2bdfb721e168f6ffb5c4608463d3426b3637d3e4af4dc8716ac401e7ab3f4efbVirustotal results 38.10%Heodo
2020-10-29Dat_LK1O74HDVRFPG2V.docdoc 16593eef39e8c04fdbb6390954522fcbb430e3d131921c0b5f4e9477ebd794f9n/aHeodo
2020-10-29DAT_PO_10292020EX.docdoc 17d6d17702d158eda616b2096600e47fe0808914ae353ec5009763a5de5fffe7Virustotal results 35.48%Heodo
2020-10-28N9K7H5PGPB3C0WJ3.docdoc 2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7Virustotal results 25.81%Heodo
2020-10-28LIST_CPCNX54LWIZVT99.docdoc ff451db73672e713a3b5a30084d42b5d09a39ca3651cbb1b3c15ce4b18234592n/aHeodo
2020-10-28REP_289798234685411.docdoc e3e7a1b889083b79940a1a6a5301bb6f79a18b0805272d7e08a3582511090eedVirustotal results 27.42%Heodo
2020-10-28dat_22607545471175359.docdoc cb2de094d6518308daefaa75867659fdee298e4a0617b473ce48c4dcdea085den/aHeodo
2020-10-28Attachments_JI4431397533NR.docdoc 304314cb220d129f1eb18cc72da395146c2515aacaf0b81353667ddbf78413bcn/aHeodo
2020-10-28FILE_RMF_100120_HNL_102820.docdoc 11974ec5ce543646a57980f46943cb2a955f3d5a1e4732f3afdfd141df1cb76fn/aHeodo
2020-10-28ARC_WIW_100120_RIQ_102820.docdoc aa4fa922d7e80e83494ebc5639c0549754860e3de9ffd6b8f4f455a8ef6f8a2fVirustotal results 19.35%Heodo
2020-10-28File_175654603721614120960.docdoc 5da940231b1ebc70e4c974d89da825e72365c081f4b224b0308a7298de66a788n/aHeodo
2020-10-28arc_3834836738745450017682.docdoc c0a2014dfca67b622a9a96e4d169601563264a29bb55b9e9b8f1934d610183bcVirustotal results 17.74% Heodo
2020-10-28MFU_100120_FLL_102820.docdoc 3bd7bff850a4570a7bb97f9e98579d7a02f229ccbec50ec955257f9963ca0b5cVirustotal results 17.74%Heodo
2020-10-28Doc_04876575440147.docdoc 3e40a7defd105440e12f2955234fba81780b20f1dbc188417b1381f6738ab15fn/aHeodo
2020-10-28Untitled_51102640824.docdoc 7d38c4d98d05cd3a7a0fc6898c9d86ef1c29cd8dcfa3403d0222ff508843a325n/aHeodo
2020-10-28dat_PO_10282020EX.docdoc 028f51dbdfd44aa2c12928be40c8b34c1178a7b36c3aa2556596393a09409083n/aHeodo
2020-10-28Doc_PO_10282020EX.docdoc 972396084dfd074cef1c597e9766918fc0d394d11b8762d20395a86ad5b5883an/aHeodo
2020-10-28FILE_KZX_100120_XJG_102820.docdoc 19377c68fd4d0b3d66624ba4a1aa465efb840857e142ec38ddfe4e1e9c573b8bn/aHeodo
2020-10-28dat_HO8784076214UE.docdoc 560dfd8d4f9642e08df6182f046002538246919e100717f57b5f918211a7e95bn/aHeodo
2020-10-28dat_61656633.docdoc ca886c353a653f94a89591b19f4830ea563abdb93c949b8bd4872dbbb65bc02aVirustotal results 19.67%Heodo