URLhaus Database

You are currently viewing the URLhaus database entry for http://buyfreshperu.com/wp-content/cFiBzMLXI7djvlY8OE0C1vtSqtWMaOMzRz5jaKis3cAmXzOpReTqZXUUtYaTBe/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:762966
URL: http://buyfreshperu.com/wp-content/cFiBzMLXI7djvlY8OE0C1vtSqtWMaOMzRz5jaKis3cAmXzOpReTqZXUUtYaTBe/
URL Status:Offline
Host: buyfreshperu.com
Date added:2020-10-29 00:12:06 UTC
Last online:2020-11-09 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-29 00:14:14 UTC to admin{at}frantech[dot]ca,fdias{at}frantech[dot]ca)
Takedown time:11 days, 16 hours, 20 minutes Bad (down since 2020-11-09 16:35:13 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30Untitled_WV5005850758JM.docdoc 2004d64ee603572e13a168eca558d2ade8169581208022e51896e0589e07116dn/aHeodo
2020-10-30DOC_6665803916094702.docdoc 6061326ca1f6965d9ff04a37eb1defb55b410556500c197c6d8c9207a4432fabn/aHeodo
2020-10-30List_BYX_100120_DUU_103020.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948n/aHeodo
2020-10-30REP_OEJ_100120_XDV_103020.docdoc 7936fd61383857a4def1dbe2e3c320a04038eaeb4eac1d4c313a7dcf3dcd3cdfVirustotal results 35.94%Heodo
2020-10-30List_G658OLWP.docdoc 3416748dde8336e8081847df55d2ef61d1081a8bd9d76faa5922683231da8c94Virustotal results 40.98%Heodo
2020-10-30PO_10302020EX.docdoc 6b88f01b98b04205fdeaca9ab7f387ea479efbb68e1e0a940c909d66e6ed092bn/aHeodo
2020-10-30arc_86933013.docdoc c5464029a0c6ac085492b9e9e1380d0304bd195c8de6e1dd71b51d4c9f8a5433Virustotal results 42.19%Heodo
2020-10-30UNTITLED_UB9333648924IE.docdoc 8cb962ad1798941eefe7a5f826ea5bebc726304af0337e53e6e34d59a7715795n/aHeodo
2020-10-30ARC_93239621.docdoc d938809af2f315ccb3059ebdb60f135d1a78267221ebe954f6ece48ad1c4851an/aHeodo
2020-10-30FILE_XC2810814711UL.docdoc b2312b8854268bd1ca23427d7f7aaf8b3013aa1c4ef1d7676e73a5667418b9e3Virustotal results 40.62%Heodo
2020-10-30Attachments_PO_10302020EX.docdoc e4c4aa874feb371209199ddd6b159ed4a677b94568dfe6b09351807263dbef9bn/aHeodo
2020-10-30Dat_Z50QLWR.docdoc b2f80aa2efc9abdf137f78f830f2366b29e5bba74409138f8db1ed6163e25819Virustotal results 35.94%Heodo
2020-10-30REP_HX5803515712RN.docdoc 08ccf72998255b13e254a272fd34c02fa515b00674da72aa51f9409c529bd80cVirustotal results 29.69%Heodo
2020-10-30ARC_2SUAAELQZH.docdoc 2fe61550011a52e12cb324aa8cd06faeece3d1f05ae42f1c51bb7e055a647877Virustotal results 30.16%Heodo
2020-10-30MES_NZ5297854075XM.docdoc d9f62ae0da88141e32925b2e9973aab2c0f9cfb72fc3e1d78700263b2fc928d9Virustotal results 31.25%Heodo
2020-10-30List_KX3722252177EU.docdoc b3f4e1b87633e71363d9e97c4f845e09d36e833b8d170f184946c8764cfc8f12Virustotal results 30.16%Heodo
2020-10-30arc_54532273.docdoc 2bd445000ef12b82a7dbb15a89578a71ad17a82cf8b2f19239fa60afb2ba84f3Virustotal results 18.87%Heodo
2020-10-29MES_OMCU44ZP8NDN3E.docdoc c8a48cd16e560bb22ad74fe50ff278db8d542241f7ee298dfb9a902614537a3cVirustotal results 26.56%Heodo
2020-10-29FILE_GDD1JYMKSIJOC.docdoc b716fa67c934451161c1be78e1587b3c68a53b5e219dc5452e9ea883d32a274cn/aHeodo
2020-10-29PO_10302020EX.docdoc f4d2f6dbbb53d79cccef95feda58515350e863a1f1522bf60c830c0230754866n/aHeodo
2020-10-29REP_IPP_100120_GYQ_103020.docdoc af5f164e4a01dce68ffde542decdb164b6873582d81bb169b4982624cfac5ce3Virustotal results 26.56%Heodo
2020-10-29list_7208214138821852990095806.docdoc 168c46a9b7c3c72ceb572a447f6317e5b66aca4735ea8e096bc92f0d03628879Virustotal results 34.92%Heodo
2020-10-29Untitled_65241065.docdoc 00f960f2c4dc8abaf471b3c55c877aad66b636338bd2d67a565393058b78c125Virustotal results 34.92%Heodo
2020-10-29REP_HXZNHYT.docdoc 18456f3c952a94d93064ab5e0fc948f5cf8c35d1615d18886c7ef84d7dc22a2aVirustotal results 34.38%Heodo
2020-10-29INF_BJ1005061042NB.docdoc 970feee22d30c517c525e36b3327903c843552de7138215c5fec184444b56e19n/aHeodo
2020-10-29LIST_OD8442180813PQ.docdoc 1aa45bfd6fa4890726daf11261b2aa4a7a23e9506d1845fc62edac1734669c26n/aHeodo
2020-10-29MES_YTH_100120_WIJ_102920.docdoc 51657b8a72e7e81349ee2744529184125522759769f93b02aebc3a2d33fddc2bVirustotal results 27.87%Heodo
2020-10-29mes_AT1978977958GK.docdoc 3cc938a9acddafc3e794e45e9e82d1c24efc3d811739899713c21d96ca510711n/aHeodo
2020-10-29file_11526610.docdoc 8767bc3debff2695a4cb7dbd39f82b3c021888d7e244ffdc79af9883ce6f3449Virustotal results 31.25%Heodo
2020-10-29Doc_24913539.docdoc 542607ccac2f39cec525786fc1e27c06359a30669af200f8cd1974e15680fa73Virustotal results 31.25%Heodo
2020-10-29list_PO_10292020EX.docdoc c9c1857a6ae5a7ee50f6b0df9af96ab1f60e60df0bcc86caf0c561838b4eb20bVirustotal results 31.25%Heodo
2020-10-29INF_EUK_100120_PBR_102920.docdoc e5f6a2544bf93cacaf94d5c0c050927a52cd6871dba8c2b7730556978081431bVirustotal results 30.16%Heodo
2020-10-29mes_HZW_100120_YEY_102920.docdoc 5e49a64852901bd8057faf79a29c4014763a93bd4f8a0c448a58ab101da4fac7Virustotal results 29.69%Heodo
2020-10-29File_PO_10292020EX.docdoc 97c76ac78999951c70f47dc20b137d6a5f843fbd9597f8a62e977d4b463e2c79n/aHeodo
2020-10-29Doc_EWG_100120_HDB_102920.docdoc cc18834ee43070da990675aa77ca54b1f00e3af5bb607464447c3ebdcd2cb356n/aHeodo
2020-10-29FILE_PO_10292020EX.docdoc 318b758c5ef22b3666ff9ea38111751a4ccc591294bf85680f723e02f95def57Virustotal results 24.62%Heodo
2020-10-29Mes_QSU_100120_QEB_102920.docdoc 75df04fe2bbfe95af6c2ff3ad6beb372645597b0350f6cc16f995a09e27da829Virustotal results 26.98%Heodo
2020-10-29inf_32690182.docdoc 134e4b929d0e83768f3bad032abd87bd8d004dd2a7256fb9ff9d4bfa9f29e5fbVirustotal results 28.12%Heodo
2020-10-29dat_QXN_100120_TNB_102920.docdoc a3aba18f164b5c210ef16ea9fb2afaa20707a268cb84c43518dae121b7518614Virustotal results 28.12%Heodo
2020-10-298HWWWOY.docdoc 29808c9db3a80e9ed46d4aecbe478dd8e57089d7e2977c916421cba71b0d6c42Virustotal results 26.56%Heodo
2020-10-29LIST_P7CKULQ60Y.docdoc 5db58ed4308eeb76f9c66c885d4f1b53530d6c42eac9d755e67bf41989094087n/a Heodo
2020-10-29KY9813470204OI.docdoc 55604e57e8041f303ea78d94b02595b8feb3c1acc8811523c1b55b6e009b2dc1Virustotal results 26.98%Heodo
2020-10-29Untitled_46470666.docdoc 1909a3514994e354da8e5abdfbb3b73173a1a6782a739ebdbfbacf098abf0fb2Virustotal results 20.97%Heodo
2020-10-29arc_RTT_100120_JYT_102920.docdoc 93ef9ecf091dd0a2f463f8b10a73d301ad965547315b43fcd5c1a4995c513525Virustotal results 20.31%Heodo
2020-10-29Arc_ZWK_100120_EQB_102920.docdoc 8b4afb8076a68f93b44032c82700252f8971b853903b31fd0eaf50671f7c3cd7Virustotal results 20.31%Heodo
2020-10-29inf_CJ4052946839RW.docdoc ae454b06f63308de7e1a613281feea2eef089041c67af45e72ceec804482b526Virustotal results 20.31%Heodo
2020-10-29FILE_ILJ_100120_ZGE_102920.docdoc 3a1dd7ec119b96ea68facb223082a398ff4c038e58e7d166c80d7a7d4a3758abVirustotal results 20.31%Heodo
2020-10-29FILE_7252766985.docdoc c3c4c3d1a892c0244bc5d4911ad7533990556a3ed4a4561eaaf58379a82b3295n/aHeodo
2020-10-29Attachments_IL0376013904UT.docdoc 0eabb37538a78fb8b43917d7263b14ceeb7cd09922f2d1c397b8db18cab99e2bVirustotal results 20.63%Heodo
2020-10-29list_6RELVQ7M.docdoc 5a00d4a9d8e50c06f30007460af1dc4f73950dff8ef4d1966ec4098c16712bf0Virustotal results 42.86%Heodo
2020-10-29UNTITLED_PZ2398040808BM.docdoc b9e189f0cb3064ede89dc2167eca309a64edc4ae42aeda9b8fab875c4906b5dbn/aHeodo
2020-10-29List_DNN_100120_MJY_102920.docdoc 6cff316da0b26621e5b1fc3d5a85c6931a68a90fde20acf702195a175fb4ce44n/aHeodo
2020-10-29List_PTW_100120_OEC_102920.docdoc 48f5efeee13fcdbe837223ddd4c1de97dd87be397e6f99bb95ebfd19af5aaf86n/aHeodo
2020-10-29Dat_98778300.docdoc 6e9c088cbe83fb2b0f6c959df9f72eb6faa3316c7eaf8e1690f590a91e56974fVirustotal results 40.68%Heodo
2020-10-29mes_XFD_100120_DRM_102920.docdoc 761d87bcf6f5369f3cf451125ea7a56b683a729b1a4caf4a329bfcf95591d189n/aHeodo
2020-10-29Rep_LPK_100120_MKB_102920.docdoc bb6a910117fc42075d0f29a1d7f63f94814e7f787223e3af617ca5018180a77en/aHeodo
2020-10-29Arc_80180747.docdoc 6a727c9f4dd9cbd0b46dfbe10424610f304eed108280c8e6bed80618b45fa65en/aHeodo
2020-10-29List_4O7UA01SRLXO8SV1.docdoc 4c8eeccd2a16f80874acd0057d5ec622d3701e32a3198bdb763f39e39ea28982Virustotal results 38.10%Heodo
2020-10-29Doc_PO_10292020EX.docdoc 393cb1523cfa3f9dc1d2a45e467810be8447ea0f58435edf5bfd1e0938e293e0Virustotal results 38.10%Heodo
2020-10-29doc_LHK_100120_TOU_102920.docdoc ed5a9cf9f1dc54e472bd41658cb3f19ec7eafcb34da7257c6407697b879a0535n/aHeodo
2020-10-29mes_KAH_100120_QGS_102920.docdoc b89f3ae4badac97fc44a153bfb215de77641bff4cbcbe7ddc321af38e097f2ben/aHeodo
2020-10-29MES_PO_10292020EX.docdoc b97d2b5410d55c774746d336facb4fac9b81552a5f84073496d20901af3c5f71n/aHeodo
2020-10-29file_PO_10292020EX.docdoc 9f2ed62dea3b679b6dfecbb79905a34ef056e81af2e92c4249fe4521711b047fn/aHeodo
2020-10-29rep_52714092.docdoc 17d6d17702d158eda616b2096600e47fe0808914ae353ec5009763a5de5fffe7Virustotal results 35.48%Heodo
2020-10-29LIST_70011509874.docdoc 2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7Virustotal results 35.48%Heodo