URLhaus Database

You are currently viewing the URLhaus database entry for https://cassandrelp.com/wp-admin/Pp996ivDJFq18gOZvk/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	763753
URL:	https://cassandrelp.com/wp-admin/Pp996ivDJFq18gOZvk/
URL Status:	Offline
Host:	cassandrelp.com
Date added:	2020-10-29 05:40:05 UTC
Last online:	2020-10-30 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-29 05:42:05 UTC to abuse{at}a2hosting[dot]com)
Takedown time:	1 day, 13 hours, 14 minutes (down since 2020-10-30 18:56:07 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-30	FILE_CA9823354859YS.doc	doc	374433b4b7b6197f4f9f41115f09cafa5907b8b1b2076963bc6c09e4227fd47b	n/a	Heodo
2020-10-30	CY_2433472352240.doc	doc	5aeb983f62e296373a25bdde163ab799f0bd688f40567310960f16b815921687	41.94%	Heodo
2020-10-30	Inf_LB6617634584EX.doc	doc	12b4329a9b823283ea081ce2769d7115a1f1922106019611973ea41b4dae5fbd	42.19%	Heodo
2020-10-30	Inf_31754882.doc	doc	de0a1c44011e636f13b7db8734adcc239d484bae417f118f5d1173ff7d708481	42.19%	Heodo
2020-10-30	Inf_31754882.doc	doc	de0a1c44011e636f13b7db8734adcc239d484bae417f118f5d1173ff7d708481	42.19%	Heodo
2020-10-30	REP_XUG_100120_BLK_103020.doc	doc	39b6fdd21b5a73ad7e7808470a008ce96abb75dc96787734f8778afaaab7e0e6	42.86%	Heodo
2020-10-30	inf_PO_10302020EX.doc	doc	2a25d8a1cbc4a93a1a7f07a290d36e24c0e2750b65badf5e91709eb644fad12f	43.55%	Heodo
2020-10-30	Mes_E3HOZEYUY3G.doc	doc	59eb7f8b98e7601aab446fe4f84b586ecf0ff8b5f092b8144441e50eed459684	43.55%	Heodo
2020-10-30	List_A9MWJA9N.doc	doc	327e30c02dc57bd8f9793000a44e75fb252b493b8d289d2d96d9e6e167f1626a	43.64%	Heodo
2020-10-30	Dat_40448733.doc	doc	21d510dc43e2e064f6d94e3b502c483eb6fc1171828a5349dd22c43ccba66638	43.33%	Heodo
2020-10-30	Rep_10KE8FHOB893.doc	doc	721a801f52c7641ad68e3e7975b2dc98e5908a41803928d13434b180d6add068	23.44%	Heodo
2020-10-30	Inf_2WLFJPA.doc	doc	7419637ce4e2a7bf1c8503dd9f1878136c8bc0e38e88521f6500c7c717524be4	29.69%	Heodo
2020-10-30	Dat_EEU_100120_VJU_103020.doc	doc	f22c7ee8f3ce55dbab2a2636dc155d39ae98cb927962f0f88fe3f85bd28c44f6	n/a	Heodo
2020-10-30	REP_7SMXBBW04.doc	doc	a77843eba99adffde7cc22482865a6e64cd0217a4779ec035d11d060982996e7	27.42%	Heodo
2020-10-30	doc_SMB_100120_UQZ_103020.doc	doc	bb6965f5fdad54288c857319fe4ff50575e4a48364ca671cfe950427aa235c9c	26.56%	Heodo
2020-10-30	MPI_777442597063867207809.doc	doc	07b3f8c72f07dca70496f6c792df7c12b6b782090056851ccfa67620fe7a27bb	n/a	Heodo
2020-10-30	doc_8598702728.doc	doc	49931e499615a1dc36cda98151d3c406413f1c47504b38f2bb658631313c273f	23.81%	Heodo
2020-10-30	Mes_DVC_100120_RTD_103020.doc	doc	4a1ebe8938ac9ac6ae7b502c4561bf514bc47ccdb87abae9777a5ac526d6540c	n/a	Heodo
2020-10-30	EG5961674576RF.doc	doc	0f9fa4196a70c17aea46032195862b2f14826f4025f77a1de80a8cdb86673a17	n/a	Heodo
2020-10-30	File_PO_10302020EX.doc	doc	6270902fc810af901f9685bb0b3251f8cf96445514e9bd288b51d51156701665	n/a	Heodo
2020-10-30	List_E0C4GIMYFN.doc	doc	b3f4e1b87633e71363d9e97c4f845e09d36e833b8d170f184946c8764cfc8f12	29.69%	Heodo
2020-10-29	Arc_GSD_100120_ZTM_102920.doc	doc	1909a3514994e354da8e5abdfbb3b73173a1a6782a739ebdbfbacf098abf0fb2	n/a	Heodo
2020-10-29	Arc_PO_10292020EX.doc	doc	fa68a64196793116b8b029723e9a7fd7d6a7e5c8bbcc752be10b93c5575ebb03	20.31%	Heodo
2020-10-29	Mes_42794221504129271.doc	doc	3c06e83a34a8da9715ec0fb21f45160520d6058d9624263c4c2a585b04c7adb8	n/a	Heodo
2020-10-29	Attachment_Z9VRAKUUQ55.doc	doc	cd49f6f6b2b1cbf28331a1eff67e7179731f34a790a1bb69c89b65ffcfc38e01	20.31%	Heodo
2020-10-29	list_843846521.doc	doc	e631c078dc0639fe8db3a1c45b1e38da8a369c37f69511f6458de6d8809f9732	20.31%	Heodo
2020-10-29	Untitled_61612315706.doc	doc	2427ee3cc0798fcee02c718a1fb58d735d9cf3b0ebd9bb10c14cb9326bb5e489	20.31%	Heodo
2020-10-29	DOC_282405782659210378.doc	doc	4105e48c905f55328aa0a89a608c302216a2d4b119573ef85d1e9902d0531119	20.63%	Heodo
2020-10-29	Doc_84166683.doc	doc	5a00d4a9d8e50c06f30007460af1dc4f73950dff8ef4d1966ec4098c16712bf0	n/a	Heodo
2020-10-29	Attachments_FIX_100120_VNQ_102920.doc	doc	ffa31d45d93161ab298442d4f9d83cf8b0bcead9e50e92a048b6b0900415b59c	41.27%	Heodo
2020-10-29	DAT_BMM_100120_HRN_102920.doc	doc	332d48b31116922bc05e18e6322ac17328b888d5e0b92ad3ddd4d665111b7ce8	n/a	Heodo
2020-10-29	Attachments_278229258088419308667076.doc	doc	c914f79bcecd36e66a0afaafa94fea889077dc0eeba31cb470833af137c79564	n/a	Heodo
2020-10-29	list_IQW_100120_SXX_102920.doc	doc	9e3811f229348aa0b4c22ca7f0808d1d13ec1f3a19d4a0e675168b552da2e96e	n/a	Heodo
2020-10-29	rep_WOL_100120_IKT_102920.doc	doc	6df480c2f89e67bd88a1ef3142106f925a45830756da26077582ef439dd4c5b8	n/a	Heodo
2020-10-29	Dat_73564205146.doc	doc	915d8c2a128f74e323ef7a2045f9ab90f17d3747f3ed2c090fd247f7f9f88fca	38.10%	Heodo
2020-10-29	Rep_LWL_100120_OWH_102920.doc	doc	e3a96d2e3adca1fc3dfea0ac14af9b1d4cec3a20d9d7c6874edf1c6fec60d90b	38.10%	Heodo
2020-10-29	List_4NU9BVS9.doc	doc	391bfc40b692a1742119596041c13976318ba374a5f74e5e441a2df28ad57fb8	n/a	Heodo
2020-10-29	I_GGX_100120_NKQ_102920.doc	doc	393cb1523cfa3f9dc1d2a45e467810be8447ea0f58435edf5bfd1e0938e293e0	38.10%	Heodo
2020-10-29	Rep_PO_10292020EX.doc	doc	2ce6ab8ee89411f1463ed6831f078e930f121aaa93880728734efa7d25503623	n/a	Heodo
2020-10-29	file_9692452200448408.doc	doc	b97d2b5410d55c774746d336facb4fac9b81552a5f84073496d20901af3c5f71	n/a	Heodo