URLhaus Database

You are currently viewing the URLhaus database entry for https://mycollegecp.com/content/gihbHxYUqt/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:766979
URL: https://mycollegecp.com/content/gihbHxYUqt/
URL Status:Offline
Host: mycollegecp.com
Date added:2020-10-29 21:34:10 UTC
Last online:2020-11-03 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-29 21:36:05 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:4 days, 6 hours, 23 minutes Bad (down since 2020-11-03 03:59:25 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30MES_1533550059790.docdoc 75ca20340c21dbd94ba3ec4c8eeb14f3a78e68a955701cbdc754c29163674a3aVirustotal results 33.87%Heodo
2020-10-30File_PO_10302020EX.docdoc 894961b5cd902ae1bd280ad4d906f510e47f2d02fba5fc278823a37eabedcc7fVirustotal results 33.33%Heodo
2020-10-30mes_84046799.docdoc 5fc665986d6e0e5763554e4d9f9db9ccc61b2c20fc408e955d286a458f622f48Virustotal results 47.62%Heodo
2020-10-30Untitled_PO_10302020EX.docdoc 1b230d33228fd383eaf4cc6faa376c0173fb8ff8d70c42dc9ab1ee5eacb411den/aHeodo
2020-10-30PO_10302020EX.docdoc 023fdae311195c64889d2c87831a470d7c4826a755cd385729dc6bb02281c4e5n/aHeodo
2020-10-30file_PO_10302020EX.docdoc f49b970c0f5c5e742a76964f8ac3473e2b6a8558589d75cb54c5f7978178af16Virustotal results 42.19%Heodo
2020-10-30Arc_63168901156239666159.docdoc 166f3880aa773ce0e75712aa20839d2b0f37315533364e3794401b389579ab2aVirustotal results 42.19%Heodo
2020-10-30FILE_9G79NWO3M4.docdoc 99058ee5998a7ba4c31c25cfb2a68cafa37ae8deb724a8c4939e84f9d7d574cbVirustotal results 42.19%Heodo
2020-10-30file_PO_10302020EX.docdoc 001aae9a58f6352962e2e1635ef52e5cdc08a8db7e51aacd096f41f9de8db0ecVirustotal results 40.62%Heodo
2020-10-30File_ILI_100120_UTQ_103020.docdoc 4eea09772ca2174c6dee225349ae15f55b9e8a91ac3aed6f961a4815ea86f462Virustotal results 42.19%Heodo
2020-10-30arc_PO_10302020EX.docdoc 005b9b3299e128a79fe21a998375eccf999a16aeee899a934ee2cdf578137d13Virustotal results 42.86%Heodo
2020-10-30Attachment_RULPDKJ2A8S8B9.docdoc ee781329e536d1270bc3e7ad2496b545535f3ceba3db2743fa213b6405d011a7Virustotal results 43.55%Heodo
2020-10-30Attachment_342316797116926551678072.docdoc f47484c61c7b2b0541690f5cfb219d2efe962b5204064435481f99e8ba92f95en/aHeodo
2020-10-30Attachments_FZS_100120_OKK_103020.docdoc 390be22b6546961bdf840560ab4b25598b3b46211ef3c9e4caffbcbce597fa4eVirustotal results 42.19%Heodo
2020-10-30DOC_GXJ_100120_TKJ_103020.docdoc 21d510dc43e2e064f6d94e3b502c483eb6fc1171828a5349dd22c43ccba66638n/aHeodo
2020-10-30File_RNYE0I1.docdoc cdb79e413c85c2fa4724ac77b430ab5a6a0c770f7f6a640fec00d946a93f5e09n/aHeodo
2020-10-30MES_PO_10302020EX.docdoc b48b7231ac7d5bc0a2ba5883e7a634a557c606b06b97bf45b2842523959c4a37n/aHeodo
2020-10-30List_PO_10302020EX.docdoc a77843eba99adffde7cc22482865a6e64cd0217a4779ec035d11d060982996e7Virustotal results 26.56%Heodo
2020-10-30inf_PO_10302020EX.docdoc 9c96edb7b23fe316d7ea6705b137c283da2aba4f7dab4537a681e7e5d031b0een/aHeodo
2020-10-30UNTITLED_89115909.docdoc 6a8e52f8792ecae215c55e1f73b2895cc0b304ee39db3908356b71ac38722b0cn/aHeodo
2020-10-30File_04516771760.docdoc 07cac58fbfac34bd4e22b0dab98273a45a147dac7d38266ec0749fb5fd85b98dn/aHeodo
2020-10-30REP_ZMI_100120_GSJ_103020.docdoc f2413a07e3362999d85fbab3f6c2fe8f228e4567eac899cd565ad65a2d0eede9n/aHeodo
2020-10-30file_TT1370320563UX.docdoc 8cfdaf7b364045782c53fe4094501d577114deba01267ff8e074d14d7d27833bn/aHeodo
2020-10-30List_IME98FS9HESOLUR8.docdoc f2ce2b3d2bf2f5d0f22eabb44f0b7c9183e0fea547e90ab926beae89d85cdf0en/aHeodo
2020-10-30Attachment_81179121.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948n/aHeodo
2020-10-30ARC_XRR_100120_ESK_103020.docdoc 7936fd61383857a4def1dbe2e3c320a04038eaeb4eac1d4c313a7dcf3dcd3cdfn/aHeodo
2020-10-30INF_9PAROALEX25BFE.docdoc d81b2611e96c81a6be50bbbfbdc04309f10b987317f1bdbae24d2e90a216df11Virustotal results 41.94%Heodo
2020-10-30REP_L3E80PHI3.docdoc 8c5ec7de8acd87d586e9bf7a74458c2a96f88ddbeacbde0ae3791d84594cc983n/aHeodo
2020-10-30Inf_PO_10302020EX.docdoc 6b88f01b98b04205fdeaca9ab7f387ea479efbb68e1e0a940c909d66e6ed092bn/aHeodo
2020-10-30Doc_SDT_100120_JMI_103020.docdoc f39a18ddfada38fd5b1f2c0c242c50c50fc842b96af2c528b843c6e8a155379aVirustotal results 37.50%Heodo
2020-10-30NT8436884751XY.docdoc c5464029a0c6ac085492b9e9e1380d0304bd195c8de6e1dd71b51d4c9f8a5433n/aHeodo
2020-10-30doc_3815549309902975585000470.docdoc aa221230a7342817478b117f2ed838ceb8290bb367bea08770c362b14c2fdcbbVirustotal results 39.68%Heodo
2020-10-30REP_WC2006073293VA.docdoc d938809af2f315ccb3059ebdb60f135d1a78267221ebe954f6ece48ad1c4851an/aHeodo
2020-10-30Arc_28722300.docdoc b2312b8854268bd1ca23427d7f7aaf8b3013aa1c4ef1d7676e73a5667418b9e3n/aHeodo
2020-10-30Mes_WFP_100120_CDQ_103020.docdoc e4c4aa874feb371209199ddd6b159ed4a677b94568dfe6b09351807263dbef9bn/aHeodo
2020-10-30rep_ZE2083700546QH.docdoc b2f80aa2efc9abdf137f78f830f2366b29e5bba74409138f8db1ed6163e25819Virustotal results 35.94%Heodo
2020-10-30File_S9TWV8KWA9.docdoc 08ccf72998255b13e254a272fd34c02fa515b00674da72aa51f9409c529bd80cVirustotal results 29.69%Heodo
2020-10-30file_PO_10302020EX.docdoc 3faba02f0eb970ef25a2a874736e4f758dd3424cdba2637795ada41385024679n/aHeodo
2020-10-30DK7622152795CE.docdoc 7ae6e150fde20638c5cc89c0b4c088593eb3879f0f6567e9c4cc14069b9ae204Virustotal results 29.51%Heodo
2020-10-3038695723.docdoc b33622a59cee3ca443a74701f86f58ee524e9901c05d359270575f52d7d37380n/aHeodo
2020-10-30MES_XJZ_100120_CIZ_103020.docdoc 1e2927648e6c1e230ea519611dc8ffc414549f3da0fbe74854b2b2431a5731aen/aHeodo
2020-10-30Untitled_34767244.docdoc 9cdf4102c45c7f549ee4e0290a07d4f7783c6371b1a8fe35a6f1f04d56cd6857Virustotal results 28.12%Heodo
2020-10-2944799239.docdoc 5eb2cd7fd89bc000cab80454ba0da8cb954a960d3b415bc26039832a7f6f7544n/aHeodo
2020-10-29File_CBXKUV78AJG.docdoc f69a365c0b551ac35010e98b64364feedecc32dae4284fb4afe62ced4b5d17ebn/aHeodo
2020-10-29Doc_PO_10302020EX.docdoc aa9631cdb98dbe55b81b029660a0589039561664b34f249207dc0d83e273a030Virustotal results 26.56%Heodo
2020-10-29Dat_YK9062624235ZK.docdoc 1fa65cbd054792ed8ce72d5729cb95a5810f1371e5b096b2f1a099416c193420Virustotal results 26.56%Heodo
2020-10-29403187395445.docdoc 785ca4b8a3e573d7bb977a2f180d8c717b9867bbf38583aa08b4a96fa4803c8dn/aHeodo
2020-10-29Inf_71920580472902.docdoc 168c46a9b7c3c72ceb572a447f6317e5b66aca4735ea8e096bc92f0d03628879n/aHeodo