URLhaus Database

You are currently viewing the URLhaus database entry for http://villacitronella.com/En/CyberMonday which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	85006
URL:	http://villacitronella.com/En/CyberMonday
URL Status:	Offline
Host:	villacitronella.com
Date added:	2018-11-26 12:32:17 UTC
Last online:	2018-11-29 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2018-11-26 12:34:10 UTC to abuse{at}beget[dot]ru)
Takedown time:	2 days, 17 hours, 53 minutes (down since 2018-11-29 06:27:11 UTC)
Tags:	doc emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-11-28	CM_COUPON_FILE_09218.doc	doc	367a7423d3eeae055ebee570869284a087161438a044443f374660089a824b9e	27.12%	Heodo
2018-11-28	cm_coupon.doc	doc	c562d51cd490dee1caae145984d86d93eb0598b9768e65764c98a7062b0b0a23	23.73%	Heodo
2018-11-28	CM_COUPON_10833.doc	doc	912b2935a76ce2a52d461d87b93e20ba77ed5b6a15742e063b1f359442831951	23.33%	Heodo
2018-11-28	cm_coupon_file_45895.doc	doc	4b6bb70862b8b576eabc9b0c2074e0fcd3993fd7910875a21d3bb1f05c677aa8	n/a	Heodo
2018-11-28	CM_COUPON_FILE_7940.doc	doc	641b3827cc57b54413cc2cea42f48144a4baf5d4a68d5c7dff07280528b7c014	n/a	Heodo
2018-11-28	cm_coupon.doc	doc	0da44be038d0321cf029dc1498af4b7c45ec709134ea83646f82c36b599febd1	36.67%	Heodo
2018-11-28	CM_COUPON_FILE_74138.doc	doc	adcf6ec0875d89b2243661b4a87983ff23450fe1c120a97ffde3aca0e913e83b	21.43%	Heodo
2018-11-28	cyber_monday_coupon_75090.doc	doc	0626106e0fcbc70f58fbb07aa60cb96a72a66baeec53c9acf933a75a5cadae43	28.33%	Heodo
2018-11-27	cyber_monday_coupon_file_76164.doc	doc	3273e36283f53d159a20ce1c0cb67733fb976fdf8fe1953130817c4fa9aa4323	22.03%	Heodo
2018-11-27	cm_coupon.doc	doc	af9abcab7f3b61d69186253db56c658fdec135d7b37a7cd7d0b4715b991158f0	24.14%	Heodo
2018-11-27	CM_COUPON.doc	doc	25541da7b13c7dd528d1c80cb3ba61d071f2b3d10754b776e7335e88b5a8089f	22.41%	Heodo
2018-11-27	cyber_monday_coupon_65907.doc	doc	031363d0da1eec1c5d3c62d067d7f2dfc58d9c73950b3ede8f2817549b621501	22.03%	Heodo
2018-11-27	CM_COUPON_14640.doc	doc	e18247caed44ec7fd8c298387caf16d3f253c11e3163d0d7d46920d85e5cd949	n/a	Heodo
2018-11-27	cyber_monday_coupon_36981.doc	doc	1a2cbc33adc4b80318b8926e3e797d3eb4e227947bdc4dde311a39cc08dc447d	n/a	Heodo
2018-11-27	CM_COUPON_2019.doc	doc	3186dc2f65bafee9420752229e7449a30114b3da7a98c7c92f2169c62d11b112	n/a	Heodo
2018-11-27	CM_COUPON_5474.doc	doc	f4aa05a0dd91fd7c481f3d68643970e4e3f97150c212260caf26471641a038c4	40.68%	Heodo
2018-11-27	cm2018_coupon_file_14271.doc	doc	be528e48e63a887906de49cb132133c90874d756d8ce6927fff9e6dced62c160	40.00%	Heodo
2018-11-26	cm_coupon_file_5832.doc	doc	13d326b36b1abde4400ccf7512333625139a4908ad180399290b18f928a62540	36.67%	Heodo
2018-11-26	CM_COUPON_FILE.doc	doc	677cb9576c6e6e5b286ae5727a7afdd7518a79530eb44c9f757a1771545e7f3b	35.00%	Heodo
2018-11-26	cyber_monday_coupon_29751.doc	doc	61270d45f26f526979f912ca51ec5fdc09f68e7d50a413ace244be2ceda54c64	26.32%	Heodo
2018-11-26	CM_COUPON_FILE_22024.doc	doc	52b76e7a7887b4e843e63c40799ef2c3b323c35ef159eee6cecf2e229fc3bf08	25.42%	Heodo
2018-11-26	cm2018_coupon_file_41048.doc	doc	ec4d1a09ab75b93635e62809aed08d05ac1b22c8a7be1f7d968d68cdcfa0c842	25.86%	Heodo