URLhaus Database

You are currently viewing the URLhaus database entry for http://hiqugo.com/wp-content/yQwyZGf7KqKnyn8kYOrZmDEHfI2LbPI26662/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:936503
URL: http://hiqugo.com/wp-content/yQwyZGf7KqKnyn8kYOrZmDEHfI2LbPI26662/
URL Status:Offline
Host: hiqugo.com
Date added:2020-12-21 22:49:04 UTC
Last online:2020-12-22 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-21 22:50:15 UTC to abuse{at}choopa[dot]com)
Takedown time:10 hours, 42 minutes Good (down since 2020-12-22 09:32:47 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-2206BP8MSR0I1869.docdoc ff2576fe2ef3d0e73e1b95e7283535cf0d6874a1da73b31c6c320f25ac2a4245n/aHeodo
2020-12-225NIVLSEYM9.docdoc 58f2c0208094e8c388496c8103acfc9e2662ca1b222be61726c30c01a25a8882n/aHeodo
2020-12-2249Y5L4A4G44EM0R.docdoc d5dc56815cb0e2bdfb9aab908416e5a1c526270f5143e0d6c3660a8ee172bb95Virustotal results 31.75%Heodo
2020-12-22BNPJI58QZK8DTN.docdoc 8dfdfe78604e767f2b8bf6029acfcd7579b22fd72e9130d3bad158bbef39fc99n/aHeodo
2020-12-22NVZYTR.docdoc a920635eb94e7e0d4add7880d523b5d55170d97bed0841dfc32e8ee4657c6106n/aHeodo
2020-12-22ENP36C.docdoc 7c7bb9a49435ab8c1bc07689750d6853d406473e512b9d4720330b8489a35a2dn/aHeodo
2020-12-22K5Z8EM64A8MNME.docdoc a442c1871b5de54fb33fa28cd9a9f5b898ba0490d6bd20f09259b15bb81f9ad8Virustotal results 30.16%Heodo
2020-12-22ERQK51W7SRY.docdoc 5107a8bea0eaf25e9678f18390225717dd772522a6645b195e40d9e9214f058bn/aHeodo
2020-12-22CRXYIQR.docdoc 8c609a2a6e8a0753a2e8749e054a04f699c4bc379523bf3029413cc4f61163c8Virustotal results 49.21%Heodo
2020-12-22D71Q8Y.docdoc 179c65c6aae9e8a8896992f0857998ef7e72fe3ca772839399d9185a8fe328d1n/aHeodo
2020-12-22S3H603IIC4JFFM.docdoc 16435a7bc02d8c0ebfeab05878d59be715c385a0d646258abd2ddaa498800d30n/aHeodo
2020-12-22PLTWTK.docdoc 99791db1cb487d25ca3160836589adcad5fc57a1dceecd3cdc82ecbee51716ben/aHeodo
2020-12-22Q93Y9WVJSEV2ZF2N.docdoc bbab6187c511a9ba4756bd3c521c97474ced9d06588b917d285dd457b4f590d9Virustotal results 46.77%Heodo
2020-12-22LRT3UC0PR.docdoc 2e2845f894af1842a98bb01b55cf68757e6c573d1d97c11cf41818de4a70f82bVirustotal results 50.79%Heodo
2020-12-221JL43Q.docdoc ba2bc32f4daa30fda2e05c5960a6a160167101889384e98690e6abbeff973434Virustotal results 47.17%Heodo
2020-12-22YA7YPSKBJEJ.docdoc 6adf12a084ccf2eb6dd19a35742a35f03bcba878416ef83b9c520e17d55ac329Virustotal results 50.00%Heodo
2020-12-22DOUYZ28.docdoc 716592916c6f39ede3e673f03bfadfc09349bf29a45ad31bdd83faa58b0efc0aVirustotal results 50.79%Heodo
2020-12-22UWAQE0VI35DW3A.docdoc 6c26774c4763bbbc05c970dbe0b96045fefbdffc80c2d7878e8ca8089f0215c9n/aHeodo
2020-12-22OPBU42M2NLB5RM79.docdoc cff7b2d4fb395de88b4c8494f75e925c14e735c01f9a79572938f9c6c7f590a3n/aHeodo
2020-12-22IANF2L7.docdoc 45defa35954d6268fe26f6ffec131a6de427af2f682079ef11852a33ff1db07dVirustotal results 46.03%Heodo
2020-12-2293JEI3WL82QB.docdoc 97f5f7f2c37a21e2f3934ceabe0df7eea42d7925f1b3a4e9a194fa005509dcc3Virustotal results 37.10%Heodo
2020-12-225RUA43TMZS4SYP.docdoc d272b679a600f9e255a18bd559dcd64aaaf1ced9173cfb1fa5d848629921852fn/aHeodo
2020-12-22ZY08B2V10MSCOZ0.docdoc 4be32fc9457cb3575d9f59665e4d11c4625dd3bff4cc13ff2f25aa739753173bVirustotal results 45.16%Heodo
2020-12-22MW7ZQGY27KSZ3.docdoc a02591c24d3c86f54be79271c7ec7e679141ae9245b3ac62da5d6f382edc0880n/aHeodo
2020-12-2280OZBYQM.docdoc 9eaf41a79c3932d4be36d56a7b01c16f4bc4ae8d3df11291ba46f7e2dc784627n/aHeodo
2020-12-21R6DNJ5V7TBF.docdoc 83e9ba22a2d674453b12f9150d400d11d35d268d6965b4082c08f070fadfa169Virustotal results 40.32%Heodo
2020-12-21UU14MRS7OZH8N.docdoc 9807bc80d1e2c641d656b5dd41343055c2792f006314398b47d6ea5b9c1b5451Virustotal results 38.10%Heodo
2020-12-212T7IQZNZZ.docdoc 798206f85b1ad48e7117fee89bc496a003d67f0b2079a39f3d80d975e8f20c78Virustotal results 37.10%Heodo
2020-12-218FM789.docdoc aefe4fff4d754c7faf5c1ba8e33586ac4732827c66e5621c0fe5a711895657c2n/aHeodo