URLhaus Database

You are currently viewing the URLhaus database entry for http://islandrosewines.com/dead-farm-2frcr/UltWqSlrNiXWOnvn1swefF6ySjS2OoGDiukewvKJgpZkgfhMSTkrvv0uyF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:936592
URL: http://islandrosewines.com/dead-farm-2frcr/UltWqSlrNiXWOnvn1swefF6ySjS2OoGDiukewvKJgpZkgfhMSTkrvv0uyF/
URL Status:Offline
Host: islandrosewines.com
Date added:2020-12-21 23:32:04 UTC
Last online:2020-12-22 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003188019 created on 2020-12-21 23:34:05 UTC)
Takedown time:10 hours, 14 minutes Good (down since 2020-12-22 09:48:56 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-22KNK9LBNIU.docdoc 7b84062b282e976585eba365223c01dff9e42cf3351fe5c6e5df65cf22a2932eVirustotal results 29.51%Heodo
2020-12-22Q03MGN7.docdoc 77b8956c1063e4dd90895010626b4958dc18ffe999967ee6e677be0c08e590baVirustotal results 31.75%Heodo
2020-12-22X1VW3WR.docdoc 205ebf3346876ecce80616025b86de13965c5e1fb6f8e252fe9337ed8390bf31Virustotal results 31.75%Heodo
2020-12-22J4OFZF3GSSS.docdoc e18f34fd2b761c5ff699a3bb1e6bf4fa2f9d43f91cfc0ff44794e8ae7e4ae926n/aHeodo
2020-12-22I5UGTFNG05PBQA.docdoc 5149cb89cfadd9c7f7be6ff7dcd70eecba452c53d75bd5622bbb334b4ae587dfn/aHeodo
2020-12-22SVOTAZPMH.docdoc 5e7b5f66817d31d512e968c0de66f4f686e74249facf010c218e49ee144c57can/aHeodo
2020-12-22046N657GC.docdoc c6d1e6d03923c2176caab866a4f9253b45abd995a55bbde304bef7eff2d7189en/aHeodo
2020-12-22WZQ52J.docdoc f1484f77d7833c2797c1f51838d30018f62d6b94cd90a17ac0f72633d22222a5Virustotal results 49.21%Heodo
2020-12-22HRZ891ZH25OEST1.docdoc 5678fb2398f8ae050763eeb8ef6b94b0c43560105c301b6db5c453c84c7e6aa0Virustotal results 49.09%Heodo
2020-12-22UTDPFJZS.docdoc e832702bcd4a1bc593af89baf3e22083205d412a049797b164db2d6177678325Virustotal results 49.21%Heodo
2020-12-228L3E0PJOGTA.docdoc 179c65c6aae9e8a8896992f0857998ef7e72fe3ca772839399d9185a8fe328d1n/aHeodo
2020-12-229WLML2SMJ8T0CV.docdoc 16435a7bc02d8c0ebfeab05878d59be715c385a0d646258abd2ddaa498800d30Virustotal results 49.18%Heodo
2020-12-22SSGHPNQ7YW.docdoc 99791db1cb487d25ca3160836589adcad5fc57a1dceecd3cdc82ecbee51716beVirustotal results 47.62%Heodo
2020-12-22L4XBJDEG5QRA.docdoc 2e2845f894af1842a98bb01b55cf68757e6c573d1d97c11cf41818de4a70f82bVirustotal results 50.79%Heodo
2020-12-223DQKI8HZBMKF.docdoc ba2bc32f4daa30fda2e05c5960a6a160167101889384e98690e6abbeff973434n/aHeodo
2020-12-22FBYPUF3YWCZ.docdoc 6adf12a084ccf2eb6dd19a35742a35f03bcba878416ef83b9c520e17d55ac329Virustotal results 50.00%Heodo
2020-12-22XDLZ45M57W5GP.docdoc da52448ea549bc67ee1e7fdf9d6e2c05089cab2564cdec092e3b5be05fb662d6n/aHeodo
2020-12-22RI3L62W54DZ.docdoc 6c26774c4763bbbc05c970dbe0b96045fefbdffc80c2d7878e8ca8089f0215c9n/aHeodo
2020-12-22UA3N1DN7CZ3T3R.docdoc cff7b2d4fb395de88b4c8494f75e925c14e735c01f9a79572938f9c6c7f590a3n/aHeodo
2020-12-22EFSD229J31PT.docdoc 45defa35954d6268fe26f6ffec131a6de427af2f682079ef11852a33ff1db07dVirustotal results 46.03%Heodo
2020-12-227DSU5QRFI.docdoc 97f5f7f2c37a21e2f3934ceabe0df7eea42d7925f1b3a4e9a194fa005509dcc3Virustotal results 37.10%Heodo
2020-12-22140X78PZJ18.docdoc 47d01951e8e4d0425373658359ab6e4e764c29adf9f0a674dc51fc859ee31719Virustotal results 38.10%Heodo
2020-12-223LXV9DA7L25SL.docdoc 4be32fc9457cb3575d9f59665e4d11c4625dd3bff4cc13ff2f25aa739753173bVirustotal results 44.44%Heodo
2020-12-22IRS04684CYJ.docdoc 9eaf41a79c3932d4be36d56a7b01c16f4bc4ae8d3df11291ba46f7e2dc784627n/aHeodo
2020-12-211JEMLYW1TYUGOC.docdoc 83e9ba22a2d674453b12f9150d400d11d35d268d6965b4082c08f070fadfa169Virustotal results 40.32%Heodo
2020-12-21YR860FLRE06Y1.docdoc 6a7525a409509ac4ff33649e2dab4cc9580795c516cf135dc3a0b5fb5ad0003cn/aHeodo