URLhaus Database

You are currently viewing the URLhaus database entry for https://fabisalon.com/wp-content/7EZ6FFE85SiGuCz6dN7WoVr/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:938803
URL: https://fabisalon.com/wp-content/7EZ6FFE85SiGuCz6dN7WoVr/
URL Status:Offline
Host: fabisalon.com
Date added:2020-12-22 16:40:06 UTC
Last online:2020-12-22 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-22 16:42:04 UTC to abuse{at}a2hosting[dot]com)
Takedown time:6 hours, 18 minutes Good (down since 2020-12-22 23:00:39 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-22L6CG1V.docdoc 46935fc92d4e420a9f07c05550f0eb53c8ccff96b0f5fac35b1c8e716ed81ff5n/aHeodo
2020-12-22RNQLJME8SV5SP.docdoc bdfab9675a34c6da34487f2c70f297960002e6c3c2a8e6fdc60ae7edbe67101en/aHeodo
2020-12-22LD899F31EGEUJ2P.docdoc 2d523850bbd1d5abcaf76fcaceba272f038d954a97263941a3375c3301a1e2een/aHeodo
2020-12-22XV9IYZY.docdoc 3341a695c836613d9bba02fa005f2413c407d48a7fd940180b6d4c38788fa592Virustotal results 20.63%Heodo
2020-12-22K87SS32Z6.docdoc fb2dc7dac3bf88b2407c132ee3640a68b2eec868b255245d07b6b88306065203Virustotal results 19.35%Heodo
2020-12-22NOHGAHR0F70.docdoc ea9e0d2591e09cdea3ac66cbd5410ca96f9bbb033f240fd580c71854292003b9n/aHeodo
2020-12-2210UXLN37QL72.docdoc ac4a11a17747f0db974bbb343bdf32d636c82bc667c3223c23567faab4377eccVirustotal results 22.58%Heodo
2020-12-2227WRR6FQPF091IV.docdoc 44b69ab822ea1d2cea11bde2cbf85cb033e753dcc8b5e30dc49cb042d3310aadn/aHeodo
2020-12-227B7W72C506O.docdoc 672fd53363516e84ed426b99e3465bc33a40e08ecad177bad2c69349b92c7828n/aHeodo
2020-12-22JE3R59APP8Y.docdoc cf9bc9b1442f38adb15e975a6ce0c8a12e5893516067ca74541f8c5aa26f4f75Virustotal results 17.74%Heodo
2020-12-22UAVNCGF07.docdoc e50ca86a89c2be0f4e271feba71c17c73e846bfdfc1f3ebd69d442f098acc0a0n/aHeodo
2020-12-22VP5RPI2ZCAU9H1J.docdoc a5bdf83f7a7007f23b721bd73c5219830d2685673835bcb9a2af37e47ad2603dVirustotal results 19.35%Heodo
2020-12-22RP71BK8GY4OY.docdoc c56452bc0ff9abfcda3df47210eba4e178e55a49d0673f42c9d192ce0234ca64Virustotal results 19.05%Heodo
2020-12-22UT69C2HAUHO9Y.docdoc 636b5138fc52da9fd4cc02ade2b4dc4986baf4b8614fec61d464e4a55f8e7e22n/aHeodo
2020-12-22D2GX70UFH0.docdoc fabd2798310f1b90dc1321bffbfa1ee8c41695839459d40fd6e32618d3df7ccbVirustotal results 45.16%Heodo
2020-12-22GPT1KSH94C1O2.docdoc 4665b18e5944f23543e9221d4726aac54759376ebfec0ef20574655e71d77076Virustotal results 44.44%Heodo
2020-12-22TBCAD00KKPFJ.docdoc d86732f28284b8dbef93bd8eeee3150fa2696a1ccc22d520bd82a2a53c58c32bVirustotal results 42.86%Heodo
2020-12-22X6FTJZ7J5R.docdoc 7f7cfdf40853bbfed2268dc75e4981abae04045ef5571e0de2bb61f69578991dn/aHeodo
2020-12-22DU6Z8MTYT860.docdoc 5b4a0dc192486378dcf0eea12dc55425b6166fb54866abce0b8a339b36d2fa26Virustotal results 42.86%Heodo
2020-12-22OVZ3EEDZL31WVD2.docdoc 2d66d1cb781c8f52f8a06203ce90e2387731fa8b2a2a922c8f0db3711a9b0b85Virustotal results 44.26%Heodo