URLhaus Database

You are currently viewing the URLhaus database entry for http://rdgame.fr/wp-content/52VcGDPNx21mLWIDE2CcUVFgMqFHxj/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:944062
URL: http://rdgame.fr/wp-content/52VcGDPNx21mLWIDE2CcUVFgMqFHxj/
URL Status:Offline
Host: rdgame.fr
Date added:2020-12-28 21:34:03 UTC
Last online:2020-12-29 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-28 21:36:02 UTC to abuse{at}ovh[dot]net)
Takedown time:23 hours, 44 minutes Good (down since 2020-12-29 21:20:15 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-29AJ964A.docdoc eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691Virustotal results 44.44%Heodo
2020-12-29GVEY6L2BPI642.docdoc a4054bbf81bc4f704dc9ee14d6f2e5df7b22f91edcd2fb569c14c1fc82064bdaVirustotal results 42.86%Heodo
2020-12-29C3I5OOID.docdoc 12ffb5bd82775981b49a9ce2e948034050dd49e75c856c7abacb1c229be41904n/aHeodo
2020-12-29RVTHJ4LC.docdoc 9fa52c70fcab1c705956b5dce3f72bf83251745b40bfee40f746d15ba50f1f74Virustotal results 41.27%Heodo
2020-12-29EAC91LRJWHI.docdoc 4153c1afc9c5f016f6c4d5d3ea9b92469bf1a4d9156568898ea2cdc0a0e42637n/aHeodo
2020-12-29SYK6U6.docdoc 24fbe4a98d9b7608b66dfcf3a696adb297db85d475cdb0a3c8f9f4e4cc005a55n/a Heodo
2020-12-29K0N6R5LOAFBDQ4.docdoc 976cbb476135bec88e0c027ca567bece0feb9f03a777d1ff0d0be97288df5068Virustotal results 41.27%Heodo
2020-12-29CWBO3T3WQD8XTF6.docdoc 9c664d5072dd450e110f36bbd5fe6cd4d600de7104677fbc31378905c832e953Virustotal results 39.68%Heodo
2020-12-29JJ2ZSUXTO.docdoc d8f1ff40027d9f81fdc5f98abc51ee7f8a55508c22bde50d0164a90dd7728125n/aHeodo
2020-12-29EJL8ZN779ZJKKFZ.docdoc 124887797dca2ad4d4a16a53439033033cdbec96a28b5ee788dcef410b4a42bcVirustotal results 39.68%Heodo
2020-12-29EQB2MY4N.docdoc f6b6fffe0fe89481910e5173abb556c5fbd9e6e8f9006bc12e27fe996c9358ccVirustotal results 39.68%Heodo
2020-12-29M669LDLC.docdoc f63df71b55e2e7d9874fbfe9d3dc6fb6bcdaac70deec04341d0e98350e9b2687Virustotal results 38.10%Heodo
2020-12-2950648QGL.docdoc 918cb2c09e6657f0a17439dece6675085dd993189469c70ef4cd8b40166f11c4Virustotal results 33.87%Heodo
2020-12-2908AGVYFYKXLSV.docdoc 4914d5ec596d63b903a454fc2de8b2dc17037d3f2bbcdc9fd69e4e930f31de68n/aHeodo
2020-12-29TJ86Z6KK8.docdoc a2716d55c3b2823a856e3308aefdd3883d63ce417c4e6013858bf14c80f48b29n/aHeodo
2020-12-29HZULHKB9.docdoc 9b2378158c03d2f3f066362e9348d3ee8431593fb903272a8958988b7207eefdVirustotal results 29.31%Heodo
2020-12-29QM3KIO8Q4QUOWT.docdoc 2e5599c71028de6a5c1202946484ff5020f38bb282b78e69aade9c840c3e2f24n/aHeodo
2020-12-29RUXO5JAL810Z.docdoc 768cac32a7e61598368fa17fcb6792ca6d504cfab9cdcd29cb406ced3a9675c2n/aHeodo
2020-12-29BJQGLR24PZKVA.docdoc a2c29df28fc8d9e7a4b987175bf0ec6e2604f9870667a5df5a2baa514fedf031n/aHeodo
2020-12-29RYMPQ87FH2.docdoc e5652806295144d167327a61f5d1e023bba895fe5e1212861acf8fd6e7736866n/aHeodo
2020-12-29MY45IHXZXIQD.docdoc 8a755a843135dda811007dfbefd16bb3da0f914820caebd373bb596991473965Virustotal results 23.81%Heodo
2020-12-299M18MVFB7664PMM.docdoc 803ad5d250cb7271d8770fc5718f77b6321fa8bb11b9a27b8db01b2d5dc04cb3Virustotal results 22.58%Heodo
2020-12-290CF4NOHR.docdoc 4977173aed4452a0e0439de276d7912c6b6b2dca887504b0f251ab83c38aaa9cVirustotal results 24.19%Heodo
2020-12-293Z9U1TTUJJFCS03Z.docdoc 15c663fd5acd2e9ae7543f86999e4aa59a591b73c6748075a7f3feb4c4c1f79cn/aHeodo
2020-12-29SFQ9P9Q5BXBP.docdoc 723ed4ebc8e76980b2446359d609ad21e9705a0dac2310d3399d488f6803a3b2Virustotal results 23.81%Heodo
2020-12-29NUWJ4VAG5IR.docdoc d178d1afaa2640706dfb3240c0144e2f2f4ac427f1958223b9521e9581104df6n/aHeodo
2020-12-291OU2I8CPD9PMJR.docdoc bd280d95e7a6a329e2f9fb97f9217a2d5ee84357ef7a229d862d596958fd00f0n/aHeodo
2020-12-290KT58QURBJBWJYM.docdoc 7d4bc732a0e7c802fb8e5c9e023990b2af367d053e07e0e1bcf418f1e7478bc0Virustotal results 20.63%Heodo
2020-12-29A3LRIRYJRQ3G3TK.docdoc b1360031b35d21dd5f57fedfb6fd9d9bd389d3bd6807515d715628c5fe4169dcn/aHeodo
2020-12-29HG6X2SE7FSD.docdoc f80563634435c8f281978ef3d248fca600d52b19c3b1a74971d4d9fe94d722fbVirustotal results 19.05%Heodo
2020-12-29AJBQGHOTRIC.docdoc 47fb6b7547464e8215d692e454e221f6b886f549bcdcfaf4f1e8da4459b8a5c1Virustotal results 17.74%Heodo
2020-12-29X4T3XK7PW8Y.docdoc 1ff8a5a8d0858a25d252b9300283d7fe705fb8094ded581ac94a4d338ca9334bVirustotal results 19.05%Heodo
2020-12-29RLPA0VWPQBL6.docdoc 5a26c268f63b3d8685293b71cf106e7ab1a6e2fe06604dac3aa24ed1bc0922bbn/aHeodo
2020-12-29HQVOXG.docdoc 827102ec1f787e529f384e4daa25348f5c5fd2643d68141756744c1637794830n/aHeodo
2020-12-29CQP7CGX8C5.docdoc c3cc3f76180031992256532cf9168d94923becb715f30850fc4afb43c9cd2250n/aHeodo
2020-12-298I37QX3KM1Y0X2.docdoc 7f20d2c2d7e9892d326e4924bb6ccf1c7682b8b9e19b9efc4713d69663e3e0c2Virustotal results 19.05%Heodo
2020-12-29IOBU1PJ3P8Q3DZKX.docdoc 660ebe4624b0f448e353528689d88b66fcc2a5df505c81062beda32840a13c2fVirustotal results 18.64%Heodo
2020-12-29W2O1I0MILGB.docdoc 2c65b3ad0c28b1f2d1ca15afde94e344d663fa438341bf9a8d8634649026824eVirustotal results 35.48%Heodo
2020-12-299UA9L25NCFK3A.docdoc 121bd8d7ccda2f94e1f34cfc9887b69f3e66d287cf16494e054b510366c9d5c2n/aHeodo
2020-12-29DF1R9A2RW39YMUP.docdoc e58ca7b755e7587dff2293286dba7da9fcb87f3c358a8f7b2bc7291eee245005n/aHeodo
2020-12-29QORAUI8Y3.docdoc e54bd0f6b647b09226b4d2a8436f15a1921877d85a1f7173eb6bfc8d8fd5f93eVirustotal results 34.92%Heodo
2020-12-29EM1APZOTU.docdoc 46173ec3999689d1b4b0a0751934c563719ab30ccc505698e1d3b9973e656784Virustotal results 34.48%Heodo
2020-12-297MH0UKENMZ9DW5.docdoc 6049a3a32db1968019ecb33f4837344a2e00ff248c8a196753c4492e65558883Virustotal results 30.16%Heodo
2020-12-2975IZ3HEPMUWGZ3S0.docdoc e1dbfa3bf2dc60ea48844bfea4ed0319588f8eedf0f51259848c54aeafd810ean/aHeodo
2020-12-29SNF9IRGOXSP.docdoc 75fc04acda64a9e1abda8390390af81b5c9a1aca63b07e6e3d710ca3c97924bdVirustotal results 34.92%Heodo
2020-12-29VBM54IRATUTKGNFZ.docdoc 74d8b537aab65675252b0f91909917834f35b650f40d4e743c66b43b8297a37eVirustotal results 27.42%Heodo
2020-12-29U3PHOW6W.docdoc 8a2c4e6a07e770da4e041acc2e4cf57faf95c035416af94ef0a48ee5693c2447n/aHeodo
2020-12-2971F3ILYYQP.docdoc 526fb090079792d5a0813ce1cc77ce107b64df26f729074b30793e1a743fc2b4n/aHeodo
2020-12-29D9WXIE0G.docdoc 481c1f483bf008e74d9140fc82e1d862c6e861363fd9bece8aac20b83a3564c6Virustotal results 33.33%Heodo
2020-12-29L5ODMQJ811.docdoc 7641d6743d579f32ddff8e04a25ae7501bbebfc373885449b862cf0972c46899n/aHeodo
2020-12-29E49IA8F9X9NDP.docdoc 4e39d12677f7e8f0f0e8c56a8fe12be4947d79c184664f94155b76f81e0783a6Virustotal results 30.16%Heodo
2020-12-29Y2N39V6HY6WWJ5T.docdoc 579893b6125891f117dfa8d64a8e34c650cb7b87485d175b2a40092ed9b0eec5Virustotal results 31.75%Heodo
2020-12-295N1K5516CAKJ9.docdoc 04bf812417d992c76ac28f24f029de65f9cf227b3d836032afc6472ceeb84e10Virustotal results 30.65%Heodo
2020-12-2949TZ4D.docdoc 930871f377fbaee2eff89aeecea8296684e99ffa702f67bc0420e6af6a553802Virustotal results 34.43%Heodo
2020-12-293Y3LSFSPB7T.docdoc 89ce07abb5363601631f2875dfa84e1589ef67f12fef2f298f3a9855bfe6b5adVirustotal results 25.40%Heodo
2020-12-29NQR0MC6V.docdoc 587699784919c3bea79454f4cb031d3793801c4fed1d07b5767be6371ad8edd2Virustotal results 26.98%Heodo
2020-12-29OP82B7C4K73.docdoc 84008c13a44430bcf1f708a152bd99b047e38e4f66c500d5e6c9fbe3c9fac84dn/aHeodo
2020-12-29UWSQB4B7944U2Y.docdoc dad1ac448db2f4de85a54fef16d3bf90b1c8537c7ac935d0f0e2b5534a7cc668Virustotal results 24.19%Heodo
2020-12-29RA14RKPUW7FLS3ME.docdoc 3f9b8498660385229fa4c9000d3b46ca6a43f6f2d91bbde9391d1e752762134an/aHeodo
2020-12-291FQNGBH5ZMRYF.docdoc ac662877c14645667c466239b04c4c1f908525584f68998237a57b733d64e6f3n/aHeodo
2020-12-29ODJ5EBZROGMP.docdoc fcc61c1b3639ee120a6b1e8e9709614682434b8a6017bea91fef29a063f0d3b9Virustotal results 20.97%Heodo
2020-12-29K2ORZN.docdoc 7fc7c6555659146db226f7cf046df0b8dde431471f31038a688d0323a798a522Virustotal results 19.35%Heodo
2020-12-29VXJN5E868WRSXV.docdoc 6648b51c5a828a4b145d0292f72e3333278e3c97b08ce2faa174a6513b4964e7Virustotal results 20.63%Heodo
2020-12-2941LNUUWJ7TEBOG.docdoc 3e74772e9bdd856ca6c3d6f86e9f7b83f73f245f45316370725d07276660e6b3Virustotal results 20.63%Heodo
2020-12-28B2EQ54Y56E9NP4AD.docdoc 0b30502c830f8cc7c87978637d0e47918353373f4b11cc38c90853f3c1aee639Virustotal results 20.63%Heodo
2020-12-281LOIP0I1T1N4OO.docdoc 65e63ccc66d2bbc248a0edd12d746099588e5cd8d215cd324c587c6621638e0dVirustotal results 22.58%Heodo
2020-12-28RJDLFCTDXNL7.docdoc e437f954e87f11e67021195a8e2f952ca08a52d6816f5742b999121cb1634c1dVirustotal results 20.63%Heodo
2020-12-28USM3DHV3OJ2OFZ.docdoc b4eacaffc180aebecbf29345aeacb99c932458be7d9e1397238d5599cee42ca8Virustotal results 20.63%Heodo
2020-12-28WLDZ5HNV.docdoc 6e89e614b08b28c95ee56efc9086c1d5677b78fae8a8e48036f3d467f936f2baVirustotal results 20.63%Heodo
2020-12-28N4RHAON5F.docdoc 34c2de918dd4a97d37efa6fcc06e6c8c635f13ceb3de47e1dbb0b04393b9c298Virustotal results 20.63%Heodo
2020-12-28BIU204OSOCH9IRJ.docdoc cae404af78e1ccf5ea32dbb545812c3f072d88a53b7489af336ef649539ea4c0Virustotal results 22.22%Heodo
2020-12-28CS8Q4RKL0.docdoc fd8ec0a040628f0a7abecd1012e600ebb6485c694a7a9aec331c3901af678bd8Virustotal results 20.63%Heodo
2020-12-280O4MJB27XMLX.docdoc 63c5ef92de165fee3fdadc69c7839596c003e35069610a74e30ce579b2a44f51Virustotal results 19.35%Heodo
2020-12-28F5GBBRXU.docdoc 0076b09fa3bd78a783322fdc829adc2d930df48745449ffc558de899bef4788an/aHeodo