URLhaus Database

You are currently viewing the URLhaus database entry for http://rsfenster.com/content/rGbVN7l/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	944554
URL:	http://rsfenster.com/content/rGbVN7l/
URL Status:	Offline
Host:	rsfenster.com
Date added:	2020-12-29 13:29:04 UTC
Last online:	2021-01-14 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-12-29 13:30:19 UTC to abuse{at}godaddy[dot]com)
Takedown time:	16 days, 7 hours, 22 minutes (down since 2021-01-14 20:52:21 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-12-31	VYI5Q2W2BXW563I.doc	doc	43af38ecd27585f00463abfee0ca7f492fb36fa862c8d215447d59be27652589	50.00%	Heodo
2020-12-31	DWUFLPW3AUZV6.doc	doc	a19dbfe4090d5809a4e949d13a2812935f981a4f322c8665b6feaa908ebc33ce	n/a	Heodo
2020-12-31	62EIUVRKP1.doc	doc	d08bca9f926920b2f85e5b7bec30f872cd48615f0ab552f727f9cae055fab628	n/a	Heodo
2020-12-31	1N6L19.doc	doc	9651a07acbd2f95c8b7d7387cd69c27521ab0254d4b7e47f684dffd6bfc94ddc	50.00%	Heodo
2020-12-31	GCJ7RO.doc	doc	accd0141dbb5a3924866cfdbbdeca2edfd396cfbb611880588d8cfab0cd986c3	48.39%	Heodo
2020-12-31	AYIVLK3HT7L0SW5S.doc	doc	f13634d2bd3bc1469174a0cb871c0d10bcd89c1431232838e1251c25ce568a0a	n/a	Heodo
2020-12-31	RH7RKZSMPRGKI7.doc	doc	8b8ee2d2fa51b5a1c72a0b26ea27569873c8b69955d1ea8aa665ae2ffb1513c6	n/a	Heodo
2020-12-31	UI7GD3SVN3JE.doc	doc	a9fcec30a23f2877642eb9037b564f2797647460bd1d5c2f719806b37e0f8ee8	47.62%	Heodo
2020-12-31	XT0AHF5P1TEC48HE.doc	doc	92f3ec8ddadbace9623d6af0c230b651775947b4da83ae9b5ab3ea42f866a62a	n/a	Heodo
2020-12-31	FPFEOM6P8VQ.doc	doc	97a4dbe571c81cf11a56f00a073dca297a48d859ad36ecd46a9d5aff9c3eaa97	42.86%	Heodo
2020-12-31	NW0483.doc	doc	91086dde82b6ff0a38dcc4ceafee71808d2af326520ab5e0f610f0c2fc6637e9	47.62%	Heodo
2020-12-31	PO747WDV714X6.doc	doc	12648728174c80a68b9992c8759df7e021f27fef6bbee5bed8af71b18a7fadd5	46.03%	Heodo
2020-12-31	87VQWG1PZ.doc	doc	6b85d222fb12df6466d8b1dae31bb6e7706463ec73fd86f85e46ef7867183df1	43.55%	Heodo
2020-12-31	VNS9DIWSU2W78.doc	doc	d6704fdc1942538d16ddedbe3eff3c429e462d4378b33040597c5a218c0e852f	42.86%	Heodo
2020-12-31	F3XK2OGIRVTSV998.doc	doc	3bf59384c4c1a24eb5fef4453dd1fc63a75324f4aa6b86a62ba47de3393027a9	42.86%	Heodo
2020-12-31	1QSX7H9C3S9NK.doc	doc	0b9ad72f95097098c7273fc3e89e96d14537deadfe1570a2e36b8ec40bf241a7	41.94%	Heodo
2020-12-31	PFSRC72.doc	doc	c3995c2fa8060e207a999e9ba7fac45ac419f717a024eb0bc1059e197a595595	39.68%	Heodo
2020-12-31	YGUM55EGVR8G.doc	doc	d6dae3570b800a4a54bbb661e945c2870952058174a0ac704127c7cfe8330bcd	39.34%	Heodo
2020-12-31	5TSWGYXUF5M.doc	doc	cd86c55218a19d3c739795e4da8c0c8b34a731b1d89fcc0685a5ceed2f3f8fee	38.10%	Heodo
2020-12-31	DACMIKZOG78CDHN1.doc	doc	68dafb6ed5bb318a77e710fd66f9beffc66a4f84579fb3c160bb3c8c8b457acf	34.92%	Heodo
2020-12-31	U66ZEHGWMFUP.doc	doc	14b98f981681ea78e6511ba3a68c28a85fee9696158358876cd49a9ac1110bb2	34.92%	Heodo
2020-12-31	KL05PQO5XM8.doc	doc	ebb494890c3756f3bd2d17fe15fea7443671ce48c7d22821b6f0e73920ab061b	32.26%	Heodo
2020-12-30	1TVRU7ASLPR.doc	doc	fa91406d32a92c06644f1089b3184110a7e7238b70dbbb86098e77f7ce82ff5e	30.65%	Heodo
2020-12-30	AG7N9UL5WSK70.doc	doc	e1068c52aa236bb0111f08ab3140850d7fbe24bf3e5f32697f64701390f5d516	29.03%	Heodo
2020-12-30	NE0RIDRJP.doc	doc	7dbe3e3f4d5e95b69111858fc5e96f73c1b7f8284276a1280486ab64139324a2	41.94%	Heodo
2020-12-30	PS88AT45W2ZEQ.doc	doc	6aac95dd3f2a6b9cdc5ddfbda6e548ab8d93a61f48640d3a0a98a312fad42e56	42.86%	Heodo
2020-12-30	AW1RTBWF9.doc	doc	48242492ae400d1b2e95ed96ed2298bc76c87036b1f79e92d38a07e5cb14712b	42.86%	Heodo
2020-12-30	71WUAUI13MIEMH1G.doc	doc	69cfcbc8cdcaf6fb79be3d871779d709afb32745e7e7ab35db31dcce9f6bcb80	n/a	Heodo
2020-12-30	X72VSEIMO.doc	doc	14eef594729b6784626929323d1f4a040cf76e3774ad5b77a16c28449db182cf	43.55%	Heodo
2020-12-30	VSENVFZEE.doc	doc	c531afa39691d1fec216f1c5c1016c155176f104b4b83189b1f4ca82efcdec60	40.32%	Heodo
2020-12-30	FO5N5M60.doc	doc	9d7889fe83c60f08711f29825a62cc029f17329e4008a7298e7c3ba5cb6ae8ff	41.67%	Heodo
2020-12-30	QHMUTSCU62QYU.doc	doc	62ab4ab746aa32f2fc56a4441eb18d109e5174400f6eec250495e2b513ac63c9	n/a	Heodo
2020-12-30	C4BNPUNR.doc	doc	d2178edbfb636aa2baf306d59be6a8c651aa2167f67893e6ee70469cc13de307	34.92%	Heodo
2020-12-30	QYMYM6Z9NRANMNLF.doc	doc	a2bee4290712595f0afb87e5a247cafe694d279fb7350e43bc163630e926aaa4	27.42%	Heodo
2020-12-30	K20LH03F0H1ZHOQM.doc	doc	102752bacabf212b2d93d7dab6e84615f2e94a7c17f88f88c23cd2e87643da1c	29.03%	Heodo
2020-12-30	GZ68DA76K.doc	doc	63a9349a502e7e3e7a78488b5fef1649c62dd1fca5e72c79dd92e0bd89327105	28.57%	Heodo
2020-12-30	4NOABW09IDPZ5JX.doc	doc	4c0bd56c72fbb8e4fc45f671c03970329a3070b215f7727f83040d529e44f5e3	n/a	Heodo
2020-12-30	I965M4YJ.doc	doc	13f1c66896a1c40f53f90c4132994a55c9363a7044989a67b6ad42a8965f69ea	28.57%	Heodo
2020-12-30	FTS28FRBLT9CPO0N.doc	doc	03a1dec23b27d910477e78137c85a9397eb5d0118e347d00d22a49e0fb04ea3d	29.51%	Heodo
2020-12-30	DVJ7ED1MC90.doc	doc	7fef2f36b64703910def4f6a15cfe314b2ac2f9691465ecd3999a29daf6b25c7	n/a	Heodo
2020-12-30	AK5P9S32P.doc	doc	ab777090ccbb32ca62cd68252948553b3238027752ead7c357919b5d3ca9c10c	28.57%	Heodo
2020-12-30	YR01OPW1HGIX.doc	doc	a90b5fb7fe68a65962a5023189a8c8184bbaaa72f39ee8a1e071183398cfde46	n/a	Heodo
2020-12-30	Z4W2WDM1965WUF3.doc	doc	bd913e9c89867c5d668cbc999e4044f62c9efac8f02e6be4066845c3bd2d7171	29.03%	Heodo
2020-12-30	YUF65ZQP.doc	doc	ad471901c1ed7f1674111218352a68322ba2b1d0a4c7c0f5757dc0bdc2e4bc56	n/a	Heodo
2020-12-30	C0FFQ0PUZWIYDM4.doc	doc	d3b4663e294cfce22aed52067a56d10cbd57c0ce477d110616debd538660a115	28.57%	Heodo
2020-12-30	G8LR8Q.doc	doc	6ae13a12baaf1966a1b672ec45aaff934ef60f13fcd6d0df780ca587955ae5af	28.33%	Heodo
2020-12-30	86ZHTF6V3B5B3.doc	doc	3c2ed9471901c2a6ecb559a6af4a9ae579b9e6e93ffd08595f002d8b0ea1afd9	28.57%	Heodo
2020-12-30	GQUIRHRUTYWGD3.doc	doc	3c5a0e1906eb2a02dc597a235c6ba9b3faccc526ef1aa3b2f34f462257ff7261	27.87%	Heodo
2020-12-30	Q8P6KER2FVW3I.doc	doc	865d58e3f55f2d1f7f7c0102845db1fef2d1d373dd3fabcc822d91c643a60a62	28.57%	Heodo
2020-12-30	CZK9V0SJ2CSB.doc	doc	b819a59c6a40ff2d03eb14a692706aefd3ea6587a10d13fb8027ce1f57f3f95d	n/a	Heodo
2020-12-30	QEP6EUUVEK4.doc	doc	5866f3b91372a6d516f905a7d68435727224cd7b9e42fefa0ea4c7e052aee237	n/a	Heodo
2020-12-30	QCSVL2RRLNF43.doc	doc	d5a23fc9d1f83490847cc316f8ddb71465b3308de54f891473d6e75fe691210d	27.42%	Heodo
2020-12-30	VAW34QQSR8TY.doc	doc	6f513e7300aec90543fdc0ef13377b05ed0a0ad346ae59112eb3753bd4664f08	23.81%	Heodo
2020-12-30	6HSF2LNDLB.doc	doc	5ff309e15ed409297bf10da249a2d68038b70b8032f305f43310e8930cc7d606	n/a	Heodo
2020-12-30	K1VCIJGAI.doc	doc	3cf8ba8f690f6ea16120329967cdbaa0a7d30af951bcd991eec00356ebe46301	24.19%	Heodo
2020-12-30	3DSKVYCS01.doc	doc	da743512ec1488ac09871b289fa47bcca412e824f3b41a1b7c6a2a24ea1b8009	23.81%	Heodo
2020-12-30	OVV2G7.doc	doc	a0113dd87628fdb19ae31e74ebe696166c1914dc8d3522f54023314b7f4374ed	n/a	Heodo
2020-12-30	BWBO0KXAVQW2J9P6.doc	doc	c6333efba033ab3aa174d7b6254aa11c1b7c56ae806599e8b9361bf603477a09	n/a	Heodo
2020-12-30	VIA1EZ3.doc	doc	11d79289a55c8061aaf33a1b6647874b33553a63c7e8333db7735d1c2812e870	n/a	Heodo
2020-12-30	TROB5N.doc	doc	34d114c948d93bbce1a1b9ecc92c641ef3c8ca4ec755ce893e55f8b89f7c4c54	n/a	Heodo
2020-12-30	IAYQGKJ8RG1C70.doc	doc	ee3c654155c2ad1cdedb1baa923add0335475dbd69432b7c9ce71e34d2f3c15b	n/a	Heodo
2020-12-30	VPZ0COA.doc	doc	db7a9c5a90c3e6e449fb9375629b793c22d1eace5c4cc7ebdc3743769fa22f04	n/a	Heodo
2020-12-30	51FSJ488MNFE.doc	doc	8ccaf45b8c50a7ae2a58de3d8634a80db84f06872e358c3a80f9900662f27f86	n/a	Heodo
2020-12-30	M2QRU26T75.doc	doc	abce05e21f89f137df460e5541600c3a71aec5ebf5c909a05edc6ad042ae2530	52.38%	Heodo
2020-12-30	3AADRGA6.doc	doc	ef18f9ad5834b882d4554fdb6b709c4fa3782704b22dc9e7a535b40f2fb4ddb5	n/a	Heodo
2020-12-30	PMCM07E3B95HPX.doc	doc	161c83286b69307edded6f1105481cfdc65bc36aab3773a365af1972dfabc3ff	52.38%	Heodo
2020-12-30	DJ7ND8249XPPG.doc	doc	9303a7d168278ca01af0fbb241d183dd20e13b55234bfb1d1df24d76d07af950	52.38%	Heodo
2020-12-30	V6MSVIKCCXSRS.doc	doc	20abb952582445a850b56426e396a5d2d9dc988dc5487945e69b656dec9fd94d	52.46%	Heodo
2020-12-30	9Z5BAGE6I14.doc	doc	fc88d7102891698ce09ee38c1af90b8e225c496491ddaee1b739a12f1a2eaf33	n/a	Heodo
2020-12-30	69V12F.doc	doc	41e784f18168ae902f8bd265907c8e6e15b3cffde32a299bff675ee4b6902a03	51.61%	Heodo
2020-12-30	EH8FXSU1.doc	doc	1f58ebb3c57f80d63f6039f66cf18dc1525f8bd71bcc78960456023520613e90	53.23%	Heodo
2020-12-30	WGJO5MU3Z9JSJ5KM.doc	doc	c18cbfc2d84a1436acef501a8e605966ab35af260f8a6c86f24e5b459c87bc19	47.62%	Heodo
2020-12-30	EK0VXXZH9.doc	doc	add8349cc360e174c38c2d36277412b334744b3af808d91097b5b9e9c9834f3f	49.21%	Heodo
2020-12-30	CZDJJG9.doc	doc	84ff4b1cc97853c325a80d9ea06156582a5b00d8a2dbf43e776796904b5ba7cb	n/a	Heodo
2020-12-30	D2H4UV5E1XRMU9U.doc	doc	b418b8729a429df3b5029222db61b762411c34971aa6c76b3fed3d12146a984d	47.62%	Heodo
2020-12-30	4QUWVQRH.doc	doc	9f343da9a2ef57f1ea4109e7e45944ada3a23457de02511ef088806da7686d4a	n/a	Heodo
2020-12-30	AE8WMXOF.doc	doc	bcb9cd7cd42e4ff78dd5dfaca1fa9a1791b17368ac26e881ed01530ddcd934d9	n/a	Heodo
2020-12-30	RIFZ0YXD.doc	doc	ee94018b625d16f7aa8fd8542511da49e0e15f19cf1ed9e231b85fc64985aace	49.21%	Heodo
2020-12-30	G6WLDXZG9.doc	doc	c1c222eea5baec06081295edddf806c2bbd101f35d5c554d3f3b63aabe8fb576	46.77%	Heodo
2020-12-30	YFYTRKEP3TK06.doc	doc	0b8fd8d0339908863cd208a05fff1e8d9bd4f259735a7ff845318973c3af6bc1	47.62%	Heodo
2020-12-30	EJ54S65EJ8U7.doc	doc	270178887f55fd612338733257bcaa9750d9f7f1dd3ad0ecf1e55222c3f5d834	n/a	Heodo
2020-12-30	NVPELPODWOU.doc	doc	968063350b11ebbfd467a30c92b38980fa20b0e4f588f89daa9687981e01f8c3	47.62%	Heodo
2020-12-30	EZFY4F.doc	doc	fec3ad4118a479bcf4486c4612fc14f123d4cf677b8dd088bbf218be9d0497ac	47.62%	Heodo
2020-12-30	GA67IRGA2DO.doc	doc	59e6703b24b53065555efb55e63e6f368ebd67451d4ae4aeed9b1a59f04a9947	47.62%	Heodo
2020-12-30	W1WS1Y.doc	doc	a353494dd669a02ee28c0495169608f2ccd8a7d5e42a10547f7026ec218d4814	n/a	Heodo
2020-12-30	CKU324DI.doc	doc	4cd720bc09e82d9d0e35a60cd643c1242a42f6b2ed3c5d393001e402536ed90e	48.39%	Heodo
2020-12-29	LEQRYQRFFEI.doc	doc	d9790597cff0277c202cb25c47d5338d113df8912fe45a44d04f2d146901ca9e	47.62%	Heodo
2020-12-29	V8HTLS8GV7Y.doc	doc	1b4a340a7d7925e5635152af5c56f1fd2e77b9088afb6fe33eba7a03009f5df9	47.62%	Heodo
2020-12-29	FNFTF1.doc	doc	96c2898e9dc74450ad82ad5d3a1b117fddca0bfd3013948c376191536d5fb360	n/a	Heodo
2020-12-29	NB8K5CJ0GSB2CNH.doc	doc	2527707f508b47e4031c1bf43ad94b728ab6a4847c208dd3f7e592ed49d36f6e	n/a	Heodo
2020-12-29	0LC82A1X.doc	doc	cf47feaaa13dd8578065c7ff33e3b1f716e4b71f679b8fe7d10fd33cf1ca8b70	47.62%	Heodo
2020-12-29	GX97UWPH2P7L.doc	doc	004ffe5fdd488817ced5a47937acb4d2e3130187329de56fdb5920a56d3118a2	47.62%	Heodo
2020-12-29	7LDQ2NE8LJBZ.doc	doc	d6480e873d81be6637d3ba474138b40d9773c0d9294fc530019ed6f3d1fcb1d5	47.62%	Heodo
2020-12-29	UNUWZE6.doc	doc	dcdd4ef88b4d1d40464460f45144aa39d09537da5757842e1efe75a46c6c69fd	49.06%	Heodo
2020-12-29	WAZJCHHLYW5EAA22.doc	doc	e7fe9ca43e289dc2bd9bf4266a4626a9383a283009072a247ecc6c1f84c45e0d	n/a	Heodo
2020-12-29	JZJNY6BQDK6IMH5.doc	doc	d61737a9f3206f943c7569e31f9ce318fc7f361f86b01309bc476a1e2c7571a0	n/a	Heodo
2020-12-29	KSATPWCEJD9LXMZP.doc	doc	c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafc	n/a	Heodo
2020-12-29	N1ZU3DP.doc	doc	59d3ff3d4c70d115ce2c6d6ee0b71174c04ffc9a3f483fe2590b91d2eaca4518	47.62%	Heodo
2020-12-29	KAWWHVN1M84D1OM.doc	doc	eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691	44.44%	Heodo
2020-12-29	EM2TRYE9TKYN.doc	doc	a4054bbf81bc4f704dc9ee14d6f2e5df7b22f91edcd2fb569c14c1fc82064bda	42.86%	Heodo
2020-12-29	Q939I684.doc	doc	12ffb5bd82775981b49a9ce2e948034050dd49e75c856c7abacb1c229be41904	n/a	Heodo
2020-12-29	O3743Z00P.doc	doc	d1b055f730d56fef75cd826b96c669e9aa16832079dfa132b8a1e4ef76e2351f	n/a	Heodo
2020-12-29	9OO1DMJ66.doc	doc	9fa52c70fcab1c705956b5dce3f72bf83251745b40bfee40f746d15ba50f1f74	41.27%	Heodo
2020-12-29	0R1LFMV.doc	doc	4153c1afc9c5f016f6c4d5d3ea9b92469bf1a4d9156568898ea2cdc0a0e42637	n/a	Heodo
2020-12-29	HZSMVYF1LHQUG.doc	doc	7e3a0828f54f87c238b13d6aa6de650da7e32e1309211ff09fd9113646454428	n/a	Heodo
2020-12-29	OPD1L4OX5DX.doc	doc	2b998037b5b5525e6d7db5d1ee65710a4d25ffdb4a0082b76c2a58a58ed70b74	41.27%	Heodo
2020-12-29	Z5J8YQJJ84WZM8E.doc	doc	725c503eb1f683b0402c27ee1c4efefd3f360fca37ff060795eed21575247f91	39.68%	Heodo
2020-12-29	P04II41LCLKJ9ZX.doc	doc	9c664d5072dd450e110f36bbd5fe6cd4d600de7104677fbc31378905c832e953	39.68%	Heodo
2020-12-29	KVS1GMZECY8.doc	doc	006db4592475f5b71dee4b32cdcfe32e265e730d95f2efce5441e155ed0c122e	n/a	Heodo
2020-12-29	F6EMN7J49OF58.doc	doc	9f6e30efb9df731c394c6258f97818c93d88efbca7acd4f2290bc784cfafd057	39.68%	Heodo
2020-12-29	1ZJDNS8OS92494DN.doc	doc	a1d520c434f3b4b8113d30e94a118ba445f78b6056b5ff73d59ce6c17e62c3a4	39.68%	Heodo
2020-12-29	RDQ5P9WDE5.doc	doc	f6b6fffe0fe89481910e5173abb556c5fbd9e6e8f9006bc12e27fe996c9358cc	38.10%	Heodo
2020-12-29	K5MY31Y832TIUE6.doc	doc	6b2addd77d4961da71636553bd57f3b73bf65aebc867a3a3f0508dd58d89174e	38.10%	Heodo
2020-12-29	6XH8QR3Z6Z64WRP.doc	doc	34153dabc25c2ae0ad5814c59cc71014be57902a4f2b7bab78906cfb0a75c21c	35.48%	Heodo
2020-12-29	6NZ2JALB8GYUIK.doc	doc	4914d5ec596d63b903a454fc2de8b2dc17037d3f2bbcdc9fd69e4e930f31de68	n/a	Heodo
2020-12-29	YIXSHZLK3AXY.doc	doc	a2716d55c3b2823a856e3308aefdd3883d63ce417c4e6013858bf14c80f48b29	n/a	Heodo
2020-12-29	QJVGTNWYCIQIFT06.doc	doc	5b172cddbf9bf1a311835a9225b93a10ffb5a872964890c3b38295d53de89bae	30.16%	Heodo
2020-12-29	B78RJCPIGP6815.doc	doc	b8d8aad4c79c9b57697bac1666963c81e045f30d4a200e1be8458ed96f03871f	30.16%	Heodo
2020-12-29	VP6R8PTVAJ84JFEU.doc	doc	8aa90145e9b85324b53d4e615c68a33a1485e69e421ce878b0951c1c860b71dd	27.42%	Heodo
2020-12-29	40Z4JDUAU80M.doc	doc	e9651c3167f1db71cbf6992bf456870f4827efba335a03be0dd5d5907d777013	25.81%	Heodo