URLhaus Database

You are currently viewing the URLhaus database entry for http://pragatibooks.com/cgi-bin/Z2qFmOd6CtRBhFrmQrDZFSscB8ysU8mILirrlR5vbltSovMvrifV7/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	944851
URL:	http://pragatibooks.com/cgi-bin/Z2qFmOd6CtRBhFrmQrDZFSscB8ysU8mILirrlR5vbltSovMvrifV7/
URL Status:	Offline
Host:	pragatibooks.com
Date added:	2020-12-29 19:55:24 UTC
Last online:	2020-12-30 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-12-29 19:56:15 UTC to abuse{at}publicdomainregistry[dot]com)
Takedown time:	18 hours, 29 minutes (down since 2020-12-30 14:25:38 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-12-30	JI6UIGOE89M6IW.doc	doc	abce05e21f89f137df460e5541600c3a71aec5ebf5c909a05edc6ad042ae2530	52.38%	Heodo
2020-12-30	JGTK8NNDS9ZF.doc	doc	e0a65e088a3f0987db1372c2d63e8cccd384d3a4e98402c919d7a49557d49e21	53.23%	Heodo
2020-12-30	RYGX6W.doc	doc	161c83286b69307edded6f1105481cfdc65bc36aab3773a365af1972dfabc3ff	52.38%	Heodo
2020-12-30	PQHUVL5SQVW3.doc	doc	bf1d0474a7a16775c50fddacc2381fea17685b89ee711ad2133f326614c421ce	n/a	Heodo
2020-12-30	CESY6MZWS.doc	doc	8a55450704d7b16e71b269f44d8e64ac29fdac23b0f65951a4a4e7d0654a4499	52.38%	Heodo
2020-12-30	CXW6X4QDAQM.doc	doc	74f1385297f1e0abe566a9e2eedddb41b97279a2043c11a88b08c05304331390	n/a	Heodo
2020-12-30	C5J5156.doc	doc	a586bd9284e08911b3ba6a021732d976be512698b16238e9ada5a5d08b477fba	n/a	Heodo
2020-12-30	ZMR6IPA2P9.doc	doc	b40baf85b9fb3f4fba22b7357bfb8eb639d08c6175af9bab68528061b66eb404	n/a	Heodo
2020-12-30	1HBV01Z.doc	doc	20abb952582445a850b56426e396a5d2d9dc988dc5487945e69b656dec9fd94d	n/a	Heodo
2020-12-30	D4MK3QYIV1HUIPD.doc	doc	6b44f18c20a7bb829c5d1e02c4b77128f29a7407068126e8ccbeb63006b77b75	n/a	Heodo
2020-12-30	D6WYUQM2QGLST8.doc	doc	41e784f18168ae902f8bd265907c8e6e15b3cffde32a299bff675ee4b6902a03	n/a	Heodo
2020-12-30	FBHSTH4H.doc	doc	1f58ebb3c57f80d63f6039f66cf18dc1525f8bd71bcc78960456023520613e90	n/a	Heodo
2020-12-30	5EC0EBZ0.doc	doc	94b586e5a285387c08041e2a39bc999a222670b33b5e3793cf3136cc9ca4add6	47.46%	Heodo
2020-12-30	ORB2UGWC5.doc	doc	6516e329e7d2f720e9cd95f5f61a9ebd0af6b0cf0f35e31e872a9eef210a2ed0	n/a	Heodo
2020-12-30	UTFN9H4FY0.doc	doc	aa1cc31a552a26f2449d7de153aab95b4b585fb76e58b5abfb6cec0e7af7921e	n/a	Heodo
2020-12-30	O8Y1S2RCMHZRK.doc	doc	bbb438693d73bffc0675f548a52a1639697b0acbc53423881708882b0a3ae949	49.21%	Heodo
2020-12-30	6LXOSI5YI.doc	doc	84ff4b1cc97853c325a80d9ea06156582a5b00d8a2dbf43e776796904b5ba7cb	n/a	Heodo
2020-12-30	ZA3GATAVRN.doc	doc	16a0fc95c6217d4542b0a02200d26987e08d41c709ba9c36b9830993b2b4c6c4	n/a	Heodo
2020-12-30	VNGUCDJSGWB.doc	doc	9f343da9a2ef57f1ea4109e7e45944ada3a23457de02511ef088806da7686d4a	n/a	Heodo
2020-12-30	BOC7TROLV4.doc	doc	a3553d4da88c65554d145c8efde7312447904dd78f21dc173354ef0b3257e555	n/a	Heodo
2020-12-30	SBOC7L5ISTUA1.doc	doc	f370e183c671a04e456590269adc4f69a59350308909cc63683d705bc0213b96	n/a	Heodo
2020-12-30	7QWD2WUVNW.doc	doc	f2b0207491ef2795d3e585dded16d15d536a7649834aba2f6e24036ee9bb1b2f	46.77%	Heodo
2020-12-30	TB2FS9I9.doc	doc	b0286fc6b2b0354bf5bb297ad8f8f81577bb23a3568133181a5daa3eb75954c4	47.62%	Heodo
2020-12-30	Y75O7C595.doc	doc	4a5958fc2b8d147d9713f4c9ec880045218ae9c1e8251eac8a645e48545e2d11	47.62%	Heodo
2020-12-30	XBZL27X6RC.doc	doc	270178887f55fd612338733257bcaa9750d9f7f1dd3ad0ecf1e55222c3f5d834	n/a	Heodo
2020-12-30	OGQBNZZ6JNBZQ.doc	doc	8034186046c4b68f988ed2c9589699ffd59443ce8573ebc96551cccc435a6723	48.39%	Heodo
2020-12-30	9TLDVYNY8.doc	doc	ddfe5d80323178ceb4c5120878ac5448907826e95c3b76bd9c2306e16af00092	n/a	Heodo
2020-12-30	355YA2GKYW2.doc	doc	59e6703b24b53065555efb55e63e6f368ebd67451d4ae4aeed9b1a59f04a9947	47.62%	Heodo
2020-12-30	NL9280ON75BGL.doc	doc	a353494dd669a02ee28c0495169608f2ccd8a7d5e42a10547f7026ec218d4814	n/a	Heodo
2020-12-30	O01BFT2FD21CG5GF.doc	doc	4cd720bc09e82d9d0e35a60cd643c1242a42f6b2ed3c5d393001e402536ed90e	n/a	Heodo
2020-12-29	RCN6DDC.doc	doc	d9790597cff0277c202cb25c47d5338d113df8912fe45a44d04f2d146901ca9e	47.62%	Heodo
2020-12-29	859I2T.doc	doc	2ac4c55baa15d3719031c845766adf59717598fe67e7434f595f28120c916528	47.62%	Heodo
2020-12-29	FZCK16HNPN3EAT6N.doc	doc	3a005656eb3cb664023108b84291b3de03e68da06530c0c12118195a2a443e6e	n/a	Heodo
2020-12-29	BE1CDU34W.doc	doc	487b15fce52676130b3320631eed9f16eeeffc6e11fff1aa6b6a4aa4f694315f	47.54%	Heodo
2020-12-29	MGEGIZ62GX5XIKT.doc	doc	66a2b350efaf60cc7b59b9de600b6a8183d3a8393688914c52ab4bf9d1e84ac9	47.62%	Heodo
2020-12-29	1NYPPD.doc	doc	cb5d63f90240367ececfe0c32a70c72082527a0040fe434a6f463bd4574d4157	n/a	Heodo
2020-12-29	AYOV5DMOB.doc	doc	f7f4c153f0e9bf9a7093dc3fcf469f47c4c2bef873407f016dd746a5b78970e4	48.39%	Heodo
2020-12-29	H6IUYII.doc	doc	0e6bf2536adbd39d77a2239b62625e722197073713172655477b6aaa9cd3cbd5	48.39%	Heodo
2020-12-29	MTG7DLW26DO54ZA.doc	doc	d6480e873d81be6637d3ba474138b40d9773c0d9294fc530019ed6f3d1fcb1d5	47.62%	Heodo
2020-12-29	LD84XZDUBHN0BBMT.doc	doc	59aad32717a18d6e1b19cc6e0d4db78f962799b91b0a7773875964f47ef0fd6e	46.77%	Heodo
2020-12-29	I4DKSP.doc	doc	e7fe9ca43e289dc2bd9bf4266a4626a9383a283009072a247ecc6c1f84c45e0d	n/a	Heodo
2020-12-29	0AH31LMC.doc	doc	b74063353bf2fccaa3e2072c2e02dec2c760ab480f73a069277bc389ecd4c929	47.62%	Heodo
2020-12-29	VKZ0YLHMF0DCW8I4.doc	doc	ff454b11b8fd666d7d8eceaa253fb0756ef6d2a72b572799879d83a8d285ade8	47.62%	Heodo
2020-12-29	AXLQLN4GULMOM.doc	doc	c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafc	47.62%	Heodo
2020-12-29	CEDAG39O5GE.doc	doc	59d3ff3d4c70d115ce2c6d6ee0b71174c04ffc9a3f483fe2590b91d2eaca4518	47.62%	Heodo
2020-12-29	Q0GZP31206MY69.doc	doc	eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691	46.77%	Heodo