URLhaus Database

You are currently viewing the URLhaus database entry for https://cairocad.com/cgi-bin/tJD4njfA5N0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:946068
URL: https://cairocad.com/cgi-bin/tJD4njfA5N0/
URL Status:Offline
Host: cairocad.com
Date added:2020-12-31 04:28:05 UTC
Last online:2021-01-18 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-31 04:28:13 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:18 days, 9 hours, 36 minutes Bad (down since 2021-01-18 14:04:55 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-312JBVJ8KKWOIQE.docdoc 43af38ecd27585f00463abfee0ca7f492fb36fa862c8d215447d59be27652589Virustotal results 50.00%Heodo
2020-12-31BODLY33X.docdoc d08bca9f926920b2f85e5b7bec30f872cd48615f0ab552f727f9cae055fab628n/aHeodo
2020-12-31904CUDCHBTPKF9.docdoc e43be8ecf4cbc6b3d85f07d75f2e9e4666b38fbe656d5179697bca7246a4d924Virustotal results 49.21%Heodo
2020-12-31MTQ6NKJ6R2A8A5.docdoc 2aae32497917afd5a493a921d6bae0556badd6dc783eabf9b3322806281435f9Virustotal results 49.21%Heodo
2020-12-31YFHXLG6FJBJL34.docdoc 9512958c1e2d4c75ccf1a1da8963bf39ecef83838203ec92036630265afedfa5n/aHeodo
2020-12-3158F03INPL7QD2P.docdoc accd0141dbb5a3924866cfdbbdeca2edfd396cfbb611880588d8cfab0cd986c3Virustotal results 49.21%Heodo
2020-12-31WWIGV5GB3CVN.docdoc 2266ca4b03e9490c3be3c945744ed0bc2ffd8f047ed6dbf1acc02bcc14636424n/aHeodo
2020-12-31S50IC2EP83I.docdoc 53b44961d059f2aec41bccc4a14a60dfffc9b9ff1dd8da85603ad5afa540ae05n/aHeodo
2020-12-31U28Z8JP.docdoc fcd4936265c3d59d43ed6c51658cafd788f22ab0e3601f832346c762c3d97c2bVirustotal results 47.62%Heodo
2020-12-3193YXSRFBZUAPJ.docdoc 6c4a7652f59aa03c67961983f167f86eb3a64ba568f0c4629c5adf18c82e2ce8Virustotal results 42.86%Heodo
2020-12-31XHWU6GH.docdoc 2af797939c0c67519484491cd884c884c2a345daa208a6d1ba67e3917edc04f6n/aHeodo
2020-12-318C4GW4EPS9QSYSPD.docdoc 1486fe920f39107bae3cba0f5fbfee0eeee6a5ff8389360cf26868c9bb692730n/aHeodo
2020-12-31L1WV7YFTU.docdoc 575d1371fffeb5877c6a769757f0e62ec244b41f834d609312b916b18c55d7a2Virustotal results 47.62%Heodo
2020-12-31312F8F73.docdoc 6de848bddd35ca7b7da3c3a8df4b16ce8ce22cc257299320639ca2b4f1af01d5Virustotal results 49.21%Heodo