URLhaus Database

You are currently viewing the URLhaus database entry for http://airlife.bget.ru/LTBX_h3DTC-OBPpCJ/Maj/Messages/2019-02/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	116990
URL:	http://airlife.bget.ru/LTBX_h3DTC-OBPpCJ/Maj/Messages/2019-02/
URL Status:	Online (spreading malware for 7 years, 4 months, 29 days, 10 hours, 5 minutes)
Host:	airlife.bget.ru
Date added:	2019-02-04 17:42:17 UTC
Threat:	Malware download
URLhaus blocklist:	Blocked
Spamhaus DBL :	Not blocked
SURBL :	Blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	JayTHL
Abuse complaint sent (?):	Yes (2025-08-15 18:16:10 UTC to abuse{at}beget[dot]ru)
Tags:	heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-08-15	29457444b7268825b17399a00ce19fcd9ecd6647b936f229c8ca2bb35ea4ca64.html	html	29457444b7268825b17399a00ce19fcd9ecd6647b936f229c8ca2bb35ea4ca64	17.74%
2019-02-05	payment_20190205.doc	doc	6aebcbe7d5639e7fbb9d971a07f3cf78dd1ea5f6491ff2a1f25a0dd91435fe81	17.24%		Heodo
2019-02-05	ebill_file_2019-02-05.doc	doc	2e76712669301aee0c9ddafde3390f2da76fa277f2c9d4c48fee5e9013f5540f	18.64%		Heodo
2019-02-05	bill_02-05-2019.doc	doc	a428751d209c0cd15e519f795012f60b367521f747259aabee05f16e59144a8f	18.64%		Heodo
2019-02-05	ebill_file_2019-02-05.doc	doc	0b27f5ea2da29755b94186eea09a92d1ed4219e777d121cffdb0e3c8333719dd	18.97%		Heodo
2019-02-04	payment_2019_02_05.doc	doc	48d9dbdd5b51dbb131dc272c508d5d660c3177404481e25a0f867249e6d01714	17.24%		Heodo
2019-02-04	receipt_2019_02_05.doc	doc	3ad69e68dae0d8697146b7e274c8417f99d25bb77fccffbb8fae155c81db5f03	18.97%		Heodo
2019-02-04	receipt_02052019.doc	doc	996a040f7bfd786a63dc1fb2e4e66ab88b7cf1ba9c23bd1fcf16f21218e54774	16.95%
2019-02-04	bill_2019-02-05.doc	doc	bf4cfc58ad314637f90a7dcbb4021a96f5b876ad6109dfd4f342593dbb01efc6	n/a
2019-02-04	invoice_02-05-2019.doc	doc	29614dd8d5c72d7b99184c9ba4f351648d1d403a02b918edbbeec89e2323d97b	18.64%
2019-02-04	PAY_02-05-2019.doc	doc	6c04488ad135b02d868fa1758b466a46e6f815fe4fd259230e34bfd71acda5f1	18.97%		Heodo
2019-02-04	ebill_file_2019-02-05.doc	doc	2d5bad034a5f08f6ef58eaf2b543fbd88913f1322984704f55c56fe860fb4ff0	18.64%		Heodo
2019-02-04	receipt_2019-02-05.doc	doc	bfdad0431cba17b4824bccc65aac1bda67bf413326081b6cbb80835eda18d1c4	17.24%		Heodo
2019-02-04	bill_2019_02_05.doc	doc	b173a4447076888233b3037c64538e59c7c8a3c82182d00da484e3dbefe06b7d	18.97%		Heodo
2019-02-04	bill_02-04-2019.doc	doc	98a3803b2448f4e113f5241bcd823d68eedb9255c76328c356c499944d03a776	18.64%		Heodo
2019-02-04	receipt_02042019.doc	doc	34751c27b097bb0a4a54e83997ba8702ef0dec25d2a48a165c10f2d0359dc83c	20.34%
2019-02-04	receipt_02-04-2019.doc	doc	8e1ee44d6c8bccf84e9d2f4e6e37aa6e633cf7c5bf8863d48a91bdb8b428505e	18.64%		Heodo
2019-02-04	bill_02042019.doc	doc	c26244645fa1cc09276d4bb37d6da99635bba49bc4e9ee0a51b95e71d9d1677d	18.97%		Heodo
2019-02-04	receipt_02-04-2019.doc	doc	f6cb8bb1ce270ce729569e4999355d7bcca007eb06722f35ac375642f4c7a98f	18.97%		Heodo
2019-02-04	receipt_02-04-2019.doc	doc	522ecb12a7033ba8a2f958e6e17f2b4b9abad7ee7b989458701ebaecf5dd55f2	18.97%		Heodo
2019-02-04	ebill_file_02-04-2019.doc	doc	866bb04d31eda1cb430613f4d20da178fe1065d10beebc8cf5de084d345b96cb	20.34%