URLhaus Database

You are currently viewing the URLhaus database entry for http://jianfasp.com/telekom/transaktion/012019/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:119441
URL:http://jianfasp.com/telekom/transaktion/012019/
URL Status:Offline
Host:jianfasp.com
Date added:2019-02-07 15:39:12 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-07 15:40:02 UTC to abuse{at}cloudflare[dot]com)
Takedown time:11 hours, 49 minutes Good
Tags:andromeda emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-08JAN2019_rechnung.docdoc0cf386db6ef92da42a1ce478727593a6438d900bc820b1cdcd6aea93c600b73bn/aHeodo
2019-02-082019_01rechnung.docdocf734605ff9cefe0fb5bdcdf6b84aaa03a7ba79b424328dee4a4206f21e6a025dn/a
2019-02-08rechnung.docdoc81f38ad1559110f12ca5b3d40959707a027e291d6688a5318b8163442b41a5e5Virustotal results 18 / 58 (31.03)Heodo
2019-02-082019_01rechnung.docdoc3723bd2f29fea06590d482dd0f98274192c97c01991a7d7f2cdc5a74eb51eec3Virustotal results 18 / 58 (31.03)Heodo
2019-02-08rechnung_01_2019.docdoceb1343835dd5b8c99473a1e1ca7fd50743be2c9d9b286f80b564de6e020e766dVirustotal results 18 / 56 (32.14)Heodo
2019-02-082019JAN_rechnung.docdoc89232e0ce2f758bba708b8b17089fe80eac82201f1311f29e24976c86020e646n/a
2019-02-072019_01_rechnung.docdoc0cd62b03d38d473ad2d63129e6768b0ce4e78669e2d7c982fc1d4f118927c1a0n/aHeodo
2019-02-072019_01rechnung.docdoc0e86882514dfca518615de8ec20db86063eb82b36fd0d0dd438350f766931256n/aHeodo
2019-02-072019JAN_rechnung.docdoc7ddc8dfbe2c21fef171645ad5279937a9530aade0a22b1be6b86ebbb26227db3Virustotal results 19 / 56 (33.93)Heodo
2019-02-072019JAN_rechnung.docdocdd2888ae190b36017b4f507f294beda213a93bdb2dc34f44a5c3a92c16a1d597Virustotal results 18 / 56 (32.14)Heodo
2019-02-07rechnung_01_2019.docdoc47e03341ad49a69ef5cf75882d83267770506dfb053a49ae5bd182deab2ae0e8n/aHeodo
2019-02-07JAN2019_rechnung.docdocaa7d362c0a8e7ca047c1ffbf64adc168ddd12f99fcba9841ec5104c3ef9b378dn/aHeodo
2019-02-072019_01_rechnung.docdoc4c4c61d9eee6445e44417e084d2b5501c622578c75023a342d96e5967fd0fa08Virustotal results 19 / 57 (33.33)Heodo
2019-02-07JAN2019rechnung.docdoc0fb1891062a2efc47b2fe69391e3a7a42673afdbb21d834af3ad3ac36b56ecf0Virustotal results 19 / 57 (33.33)Heodo
2019-02-07JAN2019_rechnung.docdocade60b3beb5cbbc232f2304e236e62094de118499db8feb364f0f5b4795e640eVirustotal results 19 / 57 (33.33)Heodo
2019-02-072019_01_rechnung.docdoc6ce72621d350fe048a2b257d1a0161b5e4351442d608c2ae089204d6431ed048Virustotal results 18 / 57 (31.58)Heodo
2019-02-072019_01rechnung.docdocac78413a0711619ec5c61330865227901bd9e9e3677147c1c775761899acb342Virustotal results 18 / 56 (32.14)Heodo
2019-02-072019_01_rechnung.docdoc6e23e0e514b01522ba4fa1af358c0b1bd3278b9fe8649bd6b420cc656a003f21Virustotal results 19 / 57 (33.33)Heodo
2019-02-072019_01_rechnung.docdoc510ce49a70b76299b1d2be53fd5bf6601659e71e0ab65dbc60c712fc95a4d127Virustotal results 20 / 57 (35.09)Andromeda
2019-02-072019_01_rechnung.docdocd7aa58f628d090312a7120f541f703b01887d082741ada057943e33895ff2b33Virustotal results 19 / 56 (33.93)Heodo
2019-02-072019_01rechnung.docdocc7e37f433e6ee1e6c6526684450c34c1df13cc69db157a9d4bcf6cb0a51ca5bcVirustotal results 19 / 57 (33.33)Heodo
2019-02-072019_01rechnung.docdocf268a22ab88e58383c146d8a2bba709f21416275f686f567c3763bb99002f239Virustotal results 19 / 57 (33.33)Heodo
2019-02-07JAN2019_rechnung.docdocc45eebfad7df2ad94cdef3bd2558c2da4519c477fb02e5771441040a661fe08bVirustotal results 19 / 58 (32.76)Heodo
2019-02-072019_01_rechnung.docdoc1ea0adca3acbfef812f399a8a41bbf0cd0a94ff3a3398df6ce195046b41eca40Virustotal results 19 / 57 (33.33)Heodo
2019-02-072019_01rechnung.docdoc4668461893c538402b20564eff13350608738e5546044dcc2772cd4594485ce0Virustotal results 17 / 57 (29.82)Heodo
2019-02-072019JAN_rechnung.docdoc72a5298f8be30e5da9259305f68b2486dc5459272fde99c6320021ac847f03c1Virustotal results 19 / 57 (33.33)
2019-02-07rechnung_01_2019.docdocb5054aa36e418b42ec4e2ef8a2ffdd5c01780dca65d907208adb9300ebbcda93Virustotal results 19 / 56 (33.93)Heodo
2019-02-07JAN2019rechnung.docdoc13d8b82ba20eabc4d5b388fa20ef4d48252758e1cd0aae8431c491510a4b29f9Virustotal results 20 / 56 (35.71)Heodo
2019-02-072019_01rechnung.docdocbef31c3a5bc128898664e01c2b50a1e39722037667dcc8890298f2d96e3b50bdVirustotal results 19 / 56 (33.93)Heodo