URLhaus Database

You are currently viewing the URLhaus database entry for http://pusqik.iainbengkulu.ac.id/wp-content/uploads/2018/Februar2019/RSZYYF2029609/Rechnungs/DOC-Dokument/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:121354
URL:http://pusqik.iainbengkulu.ac.id/wp-content/uploads/2018/Februar2019/RSZYYF2029609/Rechnungs/DOC-Dokument/
URL Status:Offline
Host:pusqik.iainbengkulu.ac.id
Date added:2019-02-11 08:44:04 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@spamhaus
Abuse complaint sent (?): Yes (2019-02-11 08:46:01 UTC to abuse{at}telkom[dot]co[dot]id)
Takedown time:1 day, 7 hours, 3 minutes Poor
Tags:emotet heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-124606806117296390.docdoc7f2d2be9e8393c8a38c1e3e948b27bb4660bba4623be31894dca25318542414en/a
2019-02-12K00152356415891008.docdocb9b5ba5b34fb541bf6ce836b103d3b213fb5d0d1bb023dec4a809e5200ffadebn/aHeodo
2019-02-12QW77870618899535127.docdoc319e696035318ad81de588cb10ae0540adb5a0c841549d3726c72715c6540026n/a
2019-02-12QFT9822159110.docdoc9e500ad2ac11e0f355d7966992ecb085244e777b278f5d8d13568cc4b256e089Virustotal results 14 / 56 (25.00)Heodo
2019-02-12PPJK698423416730492929_2019.docdocec841b5a6810a726a78d53afac2e809bd0be8758248ec41dfc49424654f45ff7Virustotal results 15 / 55 (27.27)Heodo
2019-02-12415286957260497_2019.docdoc53eca122ec298ea4f73562092ce57e2c8809f9ac46ee2b331be21fab5ac39d90Virustotal results 13 / 55 (23.64)Heodo
2019-02-12K63023247780895761158_2019.docdocb5a0c38797bc6759adb5a0f83f9082f753996e6afd68959d4d49e2efb0e8243bVirustotal results 14 / 57 (24.56)Heodo
2019-02-127414749395367629.docdoc2fa71247c8825a9732ab1f9cbb884b16932ac72a89c4e786809862b3caae3791n/a
2019-02-11DML729743757200484.docdoc024733144341126a04610c276ab04356cfa2cc7eb50401b6818ada0b6b09f0a6Virustotal results 16 / 57 (28.07)Heodo
2019-02-118018623055.docdocf234b55d79b64b287c3f67148225629dff8f86c3b71de21e3b6bfd4ffffaaab0Virustotal results 16 / 57 (28.07)
2019-02-11K24690873485433099504.docdocbc419da40314cea3148b9a2140f2382d9de456f3e22a0ce2752dd1ab78b31a42Virustotal results 16 / 57 (28.07)
2019-02-11176721412.docdoc26d3c4f085cb36ea6c3073cdc7bd23d9bbd8c08d4c25823f981d256e78856f8bVirustotal results 17 / 57 (29.82)Heodo