URLhaus Database

You are currently viewing the URLhaus database entry for http://rubylux.vn/secure.accounts.resourses.net/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:121844
URL: http://rubylux.vn/secure.accounts.resourses.net/
URL Status:Offline
Host: rubylux.vn
Date added:2019-02-11 19:05:13 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-11 19:06:08 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:1 day, 12 hours, 10 minutes Poor
Tags:doc emotet link epoch1 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-13eform_02_13_19571642.docdoc 5725aac54f9e0b682c8e90c5adc8e25b1a97ee60aa1ad40f7b5154772e428bf9n/aHeodo
2019-02-13eform_02_13_197241613.docdoc ab09084e5321b552445689d057851b4f551c58506dbced9576b1856aa0517c39n/a
2019-02-13eInvoice_02_13_19277377.docdoc 6c1710a1a3c916f3bc8ca4eee0eab976c39fb0b24b520e8a4e9ca7e9106c84f5Virustotal results 33.93%Heodo
2019-02-13eInvoice_02132019613439.docdoc d86dffa3c6861d289c115394cdcda950fa8ea88a50c6fd8c7f3f6b8720085c88n/a
2019-02-13eINVOICE_20190213093101.docdoc 813b8b26db590fc346a8f2feee33409f46c1066cace60353f29725330193b5d7n/aHeodo
2019-02-13eINVOICE_02_13_190098691.docdoc 4458ae6f0ddafefff59ae71480e104dbe486a205219695877e2652ce3865b933Virustotal results 35.71%Heodo
2019-02-13eFORM_02132019766562.docdoc f538ee8501fc30e1c4ae2fa514858952069c77db02f433c7211361c7de4a0342Virustotal results 33.33%
2019-02-13eFile_02132019798362.docdoc dcc6711a8116b1e24aec79e5066b4aa738c2afce77656c5150bb3326aaf8579cVirustotal results 33.33%
2019-02-13eINVOICE_02_13_190040.docdoc 1f80bc1a597f55db4ecbf15b6485381153514e782469db4b9e64ddcc2f8badabVirustotal results 35.09%Heodo
2019-02-13eBill_021320197425284.docdoc a4ef612e70535abbbdb168a51f1d7e524ea19747e93616dd5daeaca728cb1fb6Virustotal results 35.09%Heodo
2019-02-13eINVOICE_021320199027026.docdoc 0d782eae48a64d70cf4a4c87db6d0d0f5410f894b0babeaf927352d4e2574029Virustotal results 33.93%Heodo
2019-02-13eBill_20190213301594.docdoc dcf2062518f5f3fbf54499fbbe8ad8c1ab2b26dbe92ab36f1be3720b61d2808bVirustotal results 35.09%Heodo
2019-02-12eform_021320197891.docdoc 31269fda4663bc5f6bba68346a4d151ac496cede9f82b0efebc3337aeb4d459cVirustotal results 33.93%Heodo
2019-02-12eBill_021320196507.docdoc 51e4683c429a41b0da3dbbd17126ab5327d4ded1f4bd4be381a42e65f5d1b84bn/aHeodo
2019-02-12eFile_2019021350145.docdoc 5a64216cd578341e9826d5ac879207015eed1c926ba1297d768efb964592d0cdVirustotal results 32.14%
2019-02-12eFORM_02_13_19901609.docdoc 275973f5340096999efcb1d5c11b2c6c396c4b114add07483ff882971a704d8cVirustotal results 33.93%Heodo
2019-02-12eBILL_02_13_19941186.docdoc dd0ff448256f42d345e5c4c3fc6709f58edf50cef095a2aded59ed9524de4f45Virustotal results 32.14%Heodo
2019-02-12eform_02_13_1950634.docdoc bb061c9e051fbebbcabdb7783bbd4b4cd64e750d3bf3c1d31c4cb94d77749985n/aHeodo
2019-02-12eform_02_13_19992612.docdoc b602df8a91e19f796e824c41677601f52e31a3aeee07add3427300d6e0f3f35fn/aHeodo
2019-02-12eFile_02_13_198744207.docdoc 0bd765d8980595f4618b5ffafbe9d4a607fd167cf91079aa4f207cf57d1bbb6dn/aHeodo
2019-02-12eFORM_021320195780062.docdoc bc4d532da6fa3b8bee4c159e9e96a03b3e9800e938033ed6820076fbaa05603bVirustotal results 29.82%
2019-02-12eInvoice_201902122567.docdoc cfdba67703138690e3aca7cac99bdfab5ebd86d240043e254218ef845c382e10n/aHeodo
2019-02-12eform_20190212004442.docdoc 5fcb69534f967d1724ceb8561472f07c1abd13cb98ea1c8d63009788c27170bfVirustotal results 30.36%Heodo
2019-02-12eInvoice_2019021235256.docdoc 6e133fba8492978c68d2157f4eabc23643a0eef9d8dd2aa2a26e60d3ebf847efVirustotal results 29.09%
2019-02-12eBILL_0212201915692.docdoc 558f43491473de9a3b553cb99ecbc26f670d768f637291d3873029862f1bf79cVirustotal results 27.27%Heodo
2019-02-12eBILL_0212201992228.docdoc d23c7abd3719769158d6a04f512bdae7273163e74c3e8e165a387842f3430353Virustotal results 24.07%Heodo
2019-02-12eFILE_02122019460548.docdoc cfa86f7c0747366956caa5999d6cedfcdb31b54af92e59ae19a169ee7c8d0ecbVirustotal results 25.00%Heodo
2019-02-12eInvoice_02122019373005.docdoc 8beec0df1710604330dccbe373a36caab18e68f67f2cdbe892392e6fdb1341b1Virustotal results 29.31%Heodo
2019-02-12eFile_2019021204607.docdoc d023efd7eb4b52a51534b2191c9953068b1fad7348cfe6320d0353b092195fb0Virustotal results 25.00%Heodo
2019-02-12eFILE_201902127685405.docdoc 44f2ac599629b24bb197392a9795fd1aeb4d0a57d2b9b9e52f44d9a5d757d166Virustotal results 25.00%Heodo
2019-02-12eBill_02122019000698.docdoc cbe11c5f44d374df8f9f671b4668d23a0405da91a7b1215d30e288fc26c6dc07Virustotal results 25.00%Heodo
2019-02-12eFile_2019021201483.docdoc 7d778c558b2ffa03b9961ea87926ee8f2d596b42a007db27a434f46c62ba65ffVirustotal results 27.27%Heodo
2019-02-12eBill_02_12_199905098.docdoc 10b21a4e9c2b68e82bad16cc714b0299959fde08793c94cf82bc77056d105676Virustotal results 26.79%Heodo
2019-02-12eFile_02_12_19398584.docdoc 10522785e03660974f9f3602f8ffe26779141f19d41dfc3800e3c016bf53506aVirustotal results 23.64%
2019-02-12eform_021220191488899.docdoc 8d4c196e67842e55c560f75097d0dee39e0e9cd4d86ab5d9770e794ac94c2b71Virustotal results 26.79%Heodo
2019-02-12eBILL_021220198103184.docdoc ddb82646c9711b8be140448a2dabbd17affd57a2fe066a21d160a3638eddaf65Virustotal results 29.63%Heodo
2019-02-12eFORM_021220191068516.docdoc 50064c2b9346c1733dcfee5c8e27d9b62d2b17e1fe2d31f6e6b07635166aba85n/a
2019-02-12eBill_021220192733571.docdoc 3440a1a84cd06de89e87040a67b01df861985be6d3a77f9795ce1807710a8431Virustotal results 28.57%Heodo
2019-02-12eFILE_021220192380.docdoc a8229ad9e1fc18a7b1b9e0757c3bb6e4cf590d639e822b7d8396053927cdb7c2Virustotal results 25.86%Heodo
2019-02-12eFILE_2019021250233.docdoc 0f797863d71c2450f46d5b1c9114d1f965162c078a4a3616e72d1cd0dd7a6418n/aHeodo
2019-02-12eform_021220194959115.docdoc 66d7af4267bc90acb817100358bea433d9c2ac041e04ca86fc7fd292ebdd1a8aVirustotal results 25.86%
2019-02-12eFile_02122019104769.docdoc 1f5f96828408d84e96aaf070c8923fa3dd868a2a7e0696d932be9512ab6259adVirustotal results 26.79%Heodo
2019-02-12eFILE_201902126654.docdoc a0a025ecd8933977f60586310ef0424abbe3411f184e6dbf7da14227b2a40c96n/aHeodo
2019-02-12eBill_201902122557.docdoc 872e1bdbf5efcd65c8280f1c916940efe191d41b65e71613b9c4417ef333cea1Virustotal results 27.27%Heodo
2019-02-12eFILE_02_12_191801.docdoc 5cc0b4d23a9bdbebba55e03f3c132d6f0ecb64f43cdb1a066bf544f4368a7efbVirustotal results 27.78%Heodo
2019-02-12eFORM_021220190741.docdoc 1a6e50247910449b0a02c6983682ca67c7262e4293c447d1c0f9fd4912176e2fVirustotal results 26.79%Heodo
2019-02-12eFILE_02_12_19068771.docdoc 2b0e3ebf6a1a31c2649c81f3357d63ffe4b85ff6afa01eb696f80ff69f8f188dVirustotal results 26.79%Heodo
2019-02-12eBill_20190212046741.docdoc d5100b839cd2beeb9da35efe8092cad06829cde92565b51432a331c6a7153ff0Virustotal results 26.32%Heodo
2019-02-11eINVOICE_0212201912527.docdoc bf955effdc5f182cbaeab37fb2b3632bc31af648a13a554df1e342486d431126n/aHeodo
2019-02-11eFile_02_12_193426748.docdoc ce66eb4a3aaefd514d9ea842f41c1162a686cbd141fc6fa7078476fa58378f9bVirustotal results 25.00%Heodo
2019-02-11eInvoice_0212201906291.docdoc 25f4e1372cbec634c012d01b481d90f7c6ac71ba6c931318e7e6f6975c155eb6Virustotal results 27.27%Heodo
2019-02-11eform_201902121493.docdoc 9ea05b312e68099c4adf672f151b4c7a1a97017ddb5762b165c873dd2789a099Virustotal results 28.57%Heodo
2019-02-11eBill_02_12_1951231.docdoc e40f53407ccc5b46e6194a2a15730713622a728af927236621521812b304ecc0Virustotal results 28.07%Heodo
2019-02-11eFORM_201902120365050.docdoc d70f203edb13a412b0702067ec1b9e21d6584b91cf5293aa4cd4fe09abcd0abaVirustotal results 27.27%
2019-02-11eBILL_20190212887087.docdoc 66084fa20640d1c10567169d3a883e53cdaafb03872178295aad8da233fa8433Virustotal results 28.57%Heodo
2019-02-11eBill_021220196489.docdoc 1c41851b054e1cb9624145b270234bc27093bc438b0f16a91c499d251eaca155Virustotal results 26.32%Heodo
2019-02-11eBill_0211201908149.docdoc 1b6e879aaaf204422f5b32df37df00f9fb7debb4e68ba919552dac1445d7c761Virustotal results 26.79%Heodo
2019-02-11eInvoice_021120191366145.docdoc 0cf3c2fab123fd2daf1c7feb361f61c89ef9f50e687c101046286cf773df30faVirustotal results 26.32%Heodo
2019-02-11eInvoice_021120191475252.docdoc 26acf6a0d47b5f7011a5b00afc4ecdfec3ad070f30b1b5d3dc404486d1e89a77n/aHeodo