URLhaus Database

You are currently viewing the URLhaus database entry for http://hgrmsf.com.ng/Telekom/RechnungOnline/012019/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:122410
URL: http://hgrmsf.com.ng/Telekom/RechnungOnline/012019/
URL Status:Offline
Host: hgrmsf.com.ng
Date added:2019-02-12 11:58:05 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Status unknown
AdGuard :Not blocked
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-12 12:00:05 UTC to abuse{at}tfnetonline[dot]com)
Takedown time:1 day, 3 hours, 34 minutes Poor (down since 2019-02-13 15:34:47 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-132019_01_rechnung.docdoc b2b2934c98c2c1b218cf95d9feb0a071a4a7b507db0cf58576b9d2a86c23188fVirustotal results 21.43%Heodo
2019-02-13JAN2019rechnung.docdoc fbe47ae3f19c47b0491937eae4a5e1a7f3d9045eee380ccaae2dc5ee6d009663Virustotal results 17.24%Heodo
2019-02-13JAN2019rechnung.docdoc adf4a20c7d15365bb9ab64eba58030602afb74ba8e191326a9250aef4fcd9eebVirustotal results 16.07%Heodo
2019-02-132019_01_rechnung.docdoc 762010819aac35827bd1a7c75b41cdcbe005b0930bd382f44b95a716fc3abb03Virustotal results 14.29%Heodo
2019-02-13JAN2019_rechnung.docdoc 6752d12b102e5a4d1659d124985edac7cca933abff7deee38e0902e21353718eVirustotal results 18.52%Heodo
2019-02-13rechnung_01_2019.docdoc 00f03991dafaaae758848789831086c742aa81845ee5fb19a83ecabd1c414159Virustotal results 15.52%
2019-02-13JAN2019_rechnung.docdoc b72540e462c1c4fa30f17c1c31003d63e1d772435f20cec49e17c01587b39106Virustotal results 18.97%Heodo
2019-02-13rechnung_01_2019.docdoc e3192d0ad18c7bfd98e879c8a40afb3496835792aeedf6032572072f278967c7Virustotal results 15.79%Heodo
2019-02-13rechnung_01_2019.docdoc cfe381fcbb5c0d45a7f40822df5d5967cab21cc454387f9469a7bba8c503aa4aVirustotal results 18.18%Heodo
2019-02-13rechnung_01_2019.docdoc 7ab45f42eda01aba9f541e2c9f5c0b05f5941ee594fbd040145256adf7bf2e82Virustotal results 18.52%Heodo
2019-02-13JAN2019rechnung.docdoc cac96efc1e664c5e4b613a9ed50b0420ba4b7b934c2be982825c3e7203dd6b16Virustotal results 18.18%
2019-02-13JAN2019rechnung.docdoc 93d5b37c299fa4d7a59a35598a41240c92e7e4e7c241e7a4c84abb48d71c3efdVirustotal results 16.36%Heodo
2019-02-13rechnung_01_2019.docdoc 5142bec748ae56c16cc76f6d6480b17b93de5b2278e85b32be8d56032e51330fVirustotal results 17.65%Heodo
2019-02-13JAN2019rechnung.docdoc c7c93c7d3d849010ad878a938d2b2adc9e8c9b5ec8fa3a9e2f96a733a6b00f44Virustotal results 16.67%Heodo
2019-02-132019JAN_rechnung.docdoc 72c87c8eb43ed965400e91aa64820f564ea8756ab7744fd415261ed8d064ce37Virustotal results 14.04%Heodo
2019-02-13JAN2019rechnung.docdoc daebac726cb32acadc0768549242a41e6571532abd94cabc363fad589a9394d3Virustotal results 14.55%Heodo
2019-02-13JAN2019rechnung.docdoc 0d782eae48a64d70cf4a4c87db6d0d0f5410f894b0babeaf927352d4e2574029Virustotal results 35.09%Heodo
2019-02-132019JAN_rechnung.docdoc ab09084e5321b552445689d057851b4f551c58506dbced9576b1856aa0517c39n/a
2019-02-13rechnung.docdoc 6c1710a1a3c916f3bc8ca4eee0eab976c39fb0b24b520e8a4e9ca7e9106c84f5Virustotal results 33.93%Heodo
2019-02-13rechnung.docdoc d86dffa3c6861d289c115394cdcda950fa8ea88a50c6fd8c7f3f6b8720085c88n/a
2019-02-13rechnung_01_2019.docdoc 618dfc008bdb3a3382b14ac227b0fea281aaad41f3ebb38d6596bb37717843a6Virustotal results 36.36%Heodo
2019-02-132019JAN_rechnung.docdoc 4a3ade44ebed61b0b5c86ced8d1e85ea3ce21981a7f365a0d8d1c25c014e2ffan/aHeodo
2019-02-13JAN2019_rechnung.docdoc 4458ae6f0ddafefff59ae71480e104dbe486a205219695877e2652ce3865b933n/aHeodo
2019-02-13JAN2019_rechnung.docdoc f538ee8501fc30e1c4ae2fa514858952069c77db02f433c7211361c7de4a0342Virustotal results 33.33%
2019-02-13rechnung.docdoc 1f80bc1a597f55db4ecbf15b6485381153514e782469db4b9e64ddcc2f8badabVirustotal results 35.09%Heodo
2019-02-13rechnung.docdoc a05e4ab8c16c70515ea939a15cd9498e94cb939b600326d18937aa515e3fe8c2Virustotal results 33.33%Heodo
2019-02-13JAN2019_rechnung.docdoc 0e7f4733841d308e03be632e980133f37432ec209e5f755a6f2f4365153279fdVirustotal results 34.55%Heodo
2019-02-132019_01_rechnung.docdoc 76cd96db24625e3d9ae47f7618ac30591f6c15e7b4a3446d57c03f586737373cn/aHeodo
2019-02-13rechnung_01_2019.docdoc 3722e38dfc6445a03e843fad423a8f401c24465817c2c65c7150d459851f9e1en/a
2019-02-122019_01rechnung.docdoc 31269fda4663bc5f6bba68346a4d151ac496cede9f82b0efebc3337aeb4d459cVirustotal results 33.93%Heodo
2019-02-12rechnung.docdoc 6b90fbab01749462a83cc4dc452b96c77ca0b975acad0d81d8fee1720ca39d2bVirustotal results 32.14%Heodo
2019-02-122019JAN_rechnung.docdoc e9676a11a36d147aac2c5781a8270b45eca2f2509b2c95b2b668d4d1077dce2fVirustotal results 31.48%Heodo
2019-02-12JAN2019rechnung.docdoc e7fa0b77579a3dc649ebed6943d422820bb519ba316ba5261c07dadced0cd8c3Virustotal results 32.73%
2019-02-12rechnung.docdoc dd0ff448256f42d345e5c4c3fc6709f58edf50cef095a2aded59ed9524de4f45Virustotal results 32.14%Heodo
2019-02-12JAN2019rechnung.docdoc bb061c9e051fbebbcabdb7783bbd4b4cd64e750d3bf3c1d31c4cb94d77749985Virustotal results 32.14%Heodo
2019-02-12rechnung_01_2019.docdoc 30d6db8fedcca6feeb2ab6f64a2c0778e0bc3bc47d55f902cb0c047bd66480e3Virustotal results 29.63%Heodo
2019-02-12rechnung_01_2019.docdoc b602df8a91e19f796e824c41677601f52e31a3aeee07add3427300d6e0f3f35fn/aHeodo
2019-02-12JAN2019_rechnung.docdoc 0bd765d8980595f4618b5ffafbe9d4a607fd167cf91079aa4f207cf57d1bbb6dn/aHeodo
2019-02-12JAN2019rechnung.docdoc bc4d532da6fa3b8bee4c159e9e96a03b3e9800e938033ed6820076fbaa05603bVirustotal results 29.82%
2019-02-122019_01rechnung.docdoc 0c969d5ad8febbf86af5152a0913bc56bab3951f51d15b60726e42d2e3e0bdf5Virustotal results 29.63%Heodo
2019-02-122019_01rechnung.docdoc 5fcb69534f967d1724ceb8561472f07c1abd13cb98ea1c8d63009788c27170bfn/aHeodo
2019-02-122019_01_rechnung.docdoc 6e133fba8492978c68d2157f4eabc23643a0eef9d8dd2aa2a26e60d3ebf847efVirustotal results 29.09%
2019-02-122019_01_rechnung.docdoc 558f43491473de9a3b553cb99ecbc26f670d768f637291d3873029862f1bf79cVirustotal results 27.27%Heodo
2019-02-12rechnung_01_2019.docdoc d23c7abd3719769158d6a04f512bdae7273163e74c3e8e165a387842f3430353Virustotal results 27.27%Heodo
2019-02-122019JAN_rechnung.docdoc 01a5f6ecb789da2ffa5311b070f2daf717a22cb5e6334a43fb9aeec39d69b55cVirustotal results 25.45%
2019-02-122019JAN_rechnung.docdoc 938cfe59ca776ced6383df8ad9b496121a6b6183e4053af68a9c214141a82bc3Virustotal results 28.57%Heodo
2019-02-122019JAN_rechnung.docdoc cbe11c5f44d374df8f9f671b4668d23a0405da91a7b1215d30e288fc26c6dc07Virustotal results 25.00%Heodo
2019-02-122019_01_rechnung.docdoc 7d778c558b2ffa03b9961ea87926ee8f2d596b42a007db27a434f46c62ba65ffVirustotal results 27.27%Heodo
2019-02-12JAN2019rechnung.docdoc 10b21a4e9c2b68e82bad16cc714b0299959fde08793c94cf82bc77056d105676Virustotal results 26.79%Heodo
2019-02-12JAN2019rechnung.docdoc a2dfbc8d9597e7e1eab934a350435c5b1c4d4a1ba1d4571d9db77be823dd7231Virustotal results 25.00%
2019-02-122019JAN_rechnung.docdoc 8beec0df1710604330dccbe373a36caab18e68f67f2cdbe892392e6fdb1341b1Virustotal results 27.27%Heodo
2019-02-12rechnung_01_2019.docdoc ddb82646c9711b8be140448a2dabbd17affd57a2fe066a21d160a3638eddaf65Virustotal results 29.63%Heodo
2019-02-122019_01_rechnung.docdoc aac4fb4af39506baf7344bc47cb69d019a23fc01ac9e94a64a4e02a7748ef867Virustotal results 30.00%Heodo
2019-02-122019JAN_rechnung.docdoc 5ef28cad0d97b33411fc3af948722f6b08624af3acc068fe8a407947bd8c3b02Virustotal results 23.64%Heodo