URLhaus Database

You are currently viewing the URLhaus database entry for http://afshari.yazdvip.ir/sec.myacc.resourses.biz/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:123992
URL:http://afshari.yazdvip.ir/sec.myacc.resourses.biz/
URL Status:Offline
Host:afshari.yazdvip.ir
Date added:2019-02-14 00:39:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-14 00:40:03 UTC to abuse{at}fanava[dot]net)
Takedown time:14 hours, 17 minutes Good
Tags:doc emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-14eINVOICE_02142019670845.docdoc8250405e2ca68fae6fba77a461b9d7f786a2a6ab1984337050e02b788806500cn/a
2019-02-14eFORM_02_14_19207276.docdoc5036fcb8efabc8a863e9828107c22cdde2fbaee8b94545f2e793a8bdd7331272Virustotal results 11 / 55 (20.00)Heodo
2019-02-14eBILL_0214201963966.docdoc51557a206fd8ce2a055c9fdb69e9111a976332e3a5f6dda32a8a2d2afa21602dVirustotal results 11 / 54 (20.37)Heodo
2019-02-14eform_0214201959388.docdoc1699ca85191a06d203b19364a067e1f96448ae391dba79fb82ffb7bdbba5b600Virustotal results 11 / 54 (20.37)Heodo
2019-02-14eInvoice_02_14_196326797.docdoc05d36e396f86fd51b882535d427d042f7475c9aeeb2d54536aa90789b3515019Virustotal results 11 / 56 (19.64)Heodo
2019-02-14eBill_02_14_194746205.docdocadb2c71003bea01e720d6237f14058785bf3721f138d4f401a6c5a46c43eb915n/a
2019-02-14eFILE_2019021439975.docdoc4bbed3da07f3358edc62ff2a5eac94d706a98dcbb0bd2c93a56830ec9c37b7c3n/aHeodo
2019-02-14eINVOICE_02_14_19479684.docdocfb2fddb42d09abd2cdaf2ff7d67c2cf676e78b294fe0d7225d19e96c496b7fdcn/a
2019-02-14eINVOICE_2019021469997.docdocc58e7b8696794c6d5f1dd3745225d93fade8d584c4ad620296d4a37b7f0d30afVirustotal results 9 / 47 (19.15)
2019-02-14eBILL_02_14_190478.docdoc2b8afbe2f7d8f7fcfa9e9e083c17de1ec69a518ec96c7b13644186873f8b33c5Virustotal results 11 / 54 (20.37)Heodo
2019-02-14eBill_20190214937714.docdoc5612cc8011008c94c844894231edac2fa1513d2dc53c053e63d1a31ffd25b36fVirustotal results 11 / 57 (19.30)Heodo
2019-02-14eform_0214201901517.docdoc445b280bc2685430bdf3f9e6996c83b36d5b37921db1d8a56ba5f34999de0409Virustotal results 11 / 57 (19.30)Heodo
2019-02-14eform_0214201990267.docdoc1ffee6ebb026a98cfe0ba910f228c562a7d93807c5b1c76c4651af578f9bddf5n/aHeodo
2019-02-14eINVOICE_02_14_19498684.docdocb9c00ae1710ce68e605c52790689b1fc5c46a2069c795bedffbe50a38f532011Virustotal results 10 / 55 (18.18)Heodo
2019-02-14eInvoice_02_14_196891.docdoc90a497b432bc14ae7ac9016f868a72ac74ac4d31a2b4619ca2be1f5d1f2d6950Virustotal results 18 / 55 (32.73)
2019-02-14eFile_02_14_1982877.docdocb7e66cf6b9746084770347e1766e227e536a88892530d6f8db193a485e681bf3n/aHeodo
2019-02-14eform_021420191197.docdoc44af4973b88c3d9fdb128c5338e528698ff6bc5578fe8d5f51a3767c919020e7Virustotal results 18 / 55 (32.73)Heodo
2019-02-14eFORM_0214201915727.docdoc8aafae60bcbdbdbdf877093104370bcf096a650c308fbb38828eccac6ee0a795n/aHeodo
2019-02-14eFORM_20190214223680.docdoc24accce394df4d28c0b496cacbcb0245e52c3401fccfaf14fb0ac8cf65a08ca4Virustotal results 17 / 55 (30.91)Heodo
2019-02-14eform_021420194168.docdoc10aa53666e6b7b7535f5312e4a560134d7cca9926869dd49646c5105fd1a046fVirustotal results 17 / 54 (31.48)
2019-02-14eInvoice_201902142625589.docdocf596bdd66454e9d2f00391920394679dacc80ec65d77e5cacfb01f73b3fafb8dVirustotal results 18 / 56 (32.14)Heodo
2019-02-14eINVOICE_2019021403721.docdoccebe799eb13204e363f9d18a0be2885e4668ca32ffbe1bcbe0d6071ddc5fe541n/a
2019-02-14eform_2019021422053.docdoc02733ad79a16b0fb62e4dfe438aaf227d6a456fe60445aa595cad125d72c9294Virustotal results 15 / 57 (26.32)Heodo
2019-02-14eFORM_021420199591.docdoc4941777a3a7e4899df063ba472ea528865537ce43178b5db6aed072e61bc500cn/aHeodo
2019-02-14eBill_02_14_19616085.docdoc21efd9ba28b1813c2703fc87c58e1aec248d98417bcd25f6eef30321794d55fdn/aHeodo
2019-02-14eBill_201902146505540.docdoc9e59bde0e624352a96df24f41cf11136837b60e61c4a954bc2d41784c1710e77n/aHeodo
2019-02-14eFORM_0214201995814.docdocc131a04ef143915bef40c4816d7c065d86f15e1e00b15f26500895151f466fedn/aHeodo
2019-02-14eFile_021420198415.docdoc646a4bfb639145a8babab15ee88b8ff1744e68dbbc59f9085d4e2321171873deVirustotal results 15 / 56 (26.79)Heodo