URLhaus Database

You are currently viewing the URLhaus database entry for http://app.websoham.com/trust.accounts.send.net/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:124672
URL:http://app.websoham.com/trust.accounts.send.net/
URL Status:Offline
Host:app.websoham.com
Date added:2019-02-14 19:55:11 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-14 19:56:14 UTC to abuse{at}digitalocean[dot]com)
Takedown time:5 hours, 3 minutes Good
Tags:doc emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-15eFILE_201902158508.docdocc96c7ac1102b8ccbd02f7bb51c768da7e09e33830096718d2b33796e2cd9de7bVirustotal results 11 / 57 (19.30)
2019-02-15eBill_0215201947107.docdocc8722f847d62be9287029d2f54c8e86893502c3505665f9d5533c6d1298451bfVirustotal results 11 / 58 (18.97)Heodo
2019-02-15eBILL_021520196169.docdocad1bff7ab5748a521d54db010e86dcf65d3fb23eed378927697fa4ee342ded98Virustotal results 11 / 57 (19.30)Heodo
2019-02-14eFORM_02_15_19546243.docdoc97cab237d957c57b19ef70d5ab7e2aa5d2487cf58ebd839b50e54c3edf8c6a9dVirustotal results 10 / 56 (17.86)Heodo
2019-02-14eFile_02_15_19510883.docdoc91fe305a78b5c88f6f181f3a64fa7098ee36e2e166861d505b26079b6ebeaafan/a
2019-02-14eFile_201902155605.docdoc948e256c53e10b93c327b45efe8629b3f3612cb0605a782293e26d36b1950d64n/aHeodo
2019-02-14eFILE_02_15_19048451.docdoc7e432eaccc7fee2b8ab0d7bfbed20b4d3b4e519e3b325d62d14df283e2e83eben/aHeodo
2019-02-14eINVOICE_021520196976580.docdocb0d4b233aea13f0cf2e48f64ecdc6504478090bfa5414cfa1a1ce8739c20d4d2n/aHeodo
2019-02-14eFILE_021520197372151.docdocfdc58287932afb134d3fccb474c00fb6c5f5b71b6876f3a4171ebdfeb7737eb8Virustotal results 10 / 54 (18.52)Heodo
2019-02-14eFile_02_15_19297224.docdoc2b1229359899970d360bf063f96918306d07c7dd6e1d5d248f24c6ec36b55897Virustotal results 10 / 58 (17.24)Heodo
2019-02-14eform_201902157860.docdoc46ecd52135b2b3f160cb28a9054916cc6d372ebde3700fe434666825877bf670Virustotal results 10 / 55 (18.18)Heodo
2019-02-14eInvoice_02_15_193199635.docdocb566280cea6f3390751f2799ef2a07fd2a5ae7b94affd01f5b344e65a9d5e663Virustotal results 10 / 54 (18.52)Heodo
2019-02-14eBill_02_14_191498503.docdocd084730c3222a57b4ca69af66213b15fc808df800fcef09536125f2b8bbb3bfcVirustotal results 10 / 56 (17.86)Heodo