URLhaus Database

You are currently viewing the URLhaus database entry for http://lar.biz/sendincsec/service/verif/en_EN/022019/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:148215
URL:http://lar.biz/sendincsec/service/verif/en_EN/022019/
URL Status:Offline
Host:lar.biz
Date added:2019-02-27 00:11:24 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-02-27 00:12:11 UTC to noc{at}west263[dot]com)
Takedown time:13 hours, 59 minutes Good
Tags:doc emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-27Secure_Email_file_0985123243.docdocx1bb948ea6a642404c81eff109bd3bf4de8d17371bd084d3636e5638345cc5020Virustotal results 9 / 58 (15.52)
2019-02-27Enc_message_90026692.docdocxb99528c00d6ac14bf99ade801638f8deb78ba5c610ead5ca6ac68a69f95547bcVirustotal results 9 / 60 (15.00)
2019-02-27Enc_message_86693579.docdocaca06c8f7084de9ab72d8a361d327f4795a70e26296f196a5638fc6bb0641401Virustotal results 20 / 54 (37.04)Heodo
2019-02-27Secure_message_35367407.docdocd6fba7cc6d1bf18162b4f93ae9edf531ac5e7c4a94f5ec2b66d2132fd6a3497dn/aHeodo
2019-02-27Secure_message_7775211016.docdoc852f31e672b297f2cda4a45b1be84db54f35f90a1fcd86acda0a727e7a6a679cn/aHeodo
2019-02-27Encrypted_message_69372412.docdoc4eb3ef8eb656b01bdc72e086d3f29ae3b9a2b0de38e350f764f408b3675b6bb5Virustotal results 21 / 54 (38.89)Heodo
2019-02-27Secure_message_6417352922.docdoc38fa382996c415286f4d6dd5eef8a91120b190cce21b4805f0ca98f2d842ae17n/aHeodo
2019-02-27Secure_Email_file_343698929.docdocb033b23434817a743849e2a2d060ed9cb0532220f533e5cf55360722b6ea17e0Virustotal results 19 / 56 (33.93)Heodo
2019-02-27Secure_Email_file_235861620.docdocb66a1fdd95b1100a673947c3d858ac69fb5cc46fa72ba89a44222a9894c6c8acn/aHeodo
2019-02-27Secure_message_6880147535.docdocfe83c159702930a78c43ff4befa164b315140c93b717d2a987742b7f9b56fb69n/aHeodo