URLhaus Database

You are currently viewing the URLhaus database entry for http://fisika.mipa.uns.ac.id/icopia/files/kidrh-wzdd4v-ziwxi.view/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	154950
URL:	http://fisika.mipa.uns.ac.id/icopia/files/kidrh-wzdd4v-ziwxi.view/
URL Status:	Offline
Host:	fisika.mipa.uns.ac.id
Date added:	2019-03-08 14:42:04 UTC
Last online:	2019-03-16 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-03-08 14:44:02 UTC to abuse{at}uns[dot]ac[dot]id)
Takedown time:	7 days, 22 hours, 49 minutes (down since 2019-03-16 13:33:27 UTC)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-03-10	US382504767948.doc	doc	34c5672ce5999e36e86b57f993d548afad5323c9848034d4bce93a5c2251c1d4	33.96%	Heodo
2019-03-10	INSTR96854104746133.doc	doc	d7da73c3986996a30d169820819bfa8dd69a7bee7c787f465b55fa8beae39f99	n/a	Heodo
2019-03-10	ACC04214108472670.doc	doc	5c79ca3b6537fce9529645f3226063780b790888e57bd7b3c9f66caf5f9fd652	n/a	Heodo
2019-03-10	4561491851.doc	doc	b8bb49b90fb27e884b306926587e6a338361d4c2c5ed28ff98f3c0cb589f5a1e	n/a	Heodo
2019-03-09	EZ44186192618723807.doc	doc	f230c108c5b7a911954bdec4ad017d51102a7cd0be2c97dea121c25c771cfa8d	n/a	Heodo
2019-03-09	US85284060630424229080.doc	doc	91e48234c6d92e6ac6476b22218ee81c27a3b5bc29869a60f652f7c283f17d7c	n/a	Heodo
2019-03-09	INSTR9272831933.doc	doc	155099328610d7a4dc8154ca04b4a5b468f238fcdf45c92e109ff0614ad4d990	n/a	Heodo
2019-03-09	US099521448872576600.doc	doc	1a2a77a406f95263efbe157d16aad1cb2fcda6ccc08a4f295d67c782a3a96956	n/a	Heodo
2019-03-09	ACC93263136709315396.doc	doc	5f52c07dd3445dedb8e5a33125573141391c732f59de0649ade9b55466f6d125	n/a	Heodo
2019-03-09	103022783.doc	doc	5f43d94fdf37b2a7a9f62507526f7b20337ba2ca85b3381d8ccdfb74e7557ee2	n/a	Heodo
2019-03-09	928090555059175.doc	doc	b32e52605499e96266866e6f61d42994ef915191dd756537f4a307d2d91a303a	n/a	Heodo
2019-03-09	US73191548799448.doc	doc	824d10ff8cca537feb8fe42bbedc3a1d7e1d4f87f054e8c184f266e6f46f5ed6	n/a	Heodo
2019-03-09	PAY274404722655594.doc	doc	b5463dce7673b2dae3cdb6bbec7e9f2fdffc495098586fecb8a4a523ee6c6938	n/a	Heodo
2019-03-09	INSTR20803304687289356203.doc	doc	6f5616d7df481fd073f34821b8e28ba6c34a4dd9b372d5dc09f470f450811201	n/a	Heodo
2019-03-09	5062525417301030.doc	doc	3a24a7c890d42e6abec4fc67564e44583ea1646d67d7193ce12c9f97fd609140	n/a	Heodo
2019-03-09	PAY66013678595.doc	doc	2a10a17eb043413bac94143cda9e67c4ad7ead28e2f7ae960601885a7430dc35	35.19%	Heodo
2019-03-09	PAY65995961934.doc	doc	8e61678378e40e0e8dca86021154b0e286405c16c7943e24238abad63f2cdfcb	n/a	Heodo
2019-03-09	INSTR90481162247.doc	doc	b81cda0569ded7dc459797baf1fad0e4450489f14316fc1c4f4484a8f00ef86b	n/a	Heodo
2019-03-09	N84886301255.doc	doc	6e46b17e22f93ad24a43e99ea649c0a3b4a3db0f6d9285b7b4e86f73e7afca55	37.50%	Heodo
2019-03-08	PAY927621161323352.doc	docx	da1b47eb285b4a7c79c91c9f33b6a4088b8b03c175bc900669211b9949fd8b35	19.35%
2019-03-08	766186366222010.doc	doc	6a0822d81f458e3086f53fa70904cdfb68c89c48c17470bd211765a2cd886149	28.30%	Heodo
2019-03-08	PAY743193758067580781.doc	doc	0a9c905a4e041543a9e0e3650b6881444495120aa72732785d74990f3518f0cc	27.78%	Heodo
2019-03-08	VWA08176892734943326.doc	doc	3800b8a255df8265c7912c2b8bdb09cfc191bd0b3e8cd9debc9c20d6c1b57070	26.79%	Heodo
2019-03-08	PAY8820951132169647.doc	doc	c212c359996c552bd2c5f90f928aabe2df145897bb86059ffa2845fddb4b7c01	25.93%	Heodo
2019-03-08	PAY55515620154035.doc	doc	1369a693f5cdc944f89a187b8030095b77dd07c93dcf6489a2519a41391cb2db	24.56%	Heodo
2019-03-08	08081876458082.doc	doc	dc6d15cd945e8cd7e8ac2c48f92f283c24c332efe41304964ecde111a31bada1	25.45%	Heodo
2019-03-08	DLKD9694190409.doc	doc	5c910f3e1b2c2767074476c4ccf62c3e62bd8e78c49b666583c16cb1ee42c0c7	25.93%	Heodo
2019-03-08	INSTR886624020359.doc	doc	a4fac8f814e04e5723081d4b35d818858a46fe1ca2e9620b415947fe73ed2d14	24.56%	Heodo
2019-03-08	US85563679990681892.doc	doc	4a13f66450484e652dff2c79c192ebb5ec2e8b1988edb8898fcc3a872bb284d0	22.22%	Heodo
2019-03-08	MN1193081370596.doc	doc	2f92ef85141c58056433f18636f6fc20bd374c447dd2f50486aea48881dbd612	n/a	Heodo
2019-03-08	UEGO99627320230733584025.doc	doc	e998068f7e10a188db7074668c6578296e9e6f39aac5cd482b0c153bb8cb4527	24.07%	Heodo