URLhaus Database

You are currently viewing the URLhaus database entry for http://germafrica.co.za/verif.myaccount.docs.net/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:166342
URL:http://germafrica.co.za/verif.myaccount.docs.net/
URL Status:Offline
Host:germafrica.co.za
Date added:2019-03-26 14:23:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2019-03-26 14:24:08 UTC to abuse{at}gridhost[dot]co[dot]za,abuse{at}webafrica[dot]co[dot]za,abuse{at}webafrica[dot]com)
Takedown time:2 hours, 38 minutes Good
Tags:doc emotet epoch1 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-03-26INVOICE_DOC_032019_B8_60-04_0177.docdoc1328d0eb80a0ba2bb7e2718af20554862827f393c0cdc6721c834f5dc4e55a58Virustotal results 14 / 60 (23.33)Heodo
2019-03-26invoice_number-032019_M5_5-39_Q573.docdocd60993b0ac532bfe2823458d95f8704396071229b913fdca18021ff6dfc3e67dVirustotal results 13 / 56 (23.21)Heodo
2019-03-26OPEN_INVOICE_03_2019_U6_6-25_V964.docdocef9fad01c71ba0eee99e2a19dd1af01ce5bb34e813b86499bc080e82b462d053Virustotal results 14 / 60 (23.33)Heodo
2019-03-26last_invoice-I8_77-51_8453.docdocf65646ecbf84d1cf0c037bfe7b95aced71184d65979ca58fbbe4f50dc94a5c26Virustotal results 13 / 57 (22.81)Heodo
2019-03-26invoice_number-201903_V1_2-66_R0844.docdocc5982d921bcbe5a14d7760da871f02345da4946a0384fdc6c74655d6edfb64e0Virustotal results 14 / 58 (24.14)Heodo
2019-03-2603_2019_X8_2-04_2746.docdoc4caee991d51aaa8af2dd9752e7e231e27484619886726c3154bb7a9134463cfeVirustotal results 14 / 60 (23.33)Heodo
2019-03-26last_invoice-L6_68-39_K0843.docdocb6f5ff4f3baed690e3b5d8c15744fde57f5c0908a8ca85905ee2771207a0db7bVirustotal results 13 / 57 (22.81)Heodo