URLhaus Database

You are currently viewing the URLhaus database entry for http://kmgusa.net/a2test.com/nnfe-t5fhmf4-bqvygs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	166595
URL:	http://kmgusa.net/a2test.com/nnfe-t5fhmf4-bqvygs/
URL Status:	Offline
Host:	kmgusa.net
Date added:	2019-03-26 19:23:04 UTC
Last online:	2019-05-14 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-03-26 19:24:03 UTC to abuse{at}a2hosting[dot]com)
Takedown time:	1 month, 18 days, 22 hours, 29 minutes (down since 2019-05-14 17:53:23 UTC)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-04-07	US396057526.doc	doc	513d7f6887048590c684bf3220b8c65529a29d51c505a9e2c7310f79fd352b55	n/a
2019-03-28	US396057526.doc	doc	180da596041ae834c159756ad0f84c97f0ed63cd08abc7cdafad1d1bc83caf7e	20.37%	Heodo
2019-03-28	5983305549.doc	doc	24ecfe71f85e9c8d734e8438171c62e5982fa9962e28600f2dea828b91d510b8	19.64%	Heodo
2019-03-28	PAY33725560497.doc	doc	c6483d11cbc8b37ebdb393c4c01b38ca9354a09e9214a713e2354cfbc7728672	20.00%	Heodo
2019-03-28	782808379811.doc	doc	e9b57e2b29288ee0c219029141219b9064d8021aecf255cc9ea41198486daa55	19.67%	Heodo
2019-03-28	INSTR959870788150.doc	doc	ad5faaa82a6caef20722faf6fd1efd2d441b0e8362210d6e57af6ed666b62769	21.43%	Heodo
2019-03-28	US0663882211.doc	doc	7d805fd6032eb14134efe16f128638bb6ea296911ad55fac6340ace72707f251	20.00%	Heodo
2019-03-28	US373760966818994.doc	doc	1da44ccc2eb250ca1283e6b12e92d326169112ae88c9b1b9800fa1868257628e	20.00%	Heodo
2019-03-28	PAY12931919477151763104.doc	doc	084d0997def7560fa87cb31751f21177cc3d0efc904a4901472b2cdb5225ee5c	20.34%	Heodo
2019-03-28	INSTR53551225563849017945.doc	doc	0bb5157cef6593c7290de8585fc9de492de2470c795b0d8afe3806acd00c2ed7	18.33%	Heodo
2019-03-28	7091608981.doc	doc	8c035280c25dec508bf9277742c6fb7c72649926c97c7e96022fd8508268595b	n/a	Heodo
2019-03-28	INSTR405065034518109.doc	doc	008f2a0efce06621289f7cd198cd16346ebe6f356cf64c05f33b037e06a3599c	n/a
2019-03-28	36169429163.doc	doc	aa989df7be7600a2b97183ac53f92a84869b30f00194904a10014995b57ab96c	19.30%	Heodo
2019-03-28	US49433268200964.doc	doc	0b2865d4fa1698a720768ce6ca2d9042bb81d71b0518a063a94b302924ef5903	20.69%	Heodo
2019-03-28	ACC8765811827.doc	doc	317a746f7feff930bd6946c5d741d513303a03d4ab17d5bff017339a23a8014b	19.30%	Heodo
2019-03-28	U012265341077.doc	doc	edc146112180155f75d4c47734bd5a6e552481df6e7b9307c939157365c2af73	24.14%	Heodo
2019-03-28	PAY3008316737942320415.doc	doc	9a86d9a82a87e2510fe2814eb2afa2c3af8c73077ebbaa6b785f23148e4901a4	n/a	Heodo
2019-03-28	10831766989.doc	doc	c73b153ac9cf42cc3fada057a60486d5d9c55934621f5808ae659702c8f179c0	n/a	Heodo
2019-03-28	T17666439889542929.doc	doc	bb2dc219be6d801ddb792e8223c5b1a466c3479fd45fab43d5c93c4aa62aa486	19.30%	Heodo
2019-03-28	PAY33455619175433260957.doc	doc	939fd6d752669eeeb3bf135cf1a64fc38fb3ae650b85f1fe3fa471100bb28981	n/a	Heodo
2019-03-28	INSTR9381173597.doc	doc	f8209146b3ba58be520594e795a4207eb5e76282b9f9b4722e6dc3d18fc1d4c7	18.97%	Heodo
2019-03-28	US840014452797440334.doc	doc	6d8d966985206b4f06bad79e5bc13d92f0253ebaf7ec9bd60df7c0cf06589737	18.64%	Heodo
2019-03-28	XO7945050960.doc	doc	7bed206561fb6dbbf6dc4240564ab7f9b222836b67b1fea0ac06f5a6dba3f324	n/a	Heodo
2019-03-28	PAY556716489251030391.doc	doc	734d527ffa979b6019c9ac4a16bf3834739816d2ed3efd8154fbedd66be450a4	18.33%	Heodo
2019-03-28	060658261674.doc	doc	275dbd2896f35d2477ea2bca9881bd2fcdbba39dc8d05175d71ea26907fd6f9e	17.24%	Heodo
2019-03-28	US323432106117882.doc	doc	3f4af62e65ef4eed255a1cfdd1a2bcd54ce49e3f7b80997ccf1184e0191b697b	16.07%	Heodo
2019-03-28	RRZ522468821.doc	doc	e2cde60cb978cc510404c35e2e306f1e8f4e0ad1d4198da2d15e4a7e10956f8c	18.33%	Heodo
2019-03-27	ACC723301588.doc	doc	da9b474c898d6b3d73e5c919ffde598042d50c3774542573a2f48557dba224db	n/a	Heodo
2019-03-27	G89686967407.doc	doc	a4b35a58d9a362a4d22bf6e45d5b30e1a367c2aed5539a2be6f08a0fc8328589	24.56%	Heodo
2019-03-27	INSTR567399972610316.doc	doc	6c7d91a25b74683d94d841127ff8cf2808ce9dd1253b7a3602f158b999c16297	n/a	Heodo
2019-03-27	INSTR2420406582766176804.doc	doc	39cc5bf7428158520f313b274da475d8125b3c1b8e1780afef39c9a3a3a2bb49	n/a	Heodo
2019-03-27	US07133875613149761.doc	doc	e9bdad70bbd4f75b287b084cd7d5615986dfd649cb3e74d227b29348a3ee3b87	n/a	Heodo
2019-03-27	PAY7819736891512.doc	doc	f34ca3af8784ed925cbbfc18c18d1ad85ede2cff83d85014dae893d94e5a1bb3	n/a	Heodo
2019-03-27	4160149148164537.doc	doc	8f480275a3582f8fcd2f48d3105e59b37d31150db8c744f29f5a390e75d83f97	24.56%	Heodo
2019-03-27	US7995522169388.doc	doc	173bfd2764afe967ce41bd1b4847bc2d92fc71e1b371faffbb28b4b87dbb3fe6	n/a	Heodo
2019-03-27	INSTR703907291.doc	doc	834e6307622e113627ae08c4ec345c5d43c7425c83c8519b8701160da4f1e2e0	23.73%	Heodo
2019-03-27	INSTR2268615898156925263.doc	doc	a08814604305d02882a31663ce7e8bcffc1478709099804af145475e68f0fa64	23.33%
2019-03-27	KYS5022636839177951382.doc	doc	5cff126934d300f7bc14beb17e4a9c824b0873d198c5474f2e9f5d5a4d5e1988	n/a	Heodo
2019-03-27	DQZT40723977621015.doc	doc	f8393adb053159ae3a38f52735431dfb8f56634e6c06e5df35496969f11a820a	21.05%	Heodo
2019-03-27	ACC8848034947.doc	doc	8c5ba7c69e919d6e52f069ba8c2990ae94c6c2251b1676cb6037bcccf3843dca	23.33%	Heodo
2019-03-27	INSTR84202908328435.doc	doc	70a5fe899f945fe2ed3235edfd50ea2f213e873136a4b3be1cb3e7712df63a41	22.41%	Heodo
2019-03-27	ACC4837803883483319.doc	doc	409afa3d0959c8ae11f48ea63d04dd3b93bfe6fefecaa7e1f6c375b005b4392f	20.69%	Heodo
2019-03-27	H7350228718661424655.doc	doc	3ac20c785773ee12498bf3d4a26f4595b16b5d3eb825a033cc6397123c92a78e	22.41%	Heodo
2019-03-27	5516444134.doc	doc	8622ad306bdb71845e69086858cb7bee044585ccf0a478d0610b1b04a192459d	22.81%	Heodo
2019-03-27	ACC677332927814469184.doc	doc	32a002db37bf228240a73f917438ce30995536a1b6b5cd3321df35fb1ca29dd4	20.00%	Heodo
2019-03-27	ACC7253972416841.doc	doc	59838d3e05415150dc2df373f0ed8c94e1d5c1591c1a3bb6bca5a37fe40f410c	22.95%	Heodo
2019-03-27	KY73243473160.doc	doc	4ddcbb982ec8e77b7c7591a63862b36d0c86083e5e3e02aff4af29d96e33b572	23.33%	Heodo
2019-03-27	PAY163852593538.doc	doc	932d57231e1771cb31bfd6a8d9356c7475bcaa972a0f5931c309e89a1151ddd8	21.31%	Heodo
2019-03-27	CLKWB1747790204912759627.doc	doc	29db2e4d1467c8d88f00c8a642a46ec4615d0e9aaf7c084bb95a08176cf08bff	n/a	Heodo
2019-03-27	US44744897819196354.doc	doc	56340a19f364dc8479c7df8832b048631a40f972fc59e808f9caf9388ec66de9	n/a	Heodo
2019-03-27	US305512502306779.doc	doc	95b41f6033830d2e261e92ccb6e77e397d9b2ec1fdd2e3339de32a54cb709e18	20.69%	Heodo
2019-03-27	US352595528.doc	doc	7761c5b2ddabd554f743addff9012f1644c05fb82b400e19db67d38328257dbb	n/a	Heodo
2019-03-27	US03361873425532.doc	doc	daeb3f56f2f4f68599259442e057425899e5d922d5900cc3f0386cb3d4d7359e	n/a	Heodo
2019-03-27	GBWUK7430065340205793.doc	doc	1ce61864f0f234ed316999c07f5cfe62499d8cc491dfe81dad2dbf3edb9f2de5	22.41%	Heodo
2019-03-27	INSTR7398180786020203927.doc	doc	808690689d3fbd8316a0db64ff30528395d16b6c15a5a9d70e50beb7fb0d4d83	22.03%	Heodo
2019-03-27	ACC38253815686357638314.doc	doc	4b44b4e87d19bd31b4652f8fd4eb2dae69dd6953f604fdcd701c8d90cbc4fdf4	n/a	Heodo
2019-03-27	INSTR3284076059418.doc	doc	3e024c72c8f0e292eba530a2a79aeb980ceaf3ea38e8d24a5070864bb59f46c8	n/a	Heodo
2019-03-27	RVKA9640881401.doc	doc	05ba0aebd711d60db39935955f8efdb182571627966a6e129e537223577fb63c	21.31%	Heodo
2019-03-27	INSTR430944486709.doc	doc	ddedef8f21bcd53ebc496e306599f0b5f0ec33edc3588dfaf1ac87ca9ebddbb3	21.67%	Heodo
2019-03-27	INSTR2963965374652.doc	doc	7bf68152579d01ba99862b61a91689e3507d8ee94024c729dda3e40635e3d671	n/a	Heodo
2019-03-27	LI09158808136216570555.doc	doc	46946372c81802503f01b6d9739fd4dd9fe39225973c8b9c22ef625666d48deb	37.70%	Heodo
2019-03-27	INSTR02085964686993336510.doc	doc	e51f057ce172ee70159a9fc7bc8521e6f6197831d054b8dc445e7f8ce0989d5a	37.50%	Heodo
2019-03-27	QPQ5558646460893457.doc	doc	6026ab30130b1065ac3d1bbd68b0d3eb29e79390ebd55e4d5c8e55313abfafc0	39.34%	Heodo
2019-03-27	INSTR7199659646635022.doc	doc	7718b1b4a6fcb490c5e5912dd0155a450de8a86586209b56695a1d77ca21425e	37.93%	Heodo
2019-03-27	ACC83292670680.doc	doc	7694d9fb1e7fe87f76527ae391e7b01fa017b7f27b42c9b92b889e03743917a9	35.59%	Heodo
2019-03-27	PAY7929909977.doc	doc	4f910d9c86a9f647fc2c9ee8018925b2c7bc974cab6331e252d5d17485ec1e06	37.93%	Heodo
2019-03-27	PAY4264565676759.doc	doc	4a2de059b24cde110ce822adef190218a365e9b41f0a96b06d5e45e6642faa23	n/a	Heodo
2019-03-26	UREO457079469084919877.doc	doc	6dc961267d310273be9c3755f9ddb21914619fa0b78a47f5a22594284a0e39cf	37.93%	Heodo
2019-03-26	7001683419560808839.doc	doc	3ce066794ab4c20945fec02a742d62964f0439eb067abb7144df55770e2b3fe3	37.29%	Heodo
2019-03-26	INSTR70327398233645160921.doc	doc	00792cc131f75e7f87f2c033780021fbec3eb2092d8bb7e6e9cf0ce9269eeef9	37.70%	Heodo
2019-03-26	INSTR5690071162.doc	doc	78ad7fface477d0c80f8e451aaed8f325ea725dceb195d522daccfe1b8a5ec98	35.09%	Heodo
2019-03-26	ACC5261074969421659.doc	doc	cbf9cd66ccb6e969c0ad9878fd01a8122c73c7af7bac9a4518d9e26a38260e6a	35.59%	Heodo
2019-03-26	PAY18211907103441870264.doc	doc	48d5c64139acde1dc8c38574f629fde4d28d4ce056062897672e0b7fb825712a	32.79%	Heodo
2019-03-26	INSTR14545073549252.doc	doc	f2a3fb74265fe14d74cdcfcbc96e59b58037e4de0a288a0253be7bf593359fe2	35.59%	Heodo
2019-03-26	WI008057458979558235.doc	doc	1e2d2671557feebad52345615fab7e476650a584dc9117be0f401bb441f08f8c	29.31%	Heodo
2019-03-26	945149743449812352.doc	doc	6551d4b043e9a9d4c95724fbbd9ee838bdce591dc23603e9c7438cb28cfbe77e	27.12%	Heodo
2019-03-26	H5681144167092.doc	doc	9d638e393cf9c49ee287c8580b501b52b0db09aa60e03668d04c25f608d70a9c	26.67%	Heodo
2019-03-26	INSTR3106621154150600066.doc	doc	b7dc25eb170e014aa6332e47b981374360c7c96a3f887493d7b606d9fa5748c4	26.79%	Heodo
2019-03-26	651461537.doc	doc	6437e54cce2c515d0b802937715868468c6fd8fb41f56dde47952d676173a10b	26.67%	Heodo