URLhaus Database

You are currently viewing the URLhaus database entry for http://yjsys.co.kr/wp-includes/1ju5-o1rqwjj-zkwa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	178281
URL:	http://yjsys.co.kr/wp-includes/1ju5-o1rqwjj-zkwa/
URL Status:	Offline
Host:	yjsys.co.kr
Date added:	2019-04-16 03:42:06 UTC
Last online:	2019-04-18 05:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-04-16 03:44:02 UTC to hostmaster{at}nic[dot]or[dot]kr)
Takedown time:	2 days, 1 hours, 48 minutes (down since 2019-04-18 05:32:49 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-04-18	31589353059DE_April_18_2019.zip	zip	4c44fcdcf4982c4e7836df7b3dd07da667c8330d42eb221bb7fb2f5d7004f854	n/a
2019-04-18	456757557260DE_April_18_2019.zip	zip	8711e3d8fcd52a4a8fbedd80627e78be6ec61374d77495b62032e885bbe9bd25	n/a
2019-04-18	3544579103DE_April_18_2019.zip	zip	10d27d2e7142578f5f8cb0a272369c38af388cffe2afe187392ba25b469b6640	n/a
2019-04-18	063442196070DE_April_18_2019.zip	zip	00955ce442596fc3d16f4b836c2bef23c9e09f5ba3a30e075fe541499041afe6	n/a
2019-04-18	1935227089DE_April_18_2019.zip	zip	6913a1a44beca023887d2ac8b15c1aff5aa121ae6088a55f9671153455c9cc82	n/a
2019-04-17	079982123859DE_April_18_2019.zip	zip	b69563842310bc99e74bea2ab5a21b205ad50ac56274ddaffd179d00ac24e26c	n/a
2019-04-17	43668096356DE_April_18_2019.zip	zip	e348c3481fa2aa39998198188f80d8ab610b8cdf8dff19387f32ce0399f19a61	n/a
2019-04-17	7700455514DE_April_18_2019.zip	zip	f30d45aff75848ab95e4fd696fe7427228ec64596bd782f6dbcff73dd5d64fbf	n/a
2019-04-17	615159260131DE_April_18_2019.zip	zip	5e438a0127cc47885242158bcd3f62c31fcf01b7dc0e4f097ac1c3cc86bf0b5f	n/a
2019-04-17	19017171437DE_April_17_2019.zip	zip	7f40ce306055384eaa8472e87091de33f1b58b063bb17eb6da52bb4133e9f2d0	n/a
2019-04-17	2083056185DE_April_17_2019.zip	zip	478bbcf021b9fce72472518dd70e9aa42aeb9d220d9400e762658280497f7f78	n/a
2019-04-17	81762070605DE_April_17_2019.zip	zip	a561b68104af112c3cc17b0b693587e2da0392ba4cd6b0c5204089fb16d4bea8	n/a
2019-04-17	875799017613DE_April_17_2019.zip	zip	962248ccb1f90004955697ef8015708951c1070bf7a6509b0334cb5e91de335f	n/a
2019-04-17	299176669489DE_April_17_2019.zip	zip	587aa88d2cf2491533841b7e9dddfee8849e5253177b8229af5fad890e28df82	n/a
2019-04-17	93614372846DE_April_17_2019.zip	zip	997abf4de6227a9593601e7af322cfa57ac1ef5f459d96cc6ba433960d8e3d89	n/a
2019-04-17	484143019939DE_April_17_2019.zip	zip	3dc3d0bcad8a7ca69a9f4d30551233998a733916bf2411e12b4116ed566fa710	n/a
2019-04-17	4645943456_DE_April_17_2019.doc	doc	694b037147343d3a34387a156a549013867c1f5f92fc3b6376447e2c5ac0401a	20.97%	Heodo
2019-04-17	19275511726_DE_April_17_2019.doc	doc	6a666b0ea6a6a4b716ce7a987827f1abf1822d0e048ac505ff33a87eb25dc189	n/a	Heodo
2019-04-17	90045873059_DE_April_17_2019.doc	doc	af507b0d98ed536a00361562696bcf00caa81b642eee407fdafcf89811f85ff1	22.03%	Heodo
2019-04-17	8551803900_DE_April_17_2019.doc	doc	d2dee2a2478d2b039f9fc00f0d980f67a52f9ae8fe542e991d94f53a6f274473	22.41%	Heodo
2019-04-17	16231521100_DE_April_17_2019.doc	doc	566c79acc5b6aca21ec8ad0859b2f53a1f0d4a00e793b4e6cba5fdb53cb2bafa	22.41%
2019-04-17	760132699922_DE_April_17_2019.doc	doc	de05a81b032326fc39700039304035f207e806048aa3ac35707e297ae623cf2c	22.81%	Heodo
2019-04-17	4212694044_DE_April_17_2019.zip	zip	ecef56aa1fe7b8b624a27dafd318c6b90e0ec61cfc2d63a2cf5f94bbf4d40468	n/a
2019-04-17	0373257838_DE_April_17_2019.zip	zip	fe26a3e731e630e5a60c4df7691629c03daf88dfa57fe522c354ebf686cb3d9c	n/a
2019-04-17	559054087906_DE_April_17_2019.zip	zip	df2abeadc45edc6be8d20a4ceaf389fd158c672fefb7694b85d8d0a35e84e0af	n/a
2019-04-17	293363858681_DE_April_17_2019.zip	zip	686883489e9fde68961e041ac3b72860b9de73b73220f85490f883b3b19a93a3	n/a
2019-04-17	93172287868_DE_April_17_2019.zip	zip	38fcf3dfca3520e058c57ccd865ff6993d1e2977df99cfd0d05fb2cb11abb1ea	n/a
2019-04-17	364117156249_DE_April_17_2019.zip	zip	79683d8e9c83bc51a9815cca10c631606283cd19cc8c0034fcef1e3115bc6a7a	n/a
2019-04-17	1212983616_DE_April_17_2019.zip	zip	0b6651964f26e34b021edb433bd3ed6e399035ec2844edf949f0047f8e1ecbc7	n/a
2019-04-17	7853620384_DE_April_17_2019.zip	zip	100e64015715067fbdc5e96703dc30ea0a76140b3749dcb7f266c05f925a435d	n/a
2019-04-17	819746776679_DE_April_17_2019.zip	zip	3a4d6c69f9709e6b866534c29690657cf8acba22941fff1c8fbe511c7e0f18da	n/a
2019-04-17	26744230960_DE_April_17_2019.zip	zip	181b59cc712f39b487d0c2a7a538df3bf29b1c74cf519bba689e3b146ab08e3e	n/a
2019-04-17	16053040161_DE_April_17_2019.zip	zip	7cae12284cd5aac37afab444b586233c2e670c593b4c3ac6d0e1c44a4b44b5f5	n/a
2019-04-17	709698288908_DE_April_17_2019.zip	zip	8e23450ef05b2cf7eb8cbc45b30d7e2702515b80db0fe2bbd23f46e926f3f8cd	n/a
2019-04-17	90446975580_DE_April_17_2019.zip	zip	cac08617dbf5d7decab0ad76221719c523434c45ab7278bb0a1dc7d158c7e5c9	n/a
2019-04-17	28336149695_DE_April_17_2019.zip	zip	e1d541cd0466098e31d4525c888675de2026f68e6c6037a64f848d6eadc33a4e	n/a
2019-04-17	00327953169_DE_April_17_2019.zip	zip	e88ae0033b58cd148a494a19085ea4f0aacb872430838044c88a1fe83af25fe3	n/a
2019-04-17	27198379456_DE_April_17_2019.zip	zip	7d687adade2eace3284ba333df6ecb2e0118e755164439178e5d981d89b5b267	n/a
2019-04-17	092444986001_DE_April_17_2019.zip	zip	cb00f781be052dc65529a21e82a6508f94364dd216ef448d70ebe2e347acf1cf	n/a
2019-04-17	8687798653_DE_April_17_2019.zip	zip	327694762f1f0032819af1a01825d97e96f17e56e228475a3032044416677eda	n/a
2019-04-16	757208227948_DE_April_17_2019.zip	zip	c3004bb4c356b01df70bde439fcaf714b8d7eaa0309552122020e050b14b7224	n/a
2019-04-16	371852187610_DE_April_17_2019.doc	doc	d335a1d0c38e751f9376bbe88c7b18ab19c9459773a6951740a6782676e3834c	26.32%	Heodo
2019-04-16	07390267615_DE_April_17_2019.doc	doc	318647298c1370e2a454acf4afaed6bf692d1bd51759b4a7e0e78e925148f1a9	n/a
2019-04-16	16164021403_DE_April_17_2019.doc	doc	4b1ccb75644b61d0f3c1df18a238066171bf3f3b8ffbdce21a963a032676bb61	24.14%	Heodo
2019-04-16	7357582208_DE_April_16_2019.doc	doc	3824b2db3b14d88a11d155d0894a6af22bedb3bc12a029f9563344208354aff6	35.09%	Heodo
2019-04-16	0141187657_DE_April_16_2019.doc	doc	8eba23049d725aabd84b63f8cd4b079c78f26cde6f7bb8be1d2477df0c0d5127	32.76%	Heodo
2019-04-16	863235034215_DE_April_16_2019.doc	doc	141e277b2165595334f404edd83397057b2a4ef8a52eb8edba79203f0aba44d9	30.51%	Heodo
2019-04-16	981326564440_DE_April_16_2019.doc	doc	33eb8eed7c8660a54e9b99e8b8719fa1a83484d5ba41805f1767cd8605d28fa4	31.03%	Heodo
2019-04-16	20481126172_DE_April_16_2019.doc	doc	033fa72fe48a853b99e41ed7467c1ccc488d5abe69dff887b8a6b7b2c5a5452f	31.03%	Heodo
2019-04-16	329888306046_DE_April_16_2019.doc	doc	7fae139edf9512b5788f271e05878e6d556721b4eddd8f556096824c3b9bec69	31.03%	Heodo
2019-04-16	813353236784_DE_April_16_2019.doc	doc	0d6e79a1ce172fd964c9c98a3bc5a94cb5f901e7253f1c2ce14bf30c34747b2a	31.03%	Heodo
2019-04-16	2332163191_DE_April_16_2019.doc	doc	020ed32f0c3de6a24817e3326fe676c4e07896c71f9474db5b9948847d8e2873	31.67%	Heodo
2019-04-16	29011329105_DE_April_16_2019.doc	doc	7a8ac4c603faaee3e2d94f3faed810be8000ac4d4abee4475766ab9111fe67e0	31.15%	Heodo
2019-04-16	5778139644_DE_April_16_2019.doc	doc	cd9387ca69fa3aa30380f5e513313980b26805181f235dea5596a7d9b6c21c41	n/a	Heodo
2019-04-16	190608777275_DE_April_16_2019.doc	doc	6280cad89edea53c8bd3f428396c3a736f6d67e6f8279026effbbc8f27c35035	26.32%	Heodo
2019-04-16	1057004077_DE_April_16_2019.doc	doc	05e9d6de0d75faf602a7666ff6287e1e9ee367d57d2abaeac780e14325833dca	28.33%	Heodo
2019-04-16	9488554033_DE_April_16_2019.doc	doc	eaebef573b834cac77673e625c36f4e363a94a294e37a18e68547a3b19308fdb	27.12%	Heodo
2019-04-16	67523864624_DE_April_16_2019.doc	doc	4b0b5308fb38ecdeabe8a66f90d7aff89421a50542242631785e34c790b7ecd3	n/a	Heodo
2019-04-16	9430193398_DE_April_16_2019.doc	doc	c40f3f595365f71600c24ebe5c2fd245bb7584364c4b2f3f294e1dfe675891bc	27.59%	Heodo
2019-04-16	6772961487_DE_April_16_2019.doc	doc	e0bf4c6aeb567130478fd998b9bb45ca8ce6d76520107e2088d4c6cdcbff90c8	28.33%	Heodo
2019-04-16	1417070160_DE_April_16_2019.doc	doc	eb68fdf25e93c5d896e8b7f3d1216c20545cf2f3b3ecac3c850d4d48dcc853de	27.59%	Heodo
2019-04-16	859109570669_DE_April_16_2019.doc	doc	a98f3b7c60b12dd81f190b67c0b42dfc7ab23d10a4ef3cdceb43625dd9ff6133	n/a	Heodo
2019-04-16	899493769853_DE_April_16_2019.js	js	e328f1a48cce3e9220c38d847ccea9f81b6135d120bd76b224c4be21405f700e	9.26%	Heodo