URLhaus Database

You are currently viewing the URLhaus database entry for http://tongdaigroup.com/bill/o4l2wla-exah0q-nblhy/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	178594
URL:	http://tongdaigroup.com/bill/o4l2wla-exah0q-nblhy/
URL Status:	Offline
Host:	tongdaigroup.com
Date added:	2019-04-16 10:59:16 UTC
Last online:	2019-07-20 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-04-16 11:00:04 UTC to abuse{at}totisp[dot]net)
Takedown time:	3 months, 4 days, 17 hours, 40 minutes (down since 2019-07-20 04:40:04 UTC)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-04-18	536217759430DE_April_18_2019.zip	zip	68c3d09da5328c09a6852e7a7780135d9426d38a1c06541808547cfbc885d74c	n/a
2019-04-18	999796454984DE_April_18_2019.zip	zip	ae29628f2d912e374e562051e97e64ab891c363e9f89b0dd0d9e788cdaba5cd5	n/a
2019-04-18	748747603543DE_April_18_2019.zip	zip	4e54b46b7cbce53f5eaf55904bbe631d079eb3ddbfa778b8877bb152edc68c61	n/a
2019-04-18	0769430950DE_April_18_2019.zip	zip	08c7e7681cc69608b1cd57069cf94a2044fc4fd772a8ad495966b12ad1416f34	n/a
2019-04-18	1132126482DE_April_18_2019.zip	zip	9aefd5d0f285968473643270f2c5bbe8b41b458753720ef34355da912ad20a3d	n/a
2019-04-18	83016390502DE_April_18_2019.zip	zip	290a0f2f63ca1d2c45561d6eeac16927c7a6920e1cff19cb652e037289910075	n/a
2019-04-18	81975760225DE_April_18_2019.zip	zip	7cc77512aa983124624746b5c24f3095596e060a952aaf6cb9052908f2030112	n/a
2019-04-18	300547703879DE_April_18_2019.zip	zip	67479f5477a925f725fa62b82ce8e12acd118faa2d574b087eff67a5f66fb751	n/a
2019-04-18	4898327244DE_April_18_2019.zip	zip	3a22e24e7e4283818938bf55f9a2c7e387568bafdb6e11707b0ed6b301d1077f	n/a
2019-04-18	8896462109DE_April_18_2019.zip	zip	be630113ba703cf7321103a02442b211840ffa8dc3a9a733ac9c4a840ee6d93f	n/a
2019-04-18	3060815864DE_April_18_2019.zip	zip	41e99513811fae9ee7146c38e507f0c1ba0f5b13e02f892afe334303616a676a	n/a
2019-04-18	21253007986DE_April_18_2019.zip	zip	418f0993c0b38b40370b9f0586df1fa6cea5f60d97adc5621d43e84374a82c95	n/a
2019-04-18	0789189335DE_April_18_2019.zip	zip	2b38a1b6069a29e64e462e2808179b81cd41e9945d9a80b41d04b3445b6a96da	n/a
2019-04-18	373298123362DE_April_18_2019.zip	zip	326bed8b55467508536542ade198dd4fcd0281c4da10c9640cb8a17f7acd84a5	n/a
2019-04-18	94853472365DE_April_18_2019.zip	zip	4c892521dc28bd9415de9b629a54864f06b45fd5fc149f534e334bbb13ad2ea9	n/a
2019-04-18	57966190644DE_April_18_2019.zip	zip	21addd8d992a9d0104d9a6ba08c8d56443d2e0f05ddb7d7a3b8d3cf3256f9747	n/a
2019-04-18	917512217737DE_April_18_2019.zip	zip	2637e27e21298c5a78843d1667c58cec002b608cf00dfb93a9a76cc102a07dc5	n/a
2019-04-17	6738115203DE_April_18_2019.zip	zip	46395e3e7c278bdcb90e79000fac28513d928118411d9867cb3d49cf9bee6962	n/a
2019-04-17	515883962734DE_April_18_2019.zip	zip	a513d103404ad56719e3af59690bc51f216d4a5109d5efa313a8c7146bc45d68	n/a
2019-04-17	21411122611DE_April_18_2019.zip	zip	204a93ece9f522ec67f847deaf054ba8811412e9239d936150d33f2a5ebf54cb	n/a
2019-04-17	5567778520DE_April_18_2019.zip	zip	7299532f842c352cc4694a99a3ac431ca35ed491c772f920f081d190e884479d	n/a
2019-04-17	50230959172DE_April_17_2019.zip	zip	d0ac27563e4096c849691f03fc6747925961d08cc6305ee6b3876dbe479e649d	n/a
2019-04-17	796825584014DE_April_17_2019.zip	zip	2cf13a772547792f783dd2a06b61cde3ca0509c75882b85f9116a1969cc2e8ca	n/a
2019-04-17	597816797136DE_April_17_2019.zip	zip	c9f6dc505f4916f215bf38532d6e81a1b84549320e92668df1254fdadaff5b4c	n/a
2019-04-17	177972599807DE_April_17_2019.zip	zip	87f0c638893330dfa15eb4f535ace383f40746102293bd35c04112cc10f14bc6	n/a
2019-04-17	266407300200DE_April_17_2019.zip	zip	1ec9d0effb8a5b295278790e8c3b13e2409f051a1a94dae0581c474cbc8912ca	n/a
2019-04-17	635338461533DE_April_17_2019.zip	zip	8569fc02e14442055d8b75d1b7d0e6d420d3f6ec7953698194fd5f7a701c49f4	n/a
2019-04-17	7993421589DE_April_17_2019.zip	zip	300934283aa7387f5b2e7d5ff92da93972edca8eb90ae3caf848c1c9188cf612	n/a
2019-04-17	5066337317DE_April_17_2019.zip	zip	ad914fba1160b1640693fa0c19cbd7eee36a773b3b6eb823ee96fdd14c068998	n/a
2019-04-17	9162444219_DE_April_17_2019.doc	doc	694b037147343d3a34387a156a549013867c1f5f92fc3b6376447e2c5ac0401a	20.97%	Heodo
2019-04-17	07926389687_DE_April_17_2019.doc	doc	a5c7ef873c4dff06978f874ee497b2fd958b56e263244febc3b7e53eaa27517b	22.81%	Heodo
2019-04-17	074672123014_DE_April_17_2019.doc	doc	71da59481ca34680c6459f5947bd9e90fc7ecb570e040045c5d200bf313d5e12	22.03%	Heodo
2019-04-17	04276346385_DE_April_17_2019.doc	doc	d2dee2a2478d2b039f9fc00f0d980f67a52f9ae8fe542e991d94f53a6f274473	22.41%	Heodo
2019-04-17	88756235980_DE_April_17_2019.doc	doc	3d23b00e234bfe41a182409dfcff847506e09a4cc834f2d54e1d0483a0656391	21.67%
2019-04-17	99744581560_DE_April_17_2019.doc	doc	dc80c7b6ddd24d941654891dfc10cfac301241ee4fc1fa452edba96cd3729045	n/a	Heodo
2019-04-17	739276222129_DE_April_17_2019.zip	zip	c2554e8979f1d6848dcedb38288204a178f053e2ba670bb044410602184345fb	n/a
2019-04-17	8126752434_DE_April_17_2019.zip	zip	c1c5c2399d140394ef8cfd7228fab724e52b203035bcb693256e62403800a36f	n/a
2019-04-17	5453303705_DE_April_17_2019.zip	zip	b613170ab5347dc5f3b48169e51c6cd7e273d39bf752585f8dd83bbe4f29714b	n/a
2019-04-17	549412107560_DE_April_17_2019.zip	zip	04a6e91f36dccb0ac85db0cb1b4f9bc2703faff7036b8329a6535268a4608229	n/a
2019-04-17	118848099689_DE_April_17_2019.zip	zip	6b72f744f5da57c5584c73d30d0506e489a37ae222320dc3aff1e898dca2c7f3	n/a
2019-04-17	32424957132_DE_April_17_2019.zip	zip	d4191dc193e5ea10e7450f53b298f4aef2246f4d29bb919de8f739f6b00a448d	n/a
2019-04-17	590227941609_DE_April_17_2019.zip	zip	0c560ca3a3cdc5d3bf0aeaa7919ea04f095508af1529036b9c87bfc936bb8af6	n/a
2019-04-17	033286039345_DE_April_17_2019.zip	zip	b60c3def334d7f260125c2df2f892030942ec793e9ae1e1b7796568094144cd3	n/a
2019-04-17	0007414850_DE_April_17_2019.zip	zip	f36dc02c35bea5e79001adcc3b63596cc09544d8bf0219dde8def5755bc23ebf	n/a
2019-04-17	84680297511_DE_April_17_2019.zip	zip	344dab803107a7e78e91892abfaf016abcbd05fc77f7068c9c72bf2dfa358a00	n/a
2019-04-17	9428044220_DE_April_17_2019.zip	zip	da353a232bd0a345bec3bd25e68505a60a9856b69016a938a08b6947959d6ae9	n/a
2019-04-17	800113013567_DE_April_17_2019.zip	zip	e7ba4fdc989fb0c5e6be296f2feb428f24f7c66c2f7b4559dd66be66e5b5ed2a	n/a
2019-04-17	57813563212_DE_April_17_2019.zip	zip	52eab0ecd93795027b0cb1f0bcc2a0718e90d14da2263cd49d2b39f357280547	n/a
2019-04-17	55386751768_DE_April_17_2019.zip	zip	7bd53e7d0a3fc467c8434ebddcba0b2ecc5162553101d713b487a7c7c395a9fa	n/a
2019-04-17	96117171650_DE_April_17_2019.zip	zip	1f2d561e999dceb37051a88774fb1f43ff4a05b392f586dc4372abb0775982b2	n/a
2019-04-17	51111924026_DE_April_17_2019.zip	zip	11b36e981baf9dcccc83639384cdefba78fc35204602f3800d356c63d9784a34	n/a
2019-04-17	90350071292_DE_April_17_2019.zip	zip	6d4367936eaf3f5ae4d59a718b8364c7b3d1de7e8448323f7ca0549e776c607a	n/a
2019-04-17	736132832012_DE_April_17_2019.zip	zip	d6ca9948026491826b3d6921b85ccd6d5373ffffe366a56a334d19a763d90335	n/a
2019-04-16	166829264287_DE_April_17_2019.zip	zip	ae5e59386a882c7eb2478c0b41cf144503cfffbde692ec5bcd6317c4b8ce900a	n/a
2019-04-16	307052787736_DE_April_17_2019.doc	doc	3828b5d43c9a954b999a9aec7777e8a36b97d8a00de5ac023fbcd09b210cb543	25.42%	Heodo
2019-04-16	4315828198_DE_April_17_2019.doc	doc	f4057cf66759a43716d9fa6733db73448df6fc66303df5616dcce6496b83b167	25.42%	Heodo
2019-04-16	519097736710_DE_April_17_2019.doc	doc	4b1ccb75644b61d0f3c1df18a238066171bf3f3b8ffbdce21a963a032676bb61	24.14%	Heodo
2019-04-16	7206887525_DE_April_16_2019.doc	doc	3824b2db3b14d88a11d155d0894a6af22bedb3bc12a029f9563344208354aff6	35.09%	Heodo
2019-04-16	5632632607_DE_April_16_2019.doc	doc	4f9800723d9da1abd4a9270d2ca1608a8540cbc15ddaa67f2b8a18aa2d75620a	31.03%	Heodo
2019-04-16	06136432878_DE_April_16_2019.doc	doc	e8a46a8b0686f80f2a59786232894b4a1b299ec8a0a1326a107deb5ee4e7cade	31.03%	Heodo
2019-04-16	94075712782_DE_April_16_2019.doc	doc	33eb8eed7c8660a54e9b99e8b8719fa1a83484d5ba41805f1767cd8605d28fa4	31.03%	Heodo
2019-04-16	2352391932_DE_April_16_2019.doc	doc	033fa72fe48a853b99e41ed7467c1ccc488d5abe69dff887b8a6b7b2c5a5452f	31.03%	Heodo
2019-04-16	19647570676_DE_April_16_2019.doc	doc	7fae139edf9512b5788f271e05878e6d556721b4eddd8f556096824c3b9bec69	31.03%	Heodo
2019-04-16	9524629632_DE_April_16_2019.doc	doc	7147bcbc0854554068d051c589da76772d019dd8f1d56ee17b6ef90ba54c2706	31.58%	Heodo
2019-04-16	0623834179_DE_April_16_2019.doc	doc	020ed32f0c3de6a24817e3326fe676c4e07896c71f9474db5b9948847d8e2873	31.67%	Heodo
2019-04-16	69941441102_DE_April_16_2019.doc	doc	6280cad89edea53c8bd3f428396c3a736f6d67e6f8279026effbbc8f27c35035	26.32%	Heodo
2019-04-16	0713684053_DE_April_16_2019.doc	doc	05e9d6de0d75faf602a7666ff6287e1e9ee367d57d2abaeac780e14325833dca	28.33%	Heodo
2019-04-16	3915362491_DE_April_16_2019.doc	doc	eaebef573b834cac77673e625c36f4e363a94a294e37a18e68547a3b19308fdb	27.12%	Heodo
2019-04-16	097049137948_DE_April_16_2019.doc	doc	90c260b2469174d1c60fca12bc1a31728a1219a71c5f27a5b1cf21db2271f123	28.81%	Heodo
2019-04-16	515771927402_DE_April_16_2019.doc	doc	71b696cc8e23ef1790e3031aac1d7ffda5f86934daaf02eaeacfca3ef0d120ab	28.81%	Heodo