URLhaus Database

You are currently viewing the URLhaus database entry for https://vnamazon.vn/cgi-bin/UYQgjXjdmBiRomERoUXbLOqZ9cl/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1850164
URL: https://vnamazon.vn/cgi-bin/UYQgjXjdmBiRomERoUXbLOqZ9cl/
URL Status:Offline
Host: vnamazon.vn
Date added:2021-12-04 00:32:09 UTC
Last online:2021-12-10 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: waga_tw
Abuse complaint sent (?): Yes (2021-12-04 00:52:06 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:6 days, 4 hours, 14 minutes Bad (down since 2021-12-10 05:06:07 UTC)
Tags:doc emotet link epoch4 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-12-04ED5XNX2XH6UF76T6.xlsmxlsm 335f7af6779683f4a9417bf2bacbeac22599d939975eb88c7d34ec2cf14e65f9n/a Heodo
2021-12-045YTLC9A.xlsmxlsm 45aa726b2ca6a38d0419f3d4995b9d49511378a95a1be683595faa492bf75dedn/a Heodo
2021-12-04VFVIHGE3Y.xlsmxlsm fe6edb9fd62baef115f8bfa653e6e8d94aa4f2f6aa31da89708f064fd3c88d96n/a Heodo
2021-12-04VKJ0P4MB8443VTV.xlsmxlsm ffb196995d67c74a4d6ecb56271fb5aa6b627d93f2947c379038a631bb3e9288n/a Heodo
2021-12-04KJZP69P8Y9Y6.xlsmxlsm ee4365337fbc7dff140f457e8ce2d9c1674f2cf6e67b75d8447437f02389f032n/a Heodo
2021-12-041S60SK5EFW7.xlsmxlsm 7a4028719774f60a26304135c146be2c0aa097887e5e894634aeba41a911f693n/a Heodo
2021-12-04UBQ4GQPLC0N.xlsmxlsm 27398a3f2736fae1f040f051ab7ea4b36bf4a0949565531d64370f70558f1edan/a Heodo
2021-12-045TTVVIQ2Y.xlsmxlsm 9482e25f0e15d370493d1b0dbccef274bb8eef769bd89460559c7e58a7be2991n/a Heodo
2021-12-04JMZRLD0XHF.xlsmxlsm 50f44fa814a6c7b09ed4b7737d4d96d3795ed5c53d6f0769d2bbb8aa9c910210n/a Heodo
2021-12-04K9N13T64.xlsmxlsm df548ffbe364bfcab388240bb79b0e022793e69993359ad2814bf4dcdd8e8c43n/a Heodo
2021-12-04NXUDMMTMA2UK.xlsmxlsm d6f9c9727dd0438fd15ffe3b61f7fea64b2799dcf291b82cb91c4e615b876f77n/a Heodo
2021-12-04IGJP8ZHOT1J.xlsmxlsm 2ab7370ab8ac365b48a0837fbc88b83a37ff1da98d2af5f295fd578f5a6d0acbn/a Heodo
2021-12-04V5UZJB9WEC2.xlsmxlsm cad18f70b06e011a34b4ac694d6385fb3410f8de724da4b5edfac53791641d79n/a Heodo
2021-12-04DJRDZL9PV.xlsmxlsm 987b04cc3050bb943484673f1e1942730b40988a72fe36500ee383008177c6d1n/a Heodo
2021-12-04VP5BO2CS.xlsmxlsm 7266eebb30eaccc6220328cbee7e643b0b0cc3f026e7a58e7cf6db771c305efen/a Heodo
2021-12-0445SJ2966E0.xlsmxlsm db74c9cba78c8fc29bf8e7e480c608fc01cd978334ef0a6d2886252db0493c94n/a Heodo
2021-12-0415IFL6M1K46AR2R.xlsmxlsm 82625bb927f2a9f0bc7f7765ffd867116e0a1950f2582ecdf24c8833fb7747dcVirustotal results 21.67% Heodo
2021-12-04SYKAEU8UZ3EVQU.xlsmxlsm aa57a381a01187264ddb62cf376a38826812caf6fe7d568319a6b9775d245bf3n/a Heodo
2021-12-04X3I3CE5L8RVKAW.xlsmxlsm 1daa8dd90dce88a681b2f1c0c90f91872345beda7e72d6097ebe7fad40b1350fn/a Heodo
2021-12-04B708NJN3CPQZ8Z.xlsmxlsm 314e3d1e7346c183ea8fc1d5e99dac95786c5e7fc9bf415af7ac35882715ca69Virustotal results 19.67% Heodo
2021-12-04TPANMSXR32RD.xlsmxlsm 9dfb03365a97994e9e328f92769225b1fa48216fffaa2181f229a532dc415967n/a Heodo
2021-12-04ME6T9U7HDHES5.xlsmxlsm 4392f053539c61c480e7128d85af7c7a04683066bbc965ba5f5c0038df7db369n/a Heodo
2021-12-040LJZMCD731Q.xlsmxlsm 129abfe1daac979f2a6ac53e587087920fff466cf94900127c69289ab787777cn/a Heodo
2021-12-04MT3S1AZRI1.xlsmxlsm ed6576577aed9e1fa7f17c290d5e4e62940e610bcd35080c821213c168a0e48en/a Heodo
2021-12-04V2D50MKQ9WLWAIE0.xlsmxlsm 172af5646f781093249052708a1971c35b4f78a66bdaeaa459aa3470a7301597Virustotal results 22.95% Heodo
2021-12-04VIE2GNPRPUF49.xlsmxlsm 9e4011d4239e49cf4815b6c9e9e00dff0ae353ba4c2eb30a9e6a31ba4c2a1f68Virustotal results 20.00% Heodo
2021-12-046MP22HHP3.xlsmxlsm 93a937b7fbdffa38f9e4e653e0ea80210d932f8e09db472c31af90b54c351a15Virustotal results 20.00% Heodo
2021-12-042DKXQP6.xlsmxlsm 3912164b44f081e1c54f2349f188eb8fc73b2ff594943b0c31f03d52f82525b3n/a Heodo
2021-12-04XBT7CZ2YKP1YK.xlsmxlsm 1d82c0876d48a1d3b8b7d0cf658042b8c7bc4e0e609eb880e495f7024c3ab334n/a Heodo
2021-12-04UUSGM49VF2.xlsmxlsm aadc859ad87c5f31121568585d28b8d34dd2c70301f30505eb8932cdee5e0683Virustotal results 16.67% Heodo
2021-12-04T19TSZFJGTN6GIWQ.xlsmxlsm 362728960b32b0638692a8e4a2d5a1004e56f38bff3ef0d63e708a035d00a774Virustotal results 13.21% Heodo
2021-12-04USQCT4JICKCSN3.xlsmxlsm 3a7b80be417d47a53348d0054cd67391c87750b5e035896df8907159a79a948cVirustotal results 18.03% Heodo
2021-12-04F842Q0MYGS5SS1LH.xlsmxlsm 640cb770dd4906e04ab1bf31b293f900e2dfcba94e6316378398136a7dd3e644Virustotal results 23.73% Heodo
2021-12-04A8O1AXGTAWH.xlsmxlsm 6edadc67bee674d89534896d0e335720b2627bdbb533b69328fce5d605390352Virustotal results 25.42% Heodo
2021-12-04Z9T86VHF6.xlsmxlsm 47214d730fc78944962110a9cf98ca4d22326e7319f7a341d5a3194a961b0109Virustotal results 16.67% Heodo
2021-12-046S61C6L4FO4Y.xlsmxlsm d08256c5581fc9abc1791f2270a8718dce3b44814d9a2d8288640fd19eab7f32n/a Heodo
2021-12-040OJZ0V45CZU9T2H.xlsmxlsm 8ae7514ef836eafa2585eb7e4255d0e17723df92cc185f5b344965ae7054e82bVirustotal results 20.00% Heodo
2021-12-04JZGIHDV.xlsmxlsm dcf245593c7020c9b0f17ecad5df852b6b24ce05ca72e6a0a7081ef3c4491c56n/a Heodo
2021-12-04427GE3A37WB13C.xlsmxlsm 153bbf914bf67a70750ba62d8353c03338054dd2b970caca6bff99e796f0f3c6n/a Heodo
2021-12-04RU7WO7B5JE.xlsmxlsm 2510fdb4f120789c62c0a421b9c3c2590c0fc72da9df4ef3b05710e8a83897f7n/a Heodo
2021-12-04A5XCEUH6Y.xlsmxlsm 9f6e5001c55c73c7eca9670e833699fd056a56fb8cbc1411f8adae1f4dad50b0n/a Heodo
2021-12-04YEOZYFADHQL0ZX.xlsmxlsm 724d0eeb335b4ceff379d5fd71d6412790b165d559f565437aec3a4c3fef8299n/a Heodo