URLhaus Database

You are currently viewing the URLhaus database entry for http://healthanalyst.xyz/6/DYUB0CRFQ0IX0FsiN/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1867353
URL: http://healthanalyst.xyz/6/DYUB0CRFQ0IX0FsiN/
URL Status:Offline
Host: healthanalyst.xyz
Date added:2021-12-09 01:24:09 UTC
Last online:2021-12-09 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: waga_tw
Abuse complaint sent (?): Yes (2021-12-09 19:27:02 UTC to abuse{at}hetzner[dot]com)
Takedown time:18 hours, 2 minutes Good (down since 2021-12-09 19:28:57 UTC)
Tags:doc emotet link epoch4 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-12-09WKVPZYY1FU.docdoc e167804a6f36dc99e96909bcededa8a733dd8633037b8b52e8d7881d20446c16n/aHeodo
2021-12-097SY50F9OX4.docdoc d69f3a0ab3de59ef3cd8461d88492993170d51dce254ee1097cb8abf5a0bf018n/aHeodo
2021-12-09MS6I88R17Q3T.docdoc 6b24094a69cf6e612d38e8b0a29ba0805cc160dc1a84be86c55dd8c7f59521a7n/aHeodo
2021-12-09F4KNALJ.docdoc 4e3c2a99198c29669026c373ba3cff9a3238271504a0a89cf52a7f8c8579cdc1n/aHeodo
2021-12-09FIVNUAE04OJJ.docdoc d19b92d3bcc66036bc13058f935a9eac08bca63cb059a8a93a21909c5c4e20dfn/aHeodo
2021-12-09ZV6XBA13OF.docdoc abff6c4c0576b6f1dc50478dd91cf8aa9c1ffd442f54bf6afa9e46585c6b507bn/aHeodo
2021-12-09O71AI78Y9O91.docdoc 60070dc681a9f7c4a79a3637402a55b5c3e8fba4a2df0ce681f0b1ff311a360an/aHeodo
2021-12-093GKKHVC1.docdoc e7b9c7ae85b65f18519cf9daed5b665424eb5e90d9ea917793d93a57f0a8860an/aHeodo
2021-12-09E4DX2FTOJ3OQVIVQ.docdoc 6db713111922141d1e216988ca94471878eaf0cdefb37f14a61a6186c9590e19n/aHeodo
2021-12-09X6XWJPFAGYMIV2Y.docdoc 29ab4068dac49ad35bee5d3ae9be67726d2ea73c28d437bcbf827bfc5ca372fan/aHeodo
2021-12-095KR152Y3R8.docdoc 7c73a4da90b895e4add6c77b040582e03c9b358a4e9c2eb9d6c121371e2de1cen/aHeodo
2021-12-092JBBSAG91XO.docdoc 8199cd2fde7e3cec9521cf7aa7dbafe51ba2ea897a8c132318fc85507b90d05bn/aHeodo
2021-12-09B5T91S6FJDP.docdoc 5aee37b45c0c6370d6c4b8046356675ddbe62d8cb42dfcc602bc350600df64e8n/aHeodo
2021-12-09WQ2YC9IZ5C6.docdoc 052fa4aa100211ec170bc835ccee15ab601aafbe131ec86a16b553a0b2f17b4an/aHeodo
2021-12-09SJ7BMS82.docdoc 422cdaf95ec5f430f907c9acf9538f9b76473c10d984ea3370753d2bd8a5d7fan/aHeodo
2021-12-097APF4B2.docdoc 54450694083b6b9c2fc8c86d6398811f2c4ac6dab3e87faafd892813c9a23a01n/aHeodo
2021-12-09PY855NX7GU4MG.docdoc dcdf1d6c0f3863cb8d96185840e8a08edd2111eabd27720a6fc9019c0f0b7e91n/aHeodo
2021-12-091S2WLODOWTS5X2.docdoc 3b8b1b6d67f96e2a8ffe58449d0360eb577a46dcedb376d01d0f925c3e6fe857n/aHeodo
2021-12-09GTJL42ACPW6RQW.docdoc 4aec6177778f357b4014f543abadd7fec5b5ac8df13e8a4c7c9dcfe1f4458aa1n/aHeodo
2021-12-09DKDOB5A.docdoc 5a020c775495fd172147770c6d358ebee40450aa5a0d04d4cdff89a358c27fffVirustotal results 36.51%Heodo
2021-12-09GLKVUJL49YAXK0BJ.docdoc 6f42b72cd9319ce52dc6e13ad170721e4529a8eae6eaa39b519edfc3f0a56ef0n/aHeodo
2021-12-09XO1C8A4ZH.docdoc b686a2a27d4060e8449649268808f123dd6221556d3e38e515c9f518e607e648n/aHeodo
2021-12-09TEJ08PXBM.docdoc 432f46caef1c57fcba7f2de3ddfb215a25f0c4e488158953d499b97a7813e808Virustotal results 33.33%Heodo
2021-12-09ZQSRXCDXHZYV.docdoc 7f43c252d0ed571cde61f6bcf49f8d2f8355425eb372db11373b799d41da9308n/aHeodo
2021-12-09GJBZH7M.docdoc cd1ea8af51f9a123bb2d33fdc34cfaae4db38a389f31d57a7acfac513eba59f3n/aHeodo
2021-12-09KBLYB3M.docdoc e4b74b7a1143cf9a19b71f201e7a6390aceada8b97a41ac9b5b8f7280f95161dn/aHeodo
2021-12-09T7CKBQA0OREN.docdoc 29e87923e29c788d8cb137f11271a8127ec002297114741eff5cba332f6433den/aHeodo
2021-12-09O7JW525.docdoc c9d72a364fc932e0640d75bf31c594c0b095b54ad6d551c12c07bdf369657c2en/aHeodo
2021-12-0932AA7CYEK5K.docdoc bbf2c0adc0daeed0d3a4f362e12631d3c5659695a8549e4035b7c9baf8cbe2ban/aHeodo
2021-12-09SJSX0FWJGF.docdoc 1a5ddae23beb24dcc434b2fb006ca45239931c0c4a12d95f58d4f5059c169634n/aHeodo
2021-12-09RVK9DJ9.docdoc 205f5d06947e589c658f45ddb9ce1ea9f44e649eaa58399381761253b1f84343n/aHeodo
2021-12-09MQOI34K.docdoc 23675edd086358b68b73c2f2bb2a2836f9fc376f428a3cd804057e6e64f28d4aVirustotal results 32.26%Heodo
2021-12-09EBLZZ61N.docdoc 59b2d3031b08465bf98f55d0744f4ece332d09bb6b4cb53b636793e4152378a2Virustotal results 33.87%Heodo
2021-12-09Z3K0UAA.docdoc 035c2f86f6544996a52f4fe3d4f40e0b226fc0ea839636dca320cd7b44c0ee6en/aHeodo
2021-12-091K3C38RN.docdoc 0ac10c9194dc423e5827161416b0727c2ec83370c29909329c3efb374d606f06n/aHeodo
2021-12-09HTR4JDOZUZB.docdoc 66356adc9d791563ff02cf99eda994eed62a671cdc9f62036f567bb5b5dacbb9n/a Heodo