URLhaus Database

You are currently viewing the URLhaus database entry for http://anja.nu/FNNjSOdy/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:197152
URL:http://anja.nu/FNNjSOdy/
URL Status:Offline
Host:anja.nu
Date added:2019-05-16 11:16:19 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@spamhaus
Abuse complaint sent (?): Yes (2019-05-16 11:18:07 UTC to abuse{at}ballou[dot]se)
Takedown time:1 month, 2 days, 2 hours, 55 minutes Bad
Tags:doc emotet epoch2 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-05-174593331527_PL.docdoc185fa1380d4b9eebc11ddba1d58063b23cc6685b7d0958f12551b6a53ee8c448Virustotal results 15 / 60 (25.00)Heodo
2019-05-17784437679424_17_maj_2019.docdocbeb226928f863ec63aade13e7a676ebafaa5b1c1f74e796c4e2deabbac939f48Virustotal results 12 / 59 (20.34)Heodo
2019-05-1772242333791_PL_17_maj_2019.docdocfbae6682dccd5c48baea8e3a6c710f10ba9adb63b968fb15e361a57dacd24252Virustotal results 17 / 60 (28.33)Heodo
2019-05-1782819494539_PL_17_maj_2019.docdoca2256001c8036708c781f69a4e082f649bac0c8222ea3d4689f8d1c0d7bf2f74Virustotal results 13 / 58 (22.41)Heodo
2019-05-1767749273917_PL_17_maj_2019.docdoce90d542a11be7c8295bd63c58d800c9acb93f1daa2504009651d9af98361a6afVirustotal results 11 / 57 (19.30)Heodo
2019-05-17256184413611_17_maj_2019.docdocecd1d2c25fdf788170749b506ce3afd1bf711411b12258e0debf82cbd8102ddfn/aHeodo
2019-05-1742669648834.docdoc378296ec7636eb0fd3af3bfeeecb5eb2128356f3200f50a48dabecce4113d66bVirustotal results 14 / 60 (23.33)Heodo
2019-05-16118372452997.docdoc4e5220b3370957ec676dae90b6311b6f34ecaf519093680d7810a25aab6b9ed7Virustotal results 10 / 59 (16.95)
2019-05-1687646489796_17_maj_2019.docdoc38a92dd83540f0cc716eda7b401b362e71ac5cd03671deb66c05c6dcd724c3f8Virustotal results 10 / 60 (16.67)Heodo
2019-05-1691826816665_17_maj_2019.docdocbb1d0382f8f95a34c3c3333e08da751c8561833323079223cdb0804036a6e7d3Virustotal results 10 / 61 (16.39)Heodo
2019-05-1666465848579_PL.docdoc07984821b787fd2405eebb0ec263abafae4c6b3272c5e78457fe98c2700295baVirustotal results 10 / 59 (16.95)Heodo
2019-05-1657156896872_PL_17_maj_2019.docdocf6b6fff24c93ee8cbadbbac2b53e89087358e737120d2687c236d0eab75e53d0Virustotal results 9 / 59 (15.25)Heodo
2019-05-1684634436351_PL_17_maj_2019.docdocf9bf8db6e18539de0f48f521fa2e4790077956a62cb4ec640795a5548b3d0792Virustotal results 9 / 59 (15.25)Heodo
2019-05-1682826793561_PL_16_maj_2019.docdoc53725e0285996b913feb3066802cf1f68863ce7bfba26cc95a69324d0a2bb349Virustotal results 10 / 59 (16.95)
2019-05-166833799792.docdoc57c9a22a439925f0544a578275469f597e5c85871172229fba2a175360fd3370Virustotal results 10 / 61 (16.39)Heodo
2019-05-1682632171495.docdoc55d7912feb1a0c02b483b1eb415ecc99da7be934f4fef88fb0f9bc66ee4aaef4Virustotal results 10 / 59 (16.95)
2019-05-16544261626776_PL.docdocee3b9963531ea7401ed8048880ad6fedf1cbb28913bda7473aabec509ccf08cbn/aHeodo
2019-05-1698925452513.docdoced7c8d9543cf869368c78207779de5492ca0ed17293068f9f2b66dc0ce9cb25cVirustotal results 10 / 61 (16.39)Heodo
2019-05-163192652448_PL_16_maj_2019.docdoc61cd585f5854f42027b4db59c5cf141677dff50ebf4b7613b9db2035f7417669Virustotal results 10 / 61 (16.39)Heodo
2019-05-1612636613829_PL_16_maj_2019.docdoc3d2a4eb39a96b817242b0b5f0783f1117db5053dc3d8446986387d52c8337276Virustotal results 10 / 59 (16.95)Heodo
2019-05-16835997161562_PL.docdocb3963c4ea3e3564940ed23e0234c98519ba7414b7a3683eff3f635a2f798f75dVirustotal results 10 / 60 (16.67)Heodo
2019-05-167759477777_PL.docdoc018c9a996c34a9232a54d5a290d651b4aae36773f3455dbcebd3f2eaca0982bcVirustotal results 11 / 61 (18.03)Heodo
2019-05-16172277162468_PL.docdocf6b183dd80fa9a21cba09563f717013511c9caee282f8069c7fbc813a104455bVirustotal results 10 / 60 (16.67)Heodo
2019-05-16242867385314.docdoc73bf95ccca97ab08b3614b8f594bd36a4cbf74d5ccdf3b798f11292d01370523Virustotal results 8 / 58 (13.79)
2019-05-16182154731117_PL_16_maj_2019.docdoc3d1a6e657cea9d5fa49d3764110a9df2c61bc49143de499aff349a43c7e16fdeVirustotal results 8 / 59 (13.56)Heodo
2019-05-167451819814_PL_16_maj_2019.docdocf3f1433f505938bbe35c498b9544f3e2190abbc599d61a696b1a53eb7ab09917Virustotal results 7 / 60 (11.67)Heodo
2019-05-169962888352_PL.docdoca2803ba4aa7ed10f355395de986950b760f11e549f2af0910eee838a6c9b7388Virustotal results 9 / 60 (15.00)Heodo
2019-05-16496673767794_PL.docdocebfca5a3f2b8d40de048b25cfed54afde0bc5f11a04f396225a6a1e16180b123Virustotal results 7 / 61 (11.48)Heodo
2019-05-168238186344.docdoc1f1d3aa9f829ec43dbd4a301b09e705cd5bdc5bda61e0d3d75bd4fd0a7247e45Virustotal results 8 / 60 (13.33)Heodo
2019-05-1655983199656_PL.docdoc1facd8f109e53b8335391ea1f88f897d1d5b39ca2fcc5b46d4afc69b26772c86Virustotal results 7 / 59 (11.86)Heodo
2019-05-16371699976121.docdocf74a30ab3a011ca4d01d854de885906d64bdac67dac0cbe134ff752b5e5da02dVirustotal results 8 / 58 (13.79)
2019-05-1672927811517.docdoc521e3fbfe35cc36d1ecdd271baf87742e21a3cef52addfdc7e30abf42880896bVirustotal results 8 / 60 (13.33)Heodo