URLhaus Database

You are currently viewing the URLhaus database entry for http://bizajans.com/wp-admin/statement/h0f17oxrg0mv/zpryq-9902639-78273900-jbv6csp-p1eleit1s/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	270350
URL:	http://bizajans.com/wp-admin/statement/h0f17oxrg0mv/zpryq-9902639-78273900-jbv6csp-p1eleit1s/
URL Status:	Offline
Host:	bizajans.com
Date added:	2019-12-17 05:00:04 UTC
Last online:	2019-12-21 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-12-17 05:02:02 UTC to abuse{at}megatrhost[dot]com)
Takedown time:	4 days, 16 hours, 39 minutes (down since 2019-12-21 21:41:23 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-21	94848070.doc	doc	a06cc13873f468bff3b392fdc9fe7e557a33997defc339f58176f0fc15d36ec0	26.23%	Heodo
2019-12-18	Q_PO_12182019EX.doc	doc	8b6d8ca648ec025d56ed53612f424fae30819e1fd56777d42c87decb9255b561	22.95%	Heodo
2019-12-18	INV_43JLI8MIQAO6DQY.doc	doc	171e26e1ed7f8a422b2a0f5098949d0faac6938cabdf6a5ef2aeb95761c92eae	22.95%	Heodo
2019-12-18	BAL_WVZ_120119_RSM_121819.doc	doc	94e0bc0db239e792a6c52eb45fc69d0681c8a39c67dd462973c72d6560a4519a	21.67%	Heodo
2019-12-18	K_GAF_120119_BLX_121819.doc	doc	5757449785632b624ff738f718b04e00758e864f469378b8c513d55346c5d3a4	20.97%	Heodo
2019-12-18	KBNC_0862908082.doc	doc	d19458049a137e1bfcd3f580aeef39686b6e1ea204dbf4f4a3abf79bcde08016	42.62%
2019-12-18	FILE_69705476905617758634.doc	doc	37f744103501939950e1e7a289db55c5de5fd4a8a34080b55907990407882295	40.98%
2019-12-18	PAY_82569529080.doc	doc	5d06e9b005226160b0e131f85812f4f98077b439baebe2581f27b3678c920990	41.94%	Heodo
2019-12-18	BAL_MT6125457903VD.doc	doc	2175e92f59d8610b907e3989d6fcd6789e81855f2c86efb3a4ea836f934daa9d	42.62%	Heodo
2019-12-18	SW_PO_12182019EX.doc	doc	93d369757cf3781835bcb065259e16616edc5dd61239a27366bca7abb4b7c0b2	36.07%	Heodo
2019-12-17	REP_01198788.doc	doc	30d32e0187649a1613e5227d8764a5cf550f6458d7af759be91949fb28206e5a	37.10%	Heodo
2019-12-17	ST_KFT_120119_FNN_121819.doc	doc	09d7ba0e62f409bf7ec8e9e18bfbac4963eb0910a20274efcdc32897fafbae43	35.48%
2019-12-17	082281477855866.doc	doc	3ded526749a42b3770415119aba7d4244e56db4c337c81f1adde6fc9ada6ffd2	n/a
2019-12-17	SW_ST2D8KGA5KV1VRS.doc	doc	b052f303261ad97b693c92155c7f187664dd9c144538ac447d7eec82cc8f1cb7	29.31%	Heodo
2019-12-17	PAY_PO_12172019EX.doc	doc	2e9348dac9d49840475eb451c64ff8021dacd4715d100a8c374a1408fbdbcaea	n/a	Heodo
2019-12-17	DOC_CAD00KKPFJ.doc	doc	1136e35fc0516942e0100a007758f647645b7268118f21f44df73b2497fb2a22	29.31%
2019-12-17	ZW1554806730CF.doc	doc	a53ac5677652d397c8666a63f766c4ff7921fe7b50250c9e7c6e2eb32a4d7941	n/a	Heodo
2019-12-17	ST_B83BWB4U.doc	doc	0033429b263b67e4f436ffe2aaecb77de6b85ca9d6a4c7f8a37f320cdb0a8dd8	28.33%	Heodo
2019-12-17	AEK_120119_RWC_121719.doc	doc	f329c4cdab08d883c80e86f83a68f7a10642d2565f36653dc4b0619730855f8f	n/a
2019-12-17	PAY_B5R217860YWCMJ2.doc	doc	ad7c1cd86f24b8b0bff6ab945a5c4d279156763a10b4d85f805baeba096cdb75	22.95%	Heodo
2019-12-17	93190083.doc	doc	cb58a6837dedb9f1a8dcf5d0a37dcc35a2e2fd90010e49b7ceb644e77bb135e1	n/a
2019-12-17	SW_PO_12172019EX.doc	doc	21fb791ba9108627682a7450513994fcbc0644182399573b5601be6c609f0c51	n/a	Heodo
2019-12-17	RGM_120119_EKY_121719.doc	doc	1c1f8c21ca0ec906bf5286c8474dfa5202c11b49646881c9919f07c6d3e781b8	30.65%	Heodo
2019-12-17	VI7126795777CQ.doc	doc	0c659cfb446e20a87d733a9566d9bb40bb0500f00152a80b9a477ea0e4b0726f	n/a
2019-12-17	83095567.doc	doc	836e40ae7edca39b906b3df99557e994a413aa4b9359ef7d65ae3546b7f6fa74	26.23%	Heodo