URLhaus Database

You are currently viewing the URLhaus database entry for http://www.atfaexpo.vn/4th-July-2018/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	28453
URL:	http://www.atfaexpo.vn/4th-July-2018/
URL Status:	Offline
Host:	www.atfaexpo.vn
Date added:	2018-07-05 07:09:35 UTC
Last online:	2018-09-08 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2018-07-05 07:12:20 UTC to hm-changed{at}vnnic[dot]vn)
Tags:	doc emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-07-06	Dokumente-CYQ941087308826863.doc	doc	fe590dbdd320aba2e342ba3da11a4d5f1a444c6dbfdbb2cb52828a353ba270de	n/a	Heodo
2018-07-06	Rech-UYI9288475685245.doc	doc	372366545f446662beed555a9f585de52020235dc9f375fcce9329c694a3bd19	n/a	Heodo
2018-07-06	Rechnung-CPS1102058.doc	doc	304c2fd63a14d5afdd567ba816bb6db6592f34629df70b0065e99ef6eab4113c	22.03%	Heodo
2018-07-06	Rechnungs-Details-DQH36300085242123.doc	doc	85fe54960dfe2c4674a07afae11f93f9969c401df857a1959d5b13b87eca9394	19.30%	Heodo
2018-07-06	Rechnungs-Details-NWD58878859608.doc	doc	2c43379cade001fb3078d6dc69f833835330afee02a15ce7d698465cb7265e83	21.05%	Heodo
2018-07-06	gescanntes-Dokument-VJB454086313192.doc	doc	294473c1616b7f2bd7c9ec53c5a774d42c5d5c4e38a9d7c8114f9ab285702674	n/a	Heodo
2018-07-06	gescanntes-Dokument-VUS433590562233016.doc	doc	25615c0f451dbf52d7002bba49ab0370794a1b1411907a066ca171fabaaccad1	22.41%	Heodo
2018-07-06	gescanntes-Dokument-OEB3568538620.doc	doc	e2f2b3831515947ea57ecf401e7dcfdb2c1adba2c97015f40b1b532ac5254f8b	n/a	Heodo
2018-07-06	Rechnung-QSC315866795799.doc	doc	2637dfc2d99de8b0404379caf80ca72ec0d4d5854a5f11e3d1424f80fd8538c6	n/a	Heodo
2018-07-05	Rechnung-HIE9451155.doc	doc	7e0eaf2e09646a6012d13475ad1163cb44e2c335b2724b4e94f60a24cb9a90c1	22.03%	Heodo
2018-07-05	Rech-CCP5760390.doc	doc	61c31bc684cdca57e9dc59e9fcdce28009d2cbeaefe90cb168c6331650761c63	22.03%	Heodo
2018-07-05	Scan-KTN8392743383192.doc	doc	ec71ae3910edb9d54d51b10e06885a0ef8d0d00e73db29774df45a06fc85c624	21.05%	Heodo
2018-07-05	Scan-IWC1077991.doc	doc	43c66f83cc4e0904550c92cd7a5f05d145da24152d499fea08fa09d8a14a5826	23.73%	Heodo
2018-07-05	gescanntes-Dokument-PKI358541507.doc	doc	0463a9cfa8687d7405884af74d518eefb5135cf99643e9a80bfaf838ec923ff7	21.05%	Heodo
2018-07-05	Scan-KMW193777509115926.doc	doc	ff26649a060dcad53a8361e4137ab831af4c577f5c0ef1faf80dac89fe1ff294	21.05%	Heodo
2018-07-05	Dokumente-PKG35933557.doc	doc	75089cdcaf29e7215e944c4d3893a7544a017eb0c696ac32440b2e5b1de11205	22.03%	Heodo
2018-07-05	Rechnung-PTY364705988.doc	doc	458f13dc3f3efe2c7963c9c9ad56dd73f55ac0db1458a0afc83e8a2cdd937504	13.73%	Heodo
2018-07-05	gescanntes-Dokument-XEU6002218625923.doc	doc	d46894e902e7ac47f746e13ecee864e87a03f9236b39a08789ce50ac8f7a68a1	n/a	Heodo
2018-07-05	Scan-ZYN0845663651900.doc	doc	cb4ab1fb49868b8f76c8562d63a2c768ad93c0f06f789abf5bb91e50a73db52b	n/a	Heodo
2018-07-05	Scan-CTT47939031.doc	doc	b8ea2898417140b00b7b081380fcbf2c2c5cb72482e36ffa847a605e51b85af0	n/a	Heodo
2018-07-05	Dokumente-AFX87072725.doc	doc	4b0eeefe8ea1564b3359d4233e2c6d2e4b1db76ace5fcd37d8eb38be5ade5cec	n/a	Heodo
2018-07-05	Greeting-Card-07-04-2018.doc	doc	d0c6825755a8ba34f1fb0fb91b3bbec99b9205e79db7a4f9f19cf10a3186414c	22.41%	Heodo