URLhaus Database

You are currently viewing the URLhaus database entry for https://xcx.leadscloud.com/extend/multifunctional_resource/verifiable_area/ttiptrh_vs7yzx/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:288454
URL: https://xcx.leadscloud.com/extend/multifunctional_resource/verifiable_area/ttiptrh_vs7yzx/
URL Status:Offline
Host: xcx.leadscloud.com
Date added:2020-01-14 19:20:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Blacklisted
Quad9 :Blocked
AdGuard :Blocked link
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2020-01-14 19:22:03 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:3 months, 1 days, 12 hours, 32 minutes Bad (down since 2020-04-15 07:54:21 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2020-01-16456771-418567.docdoc aa056f7c37eee79e9ffcba770d4d967754ea4ecd2562dbc480cf1e5759059e99Virustotal results 27.87%Heodo
2020-01-16Untitled 468-484846.docdoc 42be745d0b6670f2d82ff6f9b230498f1d496b22be3d669d3b03429693631298Virustotal results 27.59%Heodo
2020-01-16769402.docdoc 9f4e7e72382e9ba7946f7150653d8870fdc4f7ebf872bdfc51f86b6f6252d228Virustotal results 25.81%Heodo
2020-01-168145271.docdoc 5336e06637246298e68fe542f172f3b859b61f913d7b1b1f402dd43b9eab0aeaVirustotal results 26.67%Heodo
2020-01-164866.docdoc 9d3d46a7f64b4f0e5d294c1d2560f9a51ac2dae6fe734243569e62d7161ae7f0Virustotal results 24.19%Heodo
2020-01-16575992.docdoc 31587dcff85cc6355aabf5e45108b25a221543d83aef620bae1d13a0b042f8c6Virustotal results 24.59%Heodo
2020-01-16Untitled 3920.docdoc 1ea26ae156e50ac1ddc42b7759789c5aa40697112afc006a4eec2131a9057186Virustotal results 22.95%Heodo
2020-01-16Untitled 553666.docdoc fd10ac0355308d4f45fa5a35b0f6c729c5a507258de0a74653c9cfa3d6cec96bVirustotal results 21.67%Heodo
2020-01-16UNTITLED 8161757-730669971.docdoc 08258403e9f6dedf233554f21865bd22b4aa6941973c9268e933bb39a335d1f3Virustotal results 45.16%Heodo
2020-01-16302135-0351728013.docdoc 72d879cf6a283602966f151dec323a7b02e19627aca02a4e3550863c1e54c76cVirustotal results 44.26%Heodo
2020-01-16112669-098297.docdoc 7204a25ba4b77bff66469e40fa49147a9678f02340c621c739a96f7553e0d70cVirustotal results 45.90%Heodo
2020-01-16292.docdoc 34ba96b376f260f361c61d4c896f95e584a1dc6aafd0fc609f6256f21d97b7ceVirustotal results 44.26%Heodo
2020-01-16231-2474800743.docdoc db3d2fa04f5982cb16e5f797f9e7c2b7247fd8ee9fe0ae3f6aa64ac5ea286d7fVirustotal results 42.62%Heodo
2020-01-15Untitled 09994.docdoc c5ede9120a7219c5db64d4bd1d28da88ecde710c606892fce486b6771b8f7e41Virustotal results 42.62%Heodo
2020-01-15Untitled.docdoc 78616833085cfea2eb679516f1d7f7a22c930463f5d32622b2b5f3af4474021bVirustotal results 35.00%Heodo
2020-01-15attachments 2199171.docdoc 9971277848a1d350c97739f63ba5f602876b79c01574e3b259916bf1de8502bfVirustotal results 35.00%Heodo
2020-01-15FILE.docdoc 2853b45864dd97b3be97f9acfcc6be83c6024d9b4e5b48d6b56a8c622e106b5eVirustotal results 32.26%Heodo
2020-01-15attachment-905 58091451.docdoc 53b1e4419026f8b3d712d63cffe8ecb677efb19b505082a2d9d0e6be6e83ecadVirustotal results 39.34%Heodo
2020-01-15FILE.docdoc 498ba73b01d20bf622b233b774f02d1f612e4ac63f2a7147e50219cd2ca14a12Virustotal results 35.48%Heodo
2020-01-15Untitled_file-375022 015229.docdoc 0c7825c80066650f70b7c1f56d287aae552fc2da9e2312e59df2543dbe55637an/a
2020-01-15Attachment-7135522 23907925.docdoc c41155d2e8ce4ee09707a46b488e2bb2c03c051f64b3808a3e817e092902ca74Virustotal results 29.51%Heodo
2020-01-15Untitled-0973084_9113928.docdoc 2e08996c6b2e945284298d12fa32aa2f9095d766e0b2e67f6f3b8e07ee541810Virustotal results 25.00%Heodo
2020-01-15attachments 62425-406294816.docdoc 9f3cda85d6c4b74c0b3dec824352d5dc13735cbef98e2ffae4811af7873c4670Virustotal results 24.19%Heodo
2020-01-15Untitled_2622 4338381.docdoc 789f9210cab6cd5d82f2eb8839d8f8681a18cd0e7cc05d4871ee30adf22833eaVirustotal results 22.95%Heodo
2020-01-15FILE 7543527.docdoc 609637f33b697bf3cf03c6198e03538893f491cef1aa0894fe101dae3bf4b67dVirustotal results 18.03%Heodo
2020-01-15attachments_896170.docdoc 2643b7c39e5ee1c738ff00da841b165c9db63557280f78bdcec21ae5443ca352Virustotal results 18.33%Heodo
2020-01-15Untitled 2387.docdoc e7a57dcfd6677c594a09ab751b73790122e60e04ad8d00a2007eb39050569a9dVirustotal results 17.54%Heodo
2020-01-15Attachments_3229902729.docdoc eb7720d15e2ca5938cb439a13b187140ee9208b83488eb3d709a14d5f9178cd5Virustotal results 36.67%Heodo
2020-01-15FILE_0996985 43315966.docdoc 7295c628c5a8c7d747f2a1108316b2c182034558ccdabc495e8a4f5beaf5771cVirustotal results 31.15%Heodo
2020-01-15Untitled 2249242_460183.docdoc 5ebcbeb7a8d97a1911320a59b50e6439c7999dab5b30005aba25b2e82b6d33c7Virustotal results 31.15%Heodo
2020-01-15Untitled-145158 1529052.docdoc 2488e751178a194ea6dda9997f7406bd0ecf72184d0c3e5926aefc4246efa1e7Virustotal results 31.15%Heodo
2020-01-15FILE 8580173.docdoc abbac4cfe051493dc1f2e9622f16494e6dddd3bea503031cd4d178fadf50593eVirustotal results 31.15%Heodo
2020-01-14UNTITLED 11443094-993.docdoc 94c08dc1525df7f0ed38e3c7b6b60c548e0e1387ecaf0691b835388d35d625e3Virustotal results 24.59%Heodo
2020-01-14Untitled 5393088561 86073718.docdoc 719cc760cdcd62afd663e6813781d494443f47988388cf0ba10ec6b93f74103an/aHeodo
2020-01-14FILE_6267662.docdoc 8ba6b30a8b1f359d94b21946288b672916b5090161d40e97aec3d5a2bcbea0b2Virustotal results 17.74%Heodo
2020-01-14Attachment_5492753778.docdoc 5c5fe1e57f41db6a033493537f60c585226b6871286d41fb94ac9559c86e5338Virustotal results 18.03%Heodo