URLhaus Database

You are currently viewing the URLhaus database entry for http://afweb.ru/mbksle153jdsje/multifunctional_resource/iwRU_0ZyeI6ZnhZ_profile/jentjennk_v1w0z4x0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:288503
URL: http://afweb.ru/mbksle153jdsje/multifunctional_resource/iwRU_0ZyeI6ZnhZ_profile/jentjennk_v1w0z4x0/
URL Status:Offline
Host: afweb.ru
Date added:2020-01-14 20:49:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Not blocked
AdGuard :Blocked link
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2020-01-14 20:50:03 UTC to abuse{at}reg[dot]ru)
Takedown time:11 hours, 47 minutes Good (down since 2020-01-15 08:37:19 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2020-01-15Untitled_38165.docdoc c758eda50e69cf30766e229c8a0e31a6ffd61ce8c06ccce6be7448668b19b002n/aHeodo
2020-01-15Untitled_5064531603.docdoc 1fa6b7a7605dc661da0153aeb358bb43dece920fd742c3dd961919856a5fa69aVirustotal results 36.67%Heodo
2020-01-15Attachment-646161 5695366.docdoc 7295c628c5a8c7d747f2a1108316b2c182034558ccdabc495e8a4f5beaf5771cVirustotal results 31.15%Heodo
2020-01-15Untitled_file-9173.docdoc d8d5b2b633ee63d37479e20677b732a78e17bc33409d6a9ef49a7f7a45cce08eVirustotal results 31.15%Heodo
2020-01-15Untitled_file-834678.docdoc 87c8765523549bffda97b2026e7d94acad88047515f157001ca32b3b7c778f54n/aHeodo
2020-01-15attachments 885805_05940.docdoc e3fb9b4c04f1d6bce2e371b1f8c74d9ed63a73532399d8c5ad2d5ca15a6e2b9an/aHeodo
2020-01-14Untitled.docdoc 94c08dc1525df7f0ed38e3c7b6b60c548e0e1387ecaf0691b835388d35d625e3Virustotal results 24.59%Heodo
2020-01-14attachment_941824-306125.docdoc cdda747eab680e07133b88e6970fd19e3ef05855d6ba3bc3c43f445e9a3bee6cVirustotal results 19.67%Heodo