URLhaus Database

You are currently viewing the URLhaus database entry for http://clicksbyayush.com/snippet/Scan/8p2b732afreu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	289717
URL:	http://clicksbyayush.com/snippet/Scan/8p2b732afreu/
URL Status:	Offline
Host:	clicksbyayush.com
Date added:	2020-01-16 04:54:04 UTC
Last online:	2020-01-27 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU002249836 created on 2020-01-16 04:56:06 UTC)
Takedown time:	11 days, 17 hours, 12 minutes (down since 2020-01-27 22:08:55 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-18	SQ_52002499.doc	doc	d3d3dc6f3a0a047a3416c624a289f3d06d7ae4539e8f72277182f0dc22359421	30.00%	Heodo
2020-01-18	PAY_X7HWPHK0L6X.doc	doc	04e6f87e6acd2002c731ce6f88fe4d965ba42d2ef385eae96d632bef0309104a	26.67%	Heodo
2020-01-18	DOC_66809412.doc	doc	9ba523a49280a5213dbdd7832ba69bbfed94fe8c05f269bb8319c05003a1a1b0	19.67%	Heodo
2020-01-18	DOC_PO_01182020EX.doc	doc	01f5da949cb52183ee5bb2be1b8bf7604f3ac17ce933dfa373ed30a4612d966b	19.35%	Heodo
2020-01-18	FILE_VY31FGCQ.doc	doc	898938c960a20b8e73e9c648590cf2a66a823aa28cec79d54c0a3a6db9176e5e	18.03%	Heodo
2020-01-17	REP_36113049282975932.doc	doc	de952748c6ec69af07599737adcc6f274bd8c73dc723cb218c14b290d2ed6600	22.22%	Heodo
2020-01-17	INV_7931020526015038829683.doc	doc	397485a2bb27c1afd95ff7c8b962c7ebfe4983db30d1e65b71c0529cdddb2f08	18.64%	Heodo
2020-01-17	BAL_PO_01182020EX.doc	doc	e6204835b0d460cfcd13270ff94afd23bf0b19c65a23247fede690cf1fff08d3	18.03%
2020-01-17	INV_MT2742987650LU.doc	doc	563fc587ce7a3bd7fc02431b95e5a69d0259aa470a9163b46137e4b6b78963a5	19.67%	Heodo
2020-01-17	ST_11907944.doc	doc	77a0a8de225a0e6c5933bbf470c5ddc67e19d5ded59985a1e7a1b2316241ccab	22.95%	Heodo
2020-01-17	48708107.doc	doc	2dcd7158664b730a2b88ed5e36ff5fc8da8a49a3668ce6f3bea6a364bb4ccca2	19.67%	Heodo
2020-01-17	NCJG_A3X5FCI90RO.doc	doc	88067e56e4765755590fc617a21d46e45f6ebadcaa14ed8377715c43c4ecd3ab	23.73%	Heodo
2020-01-17	RP_81BOX2IRSEMM7.doc	doc	7bb5fdc2f055e22227b6471aa23ea22c95fa0235bc96bb40893513d1fc6e6d76	18.03%	Heodo
2020-01-17	FILE_886971409060116.doc	doc	f551cce962d17fa9a9a26927436adcd8505c5a675436833b8c386606fc612434	21.31%	Heodo
2020-01-17	RP_580464287927884544.doc	doc	f1569c025b21d44c68867d142ebb944c3550240673430dceaed626e80acf386d	22.58%	Heodo
2020-01-17	PAY_US0367066452PS.doc	doc	a13b037457db0cfd6982e62e3f76dd834a9ae2ab29af1bbd7b72023221c47e69	23.33%	Heodo
2020-01-17	RP_VLP_010120_CFS_011720.doc	doc	c09c7c6d5294ba3e6b09892d5972b1c7fc98cacc844c424632a73592e3cdbc03	20.00%	Heodo
2020-01-17	WKA_010120_LBZ_011720.doc	doc	75531f65c3988bb542828939f328dc572429bac0a0adcfbd6b81367b670055ff	19.35%	Heodo
2020-01-17	BAL_29873024.doc	doc	541cafe691e8266f1c35a6b075b44aef3accad6dc2024f8bb0c11717dfc54788	19.67%
2020-01-17	VBL_010120_WRW_011720.doc	doc	01803cd4cad276de7bde227f5eac222a512d1cdc85252fc4c34d23c36296fb05	20.83%	Heodo
2020-01-17	SW_LZNGFZ7AFTH.doc	doc	b5b1a9c9342c9be2197fc3f9fc5c0a9138b052bfc06583f9719773397f567e34	43.55%	Heodo
2020-01-17	62040624999440085.doc	doc	9db035bd19c8d9db27e5c352d8e713cfdd13b9a155772e9266b18ec30d67fba7	n/a	Heodo
2020-01-17	RP_01322001.doc	doc	242bf1a0026fb7d1e3e4c0187c229aed599cacc94382f096f08f8ac65514ec7b	39.34%	Heodo
2020-01-17	BAL_CUT_010120_REY_011720.doc	doc	202cc9a7826013e97f28dc78ad0d4f5d17628d5b6d543993593ea04fd7a4c2f3	40.68%
2020-01-17	INV_IB5176901775AE.doc	doc	48844b331c7b74aac980dd55bd8d8388d187e2d3041712303c59644ef3fa16b7	36.07%
2020-01-16	SW_EAZP1I6XAP.doc	doc	228da1e8833b2deb4570eb45b4cb5ceff4c62dd963e802c3a5b769ca9d28ff42	36.07%	Heodo
2020-01-16	BAL_ZJL_010120_ZPX_011720.doc	doc	58284dd1bedbf2c82204eb15cdad07525a70b52ff1729e051ac101c066531ce3	37.70%
2020-01-16	PAY_38945388.doc	doc	bdf804364dd192c13674bee97bdb5581aa946b7a6e0797cc0fd5d81f717f26ad	36.07%	Heodo
2020-01-16	8653725507296239225.doc	doc	e314c8b472db81404961016b49758c54595600e83fa2801d5cba0089cb8b2223	32.79%	Heodo
2020-01-16	HFS_010120_TKK_011620.doc	doc	6dc7f5025f0a9ba2abeb82a8db9a479f41a3a3ec8b558455b930d54029108638	30.65%	Heodo
2020-01-16	SW_PO_01162020EX.doc	doc	67e4ad463f707098e9dd3aa9ef44543687de41237cb6bd15500e428aa17c34c7	31.15%	Heodo
2020-01-16	5336586533833263687.doc	doc	8bf5586fdf5c09bd987b2246b8a60988842d2b3ca683a4fdd6f0a698d17909b0	26.67%	Heodo
2020-01-16	BAL_Z6J2DSAAUS6XG107.doc	doc	0e0dcd97d94a05bf1cf56067a564fe6ba5666bc00fbb808c44bb4c17a5bd81a8	26.67%	Heodo
2020-01-16	RP_LN3863412893PK.doc	doc	1126c643bff1cbc4e48db0e96c1bb7522d89a64e31bccdf10629cc5402a5bdc6	26.23%	Heodo
2020-01-16	REP_4VE3VL8FFL.doc	doc	14aea8de9f3177801134498a4f81de17f490b3cd087fb826e8383a2b1f1e7049	26.67%	Heodo
2020-01-16	U_YGV_010120_TIR_011620.doc	doc	9d8dbba8a0e996de7449c8dfe3136a7eea73a02e9b6f67a095c53c54abb04111	24.59%
2020-01-16	RP_I96PD22J.doc	doc	2fab2f5e3f28d6a81ba72956df8ac00de3d7dbea09496ae791fd20a7954fe1ec	n/a	Heodo
2020-01-16	ST_88004413.doc	doc	9b114f67484468604da8e6d028500f9e0fb32be159dc5dba550cd295be425b1e	24.59%	Heodo
2020-01-16	DOC_11808487.doc	doc	a8daa5abd8b28562b74c89b4eb926bba5e5bfddc7746e95a5d4055896680ea69	22.58%	Heodo
2020-01-16	FILE_M8IZ2Z7KYAFCSQAC.doc	doc	771ad3b2889d51eae42be0c3c53f7ab24667105d94fcd6e6dc93bca8ebbfcd85	44.26%	Heodo
2020-01-16	BAL_14952826467866.doc	doc	703b07275efea992224279b516f2910a007ce6c71217c6c00557d10fd68cac74	41.94%