URLhaus Database

You are currently viewing the URLhaus database entry for http://annhienco.com.vn/api/fFBY/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:289907
URL: http://annhienco.com.vn/api/fFBY/
URL Status:Offline
Host: annhienco.com.vn
Date added:2020-01-16 10:28:08 UTC
Last online:2020-01-20 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-01-16 10:30:04 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:4 days, 4 hours, 27 minutes Bad (down since 2020-01-20 14:57:10 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-01-18Invoice_SS31_3369738.docdoc 2f90590da13be020cab94f6054224224af5d674bb07964796cbb051cef5dde3aVirustotal results 27.87% Heodo
2020-01-18invoice-TAA322_4316912.docdoc c0ddf7ec4f4905aaafd9371d7d00d8bd21bf9f5d9d49403591e1cfbde36925ebVirustotal results 24.59% Heodo
2020-01-18invoice UMK57_5537319.docdoc 83f1652682079f39835315667ec159797f69ba97e5032d110999fc7f0b6a3b43Virustotal results 22.95% Heodo
2020-01-18invoice-798_32262746.docdoc db670e32ccf692c3e85cf5a07e047bb337af24ad3de408d8894a3c0ca2b8c505Virustotal results 21.67% Heodo
2020-01-17Invoice-98_111522258.docdoc f95984ef535315242fca3fc45cb952c5918ca8fecb789f8a803e4e1471a25c94Virustotal results 22.95% Heodo
2020-01-17INVOICE G6196_93052017.docdoc b09c1b973c6ca799fe7817c241a0a1c56f907feffe6ecd63daa615be18c7b077Virustotal results 20.00% Heodo
2020-01-17Inv-WEHX799_175474.docdoc 562abea095cfa78a34b3896d0d1c23bb11525f5c7691852026b0aaa3d97151c8Virustotal results 19.67% Heodo
2020-01-17Invoice-44_9123072.docdoc cf8f7f9ebc40351bf67d9c14743199a531bb1c4ab1155316debc244c85a29cacVirustotal results 20.97% Heodo
2020-01-17Invoice_I044_956853.docdoc 864035dc0e85ab49fb76ae8a004075c03e1eaa8c2694f427a2999cc5f9e6bca6Virustotal results 22.95% Heodo
2020-01-17INVOICE-TD7147_660381.docdoc 210a6a37775d925d838f75b9b8c15635f4b9a2fecade8e4b1f6fedacdc428c72Virustotal results 22.58% Heodo
2020-01-17Invoice JTXJ2_8372833.docdoc 127fbb144e09a37a3fb74478730d2c431fc0876897035497e7dce1c49d3d539fVirustotal results 20.00% 
2020-01-17Invoice-MJ05_256048.docdoc 02b101f1e0c6d3901cafc61ecc03bb67ffc336f5239ac8f0d0195de3d54873a3Virustotal results 22.95% Heodo
2020-01-17INVOICE X9766_9779984.docdoc 191b8b7a7b8d1217997804b5f985819c099021f8a0fee93e1e9201004ac8667aVirustotal results 19.67% Heodo
2020-01-17Inv-KVBP6_422546.docdoc c220647352412103b8c382c4672cb35210ebfe1ab3f24fbf1477d2664ad24c2cVirustotal results 19.35% Heodo
2020-01-17Invoice-86_046415.docdoc a841b264457a4ff7ff83a9b12a0f80c9902edff2f134497e5906e16a3b5b77adVirustotal results 19.67% Heodo
2020-01-17INVOICE_OG56_416715.docdoc c682de9b99812ab7c470a026d17e1060364b9bf4e1890d733b05ef312452f8d8Virustotal results 19.67% Heodo
2020-01-17Inv_TT0516_546456866.docdoc 72e668b37382f89e2ca769002432f8795a29663a6d98d1e2ad158c6cc13f3794Virustotal results 19.35% Heodo
2020-01-17Invoice_5_337291.docdoc 4f644a8196fe9d7cf7e58095ab1c94dd50b52f42d2f5b01a2fe6c7426d93f703Virustotal results 34.43% Heodo
2020-01-16INVOICE-441_337381.docdoc 5e7e6bf845a096181e80967ae913ff9504a837a8daea8ce21a7d832bf8f93aacVirustotal results 37.50% Heodo
2020-01-16invoice_I8496_280657.docdoc 443e433f060461b09207bb30cb7b5cdea7f4b53176d4554a94524b25f0e984b3Virustotal results 34.43% Heodo
2020-01-16Inv OG2_3991068.docdoc e4cec407fbe7418967f20fcd68b1332ddb28cd8886ff472a57a1b6980eb8634cVirustotal results 27.87% Heodo
2020-01-16invoice AB30_055118782.docdoc 10a9ecd17e41685a7887e61d9f954dda1fb10b88f63108e0fa658862eb6350ebn/a Heodo
2020-01-16INVOICE-BEXZ89_32192014.docdoc 8d08c64109af9505b6c11a3290ec23b392dbbb001faf7a0e568b4b31ab1eb138n/a Heodo
2020-01-16Invoice-WU1067_446555345.docdoc b44638c59970903aff549cbdb9555ba334f7471ff807475bb8e1713cfa35b0afVirustotal results 29.51% Heodo
2020-01-16Inv_HRDT4_458306159.docdoc e26578682e83567bf67b52f8fd1537ed5d83310699ee943140afaf4049c7b757Virustotal results 28.33% 
2020-01-16Invoice_0132_5566887.docdoc e2ea5c5d40800e98113e9d36c95bbf9d78d3f13159f6f5ca61b8c014c1613489n/a Heodo