URLhaus Database

You are currently viewing the URLhaus database entry for https://dieukhiendieuhoa.vn/wp-content/statement/zj1sis/ce5juf-798-54325-j22kk3-fsmc/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	293111
URL:	https://dieukhiendieuhoa.vn/wp-content/statement/zj1sis/ce5juf-798-54325-j22kk3-fsmc/
URL Status:	Offline
Host:	dieukhiendieuhoa.vn
Date added:	2020-01-21 01:18:17 UTC
Last online:	2020-01-27 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-21 01:20:03 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	6 days, 7 hours, 42 minutes (down since 2020-01-27 09:02:57 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-23	INV_3RUDOXJ1ARVR.doc	doc	58ea3ea090f6c9f28a803dae1cab42ff45b64ca695141fa2814c60c6f8c90ca4	27.42%	Heodo
2020-01-23	INV_66102780.doc	doc	c78e3b88c08a9425cc9d6043a9d20e85c160e556a37f57f3f2515cb894c33316	n/a	Heodo
2020-01-23	DCGWSV7FV7.doc	doc	57f80688fb69b44c38dc1526796d523074e95761263f1c762f83cbb491b369a6	28.57%	Heodo
2020-01-22	FILE_74891006.doc	doc	4ba16263ebe3b7d2ab706526609d764259f07dea83997abb280c315f23cd92f2	26.98%	Heodo
2020-01-22	1275808112.doc	doc	02162d1ebbd251123e389c21ac4ee348795335e3c17b1b7a79bcb6b65b2be2e6	28.12%	Heodo
2020-01-22	3GQIY1B9JX.doc	doc	c551f97351c13e0f158f87d3c11bbdb5b9f2b2b10576509755d225e3f3bf46c7	n/a	Heodo
2020-01-22	PAY_43256405.doc	doc	97ebcfa4df6f809a741a2027ed56f4ca2f814097ecbb08eb5c4e6788a3a1305a	26.98%	Heodo
2020-01-22	REP_NL2698108191SZ.doc	doc	1edd209142cc223e891e8dd444c153f50de141b3239f20dfad8f44bf278752a9	28.57%	Heodo
2020-01-22	DOC_PO_01222020EX.doc	doc	1acea02225c6650692c85051717ea09e03791a57fe39ab10730263373f7fbde5	28.57%	Heodo
2020-01-22	SW_PO_01222020EX.doc	doc	5f685d49710e07b7bf6d016e2e75676bcba151a6f2af4c7f08f826261f7fce75	28.12%	Heodo
2020-01-22	INV_MZ0379336227HS.doc	doc	074ec6f9a2776114bc1d9e2da2250b73417843b3357ada6f17a5f4b606ab9a91	31.15%	Heodo
2020-01-22	ST_XXUL1C3C.doc	doc	83abd6dcd22f5ac1d4ff288eb1aecf775fcc6d69a7a6bdfb04cda475ee1d762a	31.75%
2020-01-22	FILE_79221591.doc	doc	ef44a3288d7ae90b174f66d99d6157dace138152521b46b1affc482b2ffe349f	31.75%	Heodo
2020-01-22	H_YB2479572392BU.doc	doc	2e5f9f296d5addeabf6f8caa5e1e989363265c1ca3cba2201a933e734bcf8635	29.03%	Heodo
2020-01-22	H_265069794467746.doc	doc	c4b215a59659e1c91fffadf971f2d9f6a0865a757e23c4ded707e894927c7837	26.09%	Heodo
2020-01-22	SW_1415373087727.doc	doc	6c41de0217099d220e5646b6aa20f6e596c9d39e9361de08795ce79c09ec51d9	26.23%	Heodo
2020-01-22	PO_01222020EX.doc	doc	ef2c024ea8044358a0cccd5cc4d0a39745ceb272e550c3718c2617c16b822de0	27.42%	Heodo
2020-01-22	SW_453863437327384.doc	doc	f4537190336568e84c9ba01fcf8b21c50da4bc7b0eecaafd25acc762bbb1d1dc	26.67%	Heodo
2020-01-22	VDF_010120_TDI_012220.doc	doc	96e71ebc8855336f1ff5006afcd5167486abf09cebca7b194da01a83388a9053	21.43%	Heodo
2020-01-22	REP_85450714.doc	doc	38787b38f9ed7908075086f02ec866791014775637c563d31e7926535cfad02e	20.97%	Heodo
2020-01-22	SW_TH8913478444GL.doc	doc	a3bb6d6bcd9d88ac88e712c7414053eed187a6374f15e40ecdda06f08573ab44	20.00%
2020-01-22	SW_KYKXIVQTAQ.doc	doc	6dd831fbe1f601834039bd80bbaf9b2bbe45f08d144b5d4ad5caa0e8135df998	20.00%
2020-01-22	RP_JNG_010120_SZB_012220.doc	doc	8bb40f94230c4779d38d4849765d3c668b37c66d257ecbf89fe76f042c850958	19.35%	Heodo
2020-01-22	SW_QZA_010120_HHU_012220.doc	doc	6321d13c864a5af9a0a39e72120db0999714232489e7bf8461b8a795db19a222	19.67%	Heodo
2020-01-21	RP_SMD9T1VK6ZWI5.doc	doc	e7cfcc5924207c0384febd2ca4125ab12dc6c893443adf4fecf44f056f3e243c	20.97%	Heodo
2020-01-21	BAL_8Y2Y0NQI160OG.doc	doc	afc71ff2f950fe201610ccb3658ecabd28277de445f299d235048e06bb3c02be	n/a	Heodo
2020-01-21	RP_PO_01222020EX.doc	doc	616b942341fb4aa9e7ef9a9812fc490798f6d57020915c7fdeeb4d6abd868b77	19.67%
2020-01-21	LSGDUMS.doc	doc	3971d2f8dad1df7ae025551c02c685cf456405eb7ba164f380e38518f2d228ea	19.67%	Heodo
2020-01-21	O_NLI01TLZZ0XJ8S9N.doc	doc	f8b7610b7621a91b5d28857ea340a864fe7c4b11e544e0a8d55b06130078f520	n/a	Heodo
2020-01-21	RP_XMX_010120_KXK_012120.doc	doc	0ba2bc2d8ddd7c95e3a17870d34c390e31968ea645b5ca3c5978da28719eeb99	19.35%	Heodo
2020-01-21	ST_YUZ_010120_PUI_012120.doc	doc	0ac7a98f0bbf451a51cb75aa5b065d00e46c0860c7cd1c90a194e8a40a56aa93	19.67%	Heodo
2020-01-21	DOC_34929594.doc	doc	2f2a0cf5f701e2014ef05a565aab080235be85106bd630e67bb5c9e1aabefad5	20.97%	Heodo
2020-01-21	PAY_MG7780339944TN.doc	doc	f8cd0ec825c89fdfbdcebefa1756132a3f4d14e798d4b8f1833de4b6db4eeb91	n/a	Heodo
2020-01-21	PAY_71111962.doc	doc	61507dd50818260d95aaadcd23ed886f445d5c1afe613e53e1633c08ee5bdab8	n/a	Heodo
2020-01-21	BAL_WF2418210574RE.doc	doc	dfe2815ab27e806aa38d3a86f0c43e7aa9fca4b580604411f1d339c734d038e3	24.59%	Heodo
2020-01-21	FILE_1259039194648.doc	doc	ac0a043ddb5cd2ef939889a7dface6d1464766b504e1cf491e8d05d6983e0d12	22.95%	Heodo
2020-01-21	FILE_CP3010134055QX.doc	doc	e4932995a94e0c841f96d023503d1a1bb8e8278fe5478a736b9a4cbc83283ab7	n/a	Heodo
2020-01-21	RSV_83084113.doc	doc	3d7638d3dfb9736e90003021fd9a8a5dde3aef6a2d13539f6734043630d1d035	22.03%	Heodo
2020-01-21	SW_YLUX8F78KGB03X.doc	doc	8f4c14f97223ec8f494ad5728dfc1e5667d176c2400fe9afebf812dad4744212	23.33%
2020-01-21	FILE_04749835.doc	doc	b8083992ca8cf08ef3353bdea04c93eaeb2c2d9a0840119f89868e27b2261a32	n/a	Heodo
2020-01-21	N1HO1T5R7B5W.doc	doc	1a54c57512dbcac388648552cf8ec7536827af1c60f032cf6b3b6fc3197033c4	38.71%	Heodo
2020-01-21	REP_71241377.doc	doc	75c18f408894f1bd20cec6f8a0ee58eeafcdb92b73ab75859ce6132806d9bd4e	36.67%
2020-01-21	BAL_79092410.doc	doc	bab6c6989935ad3265af5fe641a9070d85fafb84e2148f1eb356282fd2a51aec	32.26%	Heodo
2020-01-21	P_PO_01212020EX.doc	doc	97f55cd9a4169904bb304d25dec8f7e772082dc8c1aa3468206307bb6e95df26	28.33%	Heodo
2020-01-21	SGZ_PO_01212020EX.doc	doc	6f95ea0f92c00748e1215edfe2c7b4c7e772776fc5e4c48e67ead100f4c5c835	26.67%	Heodo
2020-01-21	B_PO_01212020EX.doc	doc	ce86730e07d58e1f44343bd7870006ef19b53e3e670f3bff6fa426f847a77c4f	26.67%	Heodo