URLhaus Database

You are currently viewing the URLhaus database entry for https://epzsz.com/honpawk24jdsa/protected_section/close_area/qBVmHV_1fhgyG7d3HM/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	295179
URL:	https://epzsz.com/honpawk24jdsa/protected_section/close_area/qBVmHV_1fhgyG7d3HM/
URL Status:	Offline
Host:	epzsz.com
Date added:	2020-01-22 20:37:43 UTC
Last online:	2020-02-07 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-22 20:38:09 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:	15 days, 17 hours, 54 minutes (down since 2020-02-07 14:32:12 UTC)
Tags:	doc emotet epoch1 heodo word2007

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-24	Doc-20200124-8606.doc	doc	d7cced3bb1b3af97fb56977dd4263f3a5a0ea7cb11798ee24153413ac09f002a	26.98%	Heodo
2020-01-24	List 2020_01_24 67086.doc	doc	1152574f8e44d0e8d372e21b715911bb6441dd3ab700cc6ebc6fdd9ed5d3f79f	29.03%	Heodo
2020-01-24	Rep-20200124-817096.doc	doc	e288e38b328476fca5640961a5566d94b7eece0aea4f18085f690bce61954541	29.69%	Heodo
2020-01-24	list-2020_01_24-1167.doc	doc	ac8d288219395be128e7da9847073a712da5a0a39b4630ac5f1b16c4157b2bb3	26.98%	Heodo
2020-01-24	Inf-YA780.doc	doc	cdf701ffb67767f4d5bcdd0845effd27e5ac15fa2917bccdd24faee0fc0b95d9	28.33%	Heodo
2020-01-24	Doc-2020_01_24-7740606.doc	doc	e59472c8f4856046a424671f067ff4fe21d9a14ddb0f2fed9488f95b99727a6d	27.42%	Heodo
2020-01-24	INF-20200124-248241.doc	doc	676aa7ad073642b44dd3e249a1b75504867327c672ee14dcfe122ac282695d9d	29.03%	Heodo
2020-01-24	Inf-20200124-YC6245.doc	doc	ce660d7f4d173999ba421ad499211d7a5860bb5917791a8f626e84b49b216746	28.12%	Heodo
2020-01-24	Mes_287.doc	doc	c86502170f9dd2b3e17715bdf23916760b86bba38f889c85bfc4f0e3a0fea368	25.81%	Heodo
2020-01-24	doc FD91948.doc	doc	5f7b5b63f008af0a66e1469fdfde921c12560e0dd9e08a3e773526b7a3d4ecc4	25.40%	Heodo
2020-01-24	Arc-20200124-2298883.doc	doc	615f9be36bfdb863e3ec096dbffc5bfa106904f9b495217a3ad8bb78ed8ad75e	25.81%	Heodo
2020-01-24	doc 8349.doc	doc	24ed47c016ae3044057de9f65965ca39dcd0cb0d66b96e27ea2bd5ddf2d06274	44.44%	Heodo
2020-01-24	File 2020_01_24 T70800.doc	doc	f8e5a48fa21ab15f165fa212c584068c9c275fab547b3b65f04d40ccc151ca19	45.16%	Heodo
2020-01-24	Dat_2020_01_24.doc	doc	533a5a288de7b3b037b3d849a6ba1d95b8b6996d84361f9d6a32a81a1b7172c3	44.44%	Heodo
2020-01-24	INF-2020_01_24-487846.doc	doc	a5949311c983e124ba9f32963d4edcfec18258c0993ae8f423472645c91d8314	42.86%	Heodo
2020-01-24	arc 37603.doc	doc	26200f6b88c49206100f74b8de4d6d959dc61305690ec8a4442dbc86a0048f24	39.68%
2020-01-23	List-H7767.doc	doc	dcd9613e4c74c03508bab4afe05cb54716057c6b38fea1e9dae9d42041eb43a6	37.10%	Heodo
2020-01-23	inf-2020_01_24-869563.doc	doc	356d9d432807a2d7fb61e5893fffec5494ff1c4500b5e0786e8548fa32ca930a	36.51%	Heodo
2020-01-23	Inf-2020_01_23-7200749.doc	doc	8d24a8ecfc76b7d708a048bf50179beccdec4f6912c0721c177fa420edf0aaab	31.15%	Heodo
2020-01-23	Inf 20200123 0828.doc	doc	29da9d017cd0bbe2d5b57ebf2919938de9914e669199f58175412bfd7b44861c	31.75%	Heodo
2020-01-23	Doc_2020_01_23.doc	doc	5c2504efd2c1724712f949a3ceefa9464f8840fd024777d7a13132bdcf4ad1de	32.76%	Heodo
2020-01-23	INF_2020_01_23_G38125.doc	doc	b072a08b5c35f8fb107b90ee815584ac4f7b24bd6ae30a803717f1f3fdfbeaea	31.67%	Heodo
2020-01-23	mes 2020_01_23.doc	doc	70084c2ceb78bd84337fbbfdb4765d5cfcf58a003b9d39b07c4e1ca9e7e1291d	30.16%
2020-01-23	Doc_55015.doc	doc	753ba292a9101cd2fa0073bac05ec613232a1c200379ee46c1b8bb58a51f4c07	29.03%
2020-01-23	MES_20200123.doc	doc	935442d00e5e51d838e5a2a3651c249aa15fc5ffc106b3fa9414973e11dd8d08	27.42%
2020-01-23	mes-AB0377.doc	doc	afe09e292b9823a2d28f0c6b6c795b2e3f9d1758d53e30d1eaafd8dd29b2d0a4	26.23%	Heodo
2020-01-23	INF 2020_01_23 AKF795878.doc	doc	9dc63628bbba4305f4e20d32f24bf0416a92edafee60d293788bdc8e81c0455b	28.57%	Heodo
2020-01-23	Rep 2020_01_23 P015181.doc	doc	fa356cafd2c2edc009a85933b576ce9298a6fb4638ee0a1b792402e225913215	28.12%	Heodo
2020-01-23	mes_75007.doc	doc	b63585f5efab051c9a793dac78be7af0a7bb002f803b2d67a828065ee6ce54fd	27.42%	Heodo
2020-01-23	dat 2020_01_23 P48654.doc	doc	aaade832c86b767e64ac370ec468133b1b0f777316fc22d37a85c2254ad1d752	20.63%	Heodo
2020-01-23	Dat_20200123_RU868912.doc	doc	cd0198b82476b890c4adb94b65b55245c7a7a375e809a127ee20f1a01cc26c1b	20.63%	Heodo
2020-01-23	arc-ULJ42487.doc	doc	476a96fc934924101f12b1f1e3548a9688c25bf0eb1c67ef835bc657244b0835	20.97%	Heodo
2020-01-23	LIST-2020_01_23-6144.doc	doc	cb8f7b473f1c200a59f57ff19de1171c4931c3264b691ac05aa63c3d33f37fb6	21.88%	Heodo
2020-01-23	List_20200123_0846.doc	doc	ff382a168f3ab1259e35d9f04c088d783cfb700db20955dce5f7307bbdef516f	33.33%	Heodo
2020-01-23	Arc_2020_01_23_S327.doc	doc	391cdfda17669f8646d016ccbed5a280386e0ee0d329337ceea01aec817a30ed	33.33%
2020-01-23	Inf_2020_01_23_XE85219.doc	doc	a62f3f486509d0fabcf6e3df247c28df135df4464a83c3ef304e61088deac5ab	32.81%	Heodo
2020-01-23	mes_51757.doc	doc	ce6fbf236a7e117e6ed3a7d4a84dfe409728bdf6af52228eed4d91167315cbeb	33.87%	Heodo
2020-01-23	Dat 2020_01_23 L944.doc	doc	60577cf4f41ddd64eb84e77684f9c15171a6b4e10dcd6d47ef15864dee6e2211	29.69%	Heodo
2020-01-22	doc_20200123_055.doc	doc	3f3fa3b3ffd6b91f1bf8e2b173e25767cd08c324342cd0c52a18c82d37ca3ec1	31.25%	Heodo
2020-01-22	ARC 2020_01_23.doc	doc	b3a1cdb8288e369fec04ec55e099c9bd7e8593d24da31870c3a782a351d98ba0	n/a	Heodo
2020-01-22	inf_20200122_1413.doc	doc	80adb71737932a74af3f047c82ef1eff2ed4904e57300358aa3ddb7bffd30548	27.87%