URLhaus Database

You are currently viewing the URLhaus database entry for http://mayxaydunghongha.com.vn/wp-includes/docs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:295352
URL: http://mayxaydunghongha.com.vn/wp-includes/docs/
URL Status:Offline
Host: mayxaydunghongha.com.vn
Date added:2020-01-23 01:20:46 UTC
Last online:2020-01-27 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-01-23 02:18:02 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:4 days, 6 hours, 46 minutes Bad (down since 2020-01-27 09:04:37 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-01-25INV_PO_01252020EX.docdoc 592a0ef2e88f78e312bb01885b175903af622c96256d39f2186982f551c14c7dVirustotal results 38.10% Heodo
2020-01-24RP_NT8328174992EQ.docdoc 78604e9d3e3b22f2e9ba17e8f462de8eba64a0a4a43f0f5394630f5d2a54a83eVirustotal results 33.33% Heodo
2020-01-24ST_20004673846429.docdoc 8fdf03b30cc2c9defc6420c8be22ae8d39d650d05fd6049ba7bb2433befa8266Virustotal results 35.48% 
2020-01-24JU6361043031SH.docdoc c2cfa510e4a7f3dadf221aae350a035e4dfb095dd22c45dc489f9f8a83b883cdVirustotal results 30.16%Heodo
2020-01-24KJ_XT1305841172UM.docdoc 03523a72a1baf447cbfd05847eae4a01759ab28ea97d963d99486cb70768a299Virustotal results 26.56% Heodo
2020-01-24592197650470761866.docdoc d1ce33fa24c35c0d836fed807b804f901f3a90d80da0bb29588eaa9945795324Virustotal results 26.56% Heodo
2020-01-24RP_67776577.docdoc 2baddd57dd4a5219ad92aaf92b1ddde8f696575f3221cd7972f55e3a04de2c97Virustotal results 28.57% Heodo
2020-01-24OAJ_010120_CWC_012420.docdoc b49c454243db3c873a4b5137c4370a6f8fc036d1b179c5d9a79fa813ce3fd163Virustotal results 26.56% Heodo
2020-01-24FILE_PO_01242020EX.docdoc bc3e0b7d01ddcca239cdd0ed95ec6f0e4f9bd16edc09624adf71c00d5dffe770Virustotal results 27.42% Heodo
2020-01-24QE8625267529FC.docdoc 789f39cce8f34ef92a1114d703e66a8894c7d3025572c148161fa467d1b6fe81Virustotal results 26.98% Heodo
2020-01-24INV_12445809.docdoc 1e1233341f3cabaec36e9a7aedf295488edea6d4cb7f27423040c37bd4d22905Virustotal results 25.00% 
2020-01-24PO_01242020EX.docdoc c0a18fef0ae13f0382cc567ef09d500b74ac60a29ba17ae3461f72bff8bdf688n/a Heodo
2020-01-24NJ4485000147OQ.docdoc bedffe567bdec300da442d0c24e30f94beca6e30401410ac906a60946b63fe9bVirustotal results 46.03% Heodo
2020-01-24DOC_PO_01242020EX.docdoc a8c8f2dfea2c31f160cb6b05c9dbe6033df6bb6119ce43c2a4c71783d49a061dVirustotal results 46.77% Heodo
2020-01-2421404831.docdoc 2caa93025cda12c41ce7d3ac89a2e81c7db0a40a6571fb3cb406c98e2ec71097Virustotal results 44.44% 
2020-01-23FILE_JW5641749233OW.docdoc 44383ba280209b37ce51bd1acbbedeb0ce8a381c7df3cae05f3a624b75bad529Virustotal results 38.71% Heodo
2020-01-23V2THYH2W2MEHZ9.docdoc c82a367077df5a08b1c5607128e658095404e2fe76bd7a0c4c17b8d74bdba0c3Virustotal results 29.03% 
2020-01-23C_7UWQS9CH6RH6HLU.docdoc 1fd3b81ca3d30c9017a44eef7861ac902255560376ba3a1524e22f8bee5fcaa7n/a Heodo
2020-01-23ST_BCR964SU.docdoc e81dc8d25679f4fea9a21338bd9612d079418003d3304029950f146696624ff7Virustotal results 28.33% Heodo
2020-01-23RP_908983371.docdoc 6c80474d30b5602e99856fe45de6e2d0583201c2f3cc46ec895dcbaa7aeb5126Virustotal results 26.23%Heodo
2020-01-23REP_888100546861.docdoc d744c1d20947939b65a0dfa826e7b011a996521e9aea99c7a6be5531639e82eaVirustotal results 26.98% 
2020-01-2354259885.docdoc 3dddeb95fb091ba145a2b0705117b8ecefdcf833024674c193dbe2ccbc4c6bd4Virustotal results 20.63% Heodo
2020-01-23V_WDP98YEJP8DWDIC.docdoc 260b5a47eceb11eaeaddda02644c85294da44e3eaca951d45152e1db6b9f1c79n/a Heodo
2020-01-23PO_01232020EX.docdoc 7521b2fa496f4c7570c4b5674de65c624a094376a42b0eb4c2686fa256201908n/a Heodo
2020-01-23BAL_30227396572.docdoc 5b5c673977368413117352d249d99d185bbc339181ec3953a208adaa6b0214f4n/a Heodo