URLhaus Database

You are currently viewing the URLhaus database entry for http://library.udom.ac.tz/wp-content/plugins/71yj/open_sector/corporate_area/44708000506097_VvhN8I7Dq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	295632
URL:	http://library.udom.ac.tz/wp-content/plugins/71yj/open_sector/corporate_area/44708000506097_VvhN8I7Dq/
URL Status:	Offline
Host:	library.udom.ac.tz
Date added:	2020-01-23 08:00:45 UTC
Last online:	2020-02-10 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-23 08:02:23 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	18 days, 5 hours, 52 minutes (down since 2020-02-10 13:54:49 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-24	List-947810.doc	doc	d95a307f20fd753e0df3654c6fc065d41b38cf945b2b44676188a369417b9ae3	33.87%
2020-01-24	dat U625665.doc	doc	eb6f1870d30ccd0c99ab2ba2baa6f605b0a5ca52a3dda1810845cf69b8434f88	31.25%	Heodo
2020-01-24	REP_20200125_RYI01316.doc	doc	a4ebb7bf9eda6bed80e85600dc0ef35e2df109053e7925adc5e7e7b8bf4fc432	28.12%	Heodo
2020-01-24	Mes-2020_01_24-KCT51078.doc	doc	12b1c47065bb26f7e8287db3578565cf90d40919b69387bc5bdc74c29204827a	28.57%	Heodo
2020-01-24	REP BW333.doc	doc	fadb42916d1b74f1293ad6a0fb9e79a5d8c485ad3dca747689a927986e2aff08	28.12%	Heodo
2020-01-24	LIST.doc	doc	1152574f8e44d0e8d372e21b715911bb6441dd3ab700cc6ebc6fdd9ed5d3f79f	29.03%	Heodo
2020-01-24	REP 2020_01_24 BTY533.doc	doc	e288e38b328476fca5640961a5566d94b7eece0aea4f18085f690bce61954541	29.69%	Heodo
2020-01-24	LIST_20200124_13283.doc	doc	7f0c9aed260e602ccc6fecdf02ef0f77b12ca9a067b9693e77a533850298b509	25.00%	Heodo
2020-01-24	doc_20200124_VV6568.doc	doc	1aa48b25e1b297298e379766ff3f10d1e6810677ef345ad026e708878e891c9b	27.59%	Heodo
2020-01-24	List 20200124 N680.doc	doc	1a8a41cd0c967beeddf5ff91598443d77050bcd001a922d12043631147f218ce	28.12%	Heodo
2020-01-24	list_6892.doc	doc	676aa7ad073642b44dd3e249a1b75504867327c672ee14dcfe122ac282695d9d	29.03%	Heodo
2020-01-24	inf-20200124-IG6034.doc	doc	72a524265f15be75d8d2a59e7d0b660517ed07cc064caf498bb7e747b51de72b	28.12%	Heodo
2020-01-24	DAT.doc	doc	0b200863b12632ebfe7016933294a07e8a21e8fa929ca760de5b41825aee5355	25.81%	Heodo
2020-01-24	MES_20200124_1389.doc	doc	33145aaefc03e7107307e826f851d49fd1d591416445598aeda02316980aa8bc	25.81%	Heodo
2020-01-24	FILE_R831.doc	doc	615f9be36bfdb863e3ec096dbffc5bfa106904f9b495217a3ad8bb78ed8ad75e	25.81%	Heodo
2020-01-24	FILE-DDR123053.doc	doc	24ed47c016ae3044057de9f65965ca39dcd0cb0d66b96e27ea2bd5ddf2d06274	44.44%	Heodo
2020-01-24	arc_20200124_8650504.doc	doc	b895c84cd3172c4a04aca7f50ee4154270ecd69e800c8c6fd4affd0868f673e4	45.16%	Heodo
2020-01-24	dat_20200124_JR13676.doc	doc	d0fb35bf093cc307932021be6f60b55ffb401d6bf00e0798cb7618e4cbb657a2	45.16%	Heodo
2020-01-24	Dat-2020_01_24-501.doc	doc	a5949311c983e124ba9f32963d4edcfec18258c0993ae8f423472645c91d8314	42.86%	Heodo
2020-01-24	inf_20200124_2655217.doc	doc	cc580ae93e8482e6220192b175a1a9f16cfe8e9fdf3f06d9b92445249ecb90f3	39.06%	Heodo
2020-01-23	MES_2020_01_24_A4807.doc	doc	bfc951f4f36bc84bb0cf1a7cbb4d6f26b7b9edc1796f0d86fe01778f841cf09a	37.10%	Heodo
2020-01-23	doc_B2181.doc	doc	fafd041de6222c18b51c9629b861ee2a135802b8c0fdbfc05f3415829d7e0fec	38.98%	Heodo
2020-01-23	File-2020_01_23-TG335.doc	doc	896f2aa2b32a68993941bfcf83d13844d0729441fb870d3bc6c9e7626da650d1	33.87%	Heodo
2020-01-23	rep-2020_01_23-679848.doc	doc	29da9d017cd0bbe2d5b57ebf2919938de9914e669199f58175412bfd7b44861c	31.75%	Heodo
2020-01-23	dat-20200123-YMH087.doc	doc	737261cba27fb5709e37158314184d01a7f6a36386fc2535e236893d82590df2	29.03%	Heodo
2020-01-23	Rep 20200123 4927201.doc	doc	44713e481564f2ce7a930e43bcdda80390718b92301f85cb575098959de0f6e1	30.16%	Heodo
2020-01-23	Mes-2020_01_23-JW539.doc	doc	70084c2ceb78bd84337fbbfdb4765d5cfcf58a003b9d39b07c4e1ca9e7e1291d	n/a
2020-01-23	Inf 20200123 IL719.doc	doc	e64e311b594718ab849cdf6a3379d11774932a94c3498135f107d659174adb40	28.12%	Heodo
2020-01-23	mes_20200123_2999.doc	doc	7c6b31364028d77f2db085615af43fd3b6b991f4bb3f16e271c313d1380310a7	25.81%	Heodo
2020-01-23	List 2020_01_23 WV818023.doc	doc	e5afc379b50bce74cf1a04bf9c3c7076606bccf43f6fd011c95beb8859b95245	25.81%	Heodo
2020-01-23	LIST_8855.doc	doc	8854c592155c1bd835e9edee147c7fa3714ba319ad138943dae4aa94a01d2adf	27.42%	Heodo
2020-01-23	dat 2020_01_23 8113.doc	doc	4dddaa2838b09e549f5ad851b3d54b67b07435a6c0b6edf27df7f0974da321d4	n/a	Heodo
2020-01-23	Mes-ZZQ097821.doc	doc	3f09c758e4c162f34e2f6b69f771874cdbc4aa5d6db3da039ae979513e76ff9a	26.98%	Heodo
2020-01-23	LIST.doc	doc	4b10f942d9197454cbd1e18eb87d18ab77fab4e78186b0157e96404d3ae11a3c	20.97%	Heodo
2020-01-23	FILE 5653403.doc	doc	3199e446acdc5fe2b640280748a1fdb29695ce83fdf68a7a7f4a71e04ce8f428	n/a	Heodo
2020-01-23	LIST-377372.doc	doc	633d6ebaaec651d617bce067d144490211a2c39578124942c8b95c77fe221c30	n/a	Heodo