URLhaus Database

You are currently viewing the URLhaus database entry for http://www.jefoundation.in/wp-admin/common_resource/close_LhxR3an1KR_hp5Mu1jszyc1X/32797191040607_B6JQR7/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	299970
URL:	http://www.jefoundation.in/wp-admin/common_resource/close_LhxR3an1KR_hp5Mu1jszyc1X/32797191040607_B6JQR7/
URL Status:	Offline
Host:	www.jefoundation.in
Date added:	2020-01-28 13:14:31 UTC
Last online:	2020-01-31 05:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-28 13:46:06 UTC to abuse{at}wholesaleinternet[dot]net)
Takedown time:	2 days, 16 hours, 10 minutes (down since 2020-01-31 05:56:41 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-01-30	List-2020_01_30-03564.doc	doc	5ea76cccf8e914371d5e02ad3083628b299924c68d1c3bd643a9f8c214c8ace2	29.69%
2020-01-30	dat-20200130-BR604866.doc	doc	7099bcda5f0b4caadc077f6bc794a4dc8933e66863535f49c23c8b19ec793b7f	28.57%	Heodo
2020-01-30	Rep-2020_01_30-696762.doc	doc	6686a87ce4ec03815de4f384705a2a876aee4195ecaabf95d727a6d63030d4e8	29.03%
2020-01-30	Rep 2020_01_30.doc	doc	093fe06865cc5cd449e9684d621efaf181505881f5e0e818b0ec9c4459ef1ba9	22.95%	Heodo
2020-01-30	LIST 2020_01_30 VC42192.doc	doc	038d0ce1dd9ae6a7d69c47a40781b784a8ddca91244f04123a85722bcd787b84	24.19%	Heodo
2020-01-30	inf W411.doc	doc	cbfd00a796bdd447134f7dc1f38823e8e2eefb7075068cc197ec67c044ecfc24	24.19%	Heodo
2020-01-29	DAT.doc	doc	0c899fbd963450fdf0d3d487fd91c0ef00e8c4191115d99d58a6b75476b06254	22.58%	Heodo
2020-01-29	ARC 2020_01_29 120264.doc	doc	f794730342329d1ca756e53becae5be97d1f5fc5628dc8dd371111d0d8df96c3	32.81%
2020-01-29	Dat F98421.doc	doc	b09c8d39fe17d600ac2beffd9540076f55d944b41ae3c11b26600252a272b3ec	26.98%	Heodo
2020-01-29	DAT 20200129 2337.doc	doc	a6f8d6e5f80b47b55146e82c61a78c5ed8c451bcb68d157dee574d02c768ba30	26.56%	Heodo
2020-01-29	Rep_2020_01_29_26106.doc	doc	41f2df35fe03375e39b939c95142a9c04e1613e60bcdeb4f50ea339349d04243	26.98%	Heodo
2020-01-29	list-2020_01_29-HHE120.doc	doc	7fe7d585439b5c35ae237be440c87a62cc89bfb0bb98bceb800b85b6aefc7ce6	27.42%	Heodo
2020-01-29	INF-KIQ42258.doc	doc	aad9025b37d955a0929dc76185e7b87d374e735e3a30a258bd549dcfc7a1bf27	26.98%	Heodo
2020-01-29	FILE_2020_01_29_4120.doc	doc	a1245dc00abc837e5b912c2aab2cc8eb34eb70db4bad71991edb4854fccadfb9	24.19%	Heodo
2020-01-29	DAT I1891.doc	doc	fb8b1e69574f8ec2121b612f1339a516d01536a2174f432585e94c98fba7ab8b	44.44%
2020-01-29	file_2020_01_29_417.doc	doc	d7bcb9c0a8ff27400a3e2a846976dd062129a404c432e34e4fd885f734300144	44.26%
2020-01-29	rep-20200129.doc	doc	623303d6b597c92e43276ac21c6338a64cb078760e9a74bd08050666a3aeca13	43.55%	Heodo
2020-01-28	arc RYD1470.doc	doc	20f6d17240c7bfbee9f9691efd1bef583201bfdddc09ab886887cf5d4993773d	41.94%	Heodo
2020-01-28	File 20200128 834416.doc	doc	9a1962dfceb1a62ff349d932160c03ec9304954e3a0fb69e25b672fbef7b90b4	36.51%	Heodo
2020-01-28	Doc-2020_01_28-NQP1961.doc	doc	e6384df1ef6040795e8d6521f54723cd118a6b6cd4a007f0ca96e3558f55b81b	35.48%	Heodo
2020-01-28	File-20200128-RO48592.doc	doc	76288b03aada28f313d41a8856e42320372dfc03b255335b3d8c0427cb01c4a1	31.75%	Heodo
2020-01-28	File 874781.doc	doc	905563c6be86ed6e853e1f2bc9f4cdffa60c74647a96e1fe871a53a585ae3a10	n/a	Heodo
2020-01-28	list-ZCS2418.doc	doc	59428bbec1459b7f3517f508013242a3dd7f4dbdee059380b5ff1c265abc6197	26.98%	Heodo
2020-01-28	REP_MMX353273.doc	doc	17de704a282307408b556e2328dec5c5715d0cd7136dcdc1d6fe54f841dc2bc4	23.81%	Heodo
2020-01-28	Dat_2020_01_28_QU12360.doc	doc	91a0cc7afd733faf129dd39ca1b61888a62187b8b19c4a702dc74b016f6331af	22.58%	Heodo
2020-01-28	doc-20200128-I36824.doc	doc	c5121f4246d242fd8e8ab28ccc414ee8b3eda4662f51163bc59714482487e755	n/a	Heodo