URLhaus Database

You are currently viewing the URLhaus database entry for http://ft.bem.unram.ac.id/wp-admin/open_box/additional_area/513989458_ycxBGmHtHHvnuqhO/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	302141
URL:	http://ft.bem.unram.ac.id/wp-admin/open_box/additional_area/513989458_ycxBGmHtHHvnuqhO/
URL Status:	Offline
Host:	ft.bem.unram.ac.id
Date added:	2020-01-30 04:24:06 UTC
Last online:	2020-03-08 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-01-30 04:26:02 UTC to azhari[dot]hasbi{at}unram[dot]ac[dot]id)
Takedown time:	1 month, 7 days, 19 hours, 38 minutes (down since 2020-03-08 00:04:34 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-02-01	REP_2020_02_01_PPG086404.doc	doc	9fc5154036954f01b88bc06c01a2a06affa3111bdf846d45e75a39be0249b5b5	37.50%	Heodo
2020-02-01	Arc-KBR573831.doc	doc	b67d9a95a6a08ba02556971147227edd021913ba8358b4f59c86227d4b57f502	37.10%	Heodo
2020-02-01	Arc_2020_02_01.doc	doc	7701f0948a3c21d43e92b7e6e67ad7e942fef4c953e101b7061cc07f4be0833e	35.48%	Heodo
2020-02-01	Doc 20200201 FUG530.doc	doc	5a73104935659f63aa233afdd3583c6dc3087ec5804bd439dd0c189891986b6c	34.38%	Heodo
2020-02-01	mes 20200201 7403.doc	doc	e32c6131507273873c65fed58ff6d79fed48ec505001d9853da6d7d487d79010	35.48%	Heodo
2020-01-31	Arc-20200201-4031.doc	doc	16dc2ea6966445ff4b382ab180a5983bbe8513068550a030d7581fd6c0e46bd7	38.10%	Heodo
2020-01-31	Rep 2020_02_01 W735421.doc	doc	b8a746025a06ea0592ad0cd02e7611cc15524c857554b6b6002a6c1fae229baa	31.25%
2020-01-31	Rep JAD61772.doc	doc	aebb8ef053c29de1aab7da94fc9873aee20eadcb51be762f73f08a2aa0cea7ba	31.75%	Heodo
2020-01-31	file 254529.doc	doc	102bb1372b29549ac0ede4412630e0da7015a08f4d489e6c644f3b17c24598f7	29.31%	Heodo
2020-01-31	ARC 796.doc	doc	7751baa036a3377751c1d23c593f017114859e8b8285f6ea41fde8d82e19be57	34.38%	Heodo
2020-01-31	Inf-2020_01_31-27158.doc	doc	7b8b820eea5aaf7759404bcf53ca9979080ea061ab4523593b1f5e2e8db6f5cc	25.00%	Heodo
2020-01-31	Doc OK7339.doc	doc	98d4100547490c9809f92a82a3afc57c4927ce1e84664bad304d005b9754a02f	20.63%	Heodo
2020-01-31	Rep-N1969.doc	doc	0c645a5b75a5e0585a9c48656071c2ca5a9bf0304861e458f13a3e250b4374e1	20.63%	Heodo
2020-01-31	INF 2020_01_31 W78225.doc	doc	2c1c2bc7043d0a9e19f8082f74edb7fe6701df464a66a408969bd9825c11d16a	21.31%
2020-01-31	inf_2020_01_31.doc	doc	c7f046fd9ef39712ad5616236f92249c07f4a9e997591461c339e728b69c5207	20.63%	Heodo
2020-01-31	DAT_2020_01_31_13678.doc	doc	a5a1cad504ed2881f3206bcc602f7e379d15cd59082cac926f2fd286257ca9ca	42.86%	Heodo
2020-01-31	dat-2020_01_31-ISN8189.doc	doc	db5ec50aa0307b01efda63c0c839ca56003ecb0cf9e97153c79a15f8c7954de7	41.27%	Heodo
2020-01-31	LIST_TK227583.doc	doc	cbc9edb78b6f27bf631b12f4f66cda0b48a2e5dfef8389d8be55802cfae8e99d	38.71%	Heodo
2020-01-31	LIST-20200131-E23457.doc	doc	6fd53c9b4fa1bcdf1ef2a095d2af6db48d7d4034e1d5c9e32b23c12853ab6c10	35.48%	Heodo
2020-01-31	list_20200131_E79792.doc	doc	cf37de24304aa0dd3b5ad32a824118e7e0b5621b5c65a382297f480b4d2290c1	35.94%	Heodo
2020-01-31	rep-20200131.doc	doc	8ac6cda8c7b4094b736c508bc231f782f410a72cecec097edb943014ce610585	33.87%
2020-01-30	Doc_2020_01_31_HGU696079.doc	doc	38ed0185799cc1cb1e2fcfea1f554229ad2ddee7695a8eee704426cf83a6b7e6	33.33%	Heodo
2020-01-30	Doc-2020_01_31-GI534563.doc	doc	710bca7eb8f1b38ff3ff591ffce42780c42d513d5db8e8edbed62b2a30a41145	33.87%
2020-01-30	file 127786.doc	doc	3094a8cc9745d2d8c20e81837a459f5d1b7509d411d7954dc4f3309fbad50d3c	34.92%	Heodo
2020-01-30	MES 20200130 NON216182.doc	doc	72b6ec3c1e924a2f6b1bbf4f5359a7dff2c8d0cd96062fa882119a929ff9b6fa	33.33%	Heodo
2020-01-30	inf_20200130_0298016.doc	doc	2adbbe56b611d03bc76102405f6da306781caf1002267dc5cbe3119f5284538e	n/a	Heodo
2020-01-30	list-R879.doc	doc	754cbbb7ddc67e1475afc52e76a09e3c2f2caf788795fec9c7859e82dc81d9e6	38.71%	Heodo
2020-01-30	dat_20200130_9988.doc	doc	2d3704d70a241dbcd409a1795470714a4458938eb29c160def982de82fe45c28	38.71%
2020-01-30	LIST 2020_01_30 3785.doc	doc	11078ef33eb1bccdd13fee326af0b5a51e5d9bfb1335c25004cf281c01ccfdc3	37.93%	Heodo
2020-01-30	DAT 2020_01_30 II8945.doc	doc	33bff75b0b0477fe5ebb1baa53a6e72f2c569227d8ab61eddac59592d02d28fa	32.26%	Heodo
2020-01-30	Dat_QB6715.doc	doc	2d865b1d71a6827ca4eb3b7f884d08cc2acbcea2e862ce53a15cea4128959e8c	30.16%	Heodo
2020-01-30	arc_20200130_D83002.doc	doc	8fccb53dc5d9058d11d344f7fbd34609642b1b1d2a9e4699134d165ce6ab21a0	25.40%
2020-01-30	Mes COT173.doc	doc	ddf014e6d9e70bc1709c2ccde24524fc72092f929ea37df901ee88f152ae4c43	28.57%	Heodo
2020-01-30	Mes_IR675.doc	doc	6686a87ce4ec03815de4f384705a2a876aee4195ecaabf95d727a6d63030d4e8	29.03%
2020-01-30	MES_46848.doc	doc	1db0c100dfea192f88767bedda9beef583fcfb5c7797f32d7f93dcf045d3239c	25.40%	Heodo
2020-01-30	List_20200130_8788.doc	doc	05540ab9749b214e8557c647443d6b4f997326d9e3ec01cf69b855c519c53887	25.40%	Heodo
2020-01-30	INF 2020_01_30 I828112.doc	doc	cbfd00a796bdd447134f7dc1f38823e8e2eefb7075068cc197ec67c044ecfc24	24.19%	Heodo
2020-01-30	Mes-F930245.doc	doc	0c899fbd963450fdf0d3d487fd91c0ef00e8c4191115d99d58a6b75476b06254	28.12%	Heodo