URLhaus Database

You are currently viewing the URLhaus database entry for http://vivoworld.co.za/blog/available-disk/open-5caoh9dp-2qqr1q32o7xujr/iabfoy1y1-10941y5t/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415380
URL:	http://vivoworld.co.za/blog/available-disk/open-5caoh9dp-2qqr1q32o7xujr/iabfoy1y1-10941y5t/
URL Status:	Offline
Host:	vivoworld.co.za
Date added:	2020-07-20 16:59:39 UTC
Last online:	2020-07-21 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-20 17:00:04 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	1 day, 4 hours, 25 minutes (down since 2020-07-21 21:25:08 UTC)
Tags:	doc emotet epoch1 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-21	rep_N28906.rtf	doc	bcc1834e956cf9ee218e2956ae6511170e810ad54d6738ed11f98620609a3e30	26.67%
2020-07-21	FILE_T832.doc	doc	a498a07bd860a86bd937ea230aea64bdbc55c3040d90c13e57a2670608c1af3f	31.15%
2020-07-21	ARC-2324726.rtf	doc	2748fddcf19685fe54157b965c7332d3abe89dee666467ba9655e4ffb6d805e3	32.79%	Heodo
2020-07-21	REP 440.doc	doc	94afe20839c1b4794b268af701170510a03aca8ba4c42d4f37056f048b4f4312	31.15%	Heodo
2020-07-21	arc_2020_07_21_6049024.rtf	doc	50d5051a82f97571415ca2550517c6872eca80692c7d6db605082a0b9876d34d	31.67%
2020-07-21	MES 2020_07_21 022.docm	doc	d678baaadbc56de5d5136a2bae9b233710d4016b9d09094c907e6a1442f7fca7	31.15%
2020-07-21	Arc-20200721-G8155.docm	doc	b94adce77ef4687f4a2308618ad9109110ccca6b7a12618f12c334a61ffa712e	29.51%
2020-07-21	List_T0647.docm	doc	0dbbb6599f01fe8f1817f54193e2969d69f49e504430db1e659cbc26706cfa2a	31.67%	Heodo
2020-07-21	dat-2020_07_21-A207.docm	doc	7203fa5731e4f60d782eb7248af9620384981a39282d70094f40946b1b7a60c8	30.65%
2020-07-21	inf 2020_07_21 15373.doc	doc	3d808e9e116ecad94d0839d1a951f8aa24c96f6dfaaa774a889edbb38c857b56	31.67%
2020-07-21	Arc 2020_07_21 VNP68674.docm	doc	ee05671d7f2cdb36ca511567ee135c6c7a0452be6d23aef5b91d9b4adec0253e	31.15%
2020-07-21	FILE 2020_07_21 O337215.doc	doc	b245eea1d0569a4ba8e24c96f41af5fa75efa79b0308c9fc56adb52d053ea467	31.67%
2020-07-21	Inf-20200721-C139812.doc	doc	ade92c771f3d31b85f839181d2c222569b9271fef181b82414798016840e0b37	29.51%	Heodo
2020-07-21	REP_2020_07_21_Q1382.docm	doc	cdf84f1d0e4e87f30d1129360af2269ef500d32d12f3d57694090fe15ba0ce01	29.03%
2020-07-21	INF-20200721-32725.doc	doc	620ec5ba9b3488d2f0df3f27c7efbd786e501f76dc0cd1e11e70e9783968374e	30.00%
2020-07-21	ARC-2020_07_21-WG5139.doc	doc	608a39d31a2ab34bf79ebd042bf10028b9bc7ed087dbb810306956dd1ba45567	28.81%
2020-07-21	Mes_2020_07_21_ODV2430.docm	doc	76b3bec66b692ad45b4c647003c0e5e5b5a3d416c87a613b7094960050adad61	29.51%
2020-07-21	file 2020_07_21 3952973.doc	doc	cb0734252b9b348cf76a68b0be66b4f8d0b55eb1cde79ef55690241f2e3b6017	27.87%
2020-07-21	REP 969.doc	doc	d1f13cff50c5950b6842f81fb632405df63e1d6a953d4d912b3f5ecfb1afa55d	26.67%	Heodo
2020-07-21	mes_2020_07_21_G167.rtf	doc	15617b37ed587c9af7ec3de8d4aabd3de95ded6604f652abea14822da2c94ce0	28.33%
2020-07-21	DAT_2020_07_21_215.rtf	doc	3b2f5f46ff691d1339cd98d00d79cfc31b0a7c7820a17c45c7be9197a392f2f6	26.67%	Heodo
2020-07-21	MES_2020_07_21_439764.docm	doc	e6e56699f2eee72f34f915a3535b5cc541d94ff1733222954c162b2f34a063a4	25.00%
2020-07-21	arc 20200721 FHQ54988.rtf	doc	f71d024b4271aa2cce102ca4d7736cfd3a80503b28146ea2afd7ca8233164f88	n/a
2020-07-21	Mes_20200721.docm	doc	472c2ac90c92513e937b9396ae2d84359993dc64ba3e3f130191b0a9976f0262	25.00%
2020-07-21	doc_20200721_HE6215.docm	doc	55a103c16b3c4d8958091e55cfb62091fd2d209e07ffba0a5c88252946b8ae39	25.42%
2020-07-21	LIST 20200721 345.rtf	doc	31eca40e53bfafd9aba582a36d6acbd218f5c25002e67cb4d0bebddca0b73ce8	24.59%	Heodo
2020-07-21	Mes-GZA4452.rtf	doc	ad614712ee0ad71a7408a527a3a2051489b0ff4f08038b7a676ad967ea160fb7	25.42%
2020-07-21	List-94712.rtf	doc	64eee4aab6935f2d3d11646b1c38bdd7519aef0367f417afc89d07c5b15b8eaa	25.00%	Heodo
2020-07-21	Inf 20200721 065.doc	doc	38a052e49569227f531849f52c6e801e5abb2c68a7dd2c5a9fca8e92ec6b0211	24.19%
2020-07-21	Mes 2750.docm	doc	deb29a892e444cde34fe7642bacbee1bf74d35fcff478966636eec77c5e28646	25.00%
2020-07-21	list 2020_07_21 LF05831.docm	doc	9e501526cd1120438e501f104b58148cdcc62bfd5bdf617d87542dafe9240303	24.59%	Heodo
2020-07-21	Inf 20200721 3636.rtf	doc	7701cb5a8f75904004c1438e6e79eaac41be47f7d454a35f7ab373b2ef1aa392	24.19%
2020-07-21	INF 7015435.rtf	doc	477bc137f269ae86b7049d592f7588c5f063e569db20bd09ff2bea3a04aeba06	n/a
2020-07-21	LIST_20200721.docm	doc	77381e8fde74067c151274bc344395ef59df227e209ec80c0d7879aacbd5d654	n/a
2020-07-21	LIST.rtf	doc	eec0262941bfb2dcb8d29f6ef1ccc699726ac66beb04d7d34e8da3281cf19c38	25.00%	Heodo
2020-07-21	INF_6080.rtf	doc	cf3b2f4e9f81af42df9884f8f3042a4a704fe949060f1997368c664d6db623ec	23.73%	Heodo
2020-07-21	FILE-20200721-BG745745.doc	doc	636d88ba99693495dfafdbd6f67413c9cfaa91a424a1091bd31ca2fd34c77c64	25.00%
2020-07-21	Arc_20200721_PH39205.docm	doc	09d5cad4c8b70edf0e4e47c1abcbbdec9872ca65c129f100c3eaa76ff6197497	n/a
2020-07-21	File_20200721_994.rtf	doc	a8d9eceee2cd3735b96abf3528e7ec3e8e2d8ceb8991c00c7ff479e9034655f5	34.43%	Heodo
2020-07-21	FILE_2020_07_21_YG08081.rtf	doc	cd7e26bbcc41d0820e6e2e0e42e56bef410264d6bcf74033fd1fe26d52b389ea	33.87%	Heodo
2020-07-21	File-20200721-QWA78360.doc	doc	f78e874b4d5c5dedede72b85b571f2b04d8edba617b6634d95c2af181e6e4dd7	34.43%	Heodo
2020-07-21	INF-20200721-589412.docm	doc	793132996a7b6875055c2bdbde2173f37e68ce5f04ab651acad13f84ab89cb82	34.43%
2020-07-21	REP 72925.rtf	doc	276568f9c3bb230aabe183dbfd02ad1c36b7aa141d382d34a839a611a422c07f	33.87%	Heodo
2020-07-21	list_2020_07_21_207748.docm	doc	754a0bebe018b079d9d9260256ea2106b4b5ad9a654c8b8a1989bf6e3f4568f7	34.43%
2020-07-21	File R483959.doc	doc	5816bc271d88617e627d64210b8ac9df417f8072b362af861ade766137eb1564	34.43%	Heodo
2020-07-21	LIST AP85640.doc	doc	ace014e43d78870f28d2a732d72b60fe0c602b71dcc8771989e5cfc0bb1e0bef	33.87%
2020-07-21	Inf-20200721.doc	doc	cace589fbea03e0098cd73ad40875dfbe1af727e4b82a5944b6e2111009af7a4	32.79%	Heodo
2020-07-21	Rep_20200721_PD05866.doc	doc	86615d32b685ca8d74d59c1c848216fac1eb779d126a183795f316a6ff0014b6	33.33%	Heodo
2020-07-21	doc_20200721_7351841.rtf	doc	e2a49ec64650e56e967e8b0c31b7e21ad3f1ab14516c6dc02605aaeb90f7b87c	32.79%	Heodo
2020-07-21	list FS92321.rtf	doc	41718a7885dc57496b953e118a0e425ba2af1e37a2a3a868cf05ac83e3db792f	32.79%	Heodo
2020-07-21	Mes_JMG1371.doc	doc	276dfa20b9cffd3ac104aeafed599b2f70a9fd0e8d4faf1d86ffd46e8354a416	32.79%	Heodo
2020-07-21	FILE-20200721-7676.docm	doc	cd605825d74d60677fec41c84dc39462658ebbd5edd8e29cfe9610a29291b3e9	32.79%	Heodo
2020-07-21	mes 2020_07_21 N869593.rtf	doc	6c7da386cdaa6398c065aafedeb01b31ec959ecf615e9601a81a2c86488c4c86	32.26%
2020-07-21	File-20200721-7673.doc	doc	1236dd4116a2c4ba4427175d0a3e88c848f70dc6219f6b22f1997ae3ba80ba14	31.67%
2020-07-21	doc_TLN33309.docm	doc	ead83fc91ca4d61d49957be440350122ea7f083e14b61eef430b9d7c5eb3f9a2	31.15%	Heodo
2020-07-21	File 20200721 J290291.docm	doc	49b857e2068f710d1facd444264c6d8804ecc9e2ba9660953b24bbf213cc66ba	29.03%	Heodo
2020-07-21	ARC-2020_07_21-0798.doc	doc	33e64096db5340fb26c5b5d6f9b1dd89674d3a77a96a25fafcb878d9929fc9da	31.15%	Heodo
2020-07-21	Dat.rtf	doc	99c6c8f02c2fef792bc8a5a6406b0baa294156cb38b8df191f98cfb5a90547f5	30.51%
2020-07-20	list WY314.docm	doc	211aa330e781af24810676e704804e6f939793cf7572674e42de54a4f7513735	29.03%
2020-07-20	List 20200721 GM6541.docm	doc	f83e32a15080c0f31451809377046083d52daef3354edecea6db6ccf4158a43a	30.00%	Heodo
2020-07-20	list-2020_07_21-45797.doc	doc	107cf68ace70917126432b415c7a9b4a18e3f87c304c1ea780b1fe0950167c29	29.51%
2020-07-20	inf_WVU02970.doc	doc	a6ca24bb5b1de30cd63ecceac1727ca4102ed289d65fa05c550c4485e6ca372b	29.03%
2020-07-20	DAT-20200721.doc	doc	c0696d196c346305861f4e358f48f216dcdde4251309abed3547504007cb858c	29.51%
2020-07-20	Doc_341.rtf	doc	616dde6dc6e22e28f4149e26996578dde114b40f896cee3cb36165d52ff70857	27.42%
2020-07-20	mes-774339.docm	doc	1269bdbbc40be92cc1f13918a692b34fdfeec466bd7d872863ecc405ff38f77f	27.42%	ZLoader
2020-07-20	INF-2020_07_21.rtf	doc	4d5d4a16ec11a850141a0a77026153d2a409bb4602e624623ee007e79dfd9639	27.42%
2020-07-20	inf-2020_07_21-73085.rtf	doc	c5dc7db865c477ba217342107932a67cab54659a8a870fa16a9d2f21ec3aade2	27.87%
2020-07-20	DAT U719.doc	doc	ec87e9999c894cdef59c964d06c6de6c7a7134d373b4e754180d90dd5fb23f64	27.87%
2020-07-20	list-016.rtf	doc	8d861becdf66c056d51b6b585d1d2c98ec75e77bc3af28d354edb72f3ebb65ad	27.87%	ZLoader
2020-07-20	LIST-20200721-UD74820.docm	doc	d6da6435e94d2fbb2a3847c934bf0b6d41c613337ac951b10fd5851eb98a9bf3	27.87%
2020-07-20	Rep-570699.docm	doc	6b5e8002c323071f83df953f977caf3a477d1a0c7178e0795674d263bc2dab15	27.87%
2020-07-20	ARC-2020_07_21.rtf	doc	3aedca3992d77371154f015834399c14aab576050a53efa01fb5714e01beb841	27.42%	Heodo
2020-07-20	List-2020_07_20-Q4801.rtf	doc	08f5ec28ca3c972a6d03a47225475ddf5930decbb10ca8de63dfe0544581ce14	27.42%	ZLoader
2020-07-20	arc_GQZ687.docm	doc	ba9dea8d19d91af5e263e8bb98b6ef25c7f8d994944b6d6a0ecae3fae653199a	27.42%
2020-07-20	ARC_BF133.rtf	doc	97e66ad16955f21f83dae53917dbdefba08fc07108392a96327eeef55698a04c	27.42%
2020-07-20	REP-20200720-KI9339.doc	doc	eb193bc39825dc7e1397022e2a0a3a3e304be6b65d8128280fa02d2ebd1099c6	27.42%
2020-07-20	Inf-20200720-6332.docm	doc	cbe8fa6812edba1a4e2b1fe7c30f6cbf05f21e5935e95ecbdda6d3f5d3b6de9e	27.42%
2020-07-20	file 2020_07_20 FRS015213.rtf	doc	36a8c92bf1e17c731797dffede2d91ede145d83d3328bac42e2b046f296abf77	n/a
2020-07-20	INF_155.docm	doc	d5131493ad164aa948303d5cc898261385724bb0e816b1f3583e77326458a9b2	26.23%	ZLoader
2020-07-20	MES_CV237870.doc	doc	0cd73a229418caf24e599b0db39e5ff3ae2903ffb83340c026c0ffa0f7e9f86b	25.81%	Heodo
2020-07-20	REP-20200720.rtf	doc	2ed0a17884d80b91110cc117b3963361ae603c91ce2cd60de6131972d6a047b1	n/a	Heodo
2020-07-20	Inf-133.docm	doc	4fe945b83567f1855dbc8ea4f8e0e0e2258117238ca2184dd10ba6cf797377a7	25.81%
2020-07-20	FILE 2020_07_20.doc	doc	c7a3062c51b5ae769e1da9813548bc4528d606568c5fdeb0a36b9da55bf64249	27.42%	Heodo
2020-07-20	List 20200720.rtf	doc	a8b114a82f64917ed11c8e081de40eb7121b26ae5e8c8aae05d858ec88c370a1	26.23%	Heodo
2020-07-20	LIST 20200720 W804.doc	doc	c687ab0370adc689fd9c868ca8ac6d5cada52c52dbccd3eab0746ad0d89ef34d	n/a	Heodo