URLhaus Database

You are currently viewing the URLhaus database entry for https://www.dongguanjixie.com/wp-admin/tj3bzd/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415468
URL:	https://www.dongguanjixie.com/wp-admin/tj3bzd/
URL Status:	Offline
Host:	www.dongguanjixie.com
Date added:	2020-07-20 18:51:07 UTC
Last online:	2020-07-27 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-20 18:52:02 UTC to qcloud_net_duty{at}tencent[dot]com)
Takedown time:	6 days, 7 hours, 49 minutes (down since 2020-07-27 02:41:47 UTC)
Tags:	doc emotet epoch2 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-24	AA4045566781PP.doc	doc	83da94080a75f1d0b9a504214375ec92cd586f31141ae8be524b35dc4b6a5ee7	54.10%	Heodo
2020-07-22	GQ_3992484427709618800907.doc	doc	b9a786c5bd509b880daa53213b076a49136b9780980b48615ff84dca4ce505e1	33.90%	Heodo
2020-07-22	00151934.doc	doc	120f732aba4b64d3432a7909b4ef59ce8ce605c0c202211713040e457d3bd341	31.15%
2020-07-22	FILE_836715584437190356758340.doc	doc	dd584a748f37459bb1c1c14e33cf396479669e2a15dd267fcb952d788ae4a0bb	30.00%	Heodo
2020-07-22	32292401174.doc	doc	15c078915b811f8f8fe55ffe072209f0b74b8ba3988940e179508e510a79cef2	30.00%	Heodo
2020-07-22	88978722.doc	doc	37c8e8190589757ae20b218025352e703b637d63aae30774f15297c47502ae47	24.59%
2020-07-22	PO_07222020EX.doc	doc	61b94e8bbe7564405293dadbf39ad662250c4327556639f79c09ee9e56cf909e	25.00%
2020-07-22	REP_4979492747539476.doc	doc	584fbf65a3d7eff0ed9282b47d237781da7f7aeb0092ecd034d3edb66adbc6df	24.59%	Heodo
2020-07-22	DOC_2VNJY6YE0.doc	doc	f9b9806f9c7c88864e0ff685eaab801a085f8c567b7d6993101bafa58c4833b8	n/a	Heodo
2020-07-22	LSM_070120_GIU_072220.doc	doc	0b88f7457627bb2ae6f62990289a2e3f1a378c01892e3715bec08b94d13206f1	24.59%
2020-07-22	PK_PO_07222020EX.doc	doc	756efc8d3530d9e9b4141763d1a89a2092a54347108a59790356c0c3506082be	25.00%
2020-07-22	G_1TGWXWR739M.doc	doc	9dc3bf8aadd5819cf5be10ee9a0af6c94bc4b8a7a193cf539ef3ac9288ca9f15	25.00%
2020-07-22	INV_PO_07222020EX.doc	doc	1ff7a8450997cc013c4527af47bac34423607b8fcda043bca82df0e6b3e823e4	25.00%	Heodo
2020-07-22	REP_41626313.doc	doc	ed1a41469969a80fefc58566124f44e0846bff21d8e51d897da0d10b2386174b	24.19%	Heodo
2020-07-22	309TPMGAARVPAIH.doc	doc	c08ecd63b03921b3ff64e325150a22dc1c0fc533428b7ff5f01cc1f2b7bdef01	24.59%	Heodo
2020-07-22	T_48838063.doc	doc	73962239e4a48429f588ed5950e69d8ba450efa22a2265afe97bf689935caf47	25.00%	Heodo
2020-07-21	74751949125843072741984.doc	doc	cd57ea2cc92eb01b71fef3745014a5c22b58b46c5e6f8d9da1519342e675f6c5	24.19%	Heodo
2020-07-21	INV_87878573.doc	doc	c6ca23f36d524391de9970059d2e0faf54270286e320503e3eadf282ab5082a2	24.59%	Heodo
2020-07-21	446582898803094500.doc	doc	737dad0010dfc90068d5db4073a76c04f2e9aa7549373686028374e3bbbdb652	24.19%
2020-07-21	BAL_TY6129893355DC.doc	doc	443699b3e3b9a7f6acc2e21bce3a2bfab58a5fc166c408de2a1d5c8f57ed7376	24.19%	Heodo
2020-07-21	BAL_64573060734038851440.doc	doc	dcd97e231a7928660c49c35be9d5b8f839ccd3e2b8882ddd60c22b1bd012ac4c	25.81%
2020-07-21	FILE_CTD_070120_ZMC_072220.doc	doc	6dd13185eaff9d90b1cda716e8af9887e81fada08b31494b8f8a148122093d4f	26.23%
2020-07-21	PO_07222020EX.doc	doc	80d32fabd4ef9c2f61025263185e0a3a9643a936901f2f385203562ca7c28fe1	26.23%	Heodo
2020-07-21	FILE_CNM_070120_ZUN_072220.doc	doc	1bbd415af19576e0283d80affc0740d7d0c324afca367e1113ad0404ceeed801	26.23%
2020-07-21	EUNG_45995553.doc	doc	bfb0b36ae7105ad67727e68789279e3550b6750177ae7c2fc1007438f686f070	26.23%	Heodo
2020-07-21	INV_9TICOHNYB9.doc	doc	8eb64aab66595068d57e0a19e1b9798ec6b5a087c929086cf1325fa98a3ff1f4	25.81%
2020-07-21	B_S8OQVF9LZVA8MY3.doc	doc	ef588b15ec68408283319fe4a31c163af29512203d6270f8a010d6065516d4ce	26.67%
2020-07-21	DOC_OZ2178380472XD.doc	doc	e6307accce6e18ae3afbd4d19e088b74a65c5dada7585d11bfd387b4b5f4261e	26.23%	Heodo
2020-07-21	INV_LD452JB0.doc	doc	6616cbabce1dd4cb3515191b2ed913e01a7ffc8b1cff8ec410600930bbdf7f3f	26.23%	Heodo
2020-07-21	DOC_N8GGHXZU8LKU14Q.doc	doc	5966dbc11d924231b5d148a1a821154f88e469adcb6e884d4dd5102c9e598e9f	24.59%
2020-07-21	FILE_UJE_070120_NYT_072120.doc	doc	dc9149fd6d462db7ca3f0ef1d4705abb0ff34fa3551bbaaeeecd597a01e445d0	32.79%	Heodo
2020-07-21	BAL_22U3S1IMW7V54T.doc	doc	ca998a06b2f978858777abb0bfef0579f36d736ea30cbc48b1c1468509a10e4d	32.26%	Heodo
2020-07-21	FE_47670862.doc	doc	6c7f4d1d0a33793b058d45416bb3b5f59335d5785f80855611d2c428a98069da	33.33%	Heodo
2020-07-21	BAL_63300184.doc	doc	adc75d7a700b766503c50f538a24148656ae2c500683944ad15c8a2c8e42b567	31.15%	Heodo
2020-07-21	O_PO_07212020EX.doc	doc	b2dcd1d5ee235a978ccd72a68fa2448f80577a051cf78c994fb62d41e7932e39	31.67%	Heodo
2020-07-21	FILE_WJU1CXXL9Y3D.doc	doc	a79260a2130cd207d41c21e4675a28c84d838212eb973d2434c642819a2e30bf	30.65%	Heodo
2020-07-21	BLOQ_30724929985.doc	doc	ffc575665829ae7905ee6e5f2194883080c4ec8d2fa69ac1770319767a1b5456	31.67%
2020-07-21	DOC_XY3824814029IA.doc	doc	4bfbfb5923eb71f021f091cbf5ee00a93a33fa778ffc90650b2245de3ace463c	30.65%
2020-07-21	BAL_3AADJ54DW.doc	doc	f935cb07e22c80f0d60b11f1c2fca32745b176a424d87fc1d04b4c205e0e968b	31.67%
2020-07-21	TSEQI0ANNZ.doc	doc	a543b622ebcc58314854fa85473ce89753b8c30877e2562d607aa9483023d16f	32.20%	Heodo
2020-07-21	INV_CB7609157959MM.doc	doc	cead2b444fb70319f7ad607f10b254f3888d97ee61adb8a5be9492f259718ec9	31.67%	Heodo
2020-07-21	NI9152635389SS.doc	doc	c50850a81ad3ce08fc961162e1082494177f8e501dab0e698bce46ffef854ef6	27.87%
2020-07-21	BAL_521544843714195514.doc	doc	26d6a947ace5dc20b8511699014a7230d627b181f37246807ea85cdeadea61fe	27.87%	Heodo
2020-07-21	77682338.doc	doc	454c1cc1f9583beec51230534131bba60e6483bb9363ead5a4b7b33f54e30a51	30.00%	Heodo
2020-07-21	XN_DK3244450588TT.doc	doc	e8eff9852fefe1a01b140600735f3b9abecfd2f1bb93929c8955778bb11d0681	n/a
2020-07-21	K_PO_07212020EX.doc	doc	1dad4de7cb45876fd076def8d214824ef1d8fe10d8b202ee220930ba6ed989b8	27.42%
2020-07-21	FO1490356504OJ.doc	doc	5f3da5a1b6d61a46a16169eaf72e463f3f5483f15213d0799b577d4684e38a70	28.33%
2020-07-21	REP_7789638766187271231.doc	doc	1d9ee4266d8ea670f230420a2bea062bca45656a0827a2f222a6ece8d1d48f20	28.33%
2020-07-21	REP_PO_07212020EX.doc	doc	9053508e8b2272bfa74c8eadba7ecd45a1db50cfb3aa841015dc626c3e13e85a	26.23%	Heodo
2020-07-21	DOC_KJ3778791467ZF.doc	doc	974a9bde6fa374685e63b50d21dd8254256dd8f6418d9d65e208a465a0141f73	24.59%
2020-07-21	BAL_3L0YBI8.doc	doc	ab0c125341cfc43f2b78b409b59b4defac478f57c6989d3197f29790d5cba907	25.42%	Heodo
2020-07-21	PO_07212020EX.doc	doc	281280ed257511ed8f8f2b291a83ce2978bc6e6f14c52ca9ce10540c70cf0605	24.19%	Heodo
2020-07-21	PO_07212020EX.doc	doc	5966abd35a95070a2f11aa76f516a78e108a65db60d7039748454a089f8bf37e	25.00%	Heodo
2020-07-21	QKOBYXIKJ.doc	doc	f401b333111464ea79f5ccfc7794bd0582a1bb72e06c0e9762fd8b36da24dcab	24.59%
2020-07-21	INV_PO_07212020EX.doc	doc	3f65143957146edc136d123a62507f50497de812d31cf82785b88dc67c7f4792	22.95%	Heodo
2020-07-21	BIN_PO_07212020EX.doc	doc	2cccb5979a562d00936dba58168f63f56806a4013284bab9f2a8e84be5eee72e	24.56%
2020-07-21	BAL_UPT_070120_DBU_072120.doc	doc	8969bcaa62533ea3d1c200c02009112d2d21e5b51ec3500698935d4689d46265	22.58%
2020-07-21	BAL_23872150.doc	doc	76135328ce70dd5755fa54408d962b10954d6bb5c47f883a7c2bdd1defbebb9c	22.95%	Heodo
2020-07-21	LEY_26407112.doc	doc	9560e6e3b0d652ebeb93460213b2441adeda06783b641d59101d2cfe2c227307	22.95%	Heodo
2020-07-21	UO9420172013MW.doc	doc	f2e0593ca696ec36f6b813e857b8fe6741252d7b65df42e5e16bb3c80bc7a90d	n/a	Heodo
2020-07-21	FILE_3211012634184889.doc	doc	49e7f3d18db1b3402794fa15a11d36c41d2857d4a668834b6178d0c739e2f821	22.58%
2020-07-21	DOC_PO_07212020EX.doc	doc	59e827ab690ebe0398ef2409db0e89fd63ebe9c9a198ed0cd9febc218813f6a1	22.03%	Heodo
2020-07-21	REP_PX4GTYYHWVO.doc	doc	2786a95d643bf9b6c90e2940c4387436c45e5bcd4f88746449713a6abdfb5c51	n/a
2020-07-21	INV_13305172304838895.doc	doc	252e3f0055225fdaaf98be11f4b12f61d98b7311d4aa43aaf9cca4de02b07a26	n/a
2020-07-21	INV_NF6QEYZ2.doc	doc	660ff4d3124a99db58894556a3461eda17393ca94c27e075185e72536eb6735e	n/a	Heodo
2020-07-21	INV_DTH_070120_DTV_072120.doc	doc	fc2bb7719f33ff249113e3c05c4b2b6fdbc99190e250b3073295e271c553f0d0	32.26%	Heodo
2020-07-21	FILE_TH2410286297QD.doc	doc	c5862b85395572c8c73f166d1a10c2c92a01f07540ac888627c50ebc89097e02	n/a
2020-07-21	BAL_89673430.doc	doc	53b9a409018adc25ac26a608d9fae417659211d8754dbf7f07c3e4710a026774	32.79%
2020-07-21	FILE_72136239.doc	doc	f23c88283a5b29e45eb6658afb904be03923f73895e4f6b232f3e04e288bb715	n/a
2020-07-21	GKLOU6J.doc	doc	41239e9448583b6a09ec8574d34295b254dec60348e219d0a1355467c3ab37a4	n/a	Heodo
2020-07-21	S_4197751630630.doc	doc	9e8362c34f689302d747bee833e604d4d7e10c7d519b401e9c9fe257bc241197	32.20%	Heodo
2020-07-21	B_WZI_070120_FMC_072120.doc	doc	c9d9cfb4d6f95d66b6480f5dfb60edf7b0c4581895b68dbf25a830f9006b2d3b	31.67%
2020-07-21	76322725.doc	doc	2c03fc75fe3490e41923ce263321de82aca6656dab7a4d95ce7334adf39a04b3	n/a	Heodo
2020-07-21	FM4QLPHTV49.doc	doc	31753fd36a9782bc8df01e639556c0f7a72a7eecc326382a981a6c69edc8d318	31.67%
2020-07-21	REP_81389108.doc	doc	9953004cdba2aa71a7552b41ec9b4718f1fcf03abe1589629ce524746cece259	30.65%
2020-07-21	3844894030115.doc	doc	926e68ce8e0ae5b9d2e935c1fe517533b3dc8cb4aa2250b0fa6ec86af0d78220	27.42%
2020-07-21	VWT_070120_CIS_072120.doc	doc	7e1aeb2be52594be4df58400922f10eb753ee56699771180bd21fed441171c2f	27.87%
2020-07-21	REP_PO_07212020EX.doc	doc	e341cca78e446c93ee00c387cee3517341c104ac0587512879a602ff58871c64	27.87%	Heodo
2020-07-21	ZDQ_070120_XUF_072120.doc	doc	46e68edbdc3dd2b5e70179a93d4f788074fa29e649c64063f636ee4e37c42fbf	28.33%
2020-07-21	DC_V99YGHNOG.doc	doc	229710df49bb17b78fae2414fe4ff138609fdbbe410dc297f49d8b7bf10ad109	n/a
2020-07-21	FILE_XMG_070120_MTZ_072120.doc	doc	cff09d732ea9fe1f128dc29bff9f5d5d8ff78ea22eadb52fa4b5b8d7c056928b	27.42%
2020-07-20	REP_GV7909594749TQ.doc	doc	1d9333d44f7442890d84cbc3972b9d00c93bf1556042f7b58c1386365eae3c76	27.42%
2020-07-20	D_KHA_070120_IIZ_072120.doc	doc	f532fcd4387475d48960a5f0863e003f7eba0281354728bf832162a0ca5673fb	n/a	Heodo
2020-07-20	DTUP_ZZ3975548420DG.doc	doc	2a7edcd4009ca88459bd2ec64af866f700abb7acb68cc5b13a40315c51976df7	28.33%
2020-07-20	FILE_BDC_070120_VCZ_072120.doc	doc	80b27b3a7242ea8cdfbcc0d266c4fe489cc0b035fb614b755e2546c80cdfbed5	n/a	Heodo
2020-07-20	FILE_101324496072661877.doc	doc	86dc2706e8cf0a78688e5a503d6e8db55275a7ec3de655ec33a9db2f6ffeef57	29.03%	Heodo
2020-07-20	RRDSS72D4O.doc	doc	fc5b7108a0eaca8bbecdbea0d3405756a6cdb3dc9911363730b275e1e29acc4f	n/a	Heodo
2020-07-20	90339513.doc	doc	4ec7f2a0359b740dbbc849705f2856818bccc8fafa5a2237fd79640e61423255	27.42%
2020-07-20	BAL_LS2020886199TX.doc	doc	53dfc48b5b049b05895bc4e2e5fca037946e69d083cdac2e6c222b76c86f4763	29.51%	Heodo
2020-07-20	FILE_MCRO3WWC48KG.doc	doc	148aa06dceabdc99c7588bd48277867f3d0528fcf04463562707fd66f953045d	27.42%	ZLoader
2020-07-20	KWA_070120_QYS_072120.doc	doc	d076c294bf588b7c9f8db6b5f35a63758c5710feb5920c263ceb77a501bb9133	27.87%	Heodo
2020-07-20	BZR_X6JWBYVOA9Z154M.doc	doc	cfb6588d9181a97aa1f93b2b9f8af82134836e916938a80a217cd03fe4294811	n/a	Heodo
2020-07-20	88610277.doc	doc	401dadd7c1211dae181b8767949d274790aa4fb72e78a3d57ae92ac2cf925da8	27.87%
2020-07-20	FILE_TBF_070120_BCB_072120.doc	doc	33c897cc3c1d11687231644af13032e24358c594f4b484a7040a3eeecfae7145	27.87%
2020-07-20	REP_94583558.doc	doc	a935d27654c333b2c9a027bca4372aee2db007a8fd90fb365bdceab1f2a7b0c0	n/a
2020-07-20	INV_70485536.doc	doc	a00bd0c41a60173a7d02bec198e21b3be8ce018289a2120a48b3cea32160de78	n/a	Heodo
2020-07-20	DOC_AQM4KPWSUWODA5I.doc	doc	265c8a20b2d97de3e6464bbc718b00cb55562ca2512c7ca4f8fd6034613fff53	24.19%
2020-07-20	INV_LBI_070120_FRN_072020.doc	doc	8811f4498f1b1d8729556a61a5683ce20c4270a64ee5ad0223185110adac5f2c	n/a	Heodo
2020-07-20	REP_F1RU4FPLMVKPQV6.doc	doc	9ed5c3020adcc781d330dd21b20134e4ae6fec3d1eb087be0d8f89e1c7af99cb	27.87%	Heodo
2020-07-20	PO_07202020EX.doc	doc	69167697c3c077b3ca6449ae55750d1712c20bc33196537fdbbe05e463aab195	27.42%
2020-07-20	DOC_DS4471719616PU.doc	doc	1e146c18d65265b27e23f9ee84a8f1d20c046aa76c30ed386710a10cb0da2960	27.87%
2020-07-20	BAL_84683996.doc	doc	4cf16b8ae2f4acfe07cf097092f011d77005a1289ed6b609851c04fb52dd78f8	26.23%
2020-07-20	M_R3JYBQC.doc	doc	4d4dde2b4708fc336d7f1450e624c14cb25a836d5081855b17a1166a8b1b2521	26.67%	Heodo
2020-07-20	PO_07202020EX.doc	doc	d2357823bd33f106343cf781864392d133112d09386148aeec801d016dde2d47	n/a
2020-07-20	J_PO_07202020EX.doc	doc	3c3f3d1e39852299c03a0dd1b6727406c85eeb5e211a917368fa82bad277d9af	n/a