URLhaus Database

You are currently viewing the URLhaus database entry for https://entechco.com.vn/cgi-bin/closed-array/close-4177495-w8S0FZlS1gVRwtb/256853-mb3HQOna2u00A/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415549
URL:	https://entechco.com.vn/cgi-bin/closed-array/close-4177495-w8S0FZlS1gVRwtb/256853-mb3HQOna2u00A/
URL Status:	Offline
Host:	entechco.com.vn
Date added:	2020-07-20 21:15:15 UTC
Last online:	2020-07-23 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-20 21:16:02 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	2 days, 12 hours, 18 minutes (down since 2020-07-23 09:34:29 UTC)
Tags:	doc emotet epoch1 heodo ZLoader

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-22	mes-5527.doc	doc	278044736b070873bb726cfd8efb18d5655f6df45f73648c1839e29d9aef321c	37.70%	Heodo
2020-07-22	REP_20200722_KC47243.doc	doc	e5b1755803e1fd990e3747b22c5b2e5dd674c403a309b2931ca7b5ae74262d91	37.29%
2020-07-22	mes_19781.docm	doc	73d6cf5248a0604eba81bfe1a1f55473820a97df0c5746014dd47e3d10071cb2	35.00%
2020-07-22	List_2020_07_22_4675.docm	doc	cf53854628d9e95bf9c5b164c75908fcd42e2de87401607eaa617f331d376864	36.07%
2020-07-22	List 20200722.rtf	doc	0909752f9e8cf877b820f107687a6dc12e42ab76f995635a56116d94fa3cc86a	36.07%	Heodo
2020-07-22	Dat-2020_07_22-647.docm	doc	ef64e139ac5120bcb2be7ca49559d2e39d9a00d5007ba03f7745618a805d08cb	40.00%
2020-07-22	file-20200722-6468.docm	doc	d516375ff9a645547e27b1359395936c1ba1c5725795a78864b281f8a8b426d3	36.07%	Heodo
2020-07-22	file 706.docm	doc	9386f4a822f6bb11eb7588717ea43c765b9501a32ca42607846f8f577ea7a8ee	36.07%	Heodo
2020-07-22	REP 400235.doc	doc	542819b27b072fd1341c7dd6e46836eed08511bc4ae33bea70fccb341d1da1a6	35.48%	Heodo
2020-07-22	Mes-88612.doc	doc	4e537fac2f1b71c8466b55b1539006dfebfcb9d8d01c793df2ba1198de425f12	38.33%
2020-07-22	ARC-PXU575149.rtf	doc	96836e41326e43b6568b375f848f490a866b35aa2247df397caa46a4f00961d4	37.10%
2020-07-22	inf 20200722 HCO033780.docm	doc	5f934443860f4ada8773989bf4ef1a4f9b25d5b0b8449222afdcc5ed0f44748b	37.70%	Heodo
2020-07-22	file 20200722 P549029.rtf	doc	e6254a296bbffaab1ec46e41702de1ad3275e27344d553604d3f4b19fba43060	38.98%
2020-07-22	arc_GU139641.doc	doc	b30860973bcdcd040d50b0bb6c2ea01eaba9b34856e80b02074b7366a047438e	45.00%
2020-07-22	dat_20200722_304.doc	doc	5640ce8953e2e40022d391ed9d738bdd8a8bcd4b746db9c5739e130e4863a0f1	n/a
2020-07-22	FILE_3974.rtf	doc	ddf9d1e56d014b48d1c06eee5597dd27cfd526453ff1657725fc96d54672eed9	43.33%
2020-07-22	doc 2020_07_22 3447300.rtf	doc	a4730c2913b245ccb77ed0c4a10031a10360828ea6681eb4f9831c502bf0c2dc	42.37%	Heodo
2020-07-22	doc 2020_07_22.doc	doc	b6d61e35726e8b3a7b927301d0577dc610610104d94432cced3a6d063920b865	45.00%
2020-07-22	LIST-20200722-161.rtf	doc	f075848ad6d384c4cf68d031f2acb0454e37bc993fc8fba6a111d8e744fac9df	45.76%
2020-07-22	INF_0184420.doc	doc	d17c29d68d4af4033a871a4bfee1affb3ba3b34aaf54059f3062fc0f78ce318a	43.33%	Heodo
2020-07-22	rep 0229855.rtf	doc	38ff0a4a502e7e0992adc7b5078f916bd301d0769dcba3bf19008581f73fda52	43.33%	Heodo
2020-07-22	LIST-2020_07_22-RO028.doc	doc	bce88cb5c4bb7331cb4cdb37a1d9d122bf444785670578109715ea8a54c74dcc	44.26%	Heodo
2020-07-22	FILE-3638943.doc	doc	734dad5230aed9526b58500b15b424dade5b3fdd867f62450b8ffdcca616aa86	45.00%
2020-07-22	File-20200722-VQH096.doc	doc	846a3c8292824fe60dad21c3e4372eb2232b0aa6a5b82485c583395b2311b7f6	44.26%
2020-07-22	ARC 20200722.doc	doc	7dbe324e0d12ad78dce60ff5e9cd95569b85088bdc2d6a21671c60e099767b7f	43.33%	Heodo
2020-07-22	inf 2020_07_22 R1047.doc	doc	663a5cc4bea53e83055d9c30b3724798add62c0a512896dac94c3366578d426d	36.67%
2020-07-22	Inf-6396801.doc	doc	476f47a1fbb75de056f6a02ab3dbb2087dc5c6c2519a029219f344fc90e16280	36.67%	Heodo
2020-07-22	rep-819.rtf	doc	2bf6770c0abd36c1d4bf26b47dbe953c8f1f7968fac457a4a370a1b198945d4b	35.00%
2020-07-22	Doc 2020_07_22.docm	doc	623c4ed3bff71e9b92646983452b40e40499ac21f3a3aa0647bbf37d3581b909	32.79%
2020-07-22	DAT_2020_07_22_EF456377.doc	doc	fb1530a751799859585501c02c6cce39addd2e4572d8df0149ae14735eb2f113	32.76%	Heodo
2020-07-22	dat 2020_07_22 688267.rtf	doc	ad0b84b38f613391231e63d53e800947407c72b0e2b87c9a79cb58d7d3520146	28.81%
2020-07-22	REP 2020_07_22 Q284.docm	doc	6babaa931bc26a787edf3d1d3118c0a45416f2e9deb01bc741decf522a2bda49	26.67%
2020-07-22	LIST_2020_07_22_LU692951.rtf	doc	fe944646b7cb0e0e9aa528369b1d78018fd53529ca7c62d36030ddeabcd04775	26.23%
2020-07-22	Arc-2020_07_22.doc	doc	80f335e6ac6c351ae23e40d64dc9539009aaad764770364ce4d82cf144b89353	29.09%
2020-07-22	rep 32758.rtf	doc	f252adcce41e318de41df3a6c503441dcf42137930a07fd4501c44e909c5131d	27.42%
2020-07-22	arc_SU7321.doc	doc	0dc279a7e4681797b0fb36ac6d2514d0e0ebb09b3bb38459ddd370876a768813	26.23%
2020-07-22	list_20200722_0575661.docm	doc	d3d731e1c5ed00a3123112f5f1b4d029a74b742ddf0b5a2639209b85f2930b18	26.67%	Heodo
2020-07-22	Rep 2020_07_22.rtf	doc	2c4e45b6dfc2f55b3415713f49dbef1b0e251948f58a9197bfc346153c547b29	24.59%	Heodo
2020-07-22	LIST 2020_07_22 677225.doc	doc	bf08d9f7924956f144f0211f6ea48722fea5cbcd8dff6c661dddc5a221e13742	26.67%
2020-07-22	MES-20200722-972352.docm	doc	e10a400cae06792313b7db8dd5f320a5f06336b1d1ce84bad5a5b13926d45967	25.00%
2020-07-22	dat 2020_07_22 I101894.docm	doc	64bd75d17119d13674e5414b25e5d2cc4fd8f76b0af8721fcaa0fba000570dae	25.00%	Heodo
2020-07-22	File-20200722-6104076.doc	doc	ff885175138132335dd7f3a840c5cf89cec412345bb6bb8311853367827526d0	24.59%	Heodo
2020-07-22	File_686196.doc	doc	737f7e0557c9203033464070e06e23e7675c8325abd0083d1ebbdaca3f7eac2e	37.29%
2020-07-22	file 2020_07_22 O3707.doc	doc	ea2d7326d8e860e69f235da25af02c8b2160ba5fb454083f69979e5dcb2c1787	33.33%
2020-07-22	LIST_J551889.doc	doc	eed180c709224d892fa8a82e0c51bf623d7057a65ca483d45e3d005984dc6588	32.79%	Heodo
2020-07-22	FILE 20200722 RHW540.rtf	doc	7eb51f8c4719f0171a98650b63385c15908628fc4ef7838c410fc53c46a0b8a6	33.33%	Heodo
2020-07-22	INF-20200722-Z70087.rtf	doc	67a974e69b33e54421899fd9e7ea3b833607832d2ad8f7c1d5723735f65bed82	29.51%
2020-07-22	arc S845.rtf	doc	28e77291fea150f98e5ed9a57a4d4074ff204abc6e20218a7e67bb0e4b6e23f4	27.87%
2020-07-22	dat-2020_07_22-OHJ6155.rtf	doc	c07649d058f6470af27cb972b0a9306496e2641bf959dd66206f3feff56b83c1	28.33%
2020-07-22	Inf-2020_07_22.doc	doc	04b189501cde3a8e14a2de3bb20b7313da30db8f0a7af0862cc14e400caebe06	26.67%
2020-07-22	ARC 2020_07_22.rtf	doc	80cb12a6bbe9b2c3065f9007e9740b9f7d75dcf2bc68651848cb08f4ce619b39	26.23%	Heodo
2020-07-22	FILE_UF8976.rtf	doc	ecec36458fac5fdf0031917d979c2539b70801bdee88e022ee090a48109e63b0	26.23%	Heodo
2020-07-22	List 20200722 3776.doc	doc	8d70f6580cf02bcae5c4c14396951b6e6c1ea10bcbcbb89f835c29dc7d2c8ceb	25.81%	Heodo
2020-07-22	File 2020_07_22 652081.doc	doc	3e65642f10d2b821a0c08b74d0ddfd34717dca5f9918551779815db934ae7963	26.67%
2020-07-22	dat_20200722_8965394.doc	doc	d7b8fec9f533a9c31e7fe587b89552973d00bff30e4c7d8f7d4f2d93bc0eda1f	26.67%
2020-07-22	Arc_AB3087.docm	doc	ea444cde5a8ef5b6165a348732af41e4c634669259036caae42e242c5a7c9b1c	25.81%	Heodo
2020-07-22	dat 2020_07_22.rtf	doc	7fb831a6988b9e816af85e485721d4e44b500b6a9d30af5b82cf9ec4d28eb584	25.81%	Heodo
2020-07-22	arc 20200722.docm	doc	d3bfea33a12c522ea8faa7840613e14c78035362c064c858c1467513a68ac9a7	25.81%
2020-07-22	FILE-Y963625.docm	doc	812ed74f92912f98accd025c7c64b9c943032b3379fe1c9654a9deeac6d8b981	27.12%
2020-07-21	rep_2020_07_22_526.rtf	doc	c20821e80c5ce943d4b87b9416329f0502a4da3c97044c8fd7016172353e1626	n/a
2020-07-21	Arc 20200722 1816.rtf	doc	f03863257ba6bfc7e029c245f3dd3f892fe5a6aed79b625b2c7314f3398b723e	26.23%
2020-07-21	arc-20200722-MVP53747.docm	doc	3e24c4373b1e2ba1e3d16925cd0d4a1752452402ae4aaa8ad8ce498bbff5335c	26.23%	Heodo
2020-07-21	MES-2020_07_22-3619.rtf	doc	cbccd20b9bc23454ec01bec4a0094e77dcc43d577666259f8d97aa30a118ac35	26.23%
2020-07-21	List 2020_07_22.rtf	doc	2027e8348e8d2f364d55b2bf47f9a4b37fd2ff7aabdda5ed056e3f6cd42cf777	26.67%
2020-07-21	list-A679333.rtf	doc	139f5bcf4c7fcbe0a8a5d940c5d38dd847e2c979df74dcf680208e73b8ac668d	26.23%
2020-07-21	MES 2020_07_22 420062.doc	doc	205a04626bdf6f3da605d8f8ba60126d02451085528330524d899a38520be8c3	26.67%
2020-07-21	Rep 2020_07_22 63610.docm	doc	6852b34db0c7a6150c1095a704236a1938b4ed46cd9d7bdfd412555ebf61890a	n/a	Heodo
2020-07-21	REP-TT01443.docm	doc	db88b385b97b7038cd233960f7f99ce350a72a3eecf6bbbcb227645f111d4e7c	26.23%	Heodo
2020-07-21	Inf_770843.rtf	doc	99b15b640124bbe2d317af00e7c30fd65e9b97abdb6e07947205d5bdd73c5737	n/a
2020-07-21	Doc-20200722-IN517951.doc	doc	c14b2e55a66651e287542e13c52b9e5490534ee0d55cde933f5b6f0744ca27f9	26.67%
2020-07-21	Mes_20200722_YW697.doc	doc	6ecd03bfb72de9f29bc5556f07f77b6a3ca030b9e385fe6b910678d2c8da855c	26.67%
2020-07-21	mes 2020_07_22 CF98807.rtf	doc	d5af3b606fe2dd9a542f85aed4bab475b5d2f91b9dc5e3e5091cc385e4624869	25.81%
2020-07-21	list-2020_07_22-5315660.docm	doc	fe0262abd2e28972585a28e0db4036c88dc6bc7858de8135e9cf58c599228037	26.23%
2020-07-21	dat 2020_07_21 Y123795.rtf	doc	253d4ce06935b6b78211d3f7b0ef787b74e019761199199ab5720333db23577a	25.81%
2020-07-21	Mes-20200721-WMP2360.rtf	doc	a498a07bd860a86bd937ea230aea64bdbc55c3040d90c13e57a2670608c1af3f	31.15%
2020-07-21	File_2020_07_21_U86979.rtf	doc	2748fddcf19685fe54157b965c7332d3abe89dee666467ba9655e4ffb6d805e3	32.79%	Heodo
2020-07-21	File-20200721-S2599.rtf	doc	050da6467ba07b4ad283cb19242ba04f2ad1abf3220c2eae335a348c061b49af	31.67%	Heodo
2020-07-21	Arc 2020_07_21 D919.rtf	doc	5676204dc114c9f08d3e8b9d365abd67056893923c3fb15afed9d3ffe357507a	29.51%
2020-07-21	INF-20200721-105.docm	doc	d678baaadbc56de5d5136a2bae9b233710d4016b9d09094c907e6a1442f7fca7	31.15%
2020-07-21	dat-20200721-X148.doc	doc	193921b13cb10f97c4211e6694ee26cf2ebb7d6eff920ca64cc0d96252fc3487	29.51%
2020-07-21	arc-20200721-WK03469.doc	doc	3e9d864db108ff21b3dbc6aee0596264668e95aa02677c5e98cb40bc9bf40998	n/a
2020-07-21	inf-M20924.doc	doc	7203fa5731e4f60d782eb7248af9620384981a39282d70094f40946b1b7a60c8	30.65%
2020-07-21	doc 20200721 Q9476.docm	doc	3d808e9e116ecad94d0839d1a951f8aa24c96f6dfaaa774a889edbb38c857b56	31.67%
2020-07-21	Inf_2020_07_21_F418555.rtf	doc	87d3dee382ec0e4a5a3c0c6979d2e460be44819c475c2cebe34bc5a83bb26b98	n/a
2020-07-21	REP 20200721.doc	doc	2da4a10c384d2bf3468b73d621de109cab5a29179b9d6cf4102c7b46dd937261	31.15%	Heodo
2020-07-21	REP.docm	doc	4702bfa3cce588e00e72da6918a41ca19da01547f668f0d07950765028a333ad	30.00%
2020-07-21	mes_18681.doc	doc	519ac8bbe23cc0506580ac08c5bc589d9d5382e00ea81898846715cef7502d8d	29.03%
2020-07-21	Inf-2020_07_21-1857.rtf	doc	fb03ffd1375a8f6c374ae010a9531c83c9383799710c0fbe06499d46a9eccf26	n/a
2020-07-21	File 2020_07_21.rtf	doc	a9e912c0733016338d181ec06475e1f30f28fc2159ee482787e913fc65085cf5	n/a	Heodo
2020-07-21	Inf_2020_07_21_62514.doc	doc	c93cedd95b86e6902a23550fffd5be8beeb902d2a6cb4541588ba327a3978a7e	30.00%
2020-07-21	List_2020_07_21_6777760.rtf	doc	c90c7844e46d777d31a1c9a7155a04315b31a96367bed2d076ab0d23cc7149ab	n/a	Heodo
2020-07-21	Doc.rtf	doc	268a97dd90a672f712cdec3a39986e6ea760af1f34b3bb9924eb08a270e0c576	28.33%	Heodo
2020-07-21	Doc 20200721.rtf	doc	15617b37ed587c9af7ec3de8d4aabd3de95ded6604f652abea14822da2c94ce0	28.33%
2020-07-21	arc_20200721_X081164.docm	doc	186a6ee6322d2e6656e0125cba0536eef43d3a66e4ce73e129332dbb236cab60	25.86%	Heodo
2020-07-21	INF 7869.doc	doc	75cb0d33fbd33b08aede2930d9ac79f7086ef7db06803c493d9214d84a4391e3	24.59%
2020-07-21	File 2020_07_21 7746377.docm	doc	f71d024b4271aa2cce102ca4d7736cfd3a80503b28146ea2afd7ca8233164f88	n/a
2020-07-21	List-2020_07_21-1076261.doc	doc	4a245c3424b436cc23d07727f5181cf185c57b77fe1a1a95286fc12c91c36403	n/a
2020-07-21	MES 2020_07_21 ZWP118106.docm	doc	a1808398c37712705f11218018390d7aa7ceae6c9c8209ba305d140fbd4e900a	n/a	Heodo
2020-07-21	DAT.doc	doc	ad614712ee0ad71a7408a527a3a2051489b0ff4f08038b7a676ad967ea160fb7	25.42%
2020-07-21	list-20200721-ZD217650.docm	doc	23bf0066e26b5b6e2403af2810c57d5ee5c0e04cfb175df6c134826cdb68bce9	25.00%
2020-07-21	Inf-803193.rtf	doc	5c299abeca5f1873ba4280b08b9cba329fa98d84bc12c1a125b7c861f41c3f2e	33.33%
2020-07-21	File-2020_07_21-8243437.docm	doc	1236dd4116a2c4ba4427175d0a3e88c848f70dc6219f6b22f1997ae3ba80ba14	31.67%
2020-07-21	list 20200721 9276087.docm	doc	49b857e2068f710d1facd444264c6d8804ecc9e2ba9660953b24bbf213cc66ba	29.03%	Heodo
2020-07-21	Doc 2020_07_21 814590.docm	doc	33e64096db5340fb26c5b5d6f9b1dd89674d3a77a96a25fafcb878d9929fc9da	31.15%	Heodo
2020-07-21	Dat 20200721 5095799.doc	doc	99c6c8f02c2fef792bc8a5a6406b0baa294156cb38b8df191f98cfb5a90547f5	30.51%
2020-07-20	MES-2020_07_21-SQO1644.rtf	doc	211aa330e781af24810676e704804e6f939793cf7572674e42de54a4f7513735	29.03%
2020-07-20	DAT-2020_07_21-SOT675955.doc	doc	e00291bcd00edfbf9f8f55a1f34576b512404c036b744d0ce846397f8a83bb1f	29.03%	Heodo
2020-07-20	File_20200721_RRL79896.rtf	doc	518def77204a86e55289809beda7c491b0f9ab290b10d7b4bae1c670a0f69c8d	29.51%	Heodo
2020-07-20	mes 2020_07_21 EGN511.docm	doc	f83e32a15080c0f31451809377046083d52daef3354edecea6db6ccf4158a43a	30.00%	Heodo
2020-07-20	List 2020_07_21 LD914997.doc	doc	107cf68ace70917126432b415c7a9b4a18e3f87c304c1ea780b1fe0950167c29	29.51%
2020-07-20	List_20200721_897.docm	doc	c0696d196c346305861f4e358f48f216dcdde4251309abed3547504007cb858c	27.42%
2020-07-20	rep-DF408.doc	doc	616dde6dc6e22e28f4149e26996578dde114b40f896cee3cb36165d52ff70857	27.42%
2020-07-20	FILE_20200721_7445.docm	doc	1269bdbbc40be92cc1f13918a692b34fdfeec466bd7d872863ecc405ff38f77f	27.42%	ZLoader
2020-07-20	inf.doc	doc	4d5d4a16ec11a850141a0a77026153d2a409bb4602e624623ee007e79dfd9639	27.42%
2020-07-20	doc-2020_07_21-49325.doc	doc	eccf2d10cb44fb11136e2edaf7af5de351637d1479888142221354abf8986760	27.42%
2020-07-20	rep-20200721-7875.rtf	doc	00593b1d3ba64e5ca39e6c503ab0f33dcade0d3afb65c2a73f2d4696cf8a7bb0	27.42%	ZLoader
2020-07-20	doc 20200721.docm	doc	8d861becdf66c056d51b6b585d1d2c98ec75e77bc3af28d354edb72f3ebb65ad	27.87%	ZLoader
2020-07-20	DAT_2020_07_21_MRO302.rtf	doc	d6da6435e94d2fbb2a3847c934bf0b6d41c613337ac951b10fd5851eb98a9bf3	27.87%
2020-07-20	INF-YD20211.rtf	doc	f4295c97af0389a32cb42495d1b102a8e8698e5f107c50034cee1d0ef8735a1a	27.42%
2020-07-20	Arc_TN945.docm	doc	6b5e8002c323071f83df953f977caf3a477d1a0c7178e0795674d263bc2dab15	27.87%