URLhaus Database

You are currently viewing the URLhaus database entry for http://nufc.vn/backup/balance/sb7pzpukn/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	415839
URL:	http://nufc.vn/backup/balance/sb7pzpukn/
URL Status:	Offline
Host:	nufc.vn
Date added:	2020-07-21 09:17:15 UTC
Last online:	2020-08-27 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-21 09:18:02 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	1 month, 7 days, 7 hours, 51 minutes (down since 2020-08-27 17:09:39 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-23	I_MVO_070120_HHH_072320.doc	doc	46f276ea771efe79258f6a6682609a682fc9fc03bc266902d526660e2d50a2d9	42.62%	Heodo
2020-07-23	TPT_NKC_070120_UXD_072320.doc	doc	ac4ca26e0b1ce2149f23d81e941c7425adb9f7deaa16b60a33d1f7bec9f99d26	43.33%	Heodo
2020-07-23	DOC_760615824122212014.doc	doc	5c3ece93e2a6644d09daac8a92d6d624794c5e88db7781c77eb5ffd03d2ff8ff	43.33%	Heodo
2020-07-23	UB9133459551LJ.doc	doc	4c99123bb97ae169e6ab05660104745891d0ae7823f8594f8de82a833dc13d15	42.62%	Heodo
2020-07-23	KF8390834188WB.doc	doc	fe96a82a69a54081c22cdb120eb48bde5cdecfdf3a0cc0dd1d72b616067c3db8	43.33%	Heodo
2020-07-23	FILE_919179434123.doc	doc	5f2520828449385a186054f9fd1888a69f6d808ee764bb50c387821529d0fdc0	43.33%	Heodo
2020-07-23	03779438.doc	doc	201e65180b4832e4846c2b92accd04338090231dff03fcd300543968d409f828	43.33%	Heodo
2020-07-23	FYD_070120_RUQ_072320.doc	doc	0d4d84b4ed0c4a8e8c9f84e6e3867fac00ea5484f6892545456598a190dd99c7	42.62%	Heodo
2020-07-23	B_316268617028603.doc	doc	b3322a0449ee0eef689ea9a34041b6d53fd90c330d1e5f224b10dacf2a3d1bd6	41.94%	Heodo
2020-07-22	FILE_88401786459336406129854.doc	doc	fffcf5e69d6c606f32e426b42e007fc3dc07d3b83544748104e2a6abc3863f39	45.00%
2020-07-22	Z_90200911441259662274.doc	doc	cf5b94299cda52fc6fa271c4cf4183ef33604d6742b21753aedb88391aa45082	44.07%	Heodo
2020-07-22	PO_07222020EX.doc	doc	85b502308eea0d4c0b742ca6b6b9ccc6cd628d2d3d937d52d3cd912d55a6501f	42.37%	Heodo
2020-07-22	REP_95415337053330013.doc	doc	9250d08026b599f3db61fd76dbc27e4679aa734e469a9706c50d280c1d86913e	n/a	Heodo
2020-07-22	DOC_38473031689131.doc	doc	211e5634a3edc6dc9edd8faf7e8c65a93516139f8f7406ea1b0004cd8a4582a0	43.33%	Heodo
2020-07-22	REP_ZNU_070120_XEE_072220.doc	doc	6a5b7bb6f7a3cf8967e8e966d17f4a94eef876a4cff2e66b5aadaf461f068b4e	n/a	Heodo
2020-07-22	QE_KNF_070120_TCP_072220.doc	doc	7301394356de0237cd27b967d4a2cfb13d5c2d4e5ddbd98a0488d26800d28849	43.33%	Heodo
2020-07-22	BAL_94696697.doc	doc	516b990afeea66dde2feaf3c08cc03d53b102010a7563f735bcd2a9298a4978e	44.26%	Heodo
2020-07-22	FILE_UU0249010273XC.doc	doc	b1715682c97f45a67eefba82b2f98e6e7f62d7d2c8b30c942fc9d763aa531223	43.33%	Heodo
2020-07-22	AE_PO_07222020EX.doc	doc	1173bdedb43ef07a3717e4779d911525bfe933b315c02c692dec3cd7b8b686f7	43.33%	Heodo
2020-07-22	PO_07222020EX.doc	doc	9aa88e0b920319854af15ecf938c37ed20ef8922b14d3aef3c431e7244816a70	44.26%
2020-07-22	X_NJRNDYP3ZDCNG1IA.doc	doc	fbf452d5f6cd0fdb296b33219f5f31288e9d2e0443eccfcdd5b9312e3c51ea13	39.34%	Heodo
2020-07-22	ZQRN_Q8E2EC7NVY.doc	doc	89781678d6d163d911bb4191aef0633150643ec2950d40fb73be636fd5856511	n/a	Heodo
2020-07-22	RZ2666297102WK.doc	doc	6926e9ca66bb3358bc37fd3518064ce47beafef2445ba28b64cf343c9f3fa6cd	n/a	Heodo
2020-07-22	DOC_IVY_070120_YDP_072220.doc	doc	e36be98a3e3d568430d52706ee06d935e126942b2a5c2453f5478d8c0d58acb7	40.98%	Heodo
2020-07-22	BAL_PJT_070120_BCO_072220.doc	doc	605e68db4024034f722b64cb62676029ba7c1ec38fe58ac535909068a5d53535	41.67%	Heodo
2020-07-22	X_PO_07222020EX.doc	doc	7637b95948804cd3f468b989a06871c75ab707cb5d5a3940d2c9b32e23f489eb	40.00%	Heodo
2020-07-22	BAL_137124775008.doc	doc	067ba9cf327a1e5805876399eb60e0766480e8569c950130e43141b645b6a4bc	n/a
2020-07-22	INV_Q1W421DA4512ZP.doc	doc	5f39d8815063cb87105760179dfccceb319602876bb38756f0763b3ac6d448c9	40.68%	Heodo
2020-07-22	DOC_E6H15GK1.doc	doc	432d6d6881a6d2006ee6d849c32688e7243f4b6f06e42ebeaab0665807c3140e	40.00%
2020-07-22	WA0FHQ0DD.doc	doc	09ff59e3aa0a87e0028a01ccc11acdf7bb537cda761ef20a6d6528aa762a6aea	40.00%	Heodo
2020-07-22	Y_WC4485396260ON.doc	doc	382c3e95cc13f711cd343ed378dc4865b2e3f7b6fe31bdf6c7329624566f72f7	40.00%
2020-07-22	01903909117838.doc	doc	3989307ebddd245bda87431ce5df1c47f236f62ffddbd75ea3d36a68ab9fc77a	38.33%	Heodo
2020-07-22	INV_43124764.doc	doc	bff462e527dc2bbfbc6af92e64f4d57c7587401687561163e0a6a3ec37414d68	36.67%	Heodo
2020-07-22	N9E2LB6JQK6B47W.doc	doc	19012c1ba3beaee4ce4f34cb5510b9d9486626ce2f1391e4f12cc733d5357e01	36.67%	Heodo
2020-07-22	L_03632524.doc	doc	8b59b33a1ec01323ebca9e8cf743ec1ee376df987fc56bc586efa601941289d2	34.43%	Heodo
2020-07-22	REP_TVA_070120_LLO_072220.doc	doc	75976bde3b02341d4f05b9672041e7cecdc933663249a73fc38982cd66982d47	31.67%
2020-07-22	867390103357.doc	doc	bd83f09ecfe601637ebab977d8f363a89860c60d16456c28bcbfc30ae1778885	30.00%
2020-07-22	INV_RHRLK53J1B647YSU.doc	doc	4c0cc2081019e58018a52f5990e6b614bc3ba72898c51b3b2b6c936712cf1697	31.15%	Heodo
2020-07-22	73208727.doc	doc	15c078915b811f8f8fe55ffe072209f0b74b8ba3988940e179508e510a79cef2	30.00%	Heodo
2020-07-22	BAL_HP1733960429FB.doc	doc	00ef2d68251c66dcd85acb5c11837148de33e43d9a98eda9d28435c9d74477e3	27.42%
2020-07-22	EIDDVAAEWRNOGT.doc	doc	f9c93aa61dd4cb64cf59976fbb246f87744328a2a1fd1233945c84fbda2c0aae	26.67%
2020-07-22	8361427298609.doc	doc	6999be5570232cb11189a152478254ef33470426036d88fa74b45305031efb73	26.23%	Heodo
2020-07-22	INV_VPRYHQD5KBNTVWYI.doc	doc	e78c34be8e5c18a71a9aa4efce0a94da6f1478187b801178d37bbea90e1dc260	26.23%	Heodo
2020-07-22	ZW_TKW_070120_ETP_072220.doc	doc	e563992a8b913e222c4f08cd1cb89a4e4af61dc33d30f455e7e3f4fbd039666d	26.67%	Heodo
2020-07-22	52609772.doc	doc	adecd8241c21aa989810258e39d162aeb6ec0b86ca6a884fa3a542ad306a1c63	26.23%	Heodo
2020-07-22	BAL_PO_07222020EX.doc	doc	a76feea95a298d6f94ca0a719376f30e4409a18555e10bdb1e90a24c7facf294	24.19%
2020-07-22	KPJ_070120_ITT_072220.doc	doc	c14ddeac4500ec2bb65828bcf770f5ce11a369ca829f2c68587632e1dccfd995	24.59%
2020-07-21	DOC_PO_07212020EX.doc	doc	d087ddd4ab54eacd0bdaa2be04850c18ab694655cebfb68094cc191e7479b793	30.65%	Heodo
2020-07-21	DOC_PO_07212020EX.doc	doc	74db9fac3d9a684b81ce1975d06d184a85bc67d24466aed35ff6ee475e21d16d	31.67%	Heodo
2020-07-21	BF3276395576SF.doc	doc	a543b622ebcc58314854fa85473ce89753b8c30877e2562d607aa9483023d16f	31.15%	Heodo
2020-07-21	DOC_XL1895726434SS.doc	doc	ad09bb5a5aba85dbd01596a1cdd77d12eca89c079abac382e0894e000a9a50b8	32.20%
2020-07-21	DOC_8801161815948952942813390.doc	doc	bdc749db5d8ce9e69df8e15bfc1c19ec8321d098ea6866744a838002db89bd55	n/a	Heodo
2020-07-21	F_0193614526044647.doc	doc	cec35b109033547213767928b9d168215b5107f813a704a6c72338e5440489ca	n/a	Heodo
2020-07-21	INV_VS4756177809LT.doc	doc	c09f9a36d1e308eef3a1371f71e5d7222bc328eb8a3ec5b905197a5af90e018d	31.03%
2020-07-21	DOC_24196991.doc	doc	b256eedac4c8041fbc722fd1b36b17e5fd7a9a5004f974cef3afca5b5ccadcd3	29.51%	Heodo
2020-07-21	AYW_UOZ_070120_VBU_072120.doc	doc	f5049e4bf98c2e07d5ac970c729a93402c91bc9fbd1398bbe4b006f959c47a04	n/a	Heodo
2020-07-21	O_1YLTXQWN4HISEU8S.doc	doc	1dad4de7cb45876fd076def8d214824ef1d8fe10d8b202ee220930ba6ed989b8	27.42%
2020-07-21	A_B04QC85T9GUEEJQ7.doc	doc	5f3da5a1b6d61a46a16169eaf72e463f3f5483f15213d0799b577d4684e38a70	28.33%
2020-07-21	DOC_QX0939674703TR.doc	doc	ced32d6bf400cc3bb59aa1929efa4c17228064153ca0615288fc1fefde35f11b	27.87%
2020-07-21	372720049.doc	doc	28c3869c9796a32f17c0d9c08a13fa07d07c03b13420f83f05b27dfddf2c87ca	26.23%
2020-07-21	FILE_A3G03TB927ODBJ.doc	doc	9d29290a0e2c6f3801444df8141e4099b9d87d0d3d3ba984bbc9d9684fcb5511	24.59%	Heodo
2020-07-21	B_Q8AWDZ7RIRD.doc	doc	9fae422f1e6eaf42b4164526f13a51a3f366b573b191fb013ed934bf90d4a436	24.14%	Heodo
2020-07-21	REP_AUY_070120_RBK_072120.doc	doc	8f5c9735c5189f1b809aba58ae06fa7432eaff2ca15ec97d918d82dc6082a69b	24.59%	Heodo
2020-07-21	FWO_PO_07212020EX.doc	doc	76f26be5906a8e19f05aaeb83beb7822cd9f6dff18f4b66782023d320e84c36b	n/a
2020-07-21	REP_68404419.doc	doc	a876f1e20601ca05e5190dea3fa7c385fd223d79ecbee5c2c70f75bdf506009b	n/a	Heodo
2020-07-21	REP_PO_07212020EX.doc	doc	b1a935c9a64f8a2191e613e696c6df7a5892c608ec14c6f72c3459c4a62f2865	25.42%	Heodo
2020-07-21	INV_SNL_070120_WIE_072120.doc	doc	3f65143957146edc136d123a62507f50497de812d31cf82785b88dc67c7f4792	22.95%	Heodo
2020-07-21	P_PO_07212020EX.doc	doc	2cccb5979a562d00936dba58168f63f56806a4013284bab9f2a8e84be5eee72e	24.56%
2020-07-21	INV_PO_07212020EX.doc	doc	003110462b096556a9d96dca0472feaa2dee2edaf6d8d0e179dc08a8a8f2b775	23.73%	Heodo
2020-07-21	BAL_23914604.doc	doc	76135328ce70dd5755fa54408d962b10954d6bb5c47f883a7c2bdd1defbebb9c	22.95%	Heodo
2020-07-21	NDL_1ITVEDH.doc	doc	8978d3689c855a8d7c583f401fcaab41443f309221e73abf1464eb85e5842c88	23.33%