URLhaus Database

You are currently viewing the URLhaus database entry for http://cddvd.kz/cgi-bin/4dm7nwdr2m/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:420035
URL: http://cddvd.kz/cgi-bin/4dm7nwdr2m/
URL Status:Offline
Host: cddvd.kz
Date added:2020-07-27 17:45:09 UTC
Last online:2020-08-10 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-07-27 17:46:03 UTC to abuse{at}telecom[dot]kz)
Takedown time:14 days, 3 hours, 21 minutes Bad (down since 2020-08-10 21:07:05 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-29G_W247KLNATDVUF13B.docdoc c336f62e286774550c53e22206d0c4a01ff15925a348b50c8657836222d30aa9Virustotal results 33.87%Heodo
2020-07-29AK_IDC_070120_NIV_072920.docdoc 727f2b57969b68dc6e79c694c096bf3420cc788db33ec0f47193d70ce11fb20fVirustotal results 34.43% Heodo
2020-07-29Y_T659E3BW.docdoc 2726f3839cf1006321efbabff9c5f63a660e6a9f854a27a0d4ac5d505aae31fcVirustotal results 34.43%Heodo
2020-07-29SJ_ZWV_070120_GBY_072920.docdoc 3d0f47c47fbc6cfee2fb276f433b21cca723df51f5c2a24b876cef35c936e81eVirustotal results 34.43% Heodo
2020-07-2960261023766055.docdoc 09b48077de19d52dfbc9b6d2c88ca02edd8faef66106d41aa7e6ce017667ae50n/aHeodo
2020-07-29INV_728883390015283121249246.docdoc 4e5362db01307a96ef8013dacd91a2484d0ccbbe63f165f219adbbe285ba6e05Virustotal results 35.00% Heodo
2020-07-29INV_82177563.docdoc bd6261e1e869e0ecb65a5dd98b24fc4c71b75e51e8cf2dff74b0da42dc86b5b4Virustotal results 34.43% Heodo
2020-07-29SZ3436102216SJ.docdoc d92e4dd34381a1b20f114dc122c6f542aebe6d7633579c8b6f1d934f25666201Virustotal results 34.43% Heodo
2020-07-29PO_07292020EX.docdoc 8d9870884bb447b8a12ff0335f35d1bf700ca94e4b4b1b06534909f93586f6ecn/aHeodo
2020-07-2941640277.docdoc d74557f76299fc8edbb589b834ce1ee44477f4d4f1160a7b1e368648779aebdaVirustotal results 33.33%Heodo
2020-07-29FILE_88995754.docdoc d32b9efd8f82427e98069b5a06bcde907a9f906406d27e85ff7741cc7d338febn/a Heodo
2020-07-29N_LE4332829175PP.docdoc 4947e47ca102585589473567e7e3f0e8b9051aea7f9d08ee1409ddb7ad6bd2e9Virustotal results 28.33%Heodo
2020-07-29BAL_8452479854589326536628398.docdoc eef9719d24fd5e7e4f8e92e667874c426ae77519de41e4a5b0ae32f647f5a4d4Virustotal results 28.33% Heodo
2020-07-29DOC_PO_07292020EX.docdoc c2c91b2170c56b7b22329e38f348bda0d4f28f6e84b52c9470e3e2493cd63283Virustotal results 27.87% Heodo
2020-07-29WERA_YJO3A2CZEUA9.docdoc 5a959afcb67ab697d8f53e2e91f7424fb274bee1600360681f6b61c26e377fd7Virustotal results 28.33% Heodo
2020-07-29IQE3BJV99FX2QG4B.docdoc 255028b13e1798a9210c65582ec63fe7da4f42e7a9cb9f68ebd049b60ebc6219n/a Heodo
2020-07-29VZC_070120_BNW_072920.docdoc f2079fe72b86eddb5c15d9b80c2cc59076a08c0fbbacc4663d5573f5fe40e88dVirustotal results 28.81% Heodo
2020-07-29V_AL0723931544LE.docdoc 5aa3782f329a744d9e986c602f77efc5a7103e056f7eb43db157d466d7268ab6Virustotal results 27.87% Heodo
2020-07-2944559293.docdoc 93d8b1a56a79f7cd3f62c1545594be31cc4ad4e5684e690d64b607c6d0fe0e42Virustotal results 27.59% Heodo
2020-07-29O_9543679844521334618.docdoc db9b63cdcaff706197aea2e1a576f55006b3513170c106f6e2ee66586482b6f6n/aHeodo
2020-07-29PO_07292020EX.docdoc 8ae3245b9d11f03d3275763f2cb4bcd2f27af42a9b03eafa5829b0dfdf47003cn/a Heodo
2020-07-29K_GR1324420927RX.docdoc 9717dbbb7696ef497143d3a902bcf432a609b276d5416c302eadc752730c522eVirustotal results 27.42% Heodo
2020-07-29PO_07292020EX.docdoc 10361963fee9e09d6ecba109538947570bb5bc47275c46101f018ad1913138bdVirustotal results 26.23% Heodo
2020-07-29E_1IPEVKH.docdoc 10bff4abcb10a44b3d14435988ead41d1468bf4dc8fa4fc184e0babdac5ae73dVirustotal results 26.23% Heodo
2020-07-29S_IBT_070120_OZY_072920.docdoc 9ee009dea50f0125325d62473cfe14613ca3098555ff14345600be9cb1add50bVirustotal results 27.87% Heodo
2020-07-29F_56716248.docdoc 4dbbad92c8a96176270226654745d40e4df036d5e94064fa8784f48fb3124b7cVirustotal results 27.87% Heodo
2020-07-29FILE_PO_07292020EX.docdoc a1774a6485655119ea70b0979992d361b648420fb0b003439e52adff57c241baVirustotal results 47.54% Heodo
2020-07-294BYS5C1IEU.docdoc baa488f3a77d501d8ec7735d3df63912a500ac36a4daeff60abd475795b9343aVirustotal results 46.67%Heodo
2020-07-29V_ZAQ_070120_XRR_072920.docdoc 9e3690a0a71dc239833dddc5b2aa94983eec61d88a636aa96f12bcfac9898592Virustotal results 41.94% Heodo
2020-07-29PO_07292020EX.docdoc f91c181b504101f5dd430a8cbe41b110fba3453ef0cf28971dbf67b6ac3f4c5an/a Heodo
2020-07-292480431571.docdoc c2b7bf81008abd52155b00d75144e43087cf71e1171f4a0a594e2471b9678378Virustotal results 41.94% Heodo
2020-07-29REP_PO_07292020EX.docdoc 06830ca78e4e8d52763c57f5df66823e8c20fd6b6ebc6c1106aa86e6b80126a9Virustotal results 42.62% Heodo
2020-07-29104201608.docdoc 980577e89c6be7da4e2ef646205cb1338c565c48bd8d70aa2aecee178aa59e7eVirustotal results 42.62% Heodo
2020-07-29BAL_SQJ_070120_FXV_072920.docdoc 3a6228eab752332d255961e11b29d8c975de57fd8a5758b6174d58de099ecba3Virustotal results 40.98% Heodo
2020-07-29U_01251958.docdoc 7c0d398298f8a56ad9ec3dcd76f6d3d3ec37d0235722697cf910b162f5c46ed2Virustotal results 40.32% Heodo
2020-07-28V_00508685.docdoc 9e2785a9cb319ef1e1ae50d46ca804ae72583b7910a6c8fcd6bdafc8fd8ce956Virustotal results 40.32% Heodo
2020-07-2865453468.docdoc 26c4e8ead2701556bd3d09795db4bb4cd554b40cf9f30b9e76b7434c0e6e96fbn/a Heodo
2020-07-28REP_29176210.docdoc 54ae41dfc60efb567500d93db18eff476a65f04785ecc27c5708c4d486fe13c5n/a Heodo
2020-07-28FILE_691117612.docdoc 32631dfcd1e0a725b4b51420531bfa589d3dcb19269f060e7a7083332d537fa1Virustotal results 40.32% Heodo
2020-07-28REP_QDU_070120_GGU_072920.docdoc 942f521ccdd9490b25a14dfdb03ff9e8ff7bce4d9d0ad9c5a5fe684216b81579Virustotal results 43.33% Heodo
2020-07-28785590001617078059.docdoc 462d953bcff28b211276e898a81f38ce8cce30d3643e78580610b85d2be8daf8Virustotal results 40.32% Heodo
2020-07-28P_HED_070120_XBX_072920.docdoc 5695511491d9fc59e4cc2b617adcd9c3a84194b80ba76cc6d0fcfab8173ecde5n/a Heodo
2020-07-28DYNW_PO_07292020EX.docdoc 3b37651a73e7c5c4c966ac34a4b38a9e69d7eed9f17e276b8f84f43749cfc70fVirustotal results 40.32% Heodo
2020-07-28PPGL_OB5165758866ZR.docdoc 9ba684d3bb94c46b9c7476bf8ea2ecba98cc9e6975bb465242081e17e69ff0b1Virustotal results 40.32% Heodo
2020-07-28180001722122385.docdoc 87135faebfc31f34c94e02ffd43281b0e6cc7055ec6ef5eb5d60b29df1009c22n/a Heodo
2020-07-28INV_PO_07282020EX.docdoc 9bf049c3356bbba6bc9e82bd698a785902daf6069e90ac638d402f83c4cd9d59Virustotal results 40.98% Heodo
2020-07-28MDKNAZ26DAND.docdoc c3c5633aa6844b78f5fd68ab867c7f0ee8c3cb63387b2b497ea29bcc8566a2f6Virustotal results 39.34% Heodo
2020-07-2801190127.docdoc 4f68ec384213f86c31e2e7fa948ef7e0d8c37374f78669ea5830a7e037e9645bVirustotal results 38.71% Heodo
2020-07-28TC_PO_07282020EX.docdoc eada2a0c60cce5cde99882949dd1809c88378de39baea3b532635411598c1f9cVirustotal results 38.71% Heodo
2020-07-28INV_PO_07282020EX.docdoc 3615380736188fe0625c45df6c98b644a1958e722b1ba3baf0ef861c09ae4efbVirustotal results 44.26% Heodo
2020-07-28BAL_PO_07282020EX.docdoc ce54e66c7246ba448e0fcfadc08194c00262f5e3daba0f8c77f57b05d326e7acVirustotal results 43.55% Heodo
2020-07-28INV_YCMO96HUIE5MI3OS.docdoc b6f55810ba489985dc8e3fd592ac172f679de4fd17186f2d9be67b9274e77f05Virustotal results 41.94% Heodo
2020-07-28DOC_YPFQLZ9.docdoc a44f6b82eb6565507c10805b73d3bee4da269d02c659532abe1f4a278c9446a4Virustotal results 42.62% Heodo
2020-07-28K_6148130290.docdoc e0c8706f01f812beb106bfb124ddad3456dd4e33159910d1c9588ac63e00c2abVirustotal results 42.62% Heodo
2020-07-28FILE_PO_07282020EX.docdoc 9f0ff88a05a5b3cd763f233b4764cb591599142f82dfc63c3f4acf1d9d7997f5Virustotal results 42.62% Heodo
2020-07-28BPA_2YPAWH74WDEE93T.docdoc 3ed97b5c98bb43b9d6a5042b5617ddebe018c780836be36dfc96b78865a851den/a Heodo
2020-07-28BUT_070120_DXZ_072820.docdoc 59bd5b842a06713cda4b96045029ef1b0df9e60c5a0467124467efeb84e56874Virustotal results 44.26% Heodo
2020-07-28FILE_3834819415323.docdoc 55677077478fe1e1ccb1eb668fd20da87b77668e9a5ca12ea061ad59341e0693Virustotal results 40.00% Heodo
2020-07-28Y_MYY_070120_NMT_072820.docdoc 3ede822580b26357e4126b461a884666c12bb750fc30415502dfc452f5b04c30n/a Heodo
2020-07-2891483537.docdoc 8d27e36fe079fffb278a007a07dbcbfb37ae765b71bcefb8e0e41c4a70101512Virustotal results 40.00% Heodo
2020-07-28RHR_N5JM6E0SVZ.docdoc dcfa16496d19200fd3dcba8caa7f55ebb5bd56da1ad90b49ef3bbe702e1fdd87n/a Heodo
2020-07-28REP_WW4546064981UV.docdoc d9e1b8b8313a688c0096c914d0cc62aed82170a3e85263d69ef058de2d978b15n/a Heodo
2020-07-28PO_07282020EX.docdoc 78343bb65eecfad5b62d2de0e25b21a708b837293f90cfd6b1bdd8e8cb7d8014Virustotal results 39.34% Heodo
2020-07-28PO_07282020EX.docdoc 8568762e1933e7b9acb305ef10ceef97fae4501ae0f805ad873393f9459fa229n/a Heodo
2020-07-28BAL_RTN_070120_OBK_072820.docdoc 2099d5d04c39f86f1da8058861951deb8c6ef875e5a77272709f711e80a3d998n/a Heodo
2020-07-28REP_IY6596058381RA.docdoc aa5f1c9ba21577549daac728f105950663fa787b94f266a50602a7ba43772e99n/a Heodo
2020-07-28REP_8AD3LXKPMGT2I.docdoc c42f2ac06fe469689cc7d39407bbd26f418223213b99e1c4178bab4735bb7e9cVirustotal results 39.34%Heodo
2020-07-28INV_BTX_070120_LID_072820.docdoc 4fdb97a98c47101b9d2c0308f3c3a9d4fd53c97fd7a0d7937ee3f292c51f8757n/a Heodo
2020-07-28DOC_21662821.docdoc d831fb7e6ca7099b615f50a60fca9d58ca6307bb95d592dfdd1c793b267f7f86Virustotal results 39.34%Heodo
2020-07-28FILE_79043155129715377568.docdoc 0908f65f4fc6bbc55135748a1dc9f8120e504195f01caefafb80e6d7639f32c8Virustotal results 39.34%Heodo
2020-07-28FILE_DSI_070120_JNE_072820.docdoc 8a02a02bf39b80d809da634fe105c29a2b012acfa59c4eaedd94360fb5fbd2e3n/aHeodo
2020-07-28DOC_HAM_070120_IXP_072820.docdoc 26906041efdeafb6c1754eac8dff97abf079148816f1121ef92bfaed0a6e9991n/aHeodo
2020-07-28REP_00542980532401783.docdoc cd8165b730d0801f2eb1524b1a430abe1d69e7105b2a898fbcca440afafd8f01n/a Heodo
2020-07-28E_BIO_070120_WOP_072820.docdoc ba613571c6d4657eb92bf9852164f5e774f458def985b842e8594704632bb9e4Virustotal results 38.33% Heodo
2020-07-28REP_MR3043577215MY.docdoc d0b863f7a0a3856c5bdb5e1d6d5b4f641d64f352e54d54080c23025a30a0b5c3Virustotal results 37.70% Heodo
2020-07-28J_SY6IH96Z3IN.docdoc fa0ce8c142463b37579d0d5a4fbb8da9dde5081ce2d5ffe0303872a533e7e190Virustotal results 37.70%Heodo
2020-07-28BAL_76587009.docdoc dc7c90dcb5ec12e5b8f816048d2843dcc7c972ca78b9e48578a917666e7a2845n/a Heodo
2020-07-28REP_PO_07282020EX.docdoc 20d81ffc64ba89a114dc4ee30c643d555945ab0ec0f3a17c96b56d6087ef3b13Virustotal results 42.62%Heodo
2020-07-28CU_RHC_070120_VYP_072820.docdoc 3bd36ab32026af0a6cb457a12a0ba75df13d8e6a288da64ca838af0bef9c2e24Virustotal results 44.07% Heodo
2020-07-28FILE_PPD_070120_WPB_072820.docdoc feb69e5e064dc9aed0fb86311321af444f6296260687339fcceb53d31201a026n/a Heodo
2020-07-28BWRAIFVN.docdoc df3f07a28988e65741321c968afd02eaf8a49fa2dcf2e2f2685d04e13a236122Virustotal results 42.62% Heodo
2020-07-28BAL_786406641.docdoc 1e687ad756dada51e71738e9b4af3eedc481d865f7df0bd32500ea50bd16233aVirustotal results 42.62% Heodo
2020-07-28PO_07282020EX.docdoc 388d49d105196dea02e96ac0172560dff1d9862e5b8910e7af963585439dbde3n/a Heodo
2020-07-28DOC_14295283.docdoc 2b2dc53af6714037713433698dae9be164fc7c66c23377ec620a17a4130bf425n/a Heodo
2020-07-28BAL_HR0772144626XU.docdoc 29c42aa5892fede943d2975f64abfccbcc8cfa164a85e278753f970a17d010deVirustotal results 41.94% Heodo
2020-07-28FILE_NLT_070120_LUS_072820.docdoc 6f725b4e11df45b38cea3502301ee5e92df17109fa860dc84523501a6940f5d6n/a Heodo
2020-07-28ZG8185206152YP.docdoc 2b4263841c81074211dd59e820bf05562e5c59be8d38bf8791a0a21753cdf504n/a Heodo
2020-07-2744505595.docdoc dd1fe9f11a267149ce356a768d071605c1972fd10d1f7a57a29fe8a2c8fb41c1Virustotal results 41.94% Heodo
2020-07-27DOC_9Y5ECZ6I68JRIF7.docdoc 78b39f8d472206c5ee8e1cdcd47550cf56630aefc5e722ca39891b62a9c02d19Virustotal results 42.62% Heodo
2020-07-27BG_PO_07282020EX.docdoc 3a4fd8ba092ea2243de196e6a43f4568bc13d88e3c04ed3aaba6e494b4ec47ffn/a Heodo
2020-07-27DOC_INBA35OVGWLUYQN0.docdoc d88b494734b0a01b33a3095214b8f76b448f625fa97248e6d6385ed6a1edc35en/a Heodo
2020-07-27LDE_070120_STD_072820.docdoc 1025216058d489f910a0436f2fc8da78f7b0c69707130f006d627744e413067aVirustotal results 43.33% Heodo
2020-07-27FILE_8118961251029568059475.docdoc 9e6b07432484371908b25279a80c78f3f717726fdc1cee80af1458b9dcdd92bfVirustotal results 41.94% Heodo
2020-07-2721174025385.docdoc e014e7351a4ad87f016b72570a6ea61c63069ef368ef1501bf75c019760740d7Virustotal results 41.67% Heodo
2020-07-27DOC_26723278.docdoc 5d08f7fb64c5fc4af654eed617b862ed33cd458b34326c027882d886627f96d0Virustotal results 40.32% Heodo
2020-07-27INV_EJJ_070120_DQM_072720.docdoc 8b45eedf831a892ec3c09d8c866f1d771b5910bf44de36ce99157d6dcaf56eden/a Heodo
2020-07-271028918739641187200059.docdoc 638c2bca4d280ee089f6038536d990d264e547a0aa4848cf1777b3c73e448561n/a Heodo
2020-07-27FILE_83924126.docdoc 331fdfa975f4a2d408e197f274ab95fc524b04df25be54ea4af222cdca4300e5Virustotal results 37.70% Heodo
2020-07-2716860811.docdoc 378afb3d981835d83ebce4c7aca81bc52456aa1373b8f0bbfe3635f7803ac3ddVirustotal results 37.10% Heodo
2020-07-27NOZ_070120_XXN_072720.docdoc e2346f7650658fe42696358919e1a59c058912b95266b7bce2ccbdc9c7365537Virustotal results 37.10% Heodo
2020-07-27G_OU9H6KO7T.docdoc ee15b91ffaa6ccb45f34e54e28cac0313eeabf7ae3be97772023b75d65c1b778Virustotal results 37.70% Heodo
2020-07-2760533674.docdoc 8e025046de6bebeb78e622c3486c470f91fa749f9e4add66dfdb8e84b9908defn/a Heodo
2020-07-27FY4006181717HB.docdoc 61c8ff4e80f3b445668dae6527ce210bc1f89b12f6d2022ab5c37e10ae7bd2c4Virustotal results 36.07% Heodo