URLhaus Database

You are currently viewing the URLhaus database entry for https://www.ddct.cl/m/INC/pdtv1ih30386481lw58gnehkn0vz166z/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	420639
URL:	https://www.ddct.cl/m/INC/pdtv1ih30386481lw58gnehkn0vz166z/
URL Status:	Offline
Host:	www.ddct.cl
Date added:	2020-07-28 12:09:09 UTC
Last online:	2020-07-28 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-07-28 12:10:03 UTC to abuse{at}lacnic[dot]net)
Takedown time:	6 hours, 10 minutes (down since 2020-07-28 18:20:31 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-28	BAL_766963348565.doc	doc	c0abfc654f0e7e781bed0aaae89924773004af65aa46af36b80189f7368edb64	n/a	Heodo
2020-07-28	D_13014474.doc	doc	a6858e9165456c23bb7896862f4d3ec153bee00b02c3b2598e0f8f1cd3cb1b39	n/a	Heodo
2020-07-28	GXLP4WOC37NK8WU.doc	doc	a1011e57951c927047a3a6aa19a8844ed2ed7902f8e8c1234338bf3cf3960ea3	44.83%	Heodo
2020-07-28	XTFR_PQP4LZXS.doc	doc	0a2818ce9bfd7f5eaf2b201eeea0b4e9f4d110587584ed13017b1574324b099f	42.62%	Heodo
2020-07-28	REP_CPS_070120_WYH_072820.doc	doc	e0c8706f01f812beb106bfb124ddad3456dd4e33159910d1c9588ac63e00c2ab	42.62%	Heodo
2020-07-28	OCIP_PO_07282020EX.doc	doc	9f0ff88a05a5b3cd763f233b4764cb591599142f82dfc63c3f4acf1d9d7997f5	42.62%	Heodo
2020-07-28	FILE_92165903858029951.doc	doc	3ed97b5c98bb43b9d6a5042b5617ddebe018c780836be36dfc96b78865a851de	41.94%	Heodo
2020-07-28	N_RLV_070120_MTZ_072820.doc	doc	e85502045fec3d9af13567ce4608221f4b92f8b0262e4bae4dd305385079e63b	n/a	Heodo
2020-07-28	BAL_PO_07282020EX.doc	doc	da3bcdea8cc3b33756792fdfa11bdef92dd36e4620ada8b660fc12cc211b4281	39.34%	Heodo
2020-07-28	DOC_ZJPL0U58PE7ODJ6.doc	doc	d3fde9018a0bc9e76edf0b992ee8af63d938a122dfe68f7ecdb578b27bcec3e7	n/a	Heodo
2020-07-28	YL_GA5216730938FT.doc	doc	9c8f04c408fe3170c3f9d50092fa7bc79b072ac1bfe7c985dd2887d8581242f0	n/a	Heodo
2020-07-28	DZ2430897028MG.doc	doc	ed68893c9c4a4e3abfcfa85ca077b8d013605d2994fdd6c42b2858cdc2bd30d8	n/a	Heodo
2020-07-28	DOC_98936813.doc	doc	33892c4fb618745a9020642ae7ab40da499637463bad8dfde420034b8f9c92a0	n/a	Heodo
2020-07-28	BN76XK3.doc	doc	3462186176f663901dcf8db6383a21ecf0995c392966bd5e17f518fb7c0f6961	n/a	Heodo
2020-07-28	FILE_DL9401547296DF.doc	doc	8453ec242b79cfedf5b4fc8977ac318a0e11510f7d81318ecb25bb683207a175	n/a	Heodo