URLhaus Database

You are currently viewing the URLhaus database entry for http://dandyair.com/font-awesome/wl3uj9l2-web-618797/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:420668
URL: http://dandyair.com/font-awesome/wl3uj9l2-web-618797/
URL Status:Offline
Host: dandyair.com
Date added:2020-07-28 13:10:09 UTC
Last online:2021-03-31 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-07-28 13:12:02 UTC to abuse{at}digitalpacific[dot]com[dot]au)
Takedown time:8 months, 5 days, 16 hours, 1 minutes Bad (down since 2021-03-31 05:13:52 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-07-31INVOICE H08746551.docdoc 1b0122c96de8f870e55e55bca4672466ac7364708a15487e05dc22aa712697efVirustotal results 65.57%Heodo
2020-07-29fatura.docdoc 18b4fa83a6ab9f4a394a9642e954cf6b8184bd9b0597de0ff9fe3376db4a6c86n/a Heodo
2020-07-29Fatura.docdoc 1b23e6893b349fd94640f1425a5ffebe9b61b4d3e21ad8f8ab5117384f0ffc0dVirustotal results 36.07% Heodo
2020-07-29Inv W0039.docdoc 836f741608d5aee28ac46b0fa047807f7ae6a35279131bda901f56e31f4d9561n/a Heodo
2020-07-29Invoice.docdoc 2a59d9b88e40862915ed05312bdb0097e6f8d0138c4938eabe16726757916e00n/a Heodo
2020-07-29INVOICE X0012.docdoc 9bed5e41ff08f7631b209608b6fa63731cc2c5f0db2ac68fab02edbffab47fcdn/a Heodo
2020-07-29Invoice T08480820.docdoc 3e9c7d9885ec613e95cbccbf5a204267786a5efe1e82b72b4a11f9472af0460fn/a Heodo
2020-07-29Invoice T08480820.docdoc 3e9c7d9885ec613e95cbccbf5a204267786a5efe1e82b72b4a11f9472af0460fn/a Heodo
2020-07-29fatura.docdoc 4c4eb4ee78767e5ef21bbc3ff9fd20cbc8824981980172c54aa2b5bef9c05f0en/aHeodo
2020-07-29Estimativa.docdoc 304007d9b5d5a2fc7b1c78dcc7694505c8968eebfbf99d3119e9d183a6269b24Virustotal results 35.00% Heodo
2020-07-29Invoice.docdoc 4800ef4ce359d4cfcba1becb6f8f276e0e968f7184af96279a1c448b897cccben/a Heodo
2020-07-29Estimate RP082579.docdoc 50445a74463d73e829f22308488c8ff5b166f83d4d17025cccf6f9c634146f8eVirustotal results 35.00% Heodo
2020-07-29Invoice.docdoc da0470f0a65180bc59fa46336f7641a2b14609548e8e2e836dd84e1272790ddfn/a Heodo
2020-07-29Estimativa.docdoc ecd6f0ecbe8a5736cbbd0ad4095e8d9197f31f8278a839928a6b1ff342310541Virustotal results 36.21% Heodo
2020-07-29Estimate.docdoc 711b17fc61563ba1f5add8e3a98cd7240fa0410d3ca4b0b26207cf71f43e8299n/a Heodo
2020-07-29Invoice.docdoc df26600619cca1e39dee2d493975dafbe94b1e1667abad484e8fe2cb750cf031Virustotal results 31.15% Heodo
2020-07-29fatura Q00745056.docdoc e8764c1eeb1526e93e19ec21e83404f0657dcb6b9edb0a29a88f4527b8ef1871n/a Heodo
2020-07-29fatura N0575.docdoc 1cf6d7accc86a3a30fbc7afe0fe865f49841c25dccb01f28ccd3d0a578874e62n/a Heodo
2020-07-29Estimate HH020301.docdoc 48ff47bbbcb8b53f6fefa1fa1ca276d9cd1a82956cb00511b6718bdc6818d503Virustotal results 27.42% Heodo
2020-07-29INVOICE YB028933.docdoc b55637e397616929dd5aa9a5dce20753de9ecf2de51cd00672d022fe335ee5c6Virustotal results 27.87% Heodo
2020-07-29Estimate.docdoc faf515ab474069ff648bbe291975efe9b7be1e0354b0e61b6c4fc9e91d0880fdVirustotal results 28.81% Heodo
2020-07-29FATURA CV06427.docdoc 048fa686a033e894b6ab66472e3add1b8e1d6bbcf6b2f3abe4be995f54c3e61eVirustotal results 27.87% Heodo
2020-07-29Estimate.docdoc 042bd8a9a57e4325287a5c49534245c4c5f924cbd1887722a5169bc693652f1an/a Heodo
2020-07-29INVOICE.docdoc fa51e98749aaa0daf2d91750b04a12515172b360e5b442df9653b0ea95154b22Virustotal results 27.42% Heodo
2020-07-29Inv 06100073.docdoc 7e706588770f2cd28bde3e21c46aa7632ab175258728524e60b47c3bd22300c8n/a Heodo
2020-07-29Estimativa 0772305.docdoc e827d7ff27f726bee2749abf8ce3782dff05c272848ca5226e238cd1c1133d1bn/a Heodo
2020-07-29fatura C0325926.docdoc 7525cc70ddc907c41de731b0e7ad8a1ca6a6796a75368e655b69815322b0d094Virustotal results 27.42% Heodo
2020-07-29Estimativa CU08429349.docdoc 1dd3b51b88f6a876b10aa6d26e1b57d269667e9e07fa0f1963212b4d168e9a2dVirustotal results 26.67% Heodo
2020-07-29FATURA 025424.docdoc 6bccac77a72403880d41bb0e487db280610c96089a428b7471ffe4c3f970fed7Virustotal results 26.23% Heodo
2020-07-29fatura 041042.docdoc d41f4dacc893e627b5be2f70ae621b511b682862be6c3ce4f8172f125b2e824dVirustotal results 26.23% Heodo
2020-07-29Estimativa.docdoc bd6c77378489cb8fd4a161d48e7942912147f621de2390270a9094b8ae137397Virustotal results 25.81% Heodo
2020-07-29Inv 011410.docdoc 33c882f08f84e49a95713c9bf237f5429122b436aa5603ffb80b5f79efbea230n/a Heodo
2020-07-29Fatura VW0031.docdoc b2eeddd5041eedee7e49fe10f67bbf0e658f7636ccfd952737bb3938777ba2aaVirustotal results 45.00% Heodo
2020-07-29Invoice A0051.docdoc a4e941731ea6004cc9cf3198d9af9fe064ee77a13f1f9b78de69450a34d43722n/a Heodo
2020-07-29Fatura.docdoc e275f7f70b358d8bfad421c59333f98e86002da3fe2e9afe4079641717342f3an/a Heodo
2020-07-29INVOICE R0448765.docdoc 3907087a305c59e991dc3d51ccf7fbd846bdf7218ff00d228ec92dcbf2fbfa3fVirustotal results 40.98% Heodo
2020-07-29Fatura S08786.docdoc e63d32f5ad42cb868addb8ab5910d52dcdf4fd0938f94c24d04167806a13df8fn/a Heodo
2020-07-29fatura N0185.docdoc c20b895c419f49ac8e3d870abf913bfdd03570857ad269d48b42425f190f8c9bn/a Heodo
2020-07-29Inv C09999101.docdoc 8caad6920379901e4d096cca5f10d76e8ead6ea3a4ee106ebed0cdf9b07a1bf6n/a Heodo
2020-07-29FATURA.docdoc 88b9aa3c90a28ecdd7adf28ea12e316d3b2c8a7086d315f97a2e62a77abd49afn/a Heodo
2020-07-29fatura VL0548101.docdoc d935a27364e69bec9a6e75f525f25182b1f0cc28948f4f32b6768bf79299f86bVirustotal results 40.98% Heodo
2020-07-29Estimate.docdoc f8ea78fdf6bcaf1af0f7c2737b6c7279ae4d18f1550ede8c25fd12df743a7946n/a Heodo
2020-07-29FATURA 0649059.docdoc 6fea80d87d971a5f21ab653f96a611b068595ee1d6cc58a9e47399d88f10ee63Virustotal results 41.94% Heodo
2020-07-29Fatura MP05541.docdoc 815aa5f259b212c8f4b86befb45a9905af2a91cab161e881bd4f79190c5e8065Virustotal results 40.98% Heodo
2020-07-28Estimate YY0543963.docdoc 04abc34f8660da49cfcb4daa11b45febf492755f28739bb02b2e00e51e3965e3Virustotal results 42.37% Heodo
2020-07-28Invoice WV0798.docdoc 2500e2bf1ee4be15c6ba67badbce47df2e8c4910ae6d70956ea26631afd4bd8cn/a Heodo
2020-07-28Fatura YE021976.docdoc 66f1fb5542ac9c7943dab8cfbf1dea1fe42a40ae78832089a49f7034e3b833daVirustotal results 45.16% Heodo
2020-07-28fatura T067921.docdoc 95a1a5424adf5b9b6a73d12c786ae850dc40a4b7603d0b8c7863e47f7f724f9bVirustotal results 43.55% Heodo
2020-07-28Invoice.docdoc 88d3d8a15ed2c7edca25b788fb0c85eaad6c085c6b2e98a45362663326638ae3Virustotal results 43.55% Heodo
2020-07-28fatura.docdoc 598a8daedb218279d20cb8759624e3f136836989072aac66bcf0eb916b1bbf26Virustotal results 44.26% Heodo
2020-07-28INVOICE.docdoc d8a8f601fb7868b6495b8e4c97b8f7fa3748c8f3aaee3ffdf975200d70b49ff6Virustotal results 43.55% Heodo
2020-07-28Invoice.docdoc 1c1841baff08804539ba328b9f63e6ec39abab9afc6bdc70904eca138a993247n/a Heodo
2020-07-28Inv I09906.docdoc c61820249fb8e9e6d4e20f466c9eb023334d37138f66b001e5b2221392fb7eedVirustotal results 40.32% Heodo
2020-07-28Estimate.docdoc 6ffa8618b9b0315ef9559c3d83f1fb565280997766353723a4db9ee951d0c21cVirustotal results 38.71% Heodo
2020-07-28Inv VI0520736.docdoc d2c93f7df3610ee2f4cf3f2716e5b30b5cd23faf8aabcf2ff01a623923088cdfVirustotal results 40.98% Heodo
2020-07-28Invoice SH0110653.docdoc 25e12758f5837d2de012b1df34c4e8e72fa0a90075d040f92d97bb65c641690bVirustotal results 40.32% Heodo
2020-07-28Invoice 04781.docdoc fb5c853a6405f26b08c948c62839ca8b738c93cb82885c471d06199a5fc991edVirustotal results 41.67% Heodo
2020-07-28Fatura.docdoc 9f93a52e0305156143b2994eebbb6bb1298eab091d7dc6f48d4b9a5cb3a13ae9Virustotal results 39.34% Heodo
2020-07-28Estimativa.docdoc b2a50e342d521e424f1a64b354514cc9fb86aa58abbc79ce09bcea7addeb914eVirustotal results 39.34% Heodo
2020-07-28Invoice.docdoc 594bfa87e215f468df55756deddc3a5d50f0041a59886de81b364bb44a8da22fn/a Heodo
2020-07-28Fatura.docdoc 54171a3ad4b125dc2795767c4e783e474bddf5f973b21bfaad94b3d15057b763Virustotal results 41.67% Heodo