URLhaus Database

You are currently viewing the URLhaus database entry for http://leong.ws/Scouting.my/closed-Rpng-iupUpmO/open-portal/vjlva-wy3z97y8ww/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below may have been used by bad actors to spread malware, the URL seems to be clean for a long time. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	422321
URL:	http://leong.ws/Scouting.my/closed-Rpng-iupUpmO/open-portal/vjlva-wy3z97y8ww/
URL Status:	Offline
Host:	leong.ws
Date added:	2020-07-30 18:51:17 UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	No
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-01	dat-2020_08_01-639.doc	doc	92a8c9729a35ef4fbe97b8b931ac2ba3284ff4c1aaaab30eadbe36ad12c75465	47.46%	Heodo
2020-07-31	List-NM7227.doc	doc	8698a975eeefa70a6e8eac20e57be07dbed23f59301a735a72892edcfdc62d26	49.18%	Heodo
2020-07-31	REP 2020_08_01 1043923.doc	doc	796654f192e741799d2243175e6ea18540b6c48fbed84b010dd806485acbbbce	47.54%	Heodo
2020-07-31	Dat YYQ846.doc	doc	09b591c165b3ecaa1fdc7b1afc9b6a2f9cd8a49b1e9936d7949a8ebd083163b3	47.54%	Heodo
2020-07-31	rep 2020_07_31 EN52663.doc	doc	b90405b5945098e5acd1f81f9821c66b49f8bf3b41ae47e41ffb76e5a95de4f3	49.15%	Heodo
2020-07-31	List 20200731 UY0926.doc	doc	44d519578a005cd82f6c6e858d27cc39d992c0ddfee4c8f94d951b5135cec3b5	48.33%	Heodo
2020-07-31	FILE_2020_07_31_2771444.doc	doc	d20d76e55f20052f0e63179b3aaa4c91c0e0ca1edbe7d38737e1ca1aabf2798c	47.54%	Heodo
2020-07-31	dat HI6116.doc	doc	775cc5726879d9b9708606b11e87b678b61b022aa5ec842c5666d3cdcfb8a4ac	47.46%	Heodo
2020-07-31	Inf_2020_07_31_882174.doc	doc	6b43b38cbc9af296e3ffeecf0f53986f42af21fd59ce158d7deedc06d597880e	45.76%	Heodo
2020-07-31	inf_U83323.doc	doc	ec8b46f21d2533753c2813ecba4080d27fb413b98099f87223b5ef00175669c5	43.33%	Heodo
2020-07-31	mes-EV559262.doc	doc	5a2684ad28a602e041aeddf1c0ffab3a0ce29c3420b4a4d8a8351043a2269483	43.33%	Heodo
2020-07-31	LIST-2020_07_31-3936.doc	doc	60aacf6d4c9a53d3dae37206f889daf474b87fbc7e5b88196bc73600ea886d61	43.10%	Heodo
2020-07-31	Mes-20200731-FF15187.doc	doc	56acb99a4ce942c9970dd5e96a8bdbd3e446b89c9c66e8876a9894c569afc259	45.00%	Heodo
2020-07-31	Mes-20200731.doc	doc	4acec2a5ef0b6f549b39db572081188d4e2d9cc039f95a709c105b7aa3bddf7b	41.67%	Heodo
2020-07-31	List 2020_07_31 BYC685.doc	doc	cb6ac957d36fc72b75e45e7c90202b929041dd3d870a095ddae756a7f50180a5	n/a	Heodo
2020-07-31	MES.doc	doc	5335d6881bf6a2b0776a89724043b6693dec8ffb4848b0c66954f6373c38cb20	40.68%	Heodo
2020-07-31	mes-20200731-TJN312044.doc	doc	eedaaf67ad14a0213229367966ad1333e3f8085e1e6b83683d7fac0e3e16ae28	40.98%	Heodo
2020-07-31	ARC-20200731-878.doc	doc	925fb8974d3622ddd5df080f3bee888c2ce91a92d43cd6b685ee82c8108deab1	42.37%	Heodo
2020-07-31	REP-20200731-X4617.doc	doc	7172995d1d5b54353bce9bbad1ec7900ca7175b8a7e41e5d86bd80df42e1014a	n/a	Heodo
2020-07-31	arc-2020_07_31-1688.doc	doc	3d31440aaa15138bb6061b0269a5d0f6a34fc60d1647b276f2d3363410b30997	43.33%	Heodo
2020-07-31	DAT_20200731_NJ681.doc	doc	34407bf711172d27bd7de483c210c07d89c0f512f8606c1667b5d2abb410c00b	49.18%	Heodo
2020-07-31	LIST-2020_07_31-R930446.doc	doc	fa3e81294239894ab6d187ff561319cd3f23649f9888593ae2c7bd734af6ecfd	49.15%	Heodo
2020-07-31	FILE_2020_07_31_1791.doc	doc	e72d96697d3a527fb2aaec8654ba7eaaa7e255a7d15b23b12e1345e541be502f	47.46%	Heodo
2020-07-31	Inf 20200731.doc	doc	57b075be6438184bf527bd055363a33f851ee9acb765aaff3c717f2ca6ea7d5f	49.15%	Heodo
2020-07-30	FILE_2020_07_31.doc	doc	b9c357adce4a39fef2bdc25779951e2f40307dade90e05fdd0f95b77cf77c786	49.18%	Heodo
2020-07-30	file 8899177.doc	doc	0a9f914ca755dfbf80dd6538c03d01cbcfeededd66ae48baedc5bd1f94e27ee9	50.00%	Heodo
2020-07-30	dat_20200731_4540.doc	doc	80565d4ed000d2c561645c79096f5e2fe04ac3f5c7e9e34ac68cb4ed9306ceab	50.00%	Heodo
2020-07-30	FILE-20200730-MSZ18986.doc	doc	f750390b091965033d74cae96cd391a3a3283edd4d3eb524aa9a3576fb98a08b	50.00%	Heodo
2020-07-30	List-2020_07_30-690.doc	doc	94edc6ca93bf52aa32d4a4c5ff3382b0a1e1b39e3b234ff48354551d37aecbaf	47.54%	Heodo
2020-07-30	ARC 20200730 4376340.doc	doc	dbdabc0245226588757dd5317307e3e4d7307b6948dc4c467a1dbff0231e7e0b	n/a	Heodo
2020-07-30	file 20200730 10629.doc	doc	91ca93061d052a14b274339763d741aff2307339b9285e4cdc47bd58597dcd55	47.54%	Heodo