URLhaus Database

You are currently viewing the URLhaus database entry for http://netsoftit.ae/cgi-bin/Documentation/pfyz6550iiq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:422911
URL: http://netsoftit.ae/cgi-bin/Documentation/pfyz6550iiq/
URL Status:Offline
Host: netsoftit.ae
Date added:2020-07-31 16:26:04 UTC
Last online:2020-08-01 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-07-31 16:28:02 UTC to abuse{at}hetzner[dot]de)
Takedown time:15 hours, 50 minutes Good (down since 2020-08-01 08:18:05 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-01PO_08012020EX.docdoc ef94f112784b83596fcc0ff3821d586cbc216cc3c4c8fbca25ada751d52531ceVirustotal results 48.28%Heodo
2020-08-01INV_PO_08012020EX.docdoc c1428a65c5e75c9b7ee41ad547278aedd961bd3491449fbfde3000c771cba87cn/a Heodo
2020-08-01REP_UCJJ7VRFQBLXNLH.docdoc ee5098dc4567cf9477dc88dd5056bd446de0ce3a75d9ab4b0096006d394d5791Virustotal results 46.67% Heodo
2020-08-01MR6454088439JD.docdoc e878ff9037ead41dd3a88bb8c1600662ef4c90b18bb2eb5186c78a87ed42ff9dVirustotal results 46.77%Heodo
2020-08-01REP_UN7814473255DM.docdoc e59128f2caf164ee56876b560c36d5e548b9c333aa4170e0821ed59fe4f82d5cn/a Heodo
2020-07-3170KV03J6.docdoc de2bea12d50b5d2cb0c8f8bfb7621b6d0409010ed976532feb38665583816698Virustotal results 49.18% Heodo
2020-07-31REP_GK2236254362EQ.docdoc 75244da9313cd0d5b9ca13f7c3ad461dc8898a27702311083eefa8e2617ec16fVirustotal results 47.54%Heodo
2020-07-31REP_PO_08012020EX.docdoc 6e57ee227a3844d09aa4ed4a64cf69ec819367f00f8df9bdac7f6e09ffc551aaVirustotal results 48.33% Heodo
2020-07-31WHL_080120_KEM_080120.docdoc c90b7d8ea24c2301682e47c0533760cd90319f4cd576f476b31e9bbb448c6cd5n/aHeodo
2020-07-31PO_08012020EX.docdoc d3811967649cb2540eaa540cb627ace1afbfd14e0321a81f08ebc6b23d4cb7d3n/aHeodo
2020-07-31REP_67796856.docdoc 94740399d4f82347d284463c29d6bd05a288b65a122efd5f8d8b379ab5979a80Virustotal results 49.15%Heodo
2020-07-31FILE_XV6128337926KY.docdoc 4834d43a503e5a10693dcc514692016c26b9084f17b258a3505a4e44ac893db7Virustotal results 47.54% Heodo
2020-07-31DOC_ARW_080120_NCS_080120.docdoc ad5d63edee98350ce19edb0c144dd79079865cf72f2e092b91678a77835f10c8n/a Heodo
2020-07-31FILE_LEB3CKR6WHFYXMMB.docdoc 1e4b706d611f935dd5aaac2b97e921c9c1df152d9dcf98127840b7c0e60348eeVirustotal results 47.54% Heodo
2020-07-31REP_PO_08012020EX.docdoc a3667171b7c4b632d7241b65287398007d28c018697677f2bac729d91af17b06n/a Heodo
2020-07-31N_KKM_080120_CZC_080120.docdoc 7ba9d770d237bd49b68182d551c5f73e2f7c00bbcaa22bf9c1107ca4dfd2038bVirustotal results 48.33% Heodo
2020-07-31O_7279273511.docdoc ef664c354f361e0467d36c08c3bb3563f1408bd30c865fc1efd73237b7a26e6cn/a Heodo
2020-07-31DOC_85980585.docdoc 0bd2032e1ffe665517a03c7cbbea75705c7cf7af00789df956c635d752939ad6n/a Heodo
2020-07-31CY_18374280.docdoc 3c942ccc13e02154719923767cc5eca44fc1f96ac60641a62b55f13e96ecfd80n/a Heodo
2020-07-31DOC_897562529.docdoc 7f9ca2eed49a599b0f3f58c4641986960b01e2ca4fbd9212625d076abd9a665cn/aHeodo
2020-07-31FILE_CY0541575265VK.docdoc 058d1f89179dfcc881c3b5536cb2043d92c25b8dc70c74af1fe9fe6d6f49e75en/a Heodo
2020-07-31INV_RJM_070120_UMB_073120.docdoc 70924fc6c621c4d89c01cf966e0759c7efafb358fdfb087b76ac091cc5cef356n/a Heodo
2020-07-31OJH_070120_XBY_073120.docdoc 4f8d2a942c244360b6b8c311d59352dad83f77899cc7d4094efd99c2e324af8fn/a Heodo
2020-07-31REP_62108999.docdoc 5f3764a42ab9cc52fdd195dbb18957316d72bf382a89b998df3186f4635aa55cVirustotal results 47.54% Heodo
2020-07-31BAL_84591903.docdoc 93a916a37039c35db0ae99e9119dffc92dbb4224c25eafc2a4b63475576e88dan/a Heodo