URLhaus Database

You are currently viewing the URLhaus database entry for http://titansaap.org/tu/Reporting/3dtsh0fm6fuj/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:428214
URL: http://titansaap.org/tu/Reporting/3dtsh0fm6fuj/
URL Status:Offline
Host: titansaap.org
Date added:2020-08-10 10:56:35 UTC
Last online:2020-08-10 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-10 10:58:02 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:12 hours, 9 minutes Good (down since 2020-08-10 23:07:22 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-10INV_24691038588776800.docdoc cb3e4a2162e7b5270caab7fb7c679a8f127b6e41d8ab953542e159e2200e1eb1Virustotal results 41.67% Heodo
2020-08-10BAL_PO_08112020EX.docdoc add109b87a469c3dfa35ae3c978d11c7a009a56f87ded73152008445468ef8dfn/a Heodo
2020-08-10PO_08112020EX.docdoc 517c239c322e6fd41f4a19a9ccf94409d986910c42f7e9bd8bb3cd33ff83a920Virustotal results 42.37% Heodo
2020-08-102294478309914587385545691.docdoc 460f8c4aca351ea01c6d022e356950e8a054bd0059d294aca6e3a5ced4ce3976Virustotal results 40.98% Heodo
2020-08-10I_76368671.docdoc 86d880778c34d007e381af34292b3d56a0072f66f6e07181798d26ec9a42e96dn/a Heodo
2020-08-10BAL_67480455.docdoc d04235ea57172d8e82ab7ceea5c85b7a847adbc9d6e6b2fc5bbaeaeaf96d8661n/a Heodo
2020-08-10PO_08112020EX.docdoc 53185bdfd244573e26be311cc6a1ca4a638ee6956f3521605c10735b0f4200cbn/aHeodo
2020-08-10U_PO_08112020EX.docdoc bb9c6274ff65ac8ee339d712ae7f3d2b010cb74f04603840cc6017db29aaa3caVirustotal results 40.68%Heodo
2020-08-10REP_QXJOSU4.docdoc 33d40d4480617fb77d5d793051a847a5f4d09e1bd9845507308637ddf454e47aVirustotal results 40.98%Heodo
2020-08-10ZDE_080120_MZH_081120.docdoc 9872b30ec02cca1d3a1e99556d047ce25619a15bdc75e08242b514e0e54a2a87n/a Heodo
2020-08-10HOSY7D00DSX0SSB.docdoc 2ce7d1abb43d1868d575ce543f8ce6d0c79ad406264308d9ae8e25cf75673e1aVirustotal results 41.67% Heodo
2020-08-1034610072297483234.docdoc ad90d0071b25f19345c41da1ac91d96258866c8048ddbe085d4c33dfe445e5b1Virustotal results 40.00% Heodo
2020-08-10WU2454105229DT.docdoc 67944182a5fa81f37c464ff5e81ccf203865d87ee39c6b2497eebcad87f86257Virustotal results 40.32% Heodo
2020-08-10Y_3290738050.docdoc 93357c56d286a0a7242cb12171bea974c33f8b608067dd4a737324bd6baf0737n/a Heodo
2020-08-10WQ_5235209308575.docdoc 868e9c0b8d6d8e39b8bd61634f444b5afeb0d108336d68b28332735796526736Virustotal results 42.37% Heodo
2020-08-10KONN_85708543.docdoc 4a5e18fbdc7be5901c2ca9e71b8cc7b47105310303131ed53e198a413b1599d3n/a Heodo
2020-08-10NTYQ_FBR_080120_FND_081020.docdoc 61bdaeae8d1b1877e8ccad0cd15b2ee73b5ff004ca4700ca6ec0d6ec11d20622Virustotal results 40.98% Heodo
2020-08-10TF2125561502ZE.docdoc 9d0c4ad59e201bbfd5e94eae7548229c79cd70382bac9067221f9cf6ccd25a4cVirustotal results 40.98% Heodo
2020-08-10INV_PO_08102020EX.docdoc 5bda6a8a7a7265b29e8db19103395da39b962063d9cadaa193a0a1bcfda16fc5Virustotal results 40.98% Heodo
2020-08-10FILE_15505256.docdoc 79ae00f5e5a052961cfec20422321dbfff9ece846d9034ea4e4544a997cfef03n/a Heodo
2020-08-1078424244.docdoc 21600f61f85f24fcc273a012d7344a44750a49d52c6ef86ef576f3d8c75cbe4an/a Heodo
2020-08-10REP_41863263.docdoc 2bbe07baa6be0df0d4f215e451514133c580414ec7d30a6983e47b49491f67den/a Heodo
2020-08-10PO_08102020EX.docdoc c82cbe522924e150ea3b677117518f7b51d4a6c084200611e1c73c35790bbfa8Virustotal results 41.67% Heodo
2020-08-10TBD_DIA_080120_BTU_081020.docdoc 365d24b51aae43c58665a5fca72115289aa276c62ddca2554fd016ac299ec917Virustotal results 40.00% Heodo
2020-08-109U8NVN5YM8NBZA8F.docdoc 2029de9bc279faa7197afc4898bbb407f4588219be0e8332a73c917b6eaf9f9eVirustotal results 37.70%Heodo
2020-08-10REP_ZGG_080120_XWM_081020.docdoc 4ce94f29979a4a4a4c9bc4f2bf228fb0be213bf34298fea52bf3bb82fe03118cn/a Heodo
2020-08-1015336523.docdoc edcc83eab42c8192a4daa83887285b3884aacec4e95a3f6a17e6b2e3ff40213eVirustotal results 34.43%Heodo
2020-08-1075393041.docdoc 32dcbf714d1e4a6e2115f5c3fca1c57d86c33af0cfb03fac9fd86e7e2940d881n/aHeodo
2020-08-10BAL_ZG0567529892RC.docdoc 149576ef5ef94316d4e0db4ce478cd4866a0293878a5d8070dc4bbe6d86050b7Virustotal results 27.87% Heodo
2020-08-10REP_9GOQV5SZD.docdoc c5a9dbb440705a6a2b8b1b672176e61075d8b4b8261b9a395920e2cafd206b65n/a Heodo
2020-08-10BAL_WUC_080120_KYX_081020.docdoc 38aec6035b9dc07a41f0b344d8a84b416a54ac964178c2a9a23e139287ffceb8n/a Heodo
2020-08-1030740281911540484994316.docdoc 3279305c76025d9335931768dfb6a02880eebae4e37850754d311dbcb3052bd8n/a Heodo
2020-08-10PO_08102020EX.docdoc 407736ca4a4bdab4ea158b768aacc22239f4c364a9a0911bdf0531d5b6857456Virustotal results 28.33% Heodo
2020-08-10INV_RFY_080120_EDU_081020.docdoc a0d040b4b893c755cd6532d220e4ed4141c97bdec0776f4f35d164988bb416d1n/a Heodo