URLhaus Database

You are currently viewing the URLhaus database entry for http://z-bai.com/wp-admin/z772u-sl-26148/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	428435
URL:	http://z-bai.com/wp-admin/z772u-sl-26148/
URL Status:	Offline
Host:	z-bai.com
Date added:	2020-08-10 15:33:14 UTC
Last online:	2020-08-23 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-10 15:34:05 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:	12 days, 11 hours, 25 minutes (down since 2020-08-23 02:59:22 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-12	INVOICE74367877576.doc	doc	6c818eb9af4ba3479156ffdddedf9e68f03dcc98579d8a7df9cdac88c483335d	25.00%	Heodo
2020-08-12	Invoice-K7-3033140.doc	doc	24d695ee5d47e6fc47afc097c1c09639443097d9fddb06851d8cc02e19aa6509	51.67%	Heodo
2020-08-12	InvoiceMKO966288832520.doc	doc	0bbbea7a2b309d9aba95c407c00367d4fe0aa1e0fdc2a0c7098c4f99e49040e9	51.72%	Heodo
2020-08-12	invoice-CMGS661-0119834.doc	doc	2f20ed3e86d25bee2fc86cfef8577a1392ff6573b368c48c7611b7215f15323e	53.33%	Heodo
2020-08-12	Invoice_DZM6855_768224831.doc	doc	49f84ff8599ef44db2d0ee39c6a82739d5a9d663c0b011960b67747dead85d57	51.67%	Heodo
2020-08-12	INVOICE86040008.doc	doc	2af6225a3063a9ae0fc86eeeee41ed900c7b3451d72514b215516935500e5109	54.24%	Heodo
2020-08-12	invoice_3887_03176958.doc	doc	200e0814e4ba5a7af1e2c9a1c629e96b601779babd96e566f65a912f03467620	50.82%	Heodo
2020-08-12	Invoice-YTPL67-9028471.doc	doc	a3c27802860cdc8195b53a7a9a0308f67c631bec4c450329dc8421a206c65d08	54.24%	Heodo
2020-08-12	invoiceWXB23388481.doc	doc	5130c2b92fca78b92aa03684b7110c4e341f9d8ca4e3a20bead042e888e45873	51.67%	Heodo
2020-08-12	INVOICE-C84-17245660.doc	doc	c57f8830d597b05f0dbf9031092be52ed1ce11f9f75f530bfd698f46f624901a	52.54%	Heodo
2020-08-12	invoice-C41-403513461.doc	doc	8e282ef570d12f5e1cce05e717449fa995042a179640c3d603856110e779be54	50.00%	Heodo
2020-08-12	invoice-9910-054016.doc	doc	6e9b1ad824b0bc35792a2ec92fabb0456af70c654e99e5f6d0067903f3c771ce	52.54%	Heodo
2020-08-12	Inv_JBN3778_66706363.doc	doc	9d49d327fa9d96671e507479a7958bd3d51fd6b28b575f43117cd3796950934c	n/a	Heodo
2020-08-11	INVOICE_UC46_82768364.doc	doc	ba44f106713979944843774380c0f9975db8ac9c9e7bea15df6b1523729f8e8f	50.00%	Heodo
2020-08-11	Inv UWC4964 821894813.doc	doc	98891f34f0962ebc73b8be9c5a37aa21ad42fea2d08629bcbf84ff00595fe02c	50.00%	Heodo
2020-08-11	invoice NP655 7925826.doc	doc	994db52aefaf0bc495521d0b5b29b59aa7e5c5aa4d6bc221e2808f21247cf19a	51.67%	Heodo
2020-08-11	Invoice-GX688-616087.doc	doc	4e7dada550866484045928cef6fdd4d7ccb5d19d79febe490ed7da33d3491b01	50.85%	Heodo
2020-08-11	Inv 943 6557834.doc	doc	ba9a8497f8d62ce6e51e23f89f045998e57f187f7b8b9ff3168e5289d1758e80	50.00%	Heodo
2020-08-11	InvoiceKP20377386086.doc	doc	58fd95e7b27451366d5ea9b0aefeeaa2230636fe086c16bdf49d07824bc70a0e	49.15%	Heodo
2020-08-11	INVOICE-0-8204413.doc	doc	543cf094f7405fdf789ebab79f0ecc906db7db7863bb7a144003fbf42f692dac	49.15%	Heodo
2020-08-11	INVOICE-BP4-47456726.doc	doc	a333fa244b433049bb35cd2d2b8a2ee2c904a26033a1f55f967159b4db8e49ba	47.54%	Heodo
2020-08-11	INVOICE-OCRU2-984436534.doc	doc	50ec0f5012c83993533de48a638157f8879561483c54242f0c74cc2c57ce3917	46.67%	Heodo
2020-08-11	INVOICE-JWN2-65089320.doc	doc	cb5234b6061bbdf400ee2833eaeba7a4f39a5d883194f1c0bf3c317267799d27	45.00%	Heodo
2020-08-11	Inv-06-958845.doc	doc	8842c702204c3c0519e59f4248067259ebba33688fac6942d0dd34026c1df46e	37.70%	Heodo
2020-08-11	InvPJ59363338875.doc	doc	037ac6663cc663afedeb54cc2424400903cff00417fd70e5ad9b648a50eeae83	37.70%	Heodo
2020-08-11	invoice_KO869_36244540.doc	doc	7e26116f69cbd33eb090b2c6aabc23a78e55948b52ff9059abdccbd3f4f5f66b	38.33%	Heodo
2020-08-11	INVOICE-R1-598158587.doc	doc	d88d96cc358261f1924dc023ccaef2acc858bd460564cf04b70d80a5569b7c78	39.66%	Heodo
2020-08-11	Inv-ZDMY4200-3310824.doc	doc	416b04dbb5f2fb151e68ccc4196ac95f258814cd84eb822b016bc3dfb9ab8836	36.07%	Heodo
2020-08-11	INVOICEZQQ980560979124.doc	doc	361883f66d3ba57b06154969450d80a60534d4c926201f523875ecf69bb474f4	n/a	Heodo
2020-08-11	Invoice 5759 028369.doc	doc	914abd85dec0d71dc282fe97279075ef7229f967f7723b24b40694d34702b721	n/a	Heodo
2020-08-11	Inv_OR4677_979478.doc	doc	519dfcfc8df38f6cbe0e60280784fe52817df6a4d22343ae006687f6f5595296	29.51%	Heodo
2020-08-11	Inv387695795.doc	doc	b4bee32dfd12960ffd21f88d8d912458f95bbb2c083603319d4a083b9d341f4d	30.00%	Heodo
2020-08-11	invoice-QL299-003090816.doc	doc	05fac21a4430186852c51837d7f5787747aa9fb1afa75cd3f00b2505dc79351c	28.33%	Heodo
2020-08-11	invoiceTEF616812894.doc	doc	08c803b50f7f39e19f42600f5eb40b891849cce060fc514a261a4512d8084725	26.67%	Heodo
2020-08-11	INVOICE_UOH39_3657109.doc	doc	e9f69f15fd98a0a59f7dbdafe214d65c61ad968c7a7bc3bf77c9f357af0c5f0b	26.67%	Heodo
2020-08-11	invoice_NET8698_99238993.doc	doc	744f82770d4c090be9a6bd6e9d2ab09a760ae5cdc58ba11385871d2660555586	27.12%	Heodo
2020-08-11	Invoice NC69 6192610.doc	doc	adc570c9c03f23f75052f2e89b9654a9b24be3c30e954696e875ea34157fab88	25.00%	Heodo
2020-08-11	Invoice-34-364375455.doc	doc	156de71ee7302f206931d449e2a043089fe19f6b595c0413cb2619bba9484358	n/a	Heodo
2020-08-11	Invoice-275-785443.doc	doc	43048cdd340fff0306fb245a60aadab8b1f8ecbad52db75e5a31771d36796e75	25.00%	Heodo
2020-08-11	invoice_CEE798_03731459.doc	doc	6bc1e3ac932ab1cbc6359f9bf1af246523f8fa7050160994440732dd1a41281d	25.42%	Heodo
2020-08-11	Invoice-SB0145-785596876.doc	doc	4e7876b5c5c8158924c347d181e19fb3d15f7642e7a645e7587d9e106888e6fa	25.00%	Heodo
2020-08-11	INVOICEDIPP55915595722.doc	doc	50a973f6d0e0284ed5cbce911ba01e39ab74db72d56ac520595f474a0eef9af8	25.00%	Heodo
2020-08-11	INVOICE CG9046 0527131.doc	doc	9f5254aadc7a867d60371d269a9dc5700029302284d6d0e9b152fa0d5b27c67e	25.42%	Heodo
2020-08-11	INVOICE_JPHH051_10444786.doc	doc	920f950bc61e9c48ea08d7d68d5b1d5f8a96a323a027f67380f61b63004a2048	43.10%	Heodo
2020-08-11	InvoiceKNLQ0836036871.doc	doc	3d67e2d51250c36cc9e982d2c244daddef2075c3776d37bb1d56e09186b2ebb7	43.55%	Heodo
2020-08-11	invoice_IEUI69_12392784.doc	doc	c64d68094224e580747c4707691e50c77046c7cc9e226b2ad20ff1d38ff3299e	45.00%	Heodo
2020-08-11	INVOICE ZP8 71843680.doc	doc	47eeaa6e638b28556d75d986cc2a8f88bae892b3a0341a4a8799a8ff94eff6f7	45.00%	Heodo
2020-08-11	INVOICEZ26924639.doc	doc	d9d5afd0f83aa28a06f4a1b5dc642926301d0b9bb7cd9dc22dc75ef49fafa296	45.00%	Heodo
2020-08-11	invoiceJQ3080558827.doc	doc	4809328436efcae1791fa4770d4f7158cc69e9dcf26dcce66189e3ce63af2a44	43.33%	Heodo
2020-08-11	invoice-AVAH653-467679.doc	doc	d49792fa43cfaa2d13e6bab3b87374314a2cb9ab1ef794d1caa38a9b588294f6	n/a	Heodo
2020-08-11	INVOICEJ61648529.doc	doc	df9751edb6d3f6da4e475cc3b05844cb0833623d6e9f3d268a38611dd8bd15a3	42.11%	Heodo
2020-08-11	InvSYG33867593215.doc	doc	c1fc85d3b078b060a5335fd6ccf06322f2e7f97c39ff74defd85719891c024d2	n/a	Heodo
2020-08-10	INVOICE-607-70469495.doc	doc	2ed80e234eddcbf09463cc2ef0009ebe173d3a21995aa99dbdbc3764bf9171f4	40.98%	Heodo
2020-08-10	InvoiceYJU2460854148.doc	doc	96379d3c95f98bfe9120778d7b62fa83e9ee5f7f151ae6ba8c6b169dd1a94d14	n/a	Heodo
2020-08-10	Inv_0_81279348.doc	doc	fd4a3abaeef0f14c5df818296353fc22cca15439026cf73373152b3554d243f2	n/a	Heodo
2020-08-10	INVOICE-YDO4-241466604.doc	doc	9dee7b99229da39cdbc49e96e13a04cc9830de7c5049cf4b3da0ce59ce9caa35	40.68%	Heodo
2020-08-10	Inv-STN1-7797653.doc	doc	2eebde5c616671da6343d79250d741278cdfc7b19af5ee5a43fdbb115b906077	40.68%	Heodo
2020-08-10	INVOICEABA5681729380.doc	doc	705e718dccff08f8277bc1b0272bb945ed6346a0bfc50f80558691982c8e9c39	40.00%	Heodo
2020-08-10	invoice JCT7 3648066.doc	doc	64bb69df285bfc15e253fc705f5505032d78b1a10ee212b5194a376b2fe1eb2b	40.00%	Heodo
2020-08-10	invoice79396971.doc	doc	14045c2a1f8106f62cca9878b82b62d33cbe757e36d4f41266e905a0d3db4121	41.67%	Heodo
2020-08-10	invoice48917970953.doc	doc	774530c33388236c1d8ab53566cbeeca0155a6e56f23a1195721e3f400869d9f	n/a	Heodo
2020-08-10	invoiceLRJ072991990.doc	doc	fed41332f44d68eaf298af68e820e28755d75934d375f489944912de15ffcc5f	42.37%	Heodo
2020-08-10	INVOICEPX614691189.doc	doc	d72a3b83f3949949696ba8598cf1e000eefbe4ee9a0aefcdd16ed6d93c7d33ed	40.98%	Heodo
2020-08-10	Inv-NDZD23-2981364.doc	doc	89ead6f9c85112aeb271281971e9eea8e97e24c0c986bddda7eb5ed00ccab09f	40.00%	Heodo
2020-08-10	Invoice-EWGY25-7470031.doc	doc	ca1d19eef36f5b2041a86e5970bb48cd29a172b7b07865692c22ce3ba7eea015	40.00%	Heodo
2020-08-10	invoice KDA8567 71586553.doc	doc	97a12872e1a90576545f3e2f3e0a49751b3f666b1cb16148177733fb58f87bd7	40.32%	Heodo
2020-08-10	INVOICE-015-242105878.doc	doc	4d9722695a297b0deafce38a38f1c8f9866d52cc0451601e9e11dfd5373a3518	41.94%	Heodo
2020-08-10	Invoice-M4-12182801.doc	doc	837235f4d4509f8d6551f724d18d3a6c133038c7194abb3c65c7364ec33a4a31	40.98%	Heodo
2020-08-10	invoice-BQQG1-24932069.doc	doc	0a154b50dc2bae7f87f150bc548317b27924a3be1d7075d7ff0bf3e8fc919c8e	40.00%	Heodo
2020-08-10	INVOICE-99-39030458.doc	doc	c551d180dc10561b46eae6a365f4628634e78ccd49ef892b002ef69f1f46b20b	39.34%	Heodo
2020-08-10	INVOICE AYEK2468 4975372.doc	doc	6d5a5990ab99c306a055ef95be68d613fb75b5c4adc108843e7caa1562d96348	40.98%	Heodo
2020-08-10	INVOICE-DG2-9237600.doc	doc	848f65be05bc10cc19b1a693ab2c26ac3d7307ac7bde6b7b0ccfd35167159bb5	40.00%	Heodo