URLhaus Database

You are currently viewing the URLhaus database entry for http://covidproduct.in/auazz/lh7tsj7bue/ag1z00871307246nnreiw6842rq6fv3jw5d/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:428722
URL: http://covidproduct.in/auazz/lh7tsj7bue/ag1z00871307246nnreiw6842rq6fv3jw5d/
URL Status:Offline
Host: covidproduct.in
Date added:2020-08-10 18:35:05 UTC
Last online:2020-08-13 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-10 18:36:02 UTC to abuse{at}digitalocean[dot]com)
Takedown time:2 days, 20 hours, 12 minutes Poor (down since 2020-08-13 14:48:06 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-1244636633.docdoc f19b16a6b70c8cb1df5f029983b5176588645914bead2d0b21292174bf7d0839Virustotal results 45.76%Heodo
2020-08-12S_FF6010669393LC.docdoc 6678c9d2f3e28e53d3cf9fdcd2baeeafbc43c899aad658fd005273aaa29e3edfVirustotal results 45.76%Heodo
2020-08-1240519695.docdoc 97feccf3c91f6d0275ecafdf2bb2d3a869dbd30f1ed7e87db533ac6a63678fb5Virustotal results 45.90%Heodo
2020-08-12BAL_SG6361069362NR.docdoc dd4525e6914fa0fd2f91bde41f2df30ef8857b9f08c19e0a106ec78098ab63c1Virustotal results 40.00%Heodo
2020-08-12DOC_QO9YNTK6J0MH5.docdoc 0ccc815e047e5c8bc4824f7c3f963bc4757a6a6efed1eba12ebd366fd1fd4c09Virustotal results 36.67%Heodo
2020-08-12INV_PO_08122020EX.docdoc c99e3c74dfec6465026a494216c1ac797697cb816f37baa98d571a089dacb73aVirustotal results 32.20%Heodo
2020-08-12P_9O2ZYY6FB66W7M.docdoc f7839e4820b80184243adc516719a06331ca2214d95f1f803b33f2884cc5cb22Virustotal results 28.33%Heodo
2020-08-12ZFI_TCY_080120_GSD_081220.docdoc d7f3277a4a174d159d4069701a2857edd60b6aee23a19b4cd8df9964b9db6634Virustotal results 28.81%Heodo
2020-08-12FILE_MDO_080120_PFF_081220.docdoc 555eec27e492447bbe5bb1313613ba7edda123de03e384227bf9440ec1965da9Virustotal results 30.00%Heodo
2020-08-12OA0438563377IA.docdoc fc15009f0b0f3066546203abf08c3f98e289f63a7791d5de4b94a666e6348483n/aHeodo
2020-08-12REP_PO_08122020EX.docdoc e6aff4596a71a4b0c501dd7850553e31385190366a94fd6dc636e0664665e131Virustotal results 27.87%Heodo
2020-08-1286997193.docdoc e9b11c739e5d0a771cb4efdc41e3d084460fa975e42a309294ab185eb2836728n/aHeodo
2020-08-12DOC_96591508.docdoc d4c552ce903e8455566a265fd7ba1a276db5bf2a88ad998b7c93e89989d1aeccVirustotal results 27.87%Heodo
2020-08-12ATA_XB0783235878IR.docdoc 9ec7ef1bc0701307cd1c1ddc9a252a989e724abc0705fec55d8bceefc7ffd087n/aHeodo
2020-08-12QFTG_YG4273034668TU.docdoc 265373b64df48b69c520486d767efa8c028ec29d4b7cfaba05e0459400ad0b2eVirustotal results 28.33%Heodo
2020-08-12BAL_PO_08122020EX.docdoc 4a9fdc8037cd7e0e547ddbcf3d051c7f1f84179016ad0798e8328f12c69a04baVirustotal results 28.33%Heodo
2020-08-12DOC_LV5D9CEK.docdoc 75ef3d95b4977d636664bda5c6cd5f0444ecc1ca7d0753f424bfe829474fa330Virustotal results 29.31%Heodo
2020-08-12REP_PO_08122020EX.docdoc 0d6aca5233bf958211fc44e3eaf4a6c88b1bbc68c716758cb805d62b93306b0cVirustotal results 27.12%Heodo
2020-08-12BAL_IY0922525942YU.docdoc 214f91b9b3ab2ea28b14536241901516f9141df4e12fd3b2ce52088fef0a3734n/aHeodo
2020-08-12V_MY1510276106BI.docdoc 4d6b98ee214b8dbf1b7241f2308904bbf6ddb8ffd1ce6d6c6771f03b9afba077Virustotal results 28.33%Heodo
2020-08-12REP_SGB_080120_PGI_081220.docdoc f54babb1bd506c10af7ded30d90a42d0cbb37969b9c5187f964047acffd9dbc0Virustotal results 54.24%Heodo
2020-08-125MCRSKVBZ.docdoc af51abb1270f34af770a98599b8023a55d05885a976e2c898299e78ffe91c943Virustotal results 51.67%Heodo
2020-08-12LI_STP_080120_RBQ_081220.docdoc 45597077ea44b6912767ecc3863c6a7eb9a1acb80e69d92deb7f49b5cf9f476bVirustotal results 50.85%Heodo
2020-08-12DOC_PO_08122020EX.docdoc dfcd2c75a0949902bb5916a1f4f266784cf714a598f0ef39fab8350ff6ea18a0Virustotal results 52.46%Heodo
2020-08-12BAL_MDBCUKMW8.docdoc 1d2096f4adcba717670858b98912615f7bc86bd95ef6b3117901aa4ae6383d4dVirustotal results 53.33%Heodo
2020-08-12DIG_080120_DRY_081220.docdoc 75e0692474be7d8066516c6ccb1904530d6540d82228ca27d52c6c8c5f806264Virustotal results 52.54%Heodo
2020-08-121006440941395096921694.docdoc 455f02233220edb99d4f99f02ec20a5ad8b3a157bacaeae2dcac14f707613869Virustotal results 53.33%Heodo
2020-08-12IRR_080120_TCR_081220.docdoc 29a8f854081e5f20b6709851863472cd33a1863fbed4867153edf6fcc5e86dc8n/aHeodo
2020-08-12QR4U01D.docdoc cbb96bc7d3aebe42ae0bf197554d7224fd693a6e864fdc3bc2f7b5e466986485Virustotal results 53.33%Heodo
2020-08-12Z_NA2595952045OP.docdoc 4c3eddd6a41f348b80609e91f83e3a9e22818758105ce3db1de70777baeae682Virustotal results 54.24%Heodo
2020-08-12MXP0VH0HMBUJJL9M.docdoc c1225a96e801b4de5bcedc55202f0c3d82b69ee6c31d748289803811a450cbb1n/aHeodo
2020-08-12FILE_PO_08122020EX.docdoc 5d38e73c8e461773d7bd09fd69760d3e0335e51cd3df39676a4c2af22343c43cVirustotal results 51.67%Heodo
2020-08-12H_4554182089.docdoc e4d1deaefa7f905c5ce7490867ae09ff2d50fdf4162f102e276653c1c46eeab6n/aHeodo
2020-08-11U_E6E1TTB8Y7I7SBBE.docdoc 5a95e436c4df9dfb41496c96489d1bddf6db2c7d54ccf0761eb61ef1af9c83a0Virustotal results 50.88%Heodo
2020-08-11BAL_LHB_080120_HUN_081220.docdoc 896db11ae3dd47bbbdaef6de2e44964142461c89f1fd377015b96affcc75cf60Virustotal results 50.85%Heodo
2020-08-11BAL_87486437841168068.docdoc 6ef92d63f441bea978f148ae6b93fd26d8feb4716042101e28ebacd3101f6eb1Virustotal results 51.67%Heodo
2020-08-11DOC_PO_08122020EX.docdoc 9d0bac325fa1b829f25ab0696d273be2b1eb46da5d94f3837ed30ca9c495b4c7Virustotal results 51.72%Heodo
2020-08-11FILE_WM11XEPUL.docdoc 1d09b28a4d454266d52d7d2e5b9aeab2bbf43839ec33c9a7221eafae3c28c067Virustotal results 51.67%Heodo
2020-08-11DOC_XPE_080120_IIV_081220.docdoc 6c5380e193b725ec3ea512a3146d8c0925c7c489800dad57d1b4b2f940751d22Virustotal results 52.54%Heodo
2020-08-11LO5607061636ZZ.docdoc ddcfa6beac3f79149c8786ca9af44062331f6222f46f5ccfb1429ff859308dacn/aHeodo
2020-08-11FILE_QLZ_080120_YQP_081120.docdoc b9be58269c46d1dba55d08e51cf5186e5c6669171b0b96d6bf2ca5b7558af124Virustotal results 50.00%Heodo
2020-08-11BAL_DSS_080120_WQR_081120.docdoc 4e1398a541baa1807c7737004b16fa72d75d9e64ad0b772b4d78be698725b753Virustotal results 50.00%Heodo
2020-08-11REP_CZ0856165815SL.docdoc 59ef01f6986bf686ab5d3c6620ea6b9dd0783d194ab7a8634931c5597005a398Virustotal results 45.90%Heodo
2020-08-11GSK_080120_EXF_081120.docdoc 3f9ed468a85787c4bf29a327c525e87f3ac3fed5b4079b2958f3617ef3d3a1dfVirustotal results 40.00%Heodo
2020-08-11INV_06049114575670.docdoc 8e5f3490181127db4ae19a0c19a2aab3233016bcc64272ec836a68426ed0ae89n/aHeodo
2020-08-11DOC_GE1ZDHLXBWQ.docdoc 16004f742c9d51196b4a45e665c360f8eecec87448f703ca65f1ca9fd2748debn/aHeodo
2020-08-11C_XTR_080120_KGP_081120.docdoc 8979a7dda1fa732d2164c2ef2e8bb59471cbed0bf320309720b8c18ce4a5f673n/aHeodo
2020-08-11DOC_PO_08112020EX.docdoc f288fc67d607003c58bc277bf9c779e8d206ae43259b9cea64be737d4df22a7dVirustotal results 36.07%Heodo
2020-08-11INV_5592581803214.docdoc 819a2c8717a367ec5a69f4a0ddc0eed9f469fea2415f8b0e3defc94d21813f41n/aHeodo
2020-08-11U_PO_08112020EX.docdoc 156c89b670d37466329fb682dd618caf3bd58f87e765cca5964284ab364e311bn/aHeodo
2020-08-11QYY_080120_CYG_081120.docdoc 208687883ec482d8ef391621a964345892dc3af09bbb0797af59fb18935df319n/aHeodo
2020-08-11G_SOY_080120_LCN_081120.docdoc 2cee94dcc3b71779bc2314dfd47fa9e17f89e3344ff4a3f00a21ab86f5bff9e1Virustotal results 31.15%Heodo
2020-08-11REP_HS2010526792UD.docdoc 3cbbd9298f3b6d77456b687dba10ecf5f45614573ed3be647167c5e96ef16552n/aHeodo
2020-08-11B_WUG4I0VXI5VG.docdoc 8bfd3587537db9be73cc189509eab9796c40a95566b79753724b36ce7dce7c19n/aHeodo
2020-08-11673580869200728.docdoc be1ea14251fcd6f2b5491c2911923c9dee4c5e3441d8a5493d8eb189ea03eedcVirustotal results 28.33%Heodo
2020-08-11REP_XC8632803242EK.docdoc 74c60ddf02800ed5d9c79d78e912a81ed34d20ccb8fab265ac1512c0ef32a93eVirustotal results 25.00%Heodo
2020-08-11AGCG_468944679691.docdoc f266dfe6eca386777143d38c655e759b22fba117bcd9138c44354938222c1673Virustotal results 25.00%Heodo
2020-08-11FILE_91611291.docdoc 3c96d99ab907c8544c09f14a63fff98744847da193d7884e99d16710cd130d31Virustotal results 25.00%Heodo
2020-08-11ILYPTKH1P8.docdoc 44371483f703d07a492861139471189a8755d6863157b3ace04c1e4ea205987fn/aHeodo
2020-08-11FILE_WS1413958489AH.docdoc 159adf2257291ab010f4ab9a6518eca15f59b22b9dca9f3d52dee5f9fae80c00Virustotal results 24.59%Heodo
2020-08-11INV_HB2123834209VM.docdoc 2cd6d3c756477ef451f511c6ffae2ae49542fb6a4114f11be3b86cf4bdf57404n/aHeodo
2020-08-11TNO_080120_CQJ_081120.docdoc 7bce19ab2ebbfd54b04f581b9e81b10e82557befdb1b22eb3d0fdabbc8826a5cn/aHeodo
2020-08-11INV_05375803.docdoc 5fd5d52919277328ddc6a266f40c3ad46a8b4196c9fe8f14d7f42252def786a5Virustotal results 22.95%Heodo
2020-08-11FILE_5406254932976144010675135.docdoc f525a4c14fe2ed5ebc5a3b09a1a8ce10dac9f2df2449069c3b3f493878b20c03n/aHeodo
2020-08-11Q_13893572777.docdoc 8fb11051f6a6f86033a5491a0ecaf31b9127f53878d2cda6b6adfd79a47ec79cn/aHeodo
2020-08-11D_PO_08112020EX.docdoc 9088702b9de53e98d1a703557ef6c594d9025b61613169b5d0098d607a4ae12cVirustotal results 23.73%Heodo
2020-08-11BAL_O4D6S07ON.docdoc ff1106fde0971d8fcc68af9662bbb95aed36e07900ddb0fba6f66cf8bca98fben/aHeodo
2020-08-11REP_208506168107857000.docdoc d89122b3343485f18e72909f9c77fca6203a619ab86c89f197dcf234b555785an/aHeodo
2020-08-11LZH_KFIMYZTTS2MQK0PS.docdoc fe1403af8bfc6dafc09d02f60f2b208d0891210f6d16fc2db622f950339c7f99Virustotal results 22.95%Heodo
2020-08-11R_83085532.docdoc 9fa6f271532ad52f77c508705e1b99fd612fde44318f5bd13a6a3925b059ae8dVirustotal results 22.95%Heodo
2020-08-11A_JHP_080120_INB_081120.docdoc 4a4a4dd5d1a19053ad3e765787b01d9dffb8b06be5faf5ce7a36efc5285df326Virustotal results 43.33%Heodo
2020-08-11B_076130751.docdoc 8edf233ddcd24433edb9bf021d9eb73597b9d87e5bb9ee0c3fc936977dfe6f45Virustotal results 45.00%Heodo
2020-08-11XM1849777433UQ.docdoc 4d2029f90dd4666820163090c7717ea8b2166605108cf8e5292054e752213b86Virustotal results 45.00% Heodo
2020-08-11DOC_UU8377453770EM.docdoc 57d5fc234966fd696f948b9952b125ec464fe2c3b2b0948e151dc74218050cabVirustotal results 40.35% Heodo
2020-08-11WE_YSM_080120_FEO_081120.docdoc 97a0a86caadf0c11a90388dcc018d2aae2496f377a0863a67aa05f261ce23436Virustotal results 44.26% Heodo
2020-08-1108967703.docdoc b0276a23c508f3b994e893c4a51a5130674d5aebb945c3dbffcbbe22e7d62846Virustotal results 44.07% Heodo
2020-08-11LRX_DO4544618928QL.docdoc 106e9a3097680f7a8270ac6a6a5c75fdf983b6e2ce326e7c56403aefa0eff516Virustotal results 43.55% Heodo
2020-08-11REP_BT3633675123WG.docdoc 77d07ebb9067728855c77e0d2486102c7710c99f4d2f952cde12dd1aff24ae2dVirustotal results 45.00% Heodo
2020-08-1196081226.docdoc 7a21ceea16e5ac47afe5072b7863649cccdc31540f9e90634bef272b619a9d65Virustotal results 44.26% Heodo
2020-08-11DOC_858056080998076.docdoc 37f50253f8018bae34e45657de8074c1a59a940ae12792fc8a5cdc8c700bc5eeVirustotal results 44.26% Heodo
2020-08-11REP_PO_08112020EX.docdoc 064158a46bd13da41d1381dd3e447f528af4e5fe9b2f287407f9ccdba0700b4eVirustotal results 45.00% Heodo
2020-08-1178444694.docdoc d4a66391f1e9376d9307ceb8a27f4346683ccd80ce892593d01eb65514ccc9dbVirustotal results 44.26% Heodo
2020-08-10FILE_64761824907542799843338.docdoc 0aac84e792a3fda908009cbfdfbfa1f1e9e8f024bc759b760ec6a4a62e6958c1Virustotal results 40.00% Heodo
2020-08-10FILE_PO_08112020EX.docdoc a09d06d100d5eba226f9edb3218e903fa13d1068e2dced8b4479d7d961f3c892Virustotal results 40.32% Heodo
2020-08-10NNGX_58999525.docdoc cb3e4a2162e7b5270caab7fb7c679a8f127b6e41d8ab953542e159e2200e1eb1Virustotal results 40.98% Heodo
2020-08-10REP_QGJ_080120_CYX_081120.docdoc add109b87a469c3dfa35ae3c978d11c7a009a56f87ded73152008445468ef8dfn/a Heodo
2020-08-10REP_7199633109338.docdoc 55202eaa4d47d55d4a8a81a17bfdfe00081b47923d3ac1249c6d5a7fa90b81c1n/a Heodo
2020-08-10Q_48591118.docdoc 1701cece68d9611b07097a1e331039dc38649b44d3ea02351e0b494b6bca4fe9Virustotal results 40.32%Heodo
2020-08-1038790718406966112.docdoc f229bb103cf90eb570e07d6cca6870dbb9d42f8bd3a437df9fc40dd35ba22ee5Virustotal results 40.00% Heodo
2020-08-10BAL_PO_08112020EX.docdoc d04235ea57172d8e82ab7ceea5c85b7a847adbc9d6e6b2fc5bbaeaeaf96d8661n/a Heodo
2020-08-10FILE_AK5966400555SY.docdoc 53185bdfd244573e26be311cc6a1ca4a638ee6956f3521605c10735b0f4200cbn/aHeodo
2020-08-10BKN_PO_08112020EX.docdoc bb9c6274ff65ac8ee339d712ae7f3d2b010cb74f04603840cc6017db29aaa3caVirustotal results 40.68%Heodo
2020-08-10DOC_481037190529314780.docdoc 33d40d4480617fb77d5d793051a847a5f4d09e1bd9845507308637ddf454e47aVirustotal results 40.98%Heodo
2020-08-10REP_2532185052901029857.docdoc 05fdfb096bfe54f0bd2abd84e8143b8378f289838c61d7d1ec4efa141b2045f4Virustotal results 40.68%Heodo
2020-08-10INV_68578347.docdoc fa0282385f733053712a3554624957b09fe274dea4427b8e7111e5bef7e1f64en/a Heodo
2020-08-10REP_S739LYD0XNEDH.docdoc ad90d0071b25f19345c41da1ac91d96258866c8048ddbe085d4c33dfe445e5b1Virustotal results 40.00% Heodo
2020-08-10DOC_9TY79HUYKPR.docdoc fe21493280e923306b2814e03a02fe978f4d0179c15049984f9205344b9015d1n/a Heodo
2020-08-10DOC_PO_08102020EX.docdoc 6bbff5c81508a235fc04fffce3bef5c637c819c9648e6f8302a2cddd4cf8df09Virustotal results 40.00% Heodo
2020-08-10BAL_01717073207314664414.docdoc 071f1ff962611f262fa8dcdc292989c4b545e80cec558fe12baa4093ec0a523dVirustotal results 40.68% Heodo