URLhaus Database

You are currently viewing the URLhaus database entry for https://bimascale.com/assets/report/bep11e11g/69262740539azkq88i/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:429201
URL: https://bimascale.com/assets/report/bep11e11g/69262740539azkq88i/
URL Status:Offline
Host: bimascale.com
Date added:2020-08-11 10:48:03 UTC
Last online:2020-08-16 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-11 10:50:03 UTC to noc{at}krystal[dot]co[dot]uk)
Takedown time:4 days, 20 hours, 23 minutes Bad (down since 2020-08-16 07:13:28 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-13REP_8747201554074935401.docdoc 431f74c022aabbb5f124de37d88546f035d8a4a8268cb93819f5d3e60454c294Virustotal results 28.07%Heodo
2020-08-1370090605254520.docdoc 0652c184cccfd772644a2b72467b93f57ee93b1095894cc08ab3a9d9470fbac9Virustotal results 26.67%Heodo
2020-08-13FILE_JE9TRDFR65QGDB.docdoc 1ef5c1b7a68f7241097e40920f2b68d84457829edde96034073b68decbd72cb9Virustotal results 26.67%Heodo
2020-08-13WYM_NL1230462604PX.docdoc 30aceb60d6841a0f444bf36dbf53b021d32f7c1494c42f2c8600c6ea1b84909eVirustotal results 26.67%Heodo
2020-08-13INV_1841404796.docdoc 1ac4188f22c717e76b493881ab12ef60e719cb86d2e5289f743b42b338cb5b96Virustotal results 27.12%Heodo
2020-08-13ZUR0ZKNFYGKKIR5Z.docdoc 476c19ca963d9a17e5e758320b98ec3c0fd457fc9c974651e838d52313f651acVirustotal results 28.33%Heodo
2020-08-13FVD_080120_LQG_081320.docdoc 6a4b4285c8087d2aeb5dde3d4420e041773125eb288da6a9c19817234124b073Virustotal results 27.87%Heodo
2020-08-13FILE_KNY_080120_JWW_081320.docdoc ba510b5a0f97430a09efbd12acbb4c1be869e71e678adf5fa0b5498fb477068eVirustotal results 28.33%Heodo
2020-08-13MX0804847839MT.docdoc 286553ae57a160d6c96aead277a25d92227a3f0030fb98198e7be863f897e1deVirustotal results 52.46%Heodo
2020-08-13BAL_0BASI78ON.docdoc d3cbf8eb26742271a0281233827b52ab52334bef5335d0f8a27c9db613de55c7Virustotal results 53.33%Heodo
2020-08-13DOC_JZ5240836412DG.docdoc 0938a3eb8d86fa634cbaa1f643bd2c6cafcdacba202e4683cf7245705bd11fb3Virustotal results 52.46%Heodo
2020-08-13BAL_931235949966729210321379.docdoc 294dc4d0897b43e65d8e7c4ab761281fae2d7ff62a16dd47e9b7731019ed0c21Virustotal results 53.33%Heodo
2020-08-13PO_08132020EX.docdoc 5ec2a412f6729dbbd84453b84c85ac56f93e865a1900eb514efedefedc56467fVirustotal results 50.82%Heodo
2020-08-12INV_PO_08132020EX.docdoc b09cdb8f91eb70d7f179d304a4585ab2b1867a160d9760ab236065aae029268dVirustotal results 50.82%Heodo
2020-08-12DOC_YD6996778395EL.docdoc e9bbc3d987e57144a6554ea1c30a527af2db5a40b2c12e9fa6b28a79ea2afb3aVirustotal results 49.15%Heodo
2020-08-12DOC_55219894830184148.docdoc 77b30bd340e5190b08a7d94df99aa81a4aed0b89711a543fa9f87bb83fe3a72fVirustotal results 50.00%Heodo
2020-08-12REP_GYF_080120_BYR_081220.docdoc 3ebd75f878b73c2dc4cf3c25d40401e9915b3628fa5d860704634080518aa99dVirustotal results 48.33%Heodo
2020-08-12M_WJB_080120_QNL_081220.docdoc cfec1c4aeca2bf10496b8ae3be0b77a9dfade44f1503c09398114731db0e92b5n/aHeodo
2020-08-12INV_624026007.docdoc 2ce9231232c3f7dab2351dd85611a118de814e5678f3916e3f1d049099f1267fVirustotal results 48.33%Heodo
2020-08-12REP_NL8321812718FV.docdoc 44d9b68f5aefc2eef02bbb78ffdd24d10ff0097705b179cd623a8833dc64ff89n/aHeodo
2020-08-12F_ZS9976708777YS.docdoc c75a7753aba5fdf5703e46cfe6e6a53ceb7df3394f932fc521343b25ab0b2388n/aHeodo
2020-08-1233733146.docdoc 73d993b62b39229b0ab7fea80829a2adc7b229bb3cb9737b3f905c219aa9754fn/aHeodo
2020-08-12DOC_16608361.docdoc 4b94ba4ad2c65349c09e18ba049dd76f5b61a5491812b3ea60961945d1866446Virustotal results 49.15%Heodo
2020-08-12INV_UZ9004839999KN.docdoc 6678c9d2f3e28e53d3cf9fdcd2baeeafbc43c899aad658fd005273aaa29e3edfVirustotal results 45.76%Heodo
2020-08-12BAL_CN3356657047UT.docdoc cf71122cefc9da3a118c409800dcdf2f9a961238a3341bf9c373d69fe3923959Virustotal results 45.00%Heodo
2020-08-12INV_DBH_080120_RVS_081220.docdoc dd4525e6914fa0fd2f91bde41f2df30ef8857b9f08c19e0a106ec78098ab63c1n/aHeodo
2020-08-12REP_MJAQGX2X.docdoc 0ccc815e047e5c8bc4824f7c3f963bc4757a6a6efed1eba12ebd366fd1fd4c09Virustotal results 36.67%Heodo
2020-08-122TOL8HBXTRB1.docdoc 25263694227734da43c741c2d09b0f0aceb8cb2d9488378a2ea765c6c19be594Virustotal results 31.67%Heodo
2020-08-12U_766819507672602487.docdoc 4020a8982e70b51b150cd40a837ea5dfceb35f0a6c9f9858b3fae5e00404ae62Virustotal results 30.51%Heodo
2020-08-12M_88924211066.docdoc 632b6d0a99555d9a6319cc5bac55848d67014534e79c08823b2763fdda37679cVirustotal results 30.00%Heodo
2020-08-1216339550.docdoc 56fb7bd9a61fd2c723055aa379f92c87b134c376217c523d018b8be2dce01300Virustotal results 29.51%Heodo
2020-08-12BAL_61082505.docdoc fe5011292cb2e94c86a4ecdca607f37badd9ac68515b1e4d1b8a601eb6ce05c2Virustotal results 27.87%Heodo
2020-08-12XEC_080120_GMT_081220.docdoc 8133ad23a95674ac43c254256076e1571b6ac10c7fa712df1a0a3fc9054f2093Virustotal results 27.87%Heodo
2020-08-1277PPMN8MH7KKX8.docdoc 18f46635637fbd2308eef45d6dc7077d90f65163e5ab3f991d201c0d8f91587aVirustotal results 26.67%Heodo
2020-08-12F_Y483IHB8Y81PW3Y.docdoc d4c552ce903e8455566a265fd7ba1a276db5bf2a88ad998b7c93e89989d1aeccVirustotal results 27.87%Heodo
2020-08-12BAL_93590097.docdoc 9ec7ef1bc0701307cd1c1ddc9a252a989e724abc0705fec55d8bceefc7ffd087n/aHeodo
2020-08-12INV_63367460.docdoc 265373b64df48b69c520486d767efa8c028ec29d4b7cfaba05e0459400ad0b2eVirustotal results 28.33%Heodo
2020-08-12QXYD_RZWOS06ZMWAS.docdoc 408bd6525ea4e38ffe39a42a4c24c314099dff289a0cf7ff621c7f171c63792aVirustotal results 28.81%Heodo
2020-08-12FILE_99261253.docdoc 75ef3d95b4977d636664bda5c6cd5f0444ecc1ca7d0753f424bfe829474fa330Virustotal results 29.31%Heodo
2020-08-12INV_PO_08122020EX.docdoc 0160fb33a3b7b03284dceff60e218282693ead61eeef4d2f8bd7387b09cf51c6Virustotal results 28.81%Heodo
2020-08-12J_HX8630410525VB.docdoc 259fcebbc6d8a67f4524429d46b2c8570a46b867debfe2c186bf35ff4879d6baVirustotal results 29.31%Heodo
2020-08-12BAL_OS9682188778TK.docdoc 4d6b98ee214b8dbf1b7241f2308904bbf6ddb8ffd1ce6d6c6771f03b9afba077Virustotal results 28.33%Heodo
2020-08-12Q_PO_08122020EX.docdoc f5cce6613741a27074dae451858cf61fb0419f2d5ff5d09c8c8e4b85570a4252Virustotal results 53.33%Heodo
2020-08-12REP_UD0878628367FD.docdoc 9492fa4f34cceef83ff1e6f77bc428777aba7ae617b195a3e6a06d84e5889b1eVirustotal results 51.67%Heodo
2020-08-12INV_38N61S3K.docdoc 274183210ef39b2e9096bc782cf02e85e4101e18805e59ce55692d90bfc9a51bVirustotal results 53.33%Heodo
2020-08-12KDO_080120_BOW_081220.docdoc bf23bdfcb1ba099bac9552136a669b228f4fffaa65dd00d243331be54d5ff517n/aHeodo
2020-08-12REP_259257955639357480549685.docdoc 1d2096f4adcba717670858b98912615f7bc86bd95ef6b3117901aa4ae6383d4dVirustotal results 53.33%Heodo
2020-08-12DOC_SNO_080120_KHP_081220.docdoc f9f228e552c3971983d4b5909776c052df083b9b41f65f764ceba0dc9d6219e7Virustotal results 52.54%Heodo
2020-08-12PO_08122020EX.docdoc e95c19b3173d0c69d60efb950859b2ffd3020235efd6c47ffebddf950a0edf52n/aHeodo
2020-08-12BAL_TCT_080120_IHS_081220.docdoc 29a8f854081e5f20b6709851863472cd33a1863fbed4867153edf6fcc5e86dc8n/aHeodo
2020-08-12GVZH_YI3544501644VL.docdoc 7575d9ebd2153fdfbf4c1626ec4769e8cdef40ea8e2990670f1cc5cba71a2e7eVirustotal results 51.67%Heodo
2020-08-12JOSP_WOZ_080120_ZQK_081220.docdoc 4c3eddd6a41f348b80609e91f83e3a9e22818758105ce3db1de70777baeae682Virustotal results 54.24%Heodo
2020-08-12REP_5381457891604.docdoc 358176ae69d49cbdc29ce5f8965efe9952253949970d9de4e8f09f46c488e6ecVirustotal results 50.85%Heodo
2020-08-12REP_PO_08122020EX.docdoc b06fa4a03274712b0d1bea0d2a5d1afc2c71541acb80b1054d31b661b67514ean/aHeodo
2020-08-1244628196.docdoc f5e067c9ce4ac6b6dca42fbb099d867e403cc3e6590dbe9d8650b588cbb48637Virustotal results 50.82%Heodo
2020-08-11S_PO_08122020EX.docdoc 5a95e436c4df9dfb41496c96489d1bddf6db2c7d54ccf0761eb61ef1af9c83a0Virustotal results 50.88%Heodo
2020-08-1158247100.docdoc cafe9be1769c83fbeb348a49f0c1e0512df75007fbca4689516ce442fa72b54eVirustotal results 51.67%Heodo
2020-08-11PO_08122020EX.docdoc 854be831ad01f15c5a5cc2f0f253d059b2a9faaac66db5b90fe51b3daa401c57Virustotal results 50.00%Heodo
2020-08-11FILE_53808088263152828.docdoc 1aac25866333e7f77dc237137353a0a65ce189972d87658229eae96e3037bc68Virustotal results 51.72%Heodo
2020-08-11FILE_Y1JO1HOK.docdoc 1d09b28a4d454266d52d7d2e5b9aeab2bbf43839ec33c9a7221eafae3c28c067Virustotal results 51.67%Heodo
2020-08-11REP_0H07TX5.docdoc 2adc586ea7a59715aa3226b8b211a8d39fdc6b40691c30e3a96962d2c041688dVirustotal results 52.54%Heodo
2020-08-11INV_08437621.docdoc bb6e3d0f0394c94254fd90afa543277a215c6834d045f0c20aabd990cb68856dn/aHeodo
2020-08-1153946519.docdoc b9be58269c46d1dba55d08e51cf5186e5c6669171b0b96d6bf2ca5b7558af124Virustotal results 50.00%Heodo
2020-08-1181971656.docdoc 597ed34e38d2b0c2313a9d95a421d70af23bd88d60c66de8e04f4127d425c6e3Virustotal results 50.00%Heodo
2020-08-11BAL_HPR_080120_KNV_081120.docdoc 0dc77319f898db1037b996e421c171d0ddbd13166a8b589ab1da97b8bcfc99cdVirustotal results 50.85%Heodo
2020-08-11B_70498711.docdoc 8ba6e22d298dc4a7b8722b5e15bfb9f8b4128d0fba504cff7fd4acd55999eba5n/aHeodo
2020-08-11REP_973968396.docdoc 4bec5606767e91444d89a869f8d4b3d323b71326c0ce3e164e6ab2a2a1749ac3n/aHeodo
2020-08-11FILE_9BH7RPC9Z0PWY6.docdoc 6c042835d406a08afd589550530dbc4586f9490fb02cf9cf77a0695097190ebcVirustotal results 40.00%Heodo
2020-08-11DOC_PO_08112020EX.docdoc 2e6ff6d6098f2b63d436caef9146a587a4906131d0cb324b675b959be4d88598Virustotal results 38.33%Heodo
2020-08-11REP_4749466982000735483958.docdoc f288fc67d607003c58bc277bf9c779e8d206ae43259b9cea64be737d4df22a7dVirustotal results 36.07%Heodo
2020-08-11B_PO_08112020EX.docdoc 34d67996b2581cdd647857f3e3e696b014b5439d13108d5cbc713db42e9089cfn/aHeodo
2020-08-11FILE_PO_08112020EX.docdoc 91ea8ace7b370d468a6318d2ab0847a1d03897afb3a2d887794d4f35c781f34fn/aHeodo
2020-08-11REP_DLB_080120_MEF_081120.docdoc 208687883ec482d8ef391621a964345892dc3af09bbb0797af59fb18935df319n/aHeodo
2020-08-11X_UF1543817669QI.docdoc 2cee94dcc3b71779bc2314dfd47fa9e17f89e3344ff4a3f00a21ab86f5bff9e1Virustotal results 31.15%Heodo
2020-08-11VSR7M87FSMMC.docdoc 3cbbd9298f3b6d77456b687dba10ecf5f45614573ed3be647167c5e96ef16552n/aHeodo
2020-08-11FILE_ARR_080120_UNV_081120.docdoc 8bfd3587537db9be73cc189509eab9796c40a95566b79753724b36ce7dce7c19n/aHeodo
2020-08-11PO_08112020EX.docdoc 1c038e6271ca068993b3ed5c1b5b148ee3d9b310bdd8aebe764253795aff2eaan/aHeodo
2020-08-11W_34456051113.docdoc 56707fe5112d3aff5b73521fb8614f72188340c8d7b3e705dee32b3ff8fcc7baVirustotal results 25.42%Heodo
2020-08-11FILE_PO_08112020EX.docdoc f266dfe6eca386777143d38c655e759b22fba117bcd9138c44354938222c1673Virustotal results 25.00%Heodo
2020-08-11HOEE_PO_08112020EX.docdoc 1455b3fed34c9f9524557c1681b4ea63f86ce164113c4c2c15bcf5e70d14b251Virustotal results 24.59%Heodo
2020-08-11INV_P9NFLCU3.docdoc c4c90085f1c458859b18e0503f5505debd672b4ad9c0b13a043b89a9e7bceb72Virustotal results 25.00%Heodo
2020-08-11YT8062622752JA.docdoc fbef2fc3a7258efde549c84e30eaa668a109e405748c75ac6a69a79bced10480n/aHeodo