URLhaus Database

You are currently viewing the URLhaus database entry for http://azandam.co.uk/mdt/available-section/guarded-fuaxdpdxs-iprq/FLRU0NDaPc-dJ8z1d9JGwJk/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	429213
URL:	http://azandam.co.uk/mdt/available-section/guarded-fuaxdpdxs-iprq/FLRU0NDaPc-dJ8z1d9JGwJk/
URL Status:	Offline
Host:	azandam.co.uk
Date added:	2020-08-11 11:13:06 UTC
Last online:	2020-08-12 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-11 11:14:02 UTC to abuse{at}privatesystems[dot]net)
Takedown time:	19 hours, 29 minutes (down since 2020-08-12 06:43:29 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-12	dat-20200812-UM536504.doc	doc	e44866ddc3408fab14c87c206e408852253a05de531691d4cb8e1dcd7f37cf72	50.88%	Heodo
2020-08-12	Inf-DV79826.doc	doc	1f2721d86674c089b606753be49e601afa652cd0daa1af0a19239ca33981af29	51.67%	Heodo
2020-08-12	Rep-2020_08_12-0685091.doc	doc	1e49a48de56f70d98bd4a9438f95292a8725b5025075cbf8f0bccd551474754b	49.15%	Heodo
2020-08-12	FILE-0570.doc	doc	d6ceff199daed77e31636bbce10dd06d27353c4064b10c076028aea4313071c1	49.18%	Heodo
2020-08-12	File 709191.doc	doc	9e95cffa8cb342aefdb7f8c1a029adcd48d1304b400d07318215436dd2894341	n/a	Heodo
2020-08-12	doc 2020_08_12 5003530.doc	doc	e5c2116828d317efeac4ff3a7fe2092bae369fbb5265db371d919a3ffa037cef	51.67%	Heodo
2020-08-12	list_88217.doc	doc	fadf9dff9ac739df4bfe67bb110d2570b3a8b56ff10d4d0a619ec013819ee896	50.82%	Heodo
2020-08-12	LIST 2020_08_12 199.doc	doc	106b70745b6bbcd2a3b1590f596682076f039f584ccde6df0ca12dab353fb701	51.72%	Heodo
2020-08-12	mes_2020_08_12.doc	doc	6fa74bb52572c68bce1d712b488aea9184f884d85ef22b26492011dc0fbec3a8	52.54%	Heodo
2020-08-12	Mes-2020_08_12-BW073.doc	doc	7d7ecd381d765e01cbb41e6b0a254b7bc60ebb1d59c3c212286dbb9054e5093d	n/a	Heodo
2020-08-12	list 2020_08_12 439769.doc	doc	239b0c4f5e150bac96fff321ed672e0772718018ae715db9d4feb0b59879fbb7	50.85%	Heodo
2020-08-12	Rep-24320.doc	doc	e49959014262227a3e6ca5bc2937e6afab83a251fc694000d1a3d38e7814d9dc	50.85%	Heodo
2020-08-11	ARC_5003467.doc	doc	db2aadedc60eea4a3a77bfbd6c1334cfca2091f721e34c196cde4f47624bcb90	49.15%	Heodo
2020-08-11	INF_20200812_A992.doc	doc	d135bfa839f7aced43217658d78cc59d8c51a7120940e59b3c805612e1b276ee	50.85%	Heodo
2020-08-11	arc 20200812 4024.doc	doc	0241b1ed7a1656dab5d9fe64b7e59fec547126495769ca53d78220090b494889	49.18%	Heodo
2020-08-11	list 323.doc	doc	8f5d6af71053c703ef6ac42971b9c19766bb0682e793b8f295af1453eccb5023	49.18%	Heodo
2020-08-11	dat 2020_08_12 795.doc	doc	04eb4b28247dcf99dd7a07b62ab41575834d865c72e083dafd8e6b620a6e23cb	49.18%	Heodo
2020-08-11	Arc 20200812 143963.doc	doc	7100d7486bcccf991906541b709fd020c8cf3aebaed5025f37c19ea15924b034	50.00%	Heodo
2020-08-11	DAT_2020_08_12_F318704.doc	doc	fd98e040494ec96249be1460752ad33da1d1a230de136873e2c99e72fdbc336f	50.00%	Heodo
2020-08-11	mes-2020_08_11-LTE77403.doc	doc	13114e608a7cc05973b50935d669f9bb5a135bee36e1f29a47243cdcb3cd7401	n/a	Heodo
2020-08-11	Rep-2020_08_11-OZL356171.doc	doc	1bd68b07b524ffb4ddcd903f20522ebbaf7108f9f695e901551f5d4f90013345	47.54%	Heodo
2020-08-11	inf 20200811 1092094.doc	doc	505bf00a3f0c6b5d8ececc410f78de1bdb0fffc8fe7a3324166448fbb3a213f0	46.67%	Heodo
2020-08-11	Arc 20200811 BM77499.doc	doc	e589ae383d2dda4770ca6a4cd98ae21ad8e8230567a0c3c2dd5fe33395d90cef	n/a	Heodo
2020-08-11	FILE.doc	doc	1da87bf7cde42012d6ef60a19e839e43b5cf12ca5942cd31c40cc0ac0e31da49	40.68%	Heodo
2020-08-11	Rep 20200811 0687186.doc	doc	41a14ae8992338c85b383362556c69ed34ef79be6782f91011a521681efea640	40.00%	Heodo
2020-08-11	arc_2020_08_11_UN051266.doc	doc	e55a8128dcdbeb38bece187c83b4066e4c92f5d4d2fc16cc1375139a39cf148f	n/a	Heodo
2020-08-11	dat-202278.doc	doc	0c2fd444f2fb9f77cde4f5629c19ea2ff814f7cda10a63a6bc6227d3ce403b4b	36.07%	Heodo
2020-08-11	Rep 2020_08_11 XHI8241.doc	doc	c3832fbc9a1ddc68c6e46a3833639941057f03d5a0382d4987e72a406da4d1dd	36.67%	Heodo
2020-08-11	Dat-20200811-HQK169.doc	doc	3f42c82f2f7de6ef82c2ecb7cd33aead81989314771113ca39e4b739a0d8f4ad	35.00%	Heodo
2020-08-11	arc.doc	doc	e116b128fdaf41295ce37895adc734d500040cd8b6d027ad266a73d31a7f7ff3	31.67%	Heodo
2020-08-11	REP.doc	doc	443267f63d955561b6da7e86366dcbd233c605fb7eb3b92e5863f7482738e692	31.67%	Heodo
2020-08-11	INF_RBT1873.doc	doc	356e3d6505e5c614fd7fe96e3e20c392e04e5b6e552a28f069dd37250d00508e	30.00%	Heodo
2020-08-11	file 2020_08_11 47956.doc	doc	af9ff31ff456d702233a75ae766bd7ac893887f5b4ad12bfb901752ea6f54463	29.51%	Heodo
2020-08-11	List_20200811_K0307.doc	doc	db7193bd4ade13db9176b928367925a9c2a83e175a118ec2c74fc16697408d80	28.33%	Heodo
2020-08-11	inf 20200811.doc	doc	03ae6dacc26669e23257af7d5e8a8c8d15bdbe6cc973112960392ab22d03d93f	25.42%	Heodo
2020-08-11	list T752799.doc	doc	15101ad204c6aa2c1a38ba1dbb0eb7c8f64c9745e96ed7c93ba8cd16368fd67f	24.59%	Heodo
2020-08-11	Dat.doc	doc	29d67f5bde2807da0a4316463578997237825ad1a5e219e2dc5d9c4efa4cf3e1	25.42%	Heodo
2020-08-11	list-2020_08_11-91188.doc	doc	b9d7c3f1fc34b47554d301ba8d6d5a60e86fb6db50fe0d212aeae580a8c38840	25.42%	Heodo