URLhaus Database

You are currently viewing the URLhaus database entry for https://n95mask.tech/o/l2i14o7mr/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:429291
URL: https://n95mask.tech/o/l2i14o7mr/
URL Status:Offline
Host: n95mask.tech
Date added:2020-08-11 13:02:09 UTC
Last online:2020-09-17 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-11 13:04:02 UTC to abuse{at}colocrossing[dot]com)
Takedown time:1 month, 6 days, 14 hours, 27 minutes Bad (down since 2020-09-17 03:31:09 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-13JGU_NPS_080120_SMC_081320.docdoc ae0c7dfa89cf0301b64ef4f6b364a1e426c79c80a9d0943916c93f3315ebc907Virustotal results 27.87%Heodo
2020-08-13INV_PO_08132020EX.docdoc 79b609ddf074406de181d656544923255389ac44a068ddaeb858e6546d2787f4Virustotal results 27.87%Heodo
2020-08-13BAL_PO_08132020EX.docdoc 430d07c2162af45022115ce4b557ab182afc95143b698568d50c41832c6b281bVirustotal results 29.51%Heodo
2020-08-13BAL_YP3065269163GB.docdoc e163803cb71c55b28fbfe8435c5aed2616a006e425556ee9b4f3670db2115d98Virustotal results 30.00%Heodo
2020-08-13FILE_09125489.docdoc 25098bc6669e16e80698b99b3d8cbf99d9ed025c13d1ba59f4e90e906ec106c0Virustotal results 28.33%Heodo
2020-08-13INV_WTSQFFPKU7T4H.docdoc 78dd01437c6c0450d42d7db2c0d1c6a1a7fdc45a138a852d53a1a999b0e604b2Virustotal results 28.33%Heodo
2020-08-13RA_41866308.docdoc 431f74c022aabbb5f124de37d88546f035d8a4a8268cb93819f5d3e60454c294Virustotal results 28.07%Heodo
2020-08-13REP_QA8672647554ON.docdoc 0652c184cccfd772644a2b72467b93f57ee93b1095894cc08ab3a9d9470fbac9Virustotal results 26.67%Heodo
2020-08-13PO_08132020EX.docdoc 1ef5c1b7a68f7241097e40920f2b68d84457829edde96034073b68decbd72cb9Virustotal results 26.67%Heodo
2020-08-13BAL_TR5368853860GE.docdoc e303bd587f94e0cc2bee4cd31594d807f186aa22f04da0615deaa6c27863e72aVirustotal results 28.81%Heodo
2020-08-1334TMNWJ3P7.docdoc 1ac4188f22c717e76b493881ab12ef60e719cb86d2e5289f743b42b338cb5b96Virustotal results 27.12%Heodo
2020-08-13DJ_PO_08132020EX.docdoc 476c19ca963d9a17e5e758320b98ec3c0fd457fc9c974651e838d52313f651acVirustotal results 28.33%Heodo
2020-08-13KN2860869123TP.docdoc fdd5654b78c6c5c23b4f6c6502eb69701c87c65ad4bd2d121046db883154d863Virustotal results 27.12%Heodo
2020-08-13INV_PO_08132020EX.docdoc ba510b5a0f97430a09efbd12acbb4c1be869e71e678adf5fa0b5498fb477068eVirustotal results 28.33%Heodo
2020-08-13SZ3710498006PC.docdoc f3288815441008b2291c6b17d597d58fe606f7475c4641bacba49ad56c1b1142Virustotal results 51.72%Heodo
2020-08-13INV_96456123.docdoc d3cbf8eb26742271a0281233827b52ab52334bef5335d0f8a27c9db613de55c7Virustotal results 53.33%Heodo
2020-08-1374232429.docdoc 0938a3eb8d86fa634cbaa1f643bd2c6cafcdacba202e4683cf7245705bd11fb3Virustotal results 52.46%Heodo
2020-08-13INV_NA8222376228WR.docdoc c2bb5e128810c06abd15ad3ef0bc95622c20da154ca500892972305c94feabedn/aHeodo
2020-08-13R_TZ9779623458DM.docdoc 69341ac462d01e1c60463f96617271d866fe20babc67b0f19627a86d8cc91f1eVirustotal results 52.46%Heodo
2020-08-13DOC_645384774766564392807.docdoc 5ec2a412f6729dbbd84453b84c85ac56f93e865a1900eb514efedefedc56467fVirustotal results 50.82%Heodo
2020-08-12BAL_L016TJA.docdoc b09cdb8f91eb70d7f179d304a4585ab2b1867a160d9760ab236065aae029268dVirustotal results 50.82%Heodo
2020-08-1279333045.docdoc d0ecee1cad0e97af4b127dc23861ffbee329ef4a465840447b48e554801e6081Virustotal results 49.18%Heodo
2020-08-12PG2425185190US.docdoc 77b30bd340e5190b08a7d94df99aa81a4aed0b89711a543fa9f87bb83fe3a72fVirustotal results 50.00%Heodo
2020-08-12YGJ_080120_RPX_081220.docdoc 3ebd75f878b73c2dc4cf3c25d40401e9915b3628fa5d860704634080518aa99dVirustotal results 48.33%Heodo
2020-08-12BAL_PO_08122020EX.docdoc 2ce9231232c3f7dab2351dd85611a118de814e5678f3916e3f1d049099f1267fVirustotal results 48.33%Heodo
2020-08-12EARPD5FQ0HOFQRS.docdoc 448b77551e8ab272663dac5ccf4cad4be8b7dcfc1759a2859785754aa44d285an/aHeodo
2020-08-12FILE_U7AAK2EWHNH4RC2S.docdoc 81b56737e0ebf1766ee14ae1a7c022da0208f91ddbae7d06bee3cefbbf3b01a1Virustotal results 48.33%Heodo
2020-08-12INV_PO_08122020EX.docdoc 73d993b62b39229b0ab7fea80829a2adc7b229bb3cb9737b3f905c219aa9754fn/aHeodo
2020-08-12INV_PO_08122020EX.docdoc 4b94ba4ad2c65349c09e18ba049dd76f5b61a5491812b3ea60961945d1866446Virustotal results 49.15%Heodo
2020-08-12REP_JYY_080120_FSS_081220.docdoc 9560b2aab2f8964f9d311f48c38bfb28b97ac4de7f71ec667e4ea68e921a2c62Virustotal results 45.90%Heodo
2020-08-12271003522530.docdoc 97feccf3c91f6d0275ecafdf2bb2d3a869dbd30f1ed7e87db533ac6a63678fb5Virustotal results 45.90%Heodo
2020-08-12FILE_KKB092CX0HRE.docdoc f3852c9ccc8a88f0f18abfd98b52f67f59980f1ddd97da7743a4bf6c7fe900f9Virustotal results 40.00%Heodo
2020-08-12OC9644372625HN.docdoc 1b43dacaa3825888c4583607901a5fad687f60840690fa8dfb7b5ab72e28c27aVirustotal results 38.98%Heodo
2020-08-12INV_COS_080120_CJK_081220.docdoc b87ff30cc3663efbc1f5415e7edd1849c8c42d44232ea54e2bf7849ad5fe122cVirustotal results 32.79%Heodo
2020-08-12REP_PO_08122020EX.docdoc 4020a8982e70b51b150cd40a837ea5dfceb35f0a6c9f9858b3fae5e00404ae62Virustotal results 30.51%Heodo
2020-08-124687195535.docdoc c061ee053937b8cc9490eddd20545bd0a75a2e3eab67bccd10fbea50aa0cd7feVirustotal results 30.00%Heodo
2020-08-12I_EP1MKUY1OFS.docdoc 56fb7bd9a61fd2c723055aa379f92c87b134c376217c523d018b8be2dce01300n/aHeodo
2020-08-12BAL_PO_08122020EX.docdoc fc15009f0b0f3066546203abf08c3f98e289f63a7791d5de4b94a666e6348483Virustotal results 26.67%Heodo
2020-08-12REP_ZRD_080120_EWM_081220.docdoc ae3f98c31cbf01b3809feeb57990ae8270686b4e716f2c8971f8408ca1676532Virustotal results 28.33%Heodo
2020-08-12FILE_KO4354997090QC.docdoc e9b11c739e5d0a771cb4efdc41e3d084460fa975e42a309294ab185eb2836728n/aHeodo
2020-08-12BAL_BTG_080120_NXJ_081220.docdoc dbbcb02ce1775cef0bf8d1ccdcbf4789d5936dc08b63afaa7ca81e20aa03a597Virustotal results 27.87%Heodo
2020-08-12FILE_PO_08122020EX.docdoc 9ec7ef1bc0701307cd1c1ddc9a252a989e724abc0705fec55d8bceefc7ffd087n/aHeodo
2020-08-12INV_94383263.docdoc 14967b4d7ed265d47e03452c19a7c3d048828bfe37abacf2f56782e7eeeeab23n/aHeodo
2020-08-12PO_08122020EX.docdoc 16d2a267cba033c59963d01757e9800048ac1fbcf7cb53595dad21ee5bb027c6Virustotal results 27.12%Heodo
2020-08-12PO_08122020EX.docdoc 9f355154b3f108769ec0855431cb69c5172916d78b07a8d79ff6da2f49371b6aVirustotal results 28.33%Heodo
2020-08-1234364449.docdoc 81c27d10e37bd700d8cee11eba8d01d2bda91b7743083fa7a4e51f3f169ef0c5Virustotal results 28.81%Heodo
2020-08-12D_8033743420996768522792108.docdoc 214f91b9b3ab2ea28b14536241901516f9141df4e12fd3b2ce52088fef0a3734n/aHeodo
2020-08-12REP_HNQ_080120_QOK_081220.docdoc fe14ae5d76ac1ccafc67f474efe315000dadae344444a44c9200e04e94ebbdadVirustotal results 28.81%Heodo
2020-08-12FILE_AZ2559661861EF.docdoc 05fb55b118852bdde2c76754d2d2b2700accc08481280cc2309ab985aeb86c06Virustotal results 51.72%Heodo
2020-08-12REP_VQ3020779671TL.docdoc 9492fa4f34cceef83ff1e6f77bc428777aba7ae617b195a3e6a06d84e5889b1eVirustotal results 51.67%Heodo
2020-08-12XXG_080120_GSR_081220.docdoc 45597077ea44b6912767ecc3863c6a7eb9a1acb80e69d92deb7f49b5cf9f476bVirustotal results 50.85%Heodo
2020-08-1248517802.docdoc dfcd2c75a0949902bb5916a1f4f266784cf714a598f0ef39fab8350ff6ea18a0Virustotal results 52.46%Heodo
2020-08-12PO_08122020EX.docdoc 035f407beebfa56f402f686f6bf72e0217cf4d4b06106b1dcb3877e1167fdfd7n/aHeodo
2020-08-1232541726.docdoc f9f228e552c3971983d4b5909776c052df083b9b41f65f764ceba0dc9d6219e7Virustotal results 52.54%Heodo
2020-08-12REP_FIU_080120_UTD_081220.docdoc e95c19b3173d0c69d60efb950859b2ffd3020235efd6c47ffebddf950a0edf52n/aHeodo
2020-08-12HPKN_PO_08122020EX.docdoc 29a8f854081e5f20b6709851863472cd33a1863fbed4867153edf6fcc5e86dc8n/aHeodo
2020-08-12UJHYR4H.docdoc 7575d9ebd2153fdfbf4c1626ec4769e8cdef40ea8e2990670f1cc5cba71a2e7eVirustotal results 51.67%Heodo
2020-08-12FILE_PO_08122020EX.docdoc 4c3eddd6a41f348b80609e91f83e3a9e22818758105ce3db1de70777baeae682Virustotal results 54.24%Heodo
2020-08-12PO_08122020EX.docdoc 358176ae69d49cbdc29ce5f8965efe9952253949970d9de4e8f09f46c488e6ecVirustotal results 50.85%Heodo
2020-08-12XY_1143594963.docdoc 5d38e73c8e461773d7bd09fd69760d3e0335e51cd3df39676a4c2af22343c43cVirustotal results 51.67%Heodo
2020-08-12XUB_GIY04VU9D.docdoc e4d1deaefa7f905c5ce7490867ae09ff2d50fdf4162f102e276653c1c46eeab6n/aHeodo
2020-08-11FILE_78526447189981605916.docdoc 5a95e436c4df9dfb41496c96489d1bddf6db2c7d54ccf0761eb61ef1af9c83a0Virustotal results 50.88%Heodo
2020-08-11BAL_KY4407012495QC.docdoc cafe9be1769c83fbeb348a49f0c1e0512df75007fbca4689516ce442fa72b54eVirustotal results 51.67%Heodo
2020-08-11TM3700458366WO.docdoc 854be831ad01f15c5a5cc2f0f253d059b2a9faaac66db5b90fe51b3daa401c57Virustotal results 50.00%Heodo
2020-08-1157727315.docdoc 1aac25866333e7f77dc237137353a0a65ce189972d87658229eae96e3037bc68Virustotal results 51.72%Heodo
2020-08-11RI_DVNC21APQLKV.docdoc 1d09b28a4d454266d52d7d2e5b9aeab2bbf43839ec33c9a7221eafae3c28c067Virustotal results 51.67%Heodo
2020-08-11BAL_KR1328427853DE.docdoc 2adc586ea7a59715aa3226b8b211a8d39fdc6b40691c30e3a96962d2c041688dVirustotal results 52.54%Heodo
2020-08-11BWH_080120_JMC_081220.docdoc ddcfa6beac3f79149c8786ca9af44062331f6222f46f5ccfb1429ff859308dacn/aHeodo
2020-08-11REP_79177238.docdoc b9be58269c46d1dba55d08e51cf5186e5c6669171b0b96d6bf2ca5b7558af124Virustotal results 50.00%Heodo
2020-08-11REP_PO_08112020EX.docdoc 4e1398a541baa1807c7737004b16fa72d75d9e64ad0b772b4d78be698725b753n/aHeodo
2020-08-11RG9399973997UB.docdoc 0dc77319f898db1037b996e421c171d0ddbd13166a8b589ab1da97b8bcfc99cdVirustotal results 50.85%Heodo
2020-08-11JSA_88650157.docdoc 8ba6e22d298dc4a7b8722b5e15bfb9f8b4128d0fba504cff7fd4acd55999eba5n/aHeodo
2020-08-11CY0830673810RB.docdoc 8e5f3490181127db4ae19a0c19a2aab3233016bcc64272ec836a68426ed0ae89n/aHeodo
2020-08-113775573734745587757.docdoc 6c042835d406a08afd589550530dbc4586f9490fb02cf9cf77a0695097190ebcVirustotal results 40.00%Heodo
2020-08-11BAL_83039540.docdoc 8979a7dda1fa732d2164c2ef2e8bb59471cbed0bf320309720b8c18ce4a5f673n/aHeodo
2020-08-11DOC_HUK_080120_QQR_081120.docdoc f288fc67d607003c58bc277bf9c779e8d206ae43259b9cea64be737d4df22a7dVirustotal results 36.07%Heodo
2020-08-11BAL_PO_08112020EX.docdoc 34d67996b2581cdd647857f3e3e696b014b5439d13108d5cbc713db42e9089cfn/aHeodo
2020-08-11BAL_128907324.docdoc 156c89b670d37466329fb682dd618caf3bd58f87e765cca5964284ab364e311bn/aHeodo
2020-08-11REP_6859655538032199516836.docdoc 5a7268af14b85f336d44d0d10af1c59a02ce7738a4966e2ef96a39574a42b7c6n/aHeodo
2020-08-11PO_08112020EX.docdoc 5ca1aedbc7b3e63e13e3b3263321e12f1d49d668c331db20a1f996b3fd362894Virustotal results 32.20%Heodo
2020-08-11DOC_20981397.docdoc d760943bc37af2bcfc28d0e4f2a9de09a531cf8eb96220ea588ab5373d0b5ddan/aHeodo
2020-08-11INV_NN0393690000HT.docdoc c81e2afb18ca2f18cd62b5cda110e668e5aa9480cfc9e4aecaa86367dbb22d9en/aHeodo
2020-08-11INV_SFB_080120_RQO_081120.docdoc e86b2beb2b36a9530c75a89e078c28b809fca63518cebdcd860f0135e899ae90n/aHeodo
2020-08-11DOC_47054474.docdoc 28fc41406d8d5cc920c7b810e696d21453d0744b61f62dc67d7ec248fd088b38n/aHeodo