URLhaus Database

You are currently viewing the URLhaus database entry for https://wordplay.edu.vn/assets/7qmvxh1fk7/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	429601
URL:	https://wordplay.edu.vn/assets/7qmvxh1fk7/
URL Status:	Offline
Host:	wordplay.edu.vn
Date added:	2020-08-11 18:02:38 UTC
Last online:	2020-08-12 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-11 18:04:02 UTC to abuse{at}vnn[dot]vn,abuse{at}vdc[dot]com[dot]vn)
Takedown time:	1 day, 0 hours, 11 minutes (down since 2020-08-12 18:15:56 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-12	FILE_HU5996820159ZX.doc	doc	272b2ee94e735c0b96219372ae505aa8689e9790ff6390568311fe3eb01a9f2f	n/a	Heodo
2020-08-12	INV_RJ9536773396RK.doc	doc	1b43dacaa3825888c4583607901a5fad687f60840690fa8dfb7b5ab72e28c27a	38.98%	Heodo
2020-08-12	REP_WO9427578995HX.doc	doc	c99e3c74dfec6465026a494216c1ac797697cb816f37baa98d571a089dacb73a	32.20%	Heodo
2020-08-12	NB4310034234EG.doc	doc	4020a8982e70b51b150cd40a837ea5dfceb35f0a6c9f9858b3fae5e00404ae62	30.51%	Heodo
2020-08-12	INV_PO_08122020EX.doc	doc	1f1a6a0dbefcc80a0303cdd5d9efc76784286fe3003a19b0e1ca9e0da6b7d030	29.51%	Heodo
2020-08-12	INV_7WM73VJSP824B3Q3.doc	doc	555eec27e492447bbe5bb1313613ba7edda123de03e384227bf9440ec1965da9	28.33%	Heodo
2020-08-12	P_9982764037855278171912071.doc	doc	25f0b73743327325b14d463d442803004c258fc86d34e90721738869de61490c	n/a	Heodo
2020-08-12	REP_I1D8HBI.doc	doc	ae3f98c31cbf01b3809feeb57990ae8270686b4e716f2c8971f8408ca1676532	28.33%	Heodo
2020-08-12	N_9640846857.doc	doc	18f46635637fbd2308eef45d6dc7077d90f65163e5ab3f991d201c0d8f91587a	26.67%	Heodo
2020-08-12	INV_CDJ8L9IL.doc	doc	dbbcb02ce1775cef0bf8d1ccdcbf4789d5936dc08b63afaa7ca81e20aa03a597	27.87%	Heodo
2020-08-12	J_PO_08122020EX.doc	doc	7eba5b17df94761ce65d93039d81735e0a1525f6b3244704a023df60dd04c17e	n/a	Heodo
2020-08-12	IE1071261860NE.doc	doc	265373b64df48b69c520486d767efa8c028ec29d4b7cfaba05e0459400ad0b2e	28.33%	Heodo
2020-08-12	PVR_080120_UGV_081220.doc	doc	16d2a267cba033c59963d01757e9800048ac1fbcf7cb53595dad21ee5bb027c6	27.12%	Heodo
2020-08-12	FILE_LWF_080120_QYL_081220.doc	doc	75ef3d95b4977d636664bda5c6cd5f0444ecc1ca7d0753f424bfe829474fa330	29.31%	Heodo
2020-08-12	REP_PO_08122020EX.doc	doc	a56d5701d53cd34f450eb0a957c6f5c0716a835bc9c9070e315e22f71889b72b	n/a	Heodo
2020-08-12	BAL_DQF_080120_OHY_081220.doc	doc	214f91b9b3ab2ea28b14536241901516f9141df4e12fd3b2ce52088fef0a3734	28.81%	Heodo
2020-08-12	K_2POQMKF5E20C.doc	doc	fe14ae5d76ac1ccafc67f474efe315000dadae344444a44c9200e04e94ebbdad	28.81%	Heodo
2020-08-12	YMHU_PO_08122020EX.doc	doc	025046a10693eb1c9dca8e64fa2dc55f1ba16ff9c6650493205e2c3af827e1dc	52.46%	Heodo
2020-08-12	Y_19674698.doc	doc	9492fa4f34cceef83ff1e6f77bc428777aba7ae617b195a3e6a06d84e5889b1e	53.33%	Heodo
2020-08-12	PO_08122020EX.doc	doc	45597077ea44b6912767ecc3863c6a7eb9a1acb80e69d92deb7f49b5cf9f476b	50.85%	Heodo
2020-08-12	UHN_080120_OEY_081220.doc	doc	6f973501cc2dece992aa2f959f8e352e424e96f06abb300b4bed8bcf2ab4bf34	51.67%	Heodo
2020-08-12	FILE_UU8981931423TZ.doc	doc	1d2096f4adcba717670858b98912615f7bc86bd95ef6b3117901aa4ae6383d4d	53.33%	Heodo
2020-08-12	KBR_080120_XFC_081220.doc	doc	f9f228e552c3971983d4b5909776c052df083b9b41f65f764ceba0dc9d6219e7	52.54%	Heodo
2020-08-12	10116080.doc	doc	e95c19b3173d0c69d60efb950859b2ffd3020235efd6c47ffebddf950a0edf52	n/a	Heodo
2020-08-12	REP_51SM0EP2LRMTNUO.doc	doc	29a8f854081e5f20b6709851863472cd33a1863fbed4867153edf6fcc5e86dc8	51.67%	Heodo
2020-08-12	PO_08122020EX.doc	doc	7575d9ebd2153fdfbf4c1626ec4769e8cdef40ea8e2990670f1cc5cba71a2e7e	51.67%	Heodo
2020-08-12	HO_QAWO1P451MA.doc	doc	4c3eddd6a41f348b80609e91f83e3a9e22818758105ce3db1de70777baeae682	54.24%	Heodo
2020-08-12	REP_WB1114413188RY.doc	doc	358176ae69d49cbdc29ce5f8965efe9952253949970d9de4e8f09f46c488e6ec	50.85%	Heodo
2020-08-12	TTZ_SU6580621662XX.doc	doc	5d38e73c8e461773d7bd09fd69760d3e0335e51cd3df39676a4c2af22343c43c	51.67%	Heodo
2020-08-12	IV_PO_08122020EX.doc	doc	e4d1deaefa7f905c5ce7490867ae09ff2d50fdf4162f102e276653c1c46eeab6	n/a	Heodo
2020-08-11	FILE_74296757.doc	doc	5a95e436c4df9dfb41496c96489d1bddf6db2c7d54ccf0761eb61ef1af9c83a0	50.88%	Heodo
2020-08-11	DOC_86214765425232639.doc	doc	896db11ae3dd47bbbdaef6de2e44964142461c89f1fd377015b96affcc75cf60	50.85%	Heodo
2020-08-11	O_0796499659045.doc	doc	854be831ad01f15c5a5cc2f0f253d059b2a9faaac66db5b90fe51b3daa401c57	50.00%	Heodo
2020-08-11	GMG_080120_QJG_081220.doc	doc	1aac25866333e7f77dc237137353a0a65ce189972d87658229eae96e3037bc68	51.72%	Heodo
2020-08-11	AF6950923610NX.doc	doc	1d09b28a4d454266d52d7d2e5b9aeab2bbf43839ec33c9a7221eafae3c28c067	51.67%	Heodo
2020-08-11	10576551.doc	doc	6c5380e193b725ec3ea512a3146d8c0925c7c489800dad57d1b4b2f940751d22	52.54%	Heodo
2020-08-11	DOC_PO_08122020EX.doc	doc	ca30b2272a56997f03e6470ff7ef67a05a07abaaa5a436b29c936f7fc34e2dfa	50.82%	Heodo
2020-08-11	TGHO_81942610.doc	doc	cbacf0f510ec4c1a5cacd10259c0e6075f65050b602e47fc67409aefcb6af60e	n/a	Heodo
2020-08-11	DOC_784126241311009844058.doc	doc	667d0ee592ac9e54d6758d19535eef977352049d274f48289266578e4f7f3974	45.90%	Heodo
2020-08-11	BAL_GE9L3K0HNOG.doc	doc	544045a4220133bbe6fba0dc73c65a21782329649d1c4ab92cf883cc1dbae677	n/a	Heodo
2020-08-11	42065975.doc	doc	3f9ed468a85787c4bf29a327c525e87f3ac3fed5b4079b2958f3617ef3d3a1df	40.00%	Heodo
2020-08-11	INV_PO_08112020EX.doc	doc	5be1c1cf37072823fa521cc84f76804c10aded12d0d8069043d62c0092215737	41.67%	Heodo