URLhaus Database

You are currently viewing the URLhaus database entry for http://losistec.com/things/0maum1t/0wa2271512529410xk5mhzgbcrgn8cop5ma4j8/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:430480
URL: http://losistec.com/things/0maum1t/0wa2271512529410xk5mhzgbcrgn8cop5ma4j8/
URL Status:Offline
Host: losistec.com
Date added:2020-08-12 14:26:11 UTC
Last online:2020-08-13 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-12 14:28:04 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:20 hours, 6 minutes Good (down since 2020-08-13 10:34:04 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-13FILE_88271402.docdoc e1bf8d2efe529d4cbe16fa5c6f747b604e88d6ffbeec9742a7617aa8617a9133Virustotal results 26.67%Heodo
2020-08-13BAL_MVNNB7TSK25WA7P.docdoc c5a0eac9aaeb84217b16d894a11fc533d9125f2c70cecb67dfd600b798295e1cn/aHeodo
2020-08-13NGR_YB1OGTW8TZ.docdoc 9806f54f8d2769646e6a9caee3f1c15a1b47f781be6eef64c390d6e9ee867bd4Virustotal results 26.67%Heodo
2020-08-13REP_CBP_080120_ZYF_081320.docdoc fdd5654b78c6c5c23b4f6c6502eb69701c87c65ad4bd2d121046db883154d863Virustotal results 27.12%Heodo
2020-08-13BAL_12WNGJN16BCO.docdoc ba510b5a0f97430a09efbd12acbb4c1be869e71e678adf5fa0b5498fb477068eVirustotal results 28.33%Heodo
2020-08-13INV_YAX_080120_GOM_081320.docdoc f3288815441008b2291c6b17d597d58fe606f7475c4641bacba49ad56c1b1142Virustotal results 51.72%Heodo
2020-08-13561997395697526784984584.docdoc d3cbf8eb26742271a0281233827b52ab52334bef5335d0f8a27c9db613de55c7Virustotal results 53.33%Heodo
2020-08-13FILE_X21P3ZA57HLN2O.docdoc 0938a3eb8d86fa634cbaa1f643bd2c6cafcdacba202e4683cf7245705bd11fb3Virustotal results 53.33%Heodo
2020-08-13DOC_UM1994657486YG.docdoc c2bb5e128810c06abd15ad3ef0bc95622c20da154ca500892972305c94feabedn/aHeodo
2020-08-1367144315.docdoc 2ec1025c3a44b35de74853b22998ea439d6eb5f0d92d9065256692f0deadcbd9Virustotal results 51.67%Heodo
2020-08-13FILE_RKW9R6407XS.docdoc 5ec2a412f6729dbbd84453b84c85ac56f93e865a1900eb514efedefedc56467fVirustotal results 50.82%Heodo
2020-08-12BAL_VVB_080120_LCI_081320.docdoc a9af06ae735677ec282b4a66f7bc85a343dc7c71491658673fed6150e05ef3c5Virustotal results 50.85%Heodo
2020-08-12BAL_312WGDVYR8KB8.docdoc d0ecee1cad0e97af4b127dc23861ffbee329ef4a465840447b48e554801e6081Virustotal results 49.18%Heodo
2020-08-12REP_PO_08132020EX.docdoc 77b30bd340e5190b08a7d94df99aa81a4aed0b89711a543fa9f87bb83fe3a72fVirustotal results 50.00%Heodo
2020-08-12INV_PO_08132020EX.docdoc 29c5831f071871eed50e5f9e8c02779dedc26d8d1b5485a57cef2f7dae79c9f0Virustotal results 50.00%Heodo
2020-08-12INV_73128694.docdoc cfec1c4aeca2bf10496b8ae3be0b77a9dfade44f1503c09398114731db0e92b5n/aHeodo
2020-08-121488173325244866226778.docdoc 44d9b68f5aefc2eef02bbb78ffdd24d10ff0097705b179cd623a8833dc64ff89n/aHeodo
2020-08-1241444198.docdoc c75a7753aba5fdf5703e46cfe6e6a53ceb7df3394f932fc521343b25ab0b2388n/aHeodo
2020-08-12INV_PO_08122020EX.docdoc f2ccd3c493881b68693c2d24addb0a1ec854e6020efdff1cbccf785a1ad099bfVirustotal results 48.33%Heodo
2020-08-12PO_08122020EX.docdoc 42784e0de01af05a046c1361a8e58eeb1d7eb88b72badd646658090e49a54939n/aHeodo
2020-08-12WED3C8LZQQKS.docdoc f19b16a6b70c8cb1df5f029983b5176588645914bead2d0b21292174bf7d0839Virustotal results 45.00%Heodo
2020-08-12M_PO_08122020EX.docdoc 97feccf3c91f6d0275ecafdf2bb2d3a869dbd30f1ed7e87db533ac6a63678fb5n/aHeodo
2020-08-12NCWEEUDRLUQFET.docdoc 272b2ee94e735c0b96219372ae505aa8689e9790ff6390568311fe3eb01a9f2fn/aHeodo
2020-08-12INV_65125008.docdoc 1b43dacaa3825888c4583607901a5fad687f60840690fa8dfb7b5ab72e28c27an/aHeodo
2020-08-12DOC_30472645401483289055106.docdoc 25263694227734da43c741c2d09b0f0aceb8cb2d9488378a2ea765c6c19be594n/aHeodo
2020-08-12PO_08122020EX.docdoc 97f5a5b7ef0b8c5debe83d4bb3800c4dfec850f6a4afd2e206566d5248b844ebVirustotal results 30.00%Heodo