URLhaus Database

You are currently viewing the URLhaus database entry for http://hjtnj.com/wp-admin/esp/w35pasqyu/dd7kd16420476402253262izjetvqpmtl5j6aic6/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:434729
URL: http://hjtnj.com/wp-admin/esp/w35pasqyu/dd7kd16420476402253262izjetvqpmtl5j6aic6/
URL Status:Offline
Host: hjtnj.com
Date added:2020-08-17 16:10:27 UTC
Last online:2020-08-18 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-08-17 16:12:02 UTC to abuse{at}ddosing[dot]net)
Takedown time:22 hours, 45 minutes Good (down since 2020-08-18 14:57:03 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-18DOC_YBI_080120_MPO_081820.docdoc 77300670b06067855e3c1d1b58df8a505ec1598099aa1a03970407a2798336c7Virustotal results 22.03%Heodo
2020-08-18PO_08182020EX.docdoc dfed9e8647309077d764a8c15df25211f499a739dfbc8caf3035bdcaeb1d460dVirustotal results 21.67%Heodo
2020-08-18FILE_PI1956448818UN.docdoc 09904d529c1234df3f3e0b318aaf40b31cd8c353cc884a2310d328af4675fd09Virustotal results 21.67%Heodo
2020-08-18I_277918418627315558215.docdoc d5604fb88ba80d9402a76951dce44b0405d3d1d07c96f697c14a57768b63dd49n/aHeodo
2020-08-18X0IM9ZUD.docdoc 248558f5b8547279882c012169b965765eab106c30275d475e3de2ba02e6c7e6Virustotal results 22.03%Heodo
2020-08-18DOC_11129661.docdoc 2141d1d359bcc5c286268a6fd8b3d82d6bf0fe297aeb7721813f41da88fa7c59Virustotal results 21.67%Heodo
2020-08-18PO_08182020EX.docdoc 456510d5a40582d308f81577cbf8ae64f2b616539e4bae452df2916721b027d8Virustotal results 20.69%Heodo
2020-08-18FILE_36972873.docdoc 92674d8d935ca49cbe4489ad9f6b55bb98697e74750d26bc138edd3c70f214b4Virustotal results 20.00%Heodo
2020-08-18INV_KLH_080120_XHE_081820.docdoc 8307b0240a3df3f69ed9390c9d3c041bdce48f9b0454b98140c5e569cdb9c052n/aHeodo
2020-08-18FILE_OSX_080120_HOF_081820.docdoc 13f007247a133e15c91b87cca369b39cc7b383603cbe773fb626e306a41a99d3n/aHeodo
2020-08-18FILE_AT8U2PZ72.docdoc b2a6495cdb9ccb4d2ed6e1e9e311a8b2f6c986a803159ccf83b91d821897cfaeVirustotal results 22.03%Heodo
2020-08-18FILE_114678946916.docdoc 6e95c43a8b2b08d6d37fdb596544522ec747317954db11749b8585aa8bf5594bn/aHeodo
2020-08-18Y_14820553780.docdoc aa738cf80b7b1956f2ac70f42845e0f58487dbf9fc1aa028eb3aa4f8f8c1188cVirustotal results 21.67%Heodo
2020-08-18REP_099747174320573453.docdoc ab6c9909e16fdf41b17881417d7ae3e0caa1a66bff25a443a4e5ce8b338ddb0dn/aHeodo
2020-08-18DOC_ZD3653559945MG.docdoc 7976a8188a5d793cdbb85eae76d2bf5dcd550789634815969fd953edefd06been/aHeodo
2020-08-18NICG_OH5FMS4T8DN0.docdoc e7e59e1fee68542ac8095f59c35cd7c88c27b60952550c64ebbc62c63a66e507n/aHeodo
2020-08-18J_PO_08182020EX.docdoc 8e753065e300156e56580de3e895fe3aa55d7ec678c49eb160e2ca68534519c0n/aHeodo
2020-08-18HXULE01IJ8.docdoc 1904353690dbe307aaac69ccaaf4f1862c2991b85bc778b4c02a080b10845e1cn/a
2020-08-18REP_PO_08182020EX.docdoc a821076f4e8ae03d113a981ac01066b1025195206bace6b13c4a12e00b868bdfVirustotal results 45.00%Heodo
2020-08-18BAL_BV9035007129MW.docdoc 01003564db8e02cdc33e4d259b217f180b85cc278ef24e8f8077a6071c0899d6n/aHeodo
2020-08-18DOC_IT8614675459VP.docdoc 5cd230c2b9aba6fe87d1b68c517682690a758f5fa5864a6424b548f7417c39d5Virustotal results 45.76%Heodo
2020-08-18BAL_44672234551646218.docdoc cfaa4978055fc55bd548e88bc67bb4119515406afc1303c47cb314b4cdbf7a5dVirustotal results 46.55%Heodo
2020-08-18INV_6CSIE2AJ.docdoc 2b221062e6443009fcdbcc513a4f981e019e92626e88fd9a6f1c849a74b1169an/aHeodo
2020-08-18INV_95171508097132640106635.docdoc 36df396c174d0c918c372a25114d8732328ce8658fe2b138d953e0c0ac3ad471n/a
2020-08-18PO_08182020EX.docdoc e2f0cb86eadbea45515eddee89bc46912333b4bf97129ee3cb33951aae3c3fc4n/aHeodo
2020-08-18INV_011965336332973979.docdoc c373a609023ff4516086d61658057caac275c361b265ca121a75c19af59be615Virustotal results 43.33%Heodo
2020-08-18SJS_09691569.docdoc db593f135aa15cb1d2279c26e034744e979223392fe2ecd2d5e204648bd0ca6dn/aHeodo
2020-08-18LKRX_84444013.docdoc aecb14f5fd610dae65d94c788e6451f3f073561c8c00b0b62b4cf9d710c570edVirustotal results 41.67%
2020-08-18M_PO_08182020EX.docdoc f5938c3d6599dd45b99fc2c626e01c9a6d9718e4170519a9802ff99a6b9f3373Virustotal results 40.68%Heodo
2020-08-18BAL_SG9908347560UR.docdoc 5d423fc54fea2aab0c905e32a63397c0b39419e98d6b50af5079a73c7052fdc6Virustotal results 40.68%Heodo
2020-08-18INV_YUVOU7RN7REY.docdoc d455be8bab47cee43ba5e71e1ecb482cddbc0c320d39874a081d23d5d27d7fa8Virustotal results 42.62%Heodo
2020-08-1893971270.docdoc dccb23d76041147736f6f324b3ab4b5bf23db414b1b9aaef5b12da4033ef7f91Virustotal results 41.67%Heodo
2020-08-188617415387342049174165640.docdoc e5f6385e4a493c599585ccf6c17d2177515475196e58fe7bdd08e334db238808Virustotal results 41.67%Heodo
2020-08-18BAL_39906724284948.docdoc 2a06b2a913102a6c410bfbcb01e2d57a80f0d62a3c32d9a1cae4a1611cc300bdn/aHeodo
2020-08-18FILE_NI8717004757LT.docdoc 5b6530e4d580725b37bd1d03eeb44c472d0529b1422b830bebdc62bf8b6d0c83n/aHeodo
2020-08-18D_09799443250174.docdoc 5c8b923944c5816b259806159d34a3d379b2c8f347ef3b69cbc5b18f60637d93Virustotal results 41.67%Heodo
2020-08-18Z_67485737.docdoc a9f2dfb969ec4a5c09edfdcf49a041eed112c8ef64c36610131b1ef17118292an/aHeodo
2020-08-17V2YRBKE0W66KI.docdoc dff1df7c560a8a24caa14cf006d941b7c3d80648923fc99f691cf668706dd683n/a Heodo
2020-08-17DOC_GI8160451714TL.docdoc c0bd051153ba3fc559191e1a744dafb51332259e42fe8e436dade8cc96fae9een/aHeodo
2020-08-17XR_PO_08182020EX.docdoc 7b77207a79af88d9ae875004fe564803f06bf6fc32432e99635e7910c43e720dVirustotal results 42.37% Heodo
2020-08-17REP_EE9070261321BG.docdoc ec178e0f0ac105f09d9c4a287238b6b5fd1a48107228b8eb7afd96e2ec4747e7Virustotal results 41.67%Heodo
2020-08-17REP_ME1199418682HP.docdoc 7776a0f18e269f643225df332d619771a31094c4f40736c9a03d179c03fbc668n/a Heodo
2020-08-17REP_PO_08182020EX.docdoc 18b1585abb668182213b56998ae5ed30758e1649c11469b52af43723c5b0704eVirustotal results 40.00% Heodo
2020-08-17CG1GCZGL9Q2TXMT.docdoc 6eb52f464c8845b595169880341a670e6dfc2fb1c5ba4e59f01122d6e15c9536n/aHeodo
2020-08-1728206980635.docdoc 974cee607e26fc226dc6835c3823f25a77541be94a01be3d3ffdb69afaabcdf4Virustotal results 37.29%Heodo
2020-08-17PVEPSV7DSVOJ.docdoc ce6e19d4ee2e8590e6c58c39a9f35b9872c2b31d3fba395531f6c44e049566bfn/aHeodo
2020-08-17REP_371698134207.docdoc 4ec08e452e7eafcff44c88aecf71b7cd95f8d3a68a7258f9bece3aa3a0caa123n/aHeodo
2020-08-178755955522399590962040825.docdoc c7595cc977ce809096eeafa5542fa816e3a8f68effa336371c9536bbb92254caVirustotal results 32.20%Heodo
2020-08-17REP_PO_08172020EX.docdoc 3ee4af869f74285c3506566a4df827b46129038c38f621349ae70b937ac04b20n/aHeodo
2020-08-17REP_PO_08172020EX.docdoc 45c12bfb8fe3999e238da081df10be3d1eb7d03190fdd0921affae9bc945729an/aHeodo
2020-08-17FILE_MKN_080120_WTI_081720.docdoc 8c5b8907514829cd3c77fd2dc48359d7a74533ae80fc0451d6ac51a998894584n/aHeodo
2020-08-17DOC_QMF_080120_IGT_081720.docdoc 6081a7fd5bc17a551c83adf95e2ce4101e03a1de13cd02668259ea8f16432df0n/aHeodo
2020-08-17DOC_97924090.docdoc 98b1f2eff24595a16d48e214e8f412c7e6dca8a44e20f4bc3aee00441439eab8n/aHeodo
2020-08-17INV_22001363.docdoc 367d2ef7ea1441dcde2fc0753659e679ada7edfbc17a2a0501123ba0d39ee926Virustotal results 28.33%Heodo
2020-08-17INV_PO_08172020EX.docdoc 3caba7efd725be382a8a8eac13727a40e06874f65eb610f89e0b36dcc38ad34eVirustotal results 28.33%Heodo
2020-08-17F_36352639325.docdoc 61ade7afc3021dfde983fdab31597cc2934ccda2012fe9ef49c985f5a52aa89dVirustotal results 28.81%Heodo
2020-08-17REP_355970324126404.docdoc ea5c34f5476af3a195a69280a548a233ef0657ade8908a1df661ee3c9abbb802n/aHeodo
2020-08-17IIK_97908462055803325.docdoc 40b916c60bebfac16dffbad45e27b3c26421a1920c779a4415a02705df4e740cn/aHeodo
2020-08-17DOC_GMAQWCWQNB9LMIY.docdoc fb97c4ab0046a60d20e5ae58c4fc426053c1c168d24495e1463765c194272238n/aHeodo
2020-08-17FILE_PO_08172020EX.docdoc 095bb889a019ecf676de31a52ae472b04486e8ce2dcc1db0f9698dd27d4fb8fdn/aHeodo
2020-08-17OZ6704777778JL.docdoc 6d8658726b4fb0e9ef7e2c4da945df3eb19d81048f5b0d4445be37f1e6cc8ad2n/aHeodo
2020-08-17OM9N5MN.docdoc f05d89aea9d681615cc37d7ada7cee7e50f61352664be0ccb362ae3b5d5d0fdan/aHeodo
2020-08-17INV_FQL_080120_YLC_081720.docdoc 23b702194ab1ce70a597bd240a60d6d14593f7b799ea86a9321b4ce236989afen/aHeodo
2020-08-17CI7277946771SW.docdoc f3e2ea374b12abadd2b0dcfee6d1517d1518eaf4422ed5c6529dcce17e99719fn/aHeodo