URLhaus Database

You are currently viewing the URLhaus database entry for https://yuanmaj.com/wp-content/seky5z8l-04/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	434747
URL:	https://yuanmaj.com/wp-content/seky5z8l-04/
URL Status:	Offline
Host:	yuanmaj.com
Date added:	2020-08-17 16:36:41 UTC
Last online:	2020-08-21 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-17 16:38:04 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com)
Takedown time:	3 days, 9 hours, 53 minutes (down since 2020-08-21 02:31:43 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-20	INVOICE_CA004_668794628.doc	doc	8c71ec9eedbf482ef0eb2ca7c191b16287ca2aad60d0a18d0b8dcc08eeb17a74	60.00%	Heodo
2020-08-18	invoice-EI0002-643635508.doc	doc	bb70bfcfda9d3e9df53c9e41b6625cc0896142d27a9d21b566adb5bbec1bf2c4	41.67%	Heodo
2020-08-18	INVOICE-BUNI0746-689081113.doc	doc	40f7770f2b4cf7b9278695e6fcea916099ecedae08d4f4b3070f3fb47feb413b	40.98%	Heodo
2020-08-18	Inv MKO091 25361861.doc	doc	e2531260a88716bc42cfedc37b67576c03c26a31b38478d1a5ba6507a290e01e	41.67%	Heodo
2020-08-18	Invoice-TP00005-457479.doc	doc	744b4fa289d8558331dbf2749ff648489860000fa1e98f7c2961d549b9e1bdce	41.67%	Heodo
2020-08-18	invoice-TCJ0002779-05051551.doc	doc	78592ac8692e506cbf84de53eb9e18f8758944a5bd60a40fdc7a5b11218af2c5	40.00%	Heodo
2020-08-18	Inv-FDC0005603-41673289.doc	doc	34f6f3dfbf731cc3d87253cdb7a6cbf7cbbf8a47369e0ff4b5a2c966e8f2335b	42.37%	Heodo
2020-08-18	invoice_NE00092_4889873.doc	doc	77b91e171886421bc7a87ccccd572453071795281331490c3984b3601ca941a6	41.67%	Heodo
2020-08-18	invoiceEP0421787498.doc	doc	92be4a79167b433e9a255723e3b6e3e3b01bc350cdaa6bc01a1cb46653bdc086	43.10%	Heodo
2020-08-17	Invoice LGT576 13107987.doc	doc	4cfd1a4d130209a42e6f1463451b36e01d0290a5b62df9a4b6a802eaa6580dc3	41.67%	Heodo
2020-08-17	invoiceQXH01539791550.doc	doc	fb6aad846cb69bf2d5287dddf2b0f0899e5338ece7621d4d6553aea13fa9a285	n/a	Heodo
2020-08-17	invoiceDKH0006515541950.doc	doc	a6843ba695ff6d9b98c1710de18540fb64fbd14e5600bdcaf2bb08c8d5d4e879	41.67%	Heodo
2020-08-17	invoice_JS0035_749207084.doc	doc	cca592a85f2072100fee32efe4da3a5838a4fede975df3a1892da6bd297595f2	41.67%	Heodo
2020-08-17	InvGYX0005770060804.doc	doc	3ba7e5c969ebc04a05763c55083111c62b6bc12fa1b845f71bd0a2eb94501d1d	40.68%	Heodo
2020-08-17	INVOICE SE0311 77259713.doc	doc	5a46b7453ab371c28e2d0579740f747b1eb714014cd186bb2ca3ea43715a9902	40.68%	Heodo
2020-08-17	INVOICE-FJDE03-659859615.doc	doc	c173dc0610840f39487d42dac104a6b6226faabda18baf6e22ea305b405191e1	40.00%	Heodo
2020-08-17	Invoice-XI0099-033067.doc	doc	69aad8b30bf71211ae9950bb6ba0f258d420597413f988aa094e5e6f15dae70b	36.21%	Heodo
2020-08-17	INVOICE-FYZD00399-077089887.doc	doc	32b182b7d1765f38210411e917f24c9927d053507c5ca2ba097387de33210ca7	35.09%	Heodo
2020-08-17	Invoice_OS7325_542096.doc	doc	4fa07d2b92390ce810b09723ccf48c59d24051c791428e3daed60edd9bbe8248	36.21%	Heodo
2020-08-17	InvoiceYX00039009802.doc	doc	eb5662fa54e863a467aa8e7244ae292e56df5ce7e263521d7879fff32a5cbbb7	35.59%	Heodo
2020-08-17	Inv-JJ01432-8983033.doc	doc	36411b6b9a12fd7750db9128fbd093a70fe359b50c54898c61446c3af1940993	n/a	Heodo
2020-08-17	INVOICE-WJC0004166-82313535.doc	doc	002fc17ef46f5a786a26f8463cd5ec94ae73ee28100e60d364eb8ac85e70a10a	n/a	Heodo
2020-08-17	invoice-ED0332-4427044.doc	doc	25d674d0133fd5d5436990578240da96820b71e96aee7f75f3cc491a43259182	32.79%	Heodo
2020-08-17	INVOICE 0009354 7367267.doc	doc	0858225435ef18d51362fbdf7228a8db3ed5b107ff8de17591a83a7366b936cf	28.81%	Heodo
2020-08-17	InvBTMZ01078963.doc	doc	ebeb93b496cad01ac3da5ccb47d1695200f0245e76275845d610b13434475fa0	28.81%	Heodo
2020-08-17	INVOICE-YS000244-341009.doc	doc	60f7f2e65193c7c4219cf0246c38f7eeda8449dc52648a62f8549258973629c5	27.12%	Heodo
2020-08-17	invoice VWJB01 405260205.doc	doc	e882dad5b84a41853fdb21f8229c8bf081505ddb9334dba42ab48f07edcebc86	24.49%	Heodo
2020-08-17	Inv_HIRK000_640827983.doc	doc	ad7b95cd42cc634f74b82730c63941006b341cff953ab44fe3eb63fda9123fed	n/a	Heodo
2020-08-17	INVOICE-000648-5982689.doc	doc	8b03dc5fe55fec0064b3e0886526d6645dd239585dbd1aac5ccaa79d68bf51e4	22.03%	Heodo
2020-08-17	INVOICE000163087016.doc	doc	d33440881126800ecb592f63bc2e3d128adde303eee29a80c02aa5e76eae5ec9	21.67%	Heodo
2020-08-17	INVOICE_LNBN000_88633619.doc	doc	c84ea22db06ef0d80eb9dd2151b40060ded6ba947466b1f863e3b480a8875137	22.03%	Heodo
2020-08-17	Inv N0580 85325145.doc	doc	c11b318052c38b2912124109f0b4047a5ee9391adb9e3e0e5f88d772739a3b09	22.41%	Heodo
2020-08-17	invoice-119-15246159.doc	doc	c44ddcbb54399b54e123f47cf9753dd6376799ce5b101f6a809e957d0b087a3f	22.03%	Heodo
2020-08-17	INVOICE-00617-052824907.doc	doc	0a7eaba5e79244be71d93f72b5bb4d0927a6b42b0a9963579c385c599e4ccb96	n/a	Heodo
2020-08-17	Invoice-GPI3-927688.doc	doc	a69b1528038510c4ebecdf7f717d7f9d34694721fe045a86ec14fcbfe0bc59e2	22.03%	Heodo