URLhaus Database

You are currently viewing the URLhaus database entry for https://kae.ch/docs/ldkphnox/j1rdhg3784208204222iynk32kg4r7mjje/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	435257
URL:	https://kae.ch/docs/ldkphnox/j1rdhg3784208204222iynk32kg4r7mjje/
URL Status:	Offline
Host:	kae.ch
Date added:	2020-08-17 23:30:04 UTC
Last online:	2020-08-18 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-08-17 23:32:02 UTC to abuse{at}cyon[dot]ch)
Takedown time:	7 hours, 48 minutes (down since 2020-08-18 07:20:54 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-18	PO_08182020EX.doc	doc	4ce7c9c36eea321e4805b6659532b84bd731c6e282a4565e32366fa2176fe340	n/a	Heodo
2020-08-18	INV_FE8184793725PH.doc	doc	58b9d78ccd44cc7e0a165c022c8f2372734e2e52446eff35f69656fb5878840b	22.03%	Heodo
2020-08-18	INV_PG4787546534LI.doc	doc	7976a8188a5d793cdbb85eae76d2bf5dcd550789634815969fd953edefd06bee	n/a	Heodo
2020-08-18	BAL_PO_08182020EX.doc	doc	e7e59e1fee68542ac8095f59c35cd7c88c27b60952550c64ebbc62c63a66e507	n/a	Heodo
2020-08-18	YD_28903167.doc	doc	4dba7674a65d6c5e1cd3a1ad7226c21f0b91705ac0a61326e58044947a641cac	n/a	Heodo
2020-08-18	18518318.doc	doc	7f1c65238bdfc720f45f489cc20e78173bcc8d8bacad5a4299fcb08f010a0a14	48.28%	Heodo
2020-08-18	BX4734791553HX.doc	doc	a7f9d63388739119575efca17a203780aa3111a89831740d7395769fda081b2b	n/a	Heodo
2020-08-18	DOC_801121721259052140315864.doc	doc	01003564db8e02cdc33e4d259b217f180b85cc278ef24e8f8077a6071c0899d6	n/a	Heodo
2020-08-18	POIH_11421584.doc	doc	41f1e702b57bab0ebc27e61570867b5417e34c5aa1b9046382207f7f62fd15ad	n/a
2020-08-18	DOC_XQHR66T0F7EZ21TA.doc	doc	b1021100edd56e9a41eb6661376e44e4066fe511be9fcf5a71538156713fd91f	n/a	Heodo
2020-08-18	E_6P0X1VAYBSME.doc	doc	2b221062e6443009fcdbcc513a4f981e019e92626e88fd9a6f1c849a74b1169a	n/a	Heodo
2020-08-18	DOC_3R7K0FPXO8TNP1.doc	doc	36df396c174d0c918c372a25114d8732328ce8658fe2b138d953e0c0ac3ad471	n/a
2020-08-18	INV_CP4964674459OU.doc	doc	d2b8765df72f5975d4984c9186d5373ea19685fa981b09438eb6600188ce4477	45.00%	Heodo
2020-08-18	INV_04284430.doc	doc	eb46b89d7e58183df45838e5a44989e33a129063e6b410d5e1a0fb8eb9e5cfba	n/a
2020-08-18	J81B5EV4FUWF2.doc	doc	00e380616dab3927547b0da3ed8a844b9dccd8d34b516ac04cc5f2617405ef97	n/a	Heodo
2020-08-18	ME9541617079HO.doc	doc	e284647edaee2ed25f77af25077cf6abe3b9339e1890a0cae20dbfdc5bf1399f	n/a	Heodo
2020-08-18	NNLV3NHP.doc	doc	aecb14f5fd610dae65d94c788e6451f3f073561c8c00b0b62b4cf9d710c570ed	n/a
2020-08-18	REP_15341062.doc	doc	c5a5417ac06397f164bc4984deb3c87c1d4290465e649f541f74aa3e19854fcb	n/a
2020-08-18	FILE_QJM_080120_VFX_081820.doc	doc	0ffb0270993fcd6afd5e3fd437fbbf4fc270cf5700d109a886786ac316d9f75f	n/a	Heodo
2020-08-18	FR_WL0N058L0.doc	doc	dccb23d76041147736f6f324b3ab4b5bf23db414b1b9aaef5b12da4033ef7f91	41.67%	Heodo
2020-08-18	1637908816.doc	doc	27c375a8f3878f06b0f95f14705dbf8400f42c0208bdbffc432c9fe9be231b7a	n/a	Heodo
2020-08-18	X_HU8550361557KU.doc	doc	2a06b2a913102a6c410bfbcb01e2d57a80f0d62a3c32d9a1cae4a1611cc300bd	n/a	Heodo
2020-08-18	BAL_BV4687096773GW.doc	doc	5b6530e4d580725b37bd1d03eeb44c472d0529b1422b830bebdc62bf8b6d0c83	n/a	Heodo
2020-08-18	BAL_46435914.doc	doc	5c8b923944c5816b259806159d34a3d379b2c8f347ef3b69cbc5b18f60637d93	41.67%	Heodo
2020-08-18	GJ9540105354ZI.doc	doc	69d3f09930fcee1c934169fbf11d379163a3058c0db215c9fa09a756934ef0d2	42.11%	Heodo
2020-08-17	REP_XNT_080120_GKX_081820.doc	doc	dff1df7c560a8a24caa14cf006d941b7c3d80648923fc99f691cf668706dd683	n/a	Heodo
2020-08-17	PO_08182020EX.doc	doc	c0bd051153ba3fc559191e1a744dafb51332259e42fe8e436dade8cc96fae9ee	n/a	Heodo
2020-08-17	DOC_PO_08182020EX.doc	doc	6cfd3bc71ff38c615ec9c2b54e9f7b2a878e5b34918ef26526b8d2695f04ba6e	42.62%	Heodo