URLhaus Database

You are currently viewing the URLhaus database entry for https://myslayers.cn/wp-content/OCT/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:436471
URL: https://myslayers.cn/wp-content/OCT/
URL Status:Offline
Host: myslayers.cn
Date added:2020-08-19 11:39:08 UTC
Last online:2020-08-25 20:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-19 11:40:03 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:6 days, 8 hours, 25 minutes Bad (down since 2020-08-25 20:05:10 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-2182134500.docdoc 3a9f101c83f920b4ec199b593cea84e6b31aa8f77edca16e1caa5902453bac86Virustotal results 22.41%Heodo
2020-08-21DOC_POO_080120_MXT_082120.docdoc bce60944d3f355c0b0204703032c8c88b18863aab47ce9c419f3b2b9bead9c9bVirustotal results 22.41%Heodo
2020-08-21REP_400630446521859489946122.docdoc dc04253b8a3088bcaa9837abf3c06c8b61ed9ea8d51892fd57179d01768e2749Virustotal results 21.05%Heodo
2020-08-21FILE_76353462.docdoc b326935dc2c2961ba03dbcb71953cb015dc694fdd25510aaea3efd5f86ac04c1Virustotal results 21.43%Heodo
2020-08-21ZV8707248918CA.docdoc 11a8180eef649f7b434071a68ead981e80bb9480b016a915aa7222d355f0905bVirustotal results 20.69%Heodo
2020-08-21XEQI_29206632149.docdoc 7e14cb336280cddeab32d3133ceec407982c1c7bf659dca411970cb837c6ce63Virustotal results 19.30%Heodo
2020-08-21BAL_PO_08212020EX.docdoc eea83be73bb6b63138b070ecbc75bc0af0a8f6540fb9125735eda75701adc2b5Virustotal results 20.69%Heodo
2020-08-21FILE_SM4619459123MW.docdoc dd3afacc150ce99efa0843ef4211a83be23385d9f1d8661b1fd04f45975323e0Virustotal results 20.34%Heodo
2020-08-21F_FDP_080120_BIL_082120.docdoc a99bc78979b657a1d16c9c3cb64ddfbd2d0317097210ad0dd85088b7a6c1b3ceVirustotal results 31.03%Heodo
2020-08-21XCL_080120_XWY_082120.docdoc bf9fe3f7b66ae5baa3877c2da0edf95f1434298010128ce61c76f6bb6c4c46e0Virustotal results 29.31%Heodo
2020-08-21X_MMOF27OH2C4Q.docdoc 58dd523afcefc35f414efc196cf471628390b4de61dfe313be73b0bbb018f7f4Virustotal results 31.03%Heodo
2020-08-217352163421657.docdoc b3bab296d26d412d3adaa195a93ca6ff44a5b6bc5e16f130e2386928d12f0570Virustotal results 30.51%Heodo
2020-08-21N_40333907.docdoc 7b9b5ec41c53cd07458913aa635e1eb93a909f702d7208c00c35f09e9e58e6bfVirustotal results 30.51%Heodo
2020-08-21IWU_080120_KOE_082120.docdoc 1fe0891c052882024b25b0fa7d4b15654e380ec923aa12943e177a3b076157fbVirustotal results 30.51%Heodo
2020-08-2189378703394670.docdoc af3988b7856704b5467030ee792d90beff86f1f453c3280c8d0f822b2dc9898fVirustotal results 31.03%Heodo
2020-08-21N_VRP_080120_MJO_082120.docdoc 29489d8ec25a46a76a0bb977cba3d4260eef3e2520e1b060a323df2c5f8cd8fbn/aHeodo
2020-08-21FHW_92115250574539589.docdoc 888cc36a3b191d16410c47fa36aafe0dfea9c69ad547fcc2ee76426c5083517bVirustotal results 31.03%Heodo
2020-08-21FILE_73912311.docdoc 468a139ddc357c7f3d37c8013c190d7add2b9be072dc851cfa91e2b125718aa2Virustotal results 30.51%Heodo
2020-08-21BAL_IHM_080120_HIN_082120.docdoc b008c2a5a3f325892c0b9e4b83ede888637a59c8b5e320968165589ba583af7en/aHeodo
2020-08-21KM_BUZFP2XQ28XD2A8.docdoc 47f6342732efcd12286d1c14e1c445d607ea2b4f637b7dee23dac0db3edc2993Virustotal results 26.67%Heodo
2020-08-21BAL_06149940.docdoc 7a13dbbd4da1bec806c6eb1b585d5d1be3e682b691fed51ea02a818a10686100Virustotal results 29.51%Heodo
2020-08-21REP_CTJ_080120_XHY_082120.docdoc 32473b384e1e07f387b80575017b09c425d1bee0904b9d96319e3bb72e7d6ecfn/aHeodo
2020-08-21X_A5O5JRH77E.docdoc 4ab707775fa2390fd9243175abdd54e81f7bf91607d4d7fc5c97be1d43f8606bVirustotal results 31.03%Heodo
2020-08-21REP_ZV0888143290VQ.docdoc 24fd38bc7a9fc81d9db5634f8d3c76f68707dd688bd30ade28d86def52b8aa8bVirustotal results 28.57%Heodo
2020-08-2138577763.docdoc bae16ea340cc512d6e1934d205bb3f0e34da81c10bbdf1a411b338c91f415c03n/aHeodo
2020-08-21REP_PO_08212020EX.docdoc ec7046f9e9c4c72e2196e913498916a6b3af40a0912fb5b1ea7284d1c62fbe8dVirustotal results 28.81%Heodo
2020-08-21PC8238648085ZO.docdoc e9a0e6332b5faebefd8eaa44f82d2bbebeb7b2dea78ecb0b89761f9bd85b0d8aVirustotal results 28.81%Heodo
2020-08-21INV_VWN_080120_NLE_082120.docdoc cf949407cd2ac080beab74ad3f668e760f555bf85a0b919c14580aafb5c8651aVirustotal results 30.51%Heodo
2020-08-21INV_ZMK_080120_ENW_082120.docdoc 827b61d3f0f0d3d42ee69919ecdb9a190e3939c7d32cf425f7cf355276a3d2d4Virustotal results 30.51%Heodo
2020-08-21INV_PO_08212020EX.docdoc 3c86a0b190ac5ab87b216155e1a11d7a756739986e3545d994fce52d209cd64cn/aHeodo
2020-08-21G_90692806.docdoc c78e1a46aaa668a1c315dfb0b147f7a8d1b34af64b8f3cb9c6621ac872d7a2afVirustotal results 30.51%Heodo
2020-08-21BAL_DMFBTII7WWN.docdoc 31e1775c43a698b705e2a0e7b26e8b8942b04b51bb902f9008fc355c637c2c4bVirustotal results 31.67%Heodo
2020-08-21JNO_080120_YJC_082120.docdoc 756a4d472796d23433de7126e62ce1e2db7fe58f109c96ed8539bb03e9032e90Virustotal results 28.33%Heodo
2020-08-20YU7423570889TO.docdoc db5d466d972210f819496f74e47cc8db88a065acde70d9d2ac61221eb8746003Virustotal results 31.15%Heodo
2020-08-20INV_PO_08212020EX.docdoc c29215ee20d64a6f4fdb314054f3e2da2f8ce2e3a3e0a2510f31b0ac3322b99eVirustotal results 30.51%Heodo
2020-08-20JAM_WL4739797831TF.docdoc 172af56801cf4f253a30974aeeddb1910408d1417b4d8bffbefe887436c3b633Virustotal results 27.12%Heodo
2020-08-20REP_202554080789612619757.docdoc 4ede2184628e55fa1ea3685e13bbd786f208d794b3778b7c95fcb18765d8ab68n/aHeodo
2020-08-20PO_08202020EX.docdoc 6bc11cf0f3b32627ca7a5104f50ed3c2166fefa5ba3892eecc2fbe1790600371Virustotal results 25.00%Heodo
2020-08-20INV_PO_08202020EX.docdoc c57a4ab4e5c80b5cd6551c5927e4a052aca796d0dc0e9ee1f0e18308fca78605Virustotal results 23.33%Heodo
2020-08-20REP_DC6602867721MO.docdoc 18898d58822870334064b88a2224dc8d236210978f732a70cf80f3617e5a6445Virustotal results 23.73%Heodo
2020-08-20564908304610610.docdoc b60e04c121ade20dec6f8ce0c0a4a61a493f860a63c36b02796272a6897c95d6Virustotal results 23.73%Heodo
2020-08-20Q_WAL_080120_BGH_082020.docdoc 09060004713f96e81981a75df65688e9de776f96258e470bc2ca740cb09bfde3Virustotal results 23.33%Heodo
2020-08-20PO_08202020EX.docdoc 2704479bb70ab89f699b958bff80a648c4c3b03d3875afd7cf5d833fd625e037n/aHeodo
2020-08-20J42RMARJO7WPZ8RR.docdoc f2c11a8f3f6306050420e37c8c1c24cfde3ca7e03cb703761581c1e5f6f75757n/aHeodo
2020-08-205N7CQC8B49.docdoc 29b52f890109db1441bb1fab0d062383405b49e076d6f8c04c40644a9cfda15fn/aHeodo
2020-08-20TDE_080120_EGH_082020.docdoc 863fd1e52d219bbbf28aad47413c3fe73d56a35ebd143e0373795a33204741c4Virustotal results 24.14%Heodo
2020-08-20BAL_EV6065138422KU.docdoc 66adaecff904f859044c0d2aacc5bf77afc7928a3827c0e75dda7e79c0c29601Virustotal results 22.03%Heodo
2020-08-20FILE_PO_08202020EX.docdoc 73bfcb9214b001594d3b0d3cc9c11c8ae9b0c2f57e4b75b8772cdad41a7e3c28Virustotal results 22.03%Heodo
2020-08-20DOC_69000384.docdoc 004df4af1179c95b943b776e868fe3f553dc136e2586a75fcbb13bf6c000f569Virustotal results 20.00%Heodo
2020-08-20EXQ_080120_LXR_082020.docdoc 65bd1b927dcce32a7171cec9e1e26732660728495e44d5f85a73f898aa2186d6Virustotal results 20.34%Heodo
2020-08-20BAL_PO_08202020EX.docdoc 6999b90afceb089b399c074269f52600ddb3d7aee434cfba9a1896c8213f4df1n/aHeodo
2020-08-20HA_9425363672488.docdoc bfdf3c9957775bcbc77fd32ca103eb77c0d7ce345a27bde62c3347647ad94a06n/aHeodo
2020-08-20BAL_75930746.docdoc 9b8093f8e43a21459619460b9e991aa75ce552e9671b0d1b47ac7b3c638c8fafn/aHeodo
2020-08-20FILE_5X6S9X6V8T.docdoc 5d3beef0242dc0de22d84070c113bcc9b3927d40772dbd6da912611a24792a60Virustotal results 20.00%Heodo
2020-08-20BAL_Z7DVMYW1OWUKHPG.docdoc 6e647b837da2262825372b4fb5ccf78f780e467cdcc593c348153bd1619dbf86Virustotal results 44.26%Heodo
2020-08-20INV_ZY6540026051QC.docdoc 3adba5d0d3b9f8425b3f663d9a4e49ea5d5effd605916f354e932e1fae4486e4Virustotal results 41.67%Heodo
2020-08-20WUJ_PO_08202020EX.docdoc b1a3a3654d76f8eeaf84cff925c62e4f349407617da64a11c91b03851f5cf209Virustotal results 40.68%Heodo
2020-08-20DOC_IS9908138061JA.docdoc 77dc94d7a2eb1a8f1f2875ee18a8115333a3c2ab0f0455d8cd46b952f93809b8Virustotal results 40.68%Heodo
2020-08-20REP_00635556.docdoc 1a7a1a119f23f5e82bc46e3b7edce0a7a1d0b9b8b6a1fe7962533d61aa932643n/aHeodo
2020-08-20ADX_080120_MEQ_082020.docdoc 6caf84cf6a6cadcdf4aa5f45a9f87b63c16cdf6486f53279c0ce48676edfc142Virustotal results 41.67%Heodo
2020-08-2070935732.docdoc c5efc23a6bc4da1660b4c6c3b4755581990f7c00591cfdce1350df652c03a3f6Virustotal results 40.68%Heodo
2020-08-20REP_57133036801167165050.docdoc b26d580deb9ff666c0dc35f4cc7c9d88038fe0f3c8bf48c4aacd56dfc05c4cabVirustotal results 40.68%Heodo
2020-08-20REP_LWPUKDOYQZ5RJ.docdoc efc9df64f0aea494ccbf81d79ceb9ad0f6f61a44f33641edc6db589eb766ce52Virustotal results 37.93%Heodo
2020-08-20QC_VIY_080120_RPT_082020.docdoc fd5697cbe13a39316aa3bb5a556294913f66b029ece0dfa4c3dcfb9f8fee28e5Virustotal results 38.33%Heodo
2020-08-20NR2694905973AK.docdoc eeb0a1417b5106cfb471ec4c6404b1acaeee3e4acfd04ae2748adee4ed69812dVirustotal results 37.29%Heodo
2020-08-20PO_08202020EX.docdoc c87f4bdfa6467b9965457be5f3000c92e8115c4df1d44a926577901e5e0eb5dcn/aHeodo
2020-08-20A_3231020325547766253078843.docdoc fc18c0da152741b364aec9b87761a496b8353418136db33e02d4debd00aced5dVirustotal results 38.33%Heodo
2020-08-20PR4MJXKRYHQPHT.docdoc d302615d23c61c639ad53db79f2e5e6e3aedb53e0404821c5c02064f7913910fVirustotal results 38.33%Heodo
2020-08-20J_71265211.docdoc b32f302c129728edd895136f299f0e68031f9554b42be4fd2dd35f80a9b2a750Virustotal results 38.98%Heodo
2020-08-20L_97202001233952798.docdoc 258ce6696ac78fb8d21424c2e471d638e03aaa8c2aab1dc7a78e2125e77dc9b9Virustotal results 38.33%Heodo
2020-08-20FILE_PO_08202020EX.docdoc 96f7d13cfc1edad4f9381ae98cab2336d39557b2230d88583c92284d6616b4e5n/aHeodo
2020-08-20FILE_MT6112987873ZA.docdoc c2924a9f73b92c51fa8e36a2e4d1f98f76871c4dc0c8343033f8b18002cad912Virustotal results 35.00%Heodo
2020-08-19DOC_3569595187804904.docdoc a75897a4101123281bbe047444001acc874171e15cc5a6047baa32d5100d4237Virustotal results 35.00%Heodo
2020-08-19R_ZAJ_080120_WKL_082020.docdoc 36a290d9df91c6881e6f23de7e03e02206ef7ca2d8aac9d585308806b6e2b965n/aHeodo
2020-08-19BAL_20359192.docdoc f0a83f24371ac4a144149c12aefa268138bf5a01f1c4d062a9e754b6995a1ecbn/aHeodo
2020-08-19TVE_080120_BJJ_082020.docdoc 038f9798da3df2c253620a2fd844e48c6d1a331e314d44196df45b0f9bedffdeVirustotal results 27.12%Heodo
2020-08-19INV_1C1BUM5QGWM1OAS.docdoc 063b886950d14cfd765fafcd552629e1c87c3c1d0b03cc4a794e8c02dd34db42Virustotal results 16.95%Heodo
2020-08-19NRVM1WH5C1.docdoc 28c14d0d9ba56ed508a4312e9098de46caaa153eb89958b6a8e027476ee3e6e5Virustotal results 16.95%Heodo
2020-08-19H_IR8418867333TH.docdoc c3f0d0d594a74f097907231612a0cd0da8c75160a2ae1064a3744ecdea407986Virustotal results 15.00%Heodo
2020-08-195YR3V78Z2V.docdoc 7feab4f1f35adcc7433afdbf4448e5b79996fbe150dfe6e0f708a6c13ce86f7bVirustotal results 23.33%Heodo
2020-08-19WW_ATM75OXKN2.docdoc 7f3f68fc29feddc0494e2e4853b7454b5d0cceeabe5e0bcd13029c5ec301e9c6n/aHeodo
2020-08-19488613767640595202628301.docdoc 6635eabce892d2b1dd62f9647fee70564a942d841995a10141d78bd8ad3ff732Virustotal results 23.73%Heodo
2020-08-19BAL_FG5570640807QJ.docdoc 529390562b286d3c2cfdfec7f930327818909b300cf64609a2d6d8bb3e5d47ebn/aHeodo
2020-08-19DOC_PO_08192020EX.docdoc 90499b6cd235fd63115a4d18f0989f842252935038f4cadec17f85a2081b1cfdn/aHeodo
2020-08-1982976959.docdoc b4319c87f6557ca9768ff78abfa16c323c6ed7de149f3f741c390bfd70cfb22bVirustotal results 23.33%Heodo
2020-08-19REP_GBQMBBDMU3COUUZG.docdoc 1477b2a7f819762bb159efabd6da111d14f15dd5e37cc7c5860ed23d99ca00a3n/aHeodo
2020-08-19INV_AKR_080120_YOD_081920.docdoc ed6f742fc6e103f092e9fd9301bf4ec786e88abca3ec1593661c4083f398616dn/aHeodo
2020-08-19INV_PO_08192020EX.docdoc d39c833a3b98e3b3b9e52621ec95c0ded900b865987a8e3fbccec144778f3ff6n/aHeodo
2020-08-19INV_27931189.docdoc f2d2558321c1b85c41505c190a6b4f309524c7eb7282f7a10ca8f832f539e42dn/aHeodo
2020-08-19KZ7571191583WJ.docdoc 77834d629af8b45f85ec232e03fab3cf97e78e448b23fe48bc93ad6a391f3c90n/aHeodo
2020-08-19V_BCZ_080120_VLP_081920.docdoc 2065474363cd9df4a104d020800f2f1523e4cdbb0602b68434bb6cf61b62398dVirustotal results 16.67%Heodo
2020-08-19ZO0041881199CM.docdoc 40430817aac77bdfe251ec9275bd54f3f38e091508e5381af53292469132db78n/aHeodo
2020-08-19BAL_73212987.docdoc 3ae29b3f7f29f20ad0073a44572a88b7aafe19da62e0a8d8d8a04213945f0e80Virustotal results 16.39%Heodo
2020-08-19BAL_HI8MAGON4N4C.docdoc 8fa3388c004c72bc132d2ae9af6e47729f3e30ec0337e69115fbf3b2d2b4260cn/aHeodo
2020-08-19BAL_PO_08192020EX.docdoc 5a216285239e2f997444c5eb15fd484fcfbb8a3d23acfea4b5d587768ba66063n/aHeodo
2020-08-19DOC_HD9954409134CC.docdoc 1a17af806d615019154f0985010aad3789bd90bdb40970f78cd0cda2bd722896Virustotal results 16.39%Heodo
2020-08-19BAL_9XL39WK.docdoc 080538677c76d09277a58f1dc9be3e5df254a92d12fddc11326c1f896cd93a98n/aHeodo
2020-08-19130680793204174366.docdoc 74c2c54fc85691f5881aab90f9e3a678723c7e3b2e7a987c172eef23d4f275c4n/aHeodo
2020-08-19LAU_080120_TPO_081920.docdoc 8e285d653d5b70acd8afaba99b8eb4bfac624da777e0bad5e74da2cf0487cdb8Virustotal results 18.33%Heodo
2020-08-19INV_PO_08192020EX.docdoc 75053be7f5d07337ba28d4d9fed63933fdd33feda824f8adb8587e4b4829caf5n/aHeodo
2020-08-19A_139467382344383731.docdoc a7f7da45bf54c26cc2fce4e3c3a639209f7701cad6339b69b3980224423d2d7bn/aHeodo
2020-08-19FCEEQCROK15.docdoc 2b7a49352e724f27cd732cdceeb85765bee1e1b37a8f0e554eadb1d7388e6831n/aHeodo
2020-08-19REP_3A2C7PBSBG.docdoc 74c71e841348fffe1f1a1bddbd7db99dcefdb48c019b49fd480dd8975a482cf3Virustotal results 16.67%Heodo
2020-08-19BAL_MZU_080120_KCI_081920.docdoc 0182efa202649a75bb24245129d12623fcdf74568f49bb2d4664df753037e3c1Virustotal results 18.03%Heodo