URLhaus Database

You are currently viewing the URLhaus database entry for http://cunasa.com/old/4rrqfq/bn7m9613520xdufka59tl08/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:452341
URL: http://cunasa.com/old/4rrqfq/bn7m9613520xdufka59tl08/
URL Status:Offline
Host: cunasa.com
Date added:2020-09-03 11:58:04 UTC
Last online:2020-09-04 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-03 12:00:03 UTC to abuse{at}ovh[dot]net)
Takedown time:20 hours, 49 minutes Good (down since 2020-09-04 08:49:11 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-0467741505.docdoc f19b7c3502d8e70e4a41fc4676cf0ba7a1de47cc19b1e961be4ceb8511119637Virustotal results 41.67%Heodo
2020-09-04BAL_5VEN66CJ3PZW.docdoc db8ec99d40ab02d4ccd48a1c7b15bf169acb5b672dad9862e19dcb7f2805cde6n/aHeodo
2020-09-04BAL_89192675.docdoc fc4b6be04077a9890bfcd3e541ebf5f4974a3cd627b7d26d6a7aebf7bc8a1b91Virustotal results 41.67%Heodo
2020-09-04E_2672566426950417.docdoc 58688db2a10ad53af04287f0d28ff7a01d056a48dcb725797d9c1f724d13ff2cVirustotal results 42.37%Heodo
2020-09-04OC9617736886OK.docdoc bf52c7ee63e57eab046b65369d5d9bca719accc2b77b4541ddbe5924711aa9c1Virustotal results 41.67%Heodo
2020-09-04BAL_7RNVZBHCG.docdoc caebf73081556f7f37180936a87c070873e8e00e37acbf388f4ede0388fc3a57n/aHeodo
2020-09-04REP_PO_09042020EX.docdoc ad84c8c2cf5cec48293d676cd04c85584493ec6ea41985daf27420a4855461caVirustotal results 41.67%Heodo
2020-09-04FILE_TQ4641350329FX.docdoc 9b93250ba68a08df743a47727d6b84318527714e489bfe0064f103b2c3fb9b21Virustotal results 43.10%Heodo
2020-09-04Q_452347337709410382.docdoc 8aa2a0bba5e9b2f0f212f07d152f089fd10e8ca4485608178547f12196348c45n/aHeodo
2020-09-04INV_77400113.docdoc 3bd6f6031787d67083679740e8f556ee96066d268960bd6a6eb4b23260e39c17Virustotal results 41.67%Heodo
2020-09-04INV_PO_09042020EX.docdoc 2ef190d90d3a3915cd9bb4c25fb4c8274ccda901b1dc8ebf6063407949aaa4b2Virustotal results 42.37%Heodo
2020-09-04EWL_090120_UQX_090420.docdoc 1d3c23422da9f070996381406668d34699557d693bf4db1e3cf752fe8b83b560Virustotal results 43.33%Heodo
2020-09-049455160305354101.docdoc 615736850fd6ace5e3359e30427d4ef5824b28c6d1e0bd9dbd2cc12340dfeda8n/aHeodo
2020-09-04S_PO_09042020EX.docdoc 628bd28e635f7fa6ca78c666cd219873a82d1c749dcd80ca407469194fb0064cVirustotal results 41.67%Heodo
2020-09-04PO_09042020EX.docdoc d31c8d01e8f0d1245651c9e0ccd611e4b98beca169cb0cffcd86377c20beb0e9n/aHeodo
2020-09-04PO_09042020EX.docdoc 781509afe3329ab61b29f3b67394eca12b43b25e82a4f1b9ed2c4f178b3a6d8bVirustotal results 41.67%Heodo
2020-09-04REP_8FA19TJX5R4.docdoc 0e17461c84992dd3117448367cb38d7d6323d37b5c3314a0105ee4dc59a908baVirustotal results 41.67%Heodo
2020-09-04REP_UAT_090120_RVC_090420.docdoc 789a71395ae5c9ea3e1613452abd8ed4927d9baf524868cdac935110b5f6f0fen/aHeodo
2020-09-04BAL_KSN_090120_HDY_090420.docdoc edc285fb056f220eaf6bd0fac0b68417b1a433e5a1da2fcec0c518277f1cbbd6Virustotal results 42.37%Heodo
2020-09-04BAL_33326564.docdoc bf8ba4d58a232e576705b37030a7df091539bafb0051f4f28032d54fe49c4c98Virustotal results 42.37%Heodo
2020-09-0406767465.docdoc f00f58cdf16e19d21e63d94d8fc0be44f2ca6b18df7ca59cb6aed2bba4b5ff97Virustotal results 37.93%Heodo
2020-09-03HQ7641824709JQ.docdoc 2e96dcfe760df7dd6db7de3e4a51f33e031a3c1c8d3aa5545cfe92fa072b6189Virustotal results 36.67%Heodo
2020-09-03IFT_FWH_090120_LTI_090420.docdoc bfb730608ea4de6d4d60292f703782a118e42cee42d7c0b1077e6c70b3fe5491Virustotal results 36.67%Heodo
2020-09-03INV_01910873.docdoc 079755626794412a025b4f2e13b8a7900345b513afb0538ee3f16c638878c800n/aHeodo
2020-09-03Z_PO_09042020EX.docdoc f95add757971b2b4deabdb71a2aaaddf3ea0cd2562b6bf7c1db04298470477baVirustotal results 32.76%Heodo
2020-09-03DOC_HK9928986855CF.docdoc 95498286cb794615daf92192fe678c958cea60c74bd65f3d7d17d346512db5f3n/aHeodo
2020-09-03978304239.docdoc c9bb1e95c94bba0c079268182ba5d9ec4934d3a859c650d685777d5bd83862c7Virustotal results 33.33%Heodo
2020-09-03INV_PO_09042020EX.docdoc 12f1f6eaba5c14c0f12ebabea1fb99278c07a501323f1c81297b290f8f223b17Virustotal results 31.67%Heodo
2020-09-03FILE_PO_09042020EX.docdoc bfc633d36b0eb3a3bb3a78dc91f0d5600c196595754064b15c5adcbeaff68a95Virustotal results 31.67%Heodo
2020-09-03INV_PO_09042020EX.docdoc e47d26772180e4227d58ece4d0e756d2c6994239a8705c054b2e365a2864716fn/aHeodo
2020-09-03FILE_EJZ_090120_ZLE_090420.docdoc 4f571caa06d699bbfa89b824c79287911daedd1ce930b97f76d74c6e9add4895n/aHeodo
2020-09-03REP_KOT_090120_WDX_090420.docdoc 5542f3a196fa82e55824fadfba8827ac16d483a5a8cfb23089fbbfad77e6dda2Virustotal results 32.76%Heodo
2020-09-03CV1PAD89IA.docdoc 9e79dbd711c7ebd622260b14fb8315fea7af36f7a38875d1e886ef499aa0043an/aHeodo
2020-09-03DOC_LM9994879577YU.docdoc 581f99f55797eef29f45c55f6a75da11c041c2e6a22b98de7b988fce956eaef8Virustotal results 31.15%Heodo
2020-09-0378254561.docdoc e56820ed5e83d51aa84705e88d0ece136340abd67783ea2c9b47b055cd7d87e8Virustotal results 31.67%Heodo
2020-09-03FILE_98852464.docdoc 2ae3f946c2fc6bbf82769e802952b179a1177f36405dbeefcab082b66a99bb57Virustotal results 32.20%Heodo
2020-09-03INV_PO_09032020EX.docdoc 2e0f7c9e58ec09204861e7c69cc2d77222c4f4a676e25f9ba845352ed010978fVirustotal results 31.67%Heodo
2020-09-03REP_987876768.docdoc f50133085cf408fa42e3568d8466e35d6ae2ceffb26ec78fc25041eb5e5d7c93Virustotal results 26.67%Heodo
2020-09-03FILE_25193379.docdoc fbede719be1983fff9ca06d29412edfcfbac49c78901582ccf686c3f3e50e2c5n/aHeodo
2020-09-03WR_UNR_090120_RUI_090320.docdoc d7dccaf606ccac241264d06440a58415ea545b955e3e2538954c3ab166c541c3n/aHeodo
2020-09-03INV_08696144.docdoc 723556f3311a7ad834bd33b581fdbd12a85a5072ba86226ac49fcddff4a0c6ebVirustotal results 27.59% Heodo
2020-09-03B_WM4529415829KU.docdoc 34e226cc8c168a37bf37367d93f797b8a5b449f27218a526e356a1da9deb245fVirustotal results 25.00%Heodo
2020-09-03FILE_PO_09032020EX.docdoc 5a198cbc9190e651ca5b22929375ed1038b0bed660f502cc70540812369b5b4an/aHeodo
2020-09-03REP_4154731155644.docdoc 03d9aeb5a4238c8cf02bf8908fb5eefc7f88cfd9effa918ef5d9dc66a2d8e59an/aHeodo
2020-09-03BAL_KZHUNCJI2.docdoc a4f23a9a66e7c4ffc2dac35ac7bd62987cd68bfe28f2e307dcb4347808eccacfVirustotal results 25.00%Heodo
2020-09-03ZTU_090120_GOZ_090320.docdoc 55ff4ec9373c9c82312f6c6f2eca249e7ab65bbbdf60ca0fcf0cad354759c496Virustotal results 25.00%Heodo
2020-09-03Y_0755033921992800286242.docdoc 7f77b3b194b1c10f8bf8df9c595af942e2316862c4305b8ee4fd80b598b8f67bVirustotal results 25.42%Heodo
2020-09-03INV_51540367.docdoc 5325916cba7c2dd93e907f56b9e92f83fa1919b03b5525a5aecd4ea611b9adedVirustotal results 23.33%Heodo
2020-09-03I_PO_09032020EX.docdoc 100cc000ad85991dae1f7a526fa6cdb150fd7800013adb43ac0914af591456ban/aHeodo
2020-09-0385IZM4JEG.docdoc f145ff20593af4de69cd28c6f15141b6c5479386005df1d4227d53743d5886fbn/aHeodo
2020-09-03DOC_10588229.docdoc 660d3ba772626a7fffcab9ed92785d51b11dbf2e6abd4511202882b5ae658ee2n/aHeodo
2020-09-03DOC_XLS90GZHO7.docdoc 60dd3f4a133e10595239d79547e9f71805c2964f5c3715cb7c4d3e288b7029e0Virustotal results 22.03%Heodo
2020-09-03BAL_JJM_090120_VFN_090320.docdoc c8977118b5d85e3a720b534813d511c2460e60f91118a3159b0c172258407ea8n/aHeodo
2020-09-03BV_299991939993.docdoc c1ae46c061e00c770dac1b297f12eb540025d52be51cba10c712eed20c5a133eVirustotal results 20.34%Heodo
2020-09-03YJTP_CWK_090120_BTT_090320.docdoc ce9d5db120b65261cde5dbf7950ed48354e2ff7b1e1415a2a8effd1e1c15cf3cn/aHeodo
2020-09-03J_PO_09032020EX.docdoc b7672480831b50b9206d7405179c8a35bec0178573eecd46e67f8b4d7bfbf805Virustotal results 36.67%Heodo
2020-09-03FILE_09338221.docdoc feb68022d4541ffd2ac8ac987ced84820eff930b11904e21bd930ad75115981cn/aHeodo
2020-09-0354128369687312.docdoc 1d19f53e565b050dc6363a19a8a68b6ace750818fab7a0d0b718af580fd9b34dVirustotal results 38.33%Heodo
2020-09-0392752825.docdoc c0b57eafc086c4b5ca873561acee64b9c0211b76dd1bf22160cc33b684909aaaVirustotal results 33.33%Heodo
2020-09-03DOC_XUNC2TNKQRF.docdoc 2c99fb1640c6e25fb199d86eb3a5e1924f19d286f42f4da4c87e2f1c94f860f2n/aHeodo
2020-09-03NSP_090120_DQL_090320.docdoc 24981b8317d92027b027adfe062cd3821d271006dc49808a0c366e82dd1c3759n/aHeodo