URLhaus Database

You are currently viewing the URLhaus database entry for https://ictsmkn2cibar.org/cgi-bin/http:/Reporting/68WJYVAyzjfP0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:453394
URL: https://ictsmkn2cibar.org/cgi-bin/http:/Reporting/68WJYVAyzjfP0/
URL Status:Offline
Host: ictsmkn2cibar.org
Date added:2020-09-04 15:43:36 UTC
Last online:2020-09-24 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-04 15:44:16 UTC to abuse{at}hspnet[dot]net)
Takedown time:19 days, 21 hours, 14 minutes Bad (down since 2020-09-24 12:59:01 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-05UNTITLED_2020_09_05_132375.docdoc 4c3f9a91ab8bd67a7de8b61f6d5e49c34a0c3ded123f63205f02d17ff570c204Virustotal results 30.00%Heodo
2020-09-05dat-651334.docdoc 8abd1fd956a522b05535b6b9ddb53a6c4353e20235979a9ed05679ac4f2a95can/aHeodo
2020-09-05file 2020_09_05 318.docdoc 13e33248efb3839e1e0e830942f519158cbd7090dd25afa842b4228cb5ada615Virustotal results 30.00%Heodo
2020-09-05list_20200905_8955.docdoc 99b355a60a9590d4a7695c3e6dbd12bcc643041c7f98e39ebb7bd29d4300b770Virustotal results 27.87%Heodo
2020-09-05INF 20200905 JN6799.docdoc e89ae83996380754135f2a758f5a9506a7a44eb610c70b28f909b2f0b73ce548Virustotal results 30.51%Heodo
2020-09-05inf-UD099.docdoc 178548af9f561e5bf22a2a3bf689025f6219b073e79e56ea0b74f164dc02820eVirustotal results 29.82%Heodo
2020-09-05mes_2020_09_05_NKS30574.docdoc 54fac54bf401937afa1a48e9545b32e46ac8be7c543918e4a841177baf879ea3n/aHeodo
2020-09-05Attachments 2020_09_05 HU341.docdoc d4c076603f475a562c8771e360b65b734aba563731f4417b117ecfad4297d562Virustotal results 30.51%Heodo
2020-09-059087_2020_09_05_JTX875.docdoc 0274b67e43f98e65033f7b7b9c341a6560e515e61187693dfa5b941a2545309fn/aHeodo
2020-09-05Untitled-2020_09_05-083989.docdoc ca1ecf3a84713ebe3b95b15bb7e7d4fe779daa81b1a2879feb79423222472ec8n/aHeodo
2020-09-05REP-2020_09_05-33568.docdoc 62cc3eedb06b43f8a3e286b0a9f04cbf36fe240a532b217d91950ea20fa0ba9cVirustotal results 28.33%Heodo
2020-09-055019629-I43825.docdoc a6861aa553541ef958ad8dbfff87e748c920813dd0b745d69787b2818357158aVirustotal results 30.00%Heodo
2020-09-05Untitled-2020_09_05-EHX338875.docdoc 1fde53646d2021d4bd959bcc2ee2b8c1db5ca4b112b58af96efc114ffd4dc6e6Virustotal results 29.31%Heodo
2020-09-05DAT_2020_09_05.docdoc 5b82741c8587a1a90e3ce044387a541c69a916330391030a4daa50aa1db6a445Virustotal results 28.81%Heodo
2020-09-05mes_S52298.docdoc 4845d731ee51494da878e4a1e0c22ad0e6e1885aebe593bb6b3adf115f9c84d3Virustotal results 28.81%Heodo
2020-09-05dat_U281.docdoc b1d37441a65187f53492dcd30fe0d3fafb9de343694c7ac79d3ce5434cec9350Virustotal results 28.81%Heodo
2020-09-05doc-AR15578.docdoc 7b33fe4f09c06251aba09bbc5407ae8fd899bae0a40d3e7d55f3806a8b6a74a6Virustotal results 29.31%Heodo
2020-09-05DYP7011-20200905.docdoc 0ca5df179f725a9c12ba1385711972c7e55bc02359435e954db6e65f1e2036fdVirustotal results 27.87%Heodo
2020-09-05file 20200905 L201693.docdoc ee2869e612b62baacd8f12266c98e851549e6789343a4020cc424755ae55326aVirustotal results 27.12%Heodo
2020-09-05Attachments 2020_09_05 5462.docdoc c66ac5fc632592fd547d29b2ea0d58d6fd421effca802489611fb9a43a656a45n/aHeodo
2020-09-05File-2020_09_05-A7323.docdoc 0917f0cbca78c19301ba65aa799b29dcf90ee3666fc9f8b83f00c5ea34a0eba6Virustotal results 26.67%Heodo
2020-09-05list-20200905-725449.docdoc 6914af81ae643d0106a7cb16454991e2b4d29053551e92e659456ad592120f57Virustotal results 26.23%Heodo
2020-09-05list-20200905-4266.docdoc f3c01505f223d53a856b4cbb5201b5cbad5706145be5e214e266f4570491a8ccVirustotal results 26.67%Heodo
2020-09-05Arc C88508.docdoc 2572ca226200ecc1019e9813f939d7484962a7f90ecc62921f7efb01e5bdefean/aHeodo
2020-09-05XPT790_2020_09_05_0886.docdoc f0e8099995f3ce14cd75fb397efda8a5ef10d2360783b3321d55be49eb5a7888Virustotal results 22.03%Heodo
2020-09-05inf_2020_09_05_AZ8904.docdoc 08946ba696e1f6e1da7e3f5cc61273c6d9c2bc25f61ff89151213d62d4c8e625Virustotal results 21.67%Heodo
2020-09-05File-20200905-RAW7323.docdoc de7201ce2995436691a764734f9d6dc4395dba5066dc1c6c469fb2684daa58cbn/aHeodo
2020-09-0544149IZ-U5784.docdoc 349685f93e08324717dd09b79130205af7e095872a599905ac58c453d5a4f25eVirustotal results 21.67%Heodo
2020-09-05FILE_J2225.docdoc fc3e08fd58ba899bf7597bdf599c48d0a7628661213da9a31f112a226748053dVirustotal results 21.67%Heodo
2020-09-05doc_20200905_1463.docdoc 22834da2a4895ae43256bc32fc3c6faa89ec4389406f7fd25032bedea74bda9fVirustotal results 21.67%Heodo
2020-09-05MES 2020_09_05 N69345.docdoc a0c340e5b8f401a13ec7ea03f405623ed8532d1bdfc9f708d34ad94a2c14ac47Virustotal results 22.03%Heodo
2020-09-05Doc 2020_09_05 543.docdoc 5d1e5bc11522b6d4daf399dbbd1a18561ee98aad33dce8f798e2aad3a2a5c329Virustotal results 22.03%Heodo
2020-09-05list_4089.docdoc ac03cec1ea7e2d4ba254b3225a617ff11bb93247cfd84340907d0533522327e4Virustotal results 22.03%Heodo
2020-09-04doc-20200905-1492684.docdoc d9a9da6db3834089876251db68e72db8a21ff82ee58ca338a43a055110f793c4Virustotal results 22.03%Heodo
2020-09-04INF.docdoc be5a076cc07b81d54fda54ef3c56f2d60ee214c3d1fe46de3dc59a1df619dc29Virustotal results 21.67%Heodo
2020-09-04DAT 20200905.docdoc a68967c55063a216717a336462d01e74b4dbf73c0e3ad3b56bfe2c4ab10f3b38Virustotal results 22.41%Heodo
2020-09-0448449 2020_09_05 605.docdoc 88d669402f9cb6d3c39a7de76b5e16c45d5db2b7a4e5c5f2b9ec112d299f85d6Virustotal results 21.31%Heodo
2020-09-04Arc_20200905_60666.docdoc 137b5a0cda220100df4caefac31efe6cc85c4bd72580fe2ce1987887901d3ed7Virustotal results 22.03%Heodo
2020-09-04dat 20200905 UF258.docdoc bb32a5e79b853e76e64596002da4cf3b42d9e2c10db3f2b7fc7fd805fa43ff71Virustotal results 23.73%Heodo
2020-09-04Arc_S262.docdoc a8e4d449c8018f90196d3de6e14d75cdca5c5f76b989880e012890f87d43f6c9Virustotal results 21.67%Heodo
2020-09-04doc 20200905 O9874.docdoc 50d0908dff351c8fcdfd307f4c93cad6065d4c10c2614fd4201209f862681cfdVirustotal results 20.34%Heodo
2020-09-04doc-2020_09_05-818449.docdoc e3986d10ba408aefe9c0f44c298dafcd5501ea916fc093cbff42c479194a9309Virustotal results 20.00%Heodo
2020-09-04List.docdoc 79b65c86df194fd9f4a7d42889a26c715ccfeca32a0e1eecbb9d65ebfac19ac7Virustotal results 20.00%Heodo
2020-09-04ARC-2020_09_05-X9753.docdoc 4833c57c4ff48c2720247aa3bc9c8d62222f9fe3d095924030c344bfa8673847Virustotal results 20.00%Heodo
2020-09-04Inf_20200905_6779744.docdoc 4ad62f2c57a013638168235884ebd78c0b024008e87c9b2e84719d7543132e4dVirustotal results 20.00%Heodo
2020-09-04UNTITLED-20200904-03622.docdoc 924f9439383931103e48f1a8618e3b5b0dc6e56ba52261116659d5dd2bbc3050Virustotal results 20.00%Heodo
2020-09-04LIST-20200904-561771.docdoc 9c0798c3e8889889ef70b039545920afb91f1508144606704a1889286192bbf9Virustotal results 20.34%Heodo
2020-09-04List W339.docdoc aa3db031e17cd90af00951bc4d86c18c8e42328f47e9014b552993ff1b29c557Virustotal results 20.34%Heodo
2020-09-04DAT_2020_09_04.docdoc 623ee20c1b2e5a53a0bbf6eb21f4b87cb0e6392e023f1e08267abc08c26e5bbfn/aHeodo
2020-09-04doc 2020_09_04 59319.docdoc 44d3865f9ac7efa31a3e9882aa38bad74bdd7e66627f48cf5f915a664ad329cfVirustotal results 38.33%Heodo
2020-09-04Inf-QKA85296.docdoc 627615216c18d1e8f7e1fd2774e09f54950e8068ccf5712cf072d21fc266763fn/aHeodo
2020-09-04list-20200904-0739126.docdoc 1fc138a263ca0cdda8039fa91f48947af5bb017930a2671cedb5bb01118e0b02Virustotal results 36.21%Heodo
2020-09-04Dat_20200904.docdoc 112b31f94d0408209223b109553273ff732fcd2f05b532c53d7ef7e4658bec80Virustotal results 35.59%Heodo
2020-09-04Attachments-IHJ949.docdoc 2fa57b312c1f1976a6e1237388978f53045e0bd342f5ecb46de197c6f2e4b5b8Virustotal results 36.21%Heodo
2020-09-04DAT 20200904 2944.docdoc 4500dc04802c13fe7026076c983b30e2762694f15df4a35bec777b09e64b899dn/aHeodo
2020-09-04dat-7850710.docdoc 09525f62505c8bf7a99dd08caa65a18ab1c71a0f291fd666b3c53972aa9f1466Virustotal results 35.59%Heodo
2020-09-04ARC 2020_09_04.docdoc 6d0e0c6c270e763b2d4e0f6e14fd373b7ca0688c6b0d27a4589f39d40c756d3fVirustotal results 35.00%Heodo
2020-09-04LIST 2020_09_04 C6879.docdoc 113c8c78cdad0ed438501117f87ca9b0d52b672ddd8b015284541ded516827e6n/aHeodo
2020-09-04Attachments-421281.docdoc cc4f7c86201d0618e4cc76f2030913800e738cb4a46496daa65e8f3507b3e12dVirustotal results 35.59%Heodo
2020-09-04FILE-20200904-OQ34998.docdoc 5da16c9f1af8807ac20e6adce0424c7e8fb78d5a4187584a3587876c2affb1e7n/aHeodo
2020-09-04mes_2020_09_04_577.docdoc 74f31456977a691fa6c56243890fd997e0ed0e2793ec4b6e1df8e8a0c93a22cfn/aHeodo
2020-09-04Attachments 162586.docdoc d21d369a575521b056524693121464f2aa51cbbc0790a6b01069bae6bb4dbb32n/aHeodo
2020-09-04Rep I092663.docdoc 791553d28205023fcec3eb1d7b8e89736e5f99b90e7e8a1ddfa4452f1897a74dn/aHeodo
2020-09-04Rep_2020_09_04_080.docdoc fbaa65a02cf8c771c0cf3656084a8b4168750f336ef53130fc96a219ce9dc121Virustotal results 35.00%Heodo
2020-09-04Arc_2020_09_04_XHD76644.docdoc 0fd7dcfa200a1b0da02cc3578b15e97fdb192f4085d66ac383db864551155bffVirustotal results 35.00%Heodo
2020-09-04UNTITLED-20200904.docdoc 8272ec5255ec5c1be616ff13df325ee1016d5d40bb129a6687709dfadcc1b3dcn/aHeodo