URLhaus Database

You are currently viewing the URLhaus database entry for https://jamfarmsco.com/cgi-bin/https:/sites/s8TliwY5Ko5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:501259
URL: https://jamfarmsco.com/cgi-bin/https:/sites/s8TliwY5Ko5/
URL Status:Offline
Host: jamfarmsco.com
Date added:2020-09-14 18:50:10 UTC
Last online:2020-10-06 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-14 18:52:39 UTC to mr[dot]mamoori{at}gmail[dot]com)
Takedown time:21 days, 12 hours, 50 minutes Bad (down since 2020-10-06 07:43:29 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16list-EZ270203.docdoc 29243f2e1ccc0ad1eecd24bfa2ae83cdb7576da3a14e75a599983e1148139e9aVirustotal results 27.12%Heodo
2020-09-16dat.docdoc 35aed4d6b554a972c9d91773024ddaaf8ca06ccc5b047a073dc51337a14dfd8eVirustotal results 27.12%Heodo
2020-09-16dat_2020_09_16_YCV621734.docdoc 416d955c7b77e7ee1011ae0e23659d733b6deaf33bec98fb7cc5bc08e2ecfa65Virustotal results 25.00%Heodo
2020-09-16ARC-L4416.docdoc 139c1c2329d28807c00378921a8d8094f2520f44c3b6d71e8683f58ef5433c75Virustotal results 25.42%Heodo
2020-09-16rep_CF55526.docdoc 45af7091348e94523fcf93e8b5a0b895bfb10b778f2af8e04996845c8ee1e1d5Virustotal results 25.86%Heodo
2020-09-16inf-2020_09_16-HCJ255522.docdoc 219b5d039e4a109011e021799762a7dddecbc2c5e6f75294daac8bb6454790a5Virustotal results 25.86%Heodo
2020-09-16Dat 20200916 HCG81443.docdoc 2df2c1608e75dc3162882ed50ee37c43d174deb4d1ce6fc85fc1386efb6a1b71Virustotal results 22.41%Heodo
2020-09-16LIST-X10331.docdoc 625bba582b51e78a3357c2a0a1a92ff5b0696389a7e3ced3a2ef1200623317d6Virustotal results 20.00%Heodo
2020-09-16ARC-2020_09_16-56126.docdoc 60ebb60bdbd9d062410367b982c74e9f4d3a5a857f4b3cbbfd64f9521d01472cVirustotal results 20.69%Heodo
2020-09-16Attachments-571.docdoc 57c55ce3943b5424de0f259dfd11a755a3fa502bb80433cc12891f1c50694998Virustotal results 33.90%Heodo
2020-09-16dat KUZ4856.docdoc 7504125a6d20afa52bca1888f1402f956e471bc9ba2c4e1c5815536c5631822eVirustotal results 32.20%Heodo
2020-09-16Dat.docdoc 4b15865823d60b49c9db443198a69c3094632109bddf59d81c11760fb94de5f7Virustotal results 33.33%Heodo
2020-09-15dat-20200916.docdoc 36cc514722804312a8769b90cd872196aca9060ba19f2122af1ef9230e9e7850Virustotal results 32.20%Heodo
2020-09-15UQ61922_2020_09_16.docdoc 398b03590995c96a56a346f9882b22caa5fdbd4d9606402c7a6f4bc3675326e1Virustotal results 30.51%Heodo
2020-09-15ARC_INI4889.docdoc d0fba2b098ff90a78440a38e84734c679208cd2f44396b653f818b1e6618c829Virustotal results 31.03%Heodo
2020-09-15DAT_20200916_K947904.docdoc 29dbb3c580d6d972886fad68fb1a0025424d1315e237fed9957560fc814ef283Virustotal results 30.51%Heodo
2020-09-15Mes_2020_09_16_T34832.docdoc 93aa4293c0388fba11d747a570da8fa7b23eab1b86664c511cf204e65bd05cb8Virustotal results 28.81%Heodo
2020-09-15Arc 2020_09_16.docdoc 79072ee92448d21af7333e10da35c4ad37c862ddadd4d11e9744f5ac2f41fa2eVirustotal results 27.12%Heodo
2020-09-15mes 20200916 133284.docdoc 02584dda37c3994209fc1ca37938f0f8dfd514098ff040411d4b892333d7e8c7n/aHeodo
2020-09-15mes_20200915.docdoc d8a95a637b66134b8b8f3dd1352f5ade415775fdbaf1c398300c9ae34635b068Virustotal results 32.20%Heodo
2020-09-15File 20200915 419929.docdoc 46b505ec3ab5e99510427ccb7e0658520124ad02797627777babb13d78defa75Virustotal results 32.20%Heodo
2020-09-15dat 20200915 56630.docdoc 274f13329cca9961d94401ed1889e8881b602f93f83ede6f82a1e95a4fee59a5Virustotal results 32.20%Heodo
2020-09-15Inf-2020_09_15-12011.docdoc dbab1d04f6be43ab157f7d77850e5ce737f83222c7e3c2fe5f468c27abc8e67bVirustotal results 32.76%Heodo
2020-09-15LIST_20200915_GNC5538.docdoc bf20b1d165f7e18ddfe016df314d1649ac8d3a6103341e17d22497cb239e03f7Virustotal results 32.20%Heodo
2020-09-15REP-20200915.docdoc 73184ff3bd237911914b6bb6d55791bc76cbeba33b5abe8dd2be566fb6eec3a3Virustotal results 32.20%Heodo
2020-09-15File_2020_09_15_VD4337.docdoc 25022fdedad55927f5a438cc3e58e0442c0343393954f18dcf8b8b35cc062aa3Virustotal results 31.03%Heodo
2020-09-15FN79036-20200915-812560.docdoc 7dc1af0f8b1add8e2a7b43e7a132612a4f4b48c1392bc42641c1e048a921c9b4Virustotal results 27.59%Heodo
2020-09-15ARC-440.docdoc 0d2d39b11b4010d9154e36d6238617c4b6aed3b8086c3a10e549a1db1c16875fn/aHeodo
2020-09-15MES_674516.docdoc 70eb8ac5323060739e335c4e5f43f4579c45b6bd2f9d79593a62a05075cb4dc3Virustotal results 26.67% Heodo
2020-09-15rep 2020_09_15 5663909.docdoc 61b277c90703979b6f26776e18cad637717fb7113ec8fbb277a329621665cfc6Virustotal results 27.12%Heodo
2020-09-15Mes 2020_09_15 6357903.docdoc 02a317ec58094969571a5ff198144a81dfb60daed60f646565d4281f9a268ca9Virustotal results 25.86%Heodo
2020-09-15Rep O90420.docdoc ca8d28ed383c1c8fd9ec5f80a3b8554ece5bc52ffad7b7fc3b29d8e1ba5b2188Virustotal results 23.73%Heodo
2020-09-15Untitled 20200915 VIE6481.docdoc dd0d1ff40b878899771c3f32dd9714650e45bfc61774325a67e7ce9a72832d12Virustotal results 24.14%Heodo
2020-09-15List 2020_09_15 AI1788.docdoc 43cc769c9e7ba0210e0a9c3b22707a1500245a04efb7e3d1faa76536bafba217n/aHeodo
2020-09-15Untitled_2020_09_15_FOY800698.docdoc e717b01414c10e7c54dc415c20172bc9f9f7985199de7f44da2a21274d95e97en/aHeodo
2020-09-15Inf_6537.docdoc bab404a66237f3796ffc9047bdac95d69e90bc166e8c2838affdd13e0efae9e7Virustotal results 47.46%Heodo
2020-09-15File_20200915_YI617.docdoc 722daad4788110079385f9dcb18317099000ff8ce70664dab44c0895dd127083Virustotal results 45.76%Heodo
2020-09-15inf_2020_09_15_06457.docdoc 0b92085e3fef4b9cb196fb9a8e9bf64d4eb8664184ea2bdf46132abfa7f72a3fVirustotal results 38.98%Heodo
2020-09-1554295T-20200915.docdoc 553b1e42c9c159fb9b2f5f6c1c0bde19887f9e9ba813fc442c7a253179fbeaccn/aHeodo
2020-09-15LIST 2020_09_15.docdoc 0fd1ea9df6c248cc1ef6ac65fc534db5ffb946cd912f8199503dd93fecbda5c0Virustotal results 39.66%Heodo
2020-09-1553306189 2020_09_15 5098345.docdoc 0e56a212452f8382cc59f8ea56838b188802b56853a868f03a610e633095cda6n/aHeodo
2020-09-15rep-20200915.docdoc 51094837ff8bb5661a0ec1aee1d0552440223687242364d143a91011e48dcd92Virustotal results 38.98%Heodo
2020-09-14arc_2020_09_15_H19107.docdoc 3797086d291ee004f0fca9dab3efca616b89626f0f0f01ea2db082c63d67d68dVirustotal results 40.35%Heodo
2020-09-14Dat-20200915-Q847602.docdoc 659eee918658caf613efe868209fc51ff054b39f70d699c5474e5f6ad4684d76Virustotal results 37.29% Heodo
2020-09-14INF 20200915 9412.docdoc 70f8b76003bc7406cb62c86ea3ff4e8437cb4366b7178f64ab4a530a0f4e5522Virustotal results 35.09%Heodo
2020-09-14963164-20200915-550499.docdoc b842862b97e1bb3bf480e0edfa445124eb165f8b8c6208cdc3b40a25acd5c103Virustotal results 33.90%Heodo
2020-09-14FILE_20200915_WH374964.docdoc a3a4f5d06a54aa6e83e1cbb72c3f5d88950eb21fbf597d45bfb817fad8282f4bn/aHeodo
2020-09-14Arc-20200915-BYZ286.docdoc a0fbbf6d90db762b113e5a37d79d574800eecd5ee6ae058b260917eaa521d62bVirustotal results 31.03% Heodo
2020-09-14Rep_20200915_Q140.docdoc 8723e64c68be3ce648bd220682c41b6181cc4de4ec62e97eef68bb2f17bcc0d0n/aHeodo
2020-09-14Attachment 007458.docdoc 8fd0c8e90eddeed6cb311d1fb176df14030684631cf580947e1e463f4c43d309Virustotal results 27.59%Heodo
2020-09-14LIST-20200915-4087.docdoc d5aa2a528823144775fd403bccc5cab65060e36da8a9ce8d9ce89e114e777067Virustotal results 25.42%Heodo
2020-09-1473407 20200914 118.docdoc 02c4c42898f589ca4b8505a9b02bf394ca4d4e2ddc375083c8b40342875a5bdfVirustotal results 25.42%Heodo
2020-09-14LIST-Y9401.docdoc 6182d411be0d9307e20cc25cf002ae1e861bf4d635a354004699f3e4cb916c34n/aHeodo
2020-09-14Attachments_2020_09_14_24171.docdoc e19f52d6246db0ae5f93070cb8a46e181dd728792ee97433b861a86c5c2d05c6Virustotal results 25.42% Heodo
2020-09-14List 20200914 N456797.docdoc fe0adfcbe96e41a03d65dd47514b5db3b216690ca8d3c1680a913e6927e27195Virustotal results 25.42%Heodo
2020-09-14DAT_2020_09_14_NH135.docdoc d56f5d0a5b2da4fe33822477a8b491f2f80616acb779be2f6632a43119d34ec6n/a Heodo
2020-09-14Attachment 37438.docdoc d01054cbeb1b74004b1711e8cca1bb9c162c86117e09a0e4110ac90bd1848809Virustotal results 25.42%Heodo