URLhaus Database

You are currently viewing the URLhaus database entry for http://yangmassage.net/cgi-bin/982850338/mwfi6kc/gvq72605637911321xattleoiwh5m3iwq3j5nkg0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:505668
URL: http://yangmassage.net/cgi-bin/982850338/mwfi6kc/gvq72605637911321xattleoiwh5m3iwq3j5nkg0/
URL Status:Offline
Host: yangmassage.net
Date added:2020-09-15 00:44:04 UTC
Last online:2020-09-16 02:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-15 00:46:36 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:1 day, 2 hours, 8 minutes Poor (down since 2020-09-16 02:54:37 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16REP_93692852.docdoc 62e524640c69b21b31ec9e23b8284a1efe8fd3d200d987a0743df849318245e9Virustotal results 23.21%Heodo
2020-09-16INV_ITH_090120_VOZ_091620.docdoc b08ba532b43fe11e03765134c030e9f47fcd626ebc014e8b2d1d3cf4cd7f1074Virustotal results 25.00%Heodo
2020-09-16LM0705696276WQ.docdoc 507e2356293102846a1fa73ec4869b6f98ecb3ef5b43f4d5261562eae848b613Virustotal results 25.86%Heodo
2020-09-16DHTXGQLS.docdoc d4c8ce2687fd07ab7c3991cab5500c05e719381d7906228371f0457d260ded94Virustotal results 25.42%Heodo
2020-09-16FILE_42479428.docdoc 8803b647321791051baa9ae249b48b03143908965ed583a37b955bf28c6a1c77Virustotal results 25.42%Heodo
2020-09-16PO_09162020EX.docdoc 9a29066aa3490e60be3e563dadcd9f7ef75e6eef752abd1bd40ab5323a57a83eVirustotal results 25.86%Heodo
2020-09-16BWARZT5US.docdoc 5764303dc206274cefe1d8317b60d9cbf0f363db9b2735feb2cab9133b8b8921Virustotal results 25.42%Heodo
2020-09-15SM0368370950OW.docdoc 8869192957c4d226cae4679243a3a7ac5a193866a2e1048e37ca60f29d9af28aVirustotal results 26.32%Heodo
2020-09-15FILE_XO3360698572SI.docdoc 1b3feab547c227fce46787527a728a57b05f236dc7f3be77bade5b9e661017b4Virustotal results 31.58%Heodo
2020-09-15G00F1CS.docdoc 67cb2e599dc74d3e6f8048e4f19b08bb8852579326ae869f8c39fa818ef144bcn/aHeodo
2020-09-1567347457.docdoc 52a5776503722d0ea87fa60009674bdd3ebbd4449ed9328bf502c7ec5c5ac516n/aHeodo
2020-09-15FILE_WGJ_090120_MZL_091620.docdoc ede79cad6b8517c5d9a8ce2fa49a478bf40491b3295b2d348c418589f100e877Virustotal results 27.12%Heodo
2020-09-15RS6893803128FM.docdoc 6f04f539195c899715c54e7cc3db85949143180e021314c0e670e09722d2afacVirustotal results 24.14%Heodo
2020-09-15FILE_EV8510421401HQ.docdoc 7cec88df6a841fbc1251142492e673c8a2cddc58f21d6fd402f8167ee96e194cVirustotal results 25.42%Heodo
2020-09-15DG_95033184375304321739399.docdoc 7ed2061c4e694c21459db2c680fc101f2f2ed9bb6b8b8768a3bfc2b19ca14ef5Virustotal results 25.00%Heodo
2020-09-155QIYE2WJ.docdoc 9656f634b78c149e6a428cb521d7a9ae339fb27e467de4ab2d6131cc7673021aVirustotal results 25.42%Heodo
2020-09-1567489524.docdoc 4d6b056c7bab909b0af3f0a3a24f5b7fbc4453e31746d29c0c3d60122def5705n/aHeodo
2020-09-15FILE_33817180.docdoc 8c88e1e8081c3c1795039fb19de72e17b4e0a72076d49470327bd62bf090909dn/aHeodo
2020-09-15MH8OLNV.docdoc 607bf68103d9158e576beb6c3a4b287bc5f5283c5871075a532d44efa448b9a0Virustotal results 25.86%Heodo
2020-09-15PO_09152020EX.docdoc d4b79b30c6abd6633d513bd08d8b3b9b3de6f0705245b72b3e2ee09e0d03746fn/aHeodo
2020-09-15WF_DJ1422961592GV.docdoc d2939ee7042da0a88a76cc4e60e5a8cfbc83e5b4fad03c547ffb13bb006a2c5fVirustotal results 24.14%Heodo
2020-09-15BAL_66532981.docdoc 629e1a081ae300a6d2f05af5d3062f2b48e11d58f2589a4dc44c4f79c9c32c87n/aHeodo
2020-09-15DOC_PO_09152020EX.docdoc 82c25613755c7a3a9737fe08cbc7fae6d75faa2807218b65d6b5a6dfb1bbff67Virustotal results 32.20%Heodo
2020-09-1555831007.docdoc 2088edeb14b235a68f1d6c36b0f0538fd4850dc4001d21db0a5c147916f8124cVirustotal results 32.20%Heodo
2020-09-15DOC_PO_09152020EX.docdoc ae651bbc1bb9cb216ddeae09b03346aa86c991c00d59ad680a83343eac0d4da2Virustotal results 32.20%Heodo
2020-09-15FILE_94595756.docdoc 81834b464c9d4cf11ffc357df7e18071f8e5d8f62d182e997059da665294a8b2n/aHeodo
2020-09-15FILE_PO_09152020EX.docdoc c8410c8dd820bc1e8805ba93260cd2fb0f7707d75573915bdb97ea2a01b66ea8Virustotal results 30.51%Heodo
2020-09-15REP_87310160.docdoc 06f74948e8415b0a5c18875bf65de75f9f4513e69ebd87c743c91fd8160aafeeVirustotal results 31.03%Heodo
2020-09-15GQXMWRM2OCB.docdoc 82caa6df7c863666c0e05d0b5220c9327d0223159c178a97d69f79a7a271d6bcVirustotal results 30.51%Heodo
2020-09-15G_PO_09152020EX.docdoc f733f45dc6ca4e5dc9d01f6bc3909048c7c04b203738baf9f96b4a5566c16a7eVirustotal results 31.03%Heodo
2020-09-15REP_DW4590339627DL.docdoc ba34bf775daa42ec9022cd46e6fc17cc035d968b15fd48a74a765e88acaec39aVirustotal results 30.51%Heodo
2020-09-15FILE_BII_090120_PPI_091520.docdoc 33163e89d4430eb23360add971fa52651aac6d7f2212ea3bab450dca4eaafff8Virustotal results 31.03%Heodo
2020-09-15BAL_PO_09152020EX.docdoc 7183f98072abf96cb52a8cb67e459b8b465d6c544910b75267689dd7b3db059fn/aHeodo
2020-09-15012872048197199.docdoc 581a442c8f357cd8426973b33a637355147a00fb666148093af07d91c805052eVirustotal results 30.51%Heodo
2020-09-15IPUOQA4F8ZOM4QM9.docdoc 7c71cb958a4a553e134ecba8798f78473999bbf2a378f6f2ba9dbefd509410e8n/aHeodo
2020-09-15INV_LK0836384820GY.docdoc b7ea96d53b3ad1f4a6fd6ca60dfd5a4dcf1808bc7d58791a0d4c08ca5493744bn/aHeodo
2020-09-15DS0400806535TU.docdoc 2698ac28bda60d163fc89497784b84864b53eb25784b30f6ca3fe03ff137b8can/aHeodo
2020-09-15DOC_PO_09152020EX.docdoc fda02bec817e33a0eb6c4f769013fb985dedd41c73e728f9db5d7ff9e76cc93bn/aHeodo
2020-09-15Q_87077673.docdoc 8ad7a5caa6b158c4360d923395c49afde530904dc87113346b3ac80e48eea1b7Virustotal results 28.81%Heodo
2020-09-15BAL_2IOK05Z9H.docdoc 5d4bee6f5bb0d02b980f21c2ae731bd12d5de2e2810058e6098fc888a7cc6f7bVirustotal results 29.31%Heodo
2020-09-15PY8LBKWW896.docdoc 2231867f5f922d40ae930f032654dc95e2966b101a79e3f6a4f86ccc3d46b084Virustotal results 23.21%Heodo
2020-09-15INV_AC8951240990JQ.docdoc ac25deaff3c5f73148b9ab0a424b5f1c7200c74671d6d101da13ce64ef248510Virustotal results 38.98%Heodo
2020-09-15756299351208431997459.docdoc d590291ac7dd3e6a44554bafcd4bf1bafffa63e97ae93a536a420a3378ecec21Virustotal results 30.51%Heodo
2020-09-15REP_PO_09152020EX.docdoc 5c42326192568cbdca87a2ce45c600c464aaf3ca19800654f7195bfd7e5f4e17Virustotal results 33.90%Heodo
2020-09-15FILE_KHR_090120_TEI_091520.docdoc 55602b4029b686a7580b578c217f2d3da2de553e8d41b8630276dd5bcf231ffeVirustotal results 27.12%Heodo
2020-09-15S_33807268.docdoc b397f6734c037272b01c97d7f6272a06a5e6b7853cedf05f5931ec83619964aeVirustotal results 26.32%Heodo
2020-09-15DOC_CI4425367312IW.docdoc 1c71f8ea6feb7151e43dd7a022fed82103545c6e079231fd59df26e00bcdb66bVirustotal results 27.12%Heodo
2020-09-15K_75935576.docdoc 4d0a099b3e1f21ef437d4a8b4670815c3a81575f6a31ada1eed08be37dc3d4daVirustotal results 27.12%Heodo
2020-09-15REP_01284895889.docdoc 9f39d3f8edf0e13fb2226e79b569714a44fe33fcb890f0ed2117bd5522757de2Virustotal results 27.27%Heodo
2020-09-15REP_76732461.docdoc 1503b4d750c4038216dbf35ca8eb7ba7cf9627a646c782ed8caffdcad501e744n/aHeodo
2020-09-15BAL_90014466.docdoc 79ba5a7a70056da57112bee19e3bc8f985e7b22339162bbdefcfb0084f8889ban/aHeodo
2020-09-15PO_09152020EX.docdoc 9558bbbb8facaeebb9539a63e639acd60d8fffdaa69c92c05ceb23e26e61c41bn/aHeodo
2020-09-15KA5444143287CW.docdoc cb6e641825c4b9b3dedb8bca6f5e8759d21a3f5a72cecd7b8fee14075a09e27dVirustotal results 27.59%Heodo
2020-09-15U_78042642.docdoc eb2c2c3e17adfb02fc7bf496cbb8f4b533687d6f39ab07101562628b9b0c292dVirustotal results 26.00%Heodo
2020-09-15FILE_XDQ_090120_DDM_091520.docdoc fd84cc018f4e2b42100c201baf95e05f7b05917104992563c25d0bee49869c89Virustotal results 25.42%Heodo
2020-09-15O_39918527.docdoc 8536392227352e4127485b4c0fe9707a6145b0f1fdbed7802a6f158547d47bbeVirustotal results 24.14%Heodo
2020-09-15M_93569488.docdoc 9d78d1a07b45a1857b883af34f65f5b126d198a6fbe0d0983c41295d5981c1f1Virustotal results 26.32%Heodo
2020-09-15PO_09152020EX.docdoc 1852a661a858fb9f40ba92329b3e26f53159a91cc4b7bd7e38fba14b30ec6af2Virustotal results 25.42%Heodo
2020-09-15REP_PO_09152020EX.docdoc 6e355397335b8c26c9a258ecf85a47174ee5f0d4f331e5207a008393f7386b04n/aHeodo
2020-09-15DOC_RL0221288219IL.docdoc b1cc3c97eed78246587888acbcca3267e18f05af854fe4ef071aa89308e23d01Virustotal results 24.14%Heodo
2020-09-15INV_73813345.docdoc 236be51f0bae301eebcf5d7309e409c919354640d90c5603f794935904c65fe9Virustotal results 23.73%Heodo
2020-09-15W_M2YEN3THR.docdoc b73dcf5bcc44109613bce034ae0e96d9c868d69dfd7e63a7cce706053003c9dfVirustotal results 23.33%Heodo
2020-09-15INV_ECS_090120_OGS_091520.docdoc 24cb7f01e7145bec55d36a8acc1cc1abd754ef76615097aeb792fa5025bc7cd1Virustotal results 25.86%Heodo
2020-09-15PO_09152020EX.docdoc e23b2dcce72f16cdad14d38245feafd10ee07ba8ad722114408b65e21b5e4da3Virustotal results 47.46%Heodo
2020-09-15O_870906335268.docdoc de02d9146a26c11acbc68e2907bd4de495ebdb00f30a30c1293335b3831c2a89Virustotal results 47.46%Heodo
2020-09-15FILE_DV2615411480TS.docdoc 702bb18956c03e76973b7b64978c4b5749dbec33a6029901864814e9f79d0c22Virustotal results 49.12%Heodo
2020-09-15RM5884751732IN.docdoc af1f4de1f933555cb0e3e2e75977b4e12d9602c9f6572fe342b590a54597e7e3n/aHeodo
2020-09-15INV_10952725.docdoc 807bf4c0dd85eea9b4ea5c41fab297064a1a79599cf41ee23eddea254c4f5692n/aHeodo
2020-09-15DOC_93416165.docdoc ac84ed5c10ba6d28038338fbecb049196eb6aaaf01161f686bf9b7d8738908e3Virustotal results 48.33%Heodo
2020-09-15S_PO_09152020EX.docdoc 444edfc514c9e7ddf7d47152ab219ed246f5fa2feacad2d9f98932df0901b406Virustotal results 47.46%Heodo
2020-09-15FR2356063036UX.docdoc 15b496bf68dc5385ebf19054bf7621ebf354cf0c1be1df95e200918da33483fcn/aHeodo
2020-09-15E_N4JPRBLP.docdoc f9eb9efbabe14465fa3bae03210ee86d5a5e16576caa8c5ca3ca298bf3400fean/aHeodo
2020-09-15AMF_090120_ZMG_091520.docdoc b39dbc57e68cf701fad0dedcb81f6851d1241eb91edc91e37894db8d34bea3d5n/aHeodo
2020-09-15DOC_ESM_090120_QYZ_091520.docdoc 2d06e9df223442de56a1d2c312eef4e04e2328c227d40bc1827f8ec0c62a84bfn/aHeodo
2020-09-15PO_09152020EX.docdoc b88899521ee567759e0fac13799c699cba70ecde7b93dffb60872939de858a03n/aHeodo
2020-09-15A_PO_09152020EX.docdoc 37890650f071b7c301479cbd4f380fe1ef2d23e2c60d41c28f357529d2bbc3c5n/aHeodo
2020-09-15FILE_BG8191467640CI.docdoc 3b126dca8990f6cbe0cf6158212a6e62544b8efc0b45226c7f317163d70b60fcVirustotal results 44.07%Heodo
2020-09-15REP_9HA45TOP.docdoc d0dcbde5aede4521f1d0489d388b91bd821e1974f6638e733c3666be52be48c2n/aHeodo
2020-09-15I_98430277.docdoc c6aeaa35f509ebc9ec72cf09b60a5b65360f64329041aa96959044f268dc8e86Virustotal results 32.76%Heodo
2020-09-15REP_ZOX_090120_JZC_091520.docdoc 0e8e9f0192523753cb234c4a8131fbc99d38e59de4a1514fdb89982130f487ccVirustotal results 44.07%Heodo
2020-09-15FILE_717065123631739.docdoc 16ba8cbef4bb41b16e1133b7943f632d19be2f1681c12b57a14d9d5b61ab2603Virustotal results 42.11%Heodo
2020-09-15DOC_GE7208808108LQ.docdoc 44236fdb8ec07c8a77ac57d61c6b810631a70d5195df5dd25347705191cbdfdfVirustotal results 32.76%Heodo
2020-09-1568998670829248597.docdoc de00029610205b79cb29eb6b18eb08b9f3e7841d4866828148b0e8f3b2750c1eVirustotal results 31.03%Heodo
2020-09-15DOC_MIC_090120_TDL_091520.docdoc a4486575da11821fe28dfc285d3e4b93f37d127adc771887dcc7b3eb17c24546Virustotal results 41.38%Heodo
2020-09-15BAL_656954104116978826.docdoc 23adb5a46e285b5dbfc94b24cfba24c796c5ac4ed407661ab8bdc83a007de7a1Virustotal results 39.66%Heodo
2020-09-15C_HJ6757210543ZP.docdoc a0317339838e6999848a008692eb356adc893034fca1c323524533514cff15ecVirustotal results 40.68%Heodo