URLhaus Database

You are currently viewing the URLhaus database entry for http://crdu.shmu.ac.ir/wp-content/Sep2018/En_us/Service-Invoice which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	51634
URL:	http://crdu.shmu.ac.ir/wp-content/Sep2018/En_us/Service-Invoice
URL Status:	Offline
Host:	crdu.shmu.ac.ir
Date added:	2018-09-04 23:26:35 UTC
Last online:	2018-09-12 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	unixronin
Abuse complaint sent (?):	Yes (2018-09-07 11:46:28 UTC to abuse{at}uznet[dot]ir)
Takedown time:	4 days, 18 hours, 34 minutes (down since 2018-09-12 06:21:08 UTC)
Tags:	doc emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2018-09-06	Invoice # 93F11450.doc	doc	f9d812532014170f0edb4197795632073b14f62eb2fbad89fb3f6c5a01474b54	n/a	Heodo
2018-09-06	Invoice.doc	doc	2a255834d890d8c82125c3701f929fbedabe2093c81e604d53621b83de0c509c	26.23%	Heodo
2018-09-06	Review invoice required.doc	doc	2a3de196bcf5a1a6c0388a0549a23abbf9ce1861e4089ef0d352883c8c3e56f1	26.23%	Heodo
2018-09-06	Invoice # 6D58268.doc	doc	67e29bcae543f0e2ecd958afa8015ac6b72d3ebc7be13f1450dec2bcc757653c	n/a	Heodo
2018-09-06	Invoice # 2WD19592.doc	doc	58159af5dd02c6ad0409c44f2e5857c61f56434a0ad805da154671739375cf8f	n/a	Heodo
2018-09-06	Review invoice required.doc	doc	3674df1d3b0a673b80a50f176d5fb241d5ed82675be0dbd6acf7a5fdaec4edab	27.87%	Heodo
2018-09-06	Inv. no. 850RT517228.doc	doc	1ad60397502466a4d9d0bcf79f2307464342b926141a3b9ca38d5d2ece216a21	27.87%	Heodo
2018-09-06	Invoice.doc	doc	4203da09b117b21f0c758378fb9839260b17872351de0a90a270027d0c15d76b	n/a	Heodo
2018-09-06	Outstanding invoice.doc	doc	e8adc207df1a47dbc8fecb66c303437146bfc44b0d3f3822f8b3d3c35573de6e	54.24%	Heodo
2018-09-06	Final notice.doc	doc	10b15f27ea2171d08ce96fa1ca590fe3087b5af324582fefa333240051580f7e	50.82%	Heodo
2018-09-06	Invoice.doc	doc	1be0616a59db3aac71a93a4b2197cbb51e0711a533d1fd585435fbad9d916375	47.83%	Heodo
2018-09-06	Outstanding invoice.doc	doc	4418c312da2426e8efd480434168c95427f3853e2c9f41f326c1412370ff431a	46.67%	Heodo
2018-09-06	Statement as at 06.09.2018.doc	doc	96b60ded9ee0e8bd55ec5d1b4c34f3e0eea61e0bbaa8fcf193fa6a511d6616b4	46.67%	Heodo
2018-09-06	Statement as at 06.09.2018.doc	doc	c0b8bd18ebe466754287750a2c21807e2f1438c32902df92490a84d71d5b772b	44.26%	Heodo
2018-09-06	Invoice as at 06/09/2018.doc	doc	e5189a5ae04977c103a33e27522c37ea3401c8a00f8f2c561bc8109444b0cd9a	47.46%	Heodo
2018-09-06	Billing Invoice - Job # 3310653.doc	doc	1c7ac3f0f213a6628455433131b5673c84746fb55b37036642d381d3333708be	n/a	Heodo
2018-09-06	Invoice.doc	doc	3b481406e54ebcb7fce8636eccb681945384a9112cb90cf7f53dc73fee904821	47.54%	Heodo
2018-09-05	Invoice as at 06/09/2018.doc	doc	20b9108674f61c9c77765f5c63ae759185eb5af223570f84e4394e7d7e74b620	45.76%	Heodo
2018-09-05	Outstanding invoice.doc	doc	dd37edcd061cec244bc6abdc3d9618fddc5c875659daee1b6fd81c201e81b492	45.00%	Heodo
2018-09-05	Review invoice required.doc	doc	2a51c5beb1217d58a521aa2a94a1e90119071880d23105d3c33f17d5d4628ea7	36.67%	Heodo
2018-09-05	Accounts - Invoice.doc	doc	69958a4a14dae0727e7ed6dad4f186aea9016567a21444ae9514773ee451de9c	n/a	Heodo
2018-09-05	Month notice.doc	doc	f833a2e863302e5d6475616cceec0a722d5dea6e72414622c34b7c3ae1790920	n/a	Heodo
2018-09-05	Invoice Query.doc	doc	428904f2720ba3faeda8b1573850b0ab6007286b6384fa7daa20cd078ff94b9e	n/a	Heodo
2018-09-05	Latest invoice - 926598.doc	doc	eb4e0db25ffe298103a4545da1ea4a7baaa4f682b0423514750cdc7be12be2e1	31.15%	Heodo
2018-09-05	Invoice # 14S70561.doc	doc	3f6a4518759a1937a8f01b4be9c6ea2213767e4beb208efa5c6e9462e95ca8fe	32.79%	Heodo
2018-09-05	Month notice.doc	doc	41a7ef5cc5ad4b4ba9203ae229ed26ad4a4844710804dd5f11874133553e1d46	31.15%	Heodo
2018-09-05	Final notice.doc	doc	46d81e2fd19c2c3cfc9f8562967f2eeef71159d9819db16dbe9dfabb195b8d97	44.26%	Heodo
2018-09-05	Invoice.doc	doc	16d2a4c6c5f94697fcfa589f451cb7c7c463f1e24916fd75fac15f4a2768c6fa	37.70%	Heodo
2018-09-04	Latest invoice - 617876.doc	doc	109e078fde005b6a6f7f9c691169bc215c094316992c46f1dd9a6b6e27d69348	34.43%	Heodo