URLhaus Database

You are currently viewing the URLhaus database entry for https://www.lunalysis.com/wordpress/LLC/PoyGd4PVXJ2/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:546100
URL: https://www.lunalysis.com/wordpress/LLC/PoyGd4PVXJ2/
URL Status:Offline
Host: www.lunalysis.com
Date added:2020-09-17 15:21:34 UTC
Last online:2020-09-18 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-17 15:22:29 UTC to abuse{at}ptd[dot]net)
Takedown time:23 hours, 48 minutes Good (down since 2020-09-18 15:10:33 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-18UNTITLED_2020_09_18_1541.docdoc 47dd03d21da43926252b2684001feb039dbea83bcc5753aae3d30f193a799ed2n/aHeodo
2020-09-1840741_20200918_ZUF3523.docdoc cc0f522275048b3b4279cee69baf8e05dae990c9063726ca6f1046e9b881bb7en/aHeodo
2020-09-18File 20200918 XJ7981.docdoc 44fc387cc55c1a2b5fc409d86cef0344a9015e93f8bf7ec6f4095485281bbf88Virustotal results 18.97%Heodo
2020-09-18MES_2020_09_18_D3617.docdoc 19147bf00c478f62beea73090f1790a35aac1d8769bd6eea4c9e69488a4f283eVirustotal results 20.34%Heodo
2020-09-18DAT_20200918_IIZ733913.docdoc 1124cec9996bce15f2c44d62cc624b00c3f2986dc98a88741048f868472ddf27n/aHeodo
2020-09-18MES-20200918-878221.docdoc 7ea8a1c6a1c4f2aeb6aa23ca6a072593db27e100b923c825538f3049e8f2972bn/aHeodo
2020-09-18doc_958202.docdoc 41b56895d7750e19dc5f91eae36162bd717f4f1b7ec054e948d3c236ccec23d4n/aHeodo
2020-09-18Untitled_2020_09_18_3244.docdoc 82e331bd54e99b710c3f3446239c18c0ac59e4b668cfcc1b78c1d4217173f865Virustotal results 23.73%Heodo
2020-09-18ON384 58063.docdoc 5c19e85599dfe9113b66fc72eabb81a8b793504e756111fcf93ee17b572698f3Virustotal results 23.73%Heodo
2020-09-186450385 20200918 OY751578.docdoc 48ac9d4cbe603c96770da6fe47ffaf9f077de0eeba0afe7a94c1158cdc4e2c49Virustotal results 23.73%Heodo
2020-09-18414476 NVG731.docdoc 18db8bcb527056d84b100bcad7cf01a5b5f85ab4bfc235ad1bf54c7ace185c84Virustotal results 20.34%Heodo
2020-09-18LIST-20200918.docdoc 6e9fc3559e42b8f89e02f650d056188acceaf34fbe3737cc98a6b4a3b5d560d9n/aHeodo
2020-09-18doc_2020_09_18.docdoc 8a71a31b415de755bdbbbb231e79978f70d94b2a8bed5f73dad5fcff6f735b16Virustotal results 17.86%Heodo
2020-09-18Mes 2020_09_18 AIR4487.docdoc c8e971366664091a1da76bd55064f569cddef2d7221213dcf4f0f33c0e988e6bVirustotal results 18.64%Heodo
2020-09-18LIST_2020_09_18.docdoc 23cbfb675b38359788fb1f2ea9602ba6ad72c26ca1765dfe3c24d4c61b2e21e4Virustotal results 19.30%Heodo
2020-09-18Inf 041.docdoc 362a718928b2b43bacbe7c6f39e2e7dc6b4b2330e554949fe2eef2fda60ee632Virustotal results 18.64%Heodo
2020-09-1847335G-20200918-06868.docdoc 4f3d22c52b1b34560307bf95b348de9d6cfb59a23d6e3156d934f45e5e6a5e0dn/aHeodo
2020-09-18Mes-463881.docdoc 9dc810c0e94b657b92a14013ab5effbedb791c6d9bd8addf3cfd176fc1ea7874n/aHeodo
2020-09-18arc-2020_09_18-AN2580.docdoc c56f2412e4759fb07fcfaf0e3b30f041c10a86d3514f2e812844f42c23016248n/aHeodo
2020-09-18MES_3571059.docdoc cdbddc6e344dca0161e590649d5937d6271bd7c6fd53cdfac8ac5f235b4b2ad0Virustotal results 18.64%Heodo
2020-09-18Arc-302.docdoc 1451a6f5cec836396725062e85afd50a7fa34abb6d99cf0ab08af0e765610345n/aHeodo
2020-09-18LIST-2020_09_18-N176.docdoc f6d20fe1029cfc1d45c851270e67615554369e87500d3b2337a878c6346b2481n/aHeodo
2020-09-18Inf_H4377.docdoc f7e1fe4839c50d856348e43ae96317d626904298293e3a0c3c4c1f8934847e58Virustotal results 50.00%Heodo
2020-09-18dat 20200918 17255.docdoc ee557edbc49aa2b3e356e776e4ce00dfd865a95968678856d0d1252d58a7c600n/aHeodo
2020-09-1849293345_2020_09_18_09849.docdoc b2f4fe15d94caf88194505573376786dac796dedf0272c7f339e4c0455ff7abcVirustotal results 49.15%Heodo
2020-09-18Dat_215190.docdoc 0df431c411b6f60ead1ff2fdea0f2d4d694e639e4abe69a078792118997f8a84n/aHeodo
2020-09-18Dat_20200918_60228.docdoc 2a4e902462327eea660cd484d54617960e688bd970e891f9de176f2564e1196fn/aHeodo
2020-09-18Rep-20200918-OH0565.docdoc dca5c450c7d663b7ddd8657472fba6593c71ce0a7d7bff9eb98f72a5bcd57228n/aHeodo
2020-09-18mes 555382.docdoc 6ea3f35c72f4386c51886db2f95d4c8158c9cc46d4852b02d4d12301c9ee6a8cn/aHeodo
2020-09-18Rep-D120261.docdoc 23b73b6d7e3d2266bcf0c20586d750bae5d4b3e873447a95e582df8e1d31f945n/aHeodo
2020-09-18Rep_20200918_820069.docdoc 96d436517f2e35248a049283382d963b8924ec0a569f93a093838f1cce8e3708Virustotal results 41.38%Heodo
2020-09-18Inf-2020_09_18-J433.docdoc 1cba542ea755572052ee0ee05629e5f1a0b3161fc11106ad6e2679fc5ee2a6f4n/aHeodo
2020-09-18inf 2020_09_18 V384.docdoc a4f620f140f63dd60825bc9ae8c9ddc6eb6b639b6022d2d014661b008c409932n/aHeodo
2020-09-18inf-2020_09_18-5534.docdoc f6255c1d9d5c191c0265b5b1fbca564c2a9f38fd1e93cb25ebf3073f0e560e29n/aHeodo
2020-09-18DAT-2020_09_18-8458.docdoc ba2672913493f1b112bd60bf5b2a277361c1ae2122c208c3ce55e55f14da909bn/aHeodo
2020-09-18DAT_2020_09_18_CF268.docdoc ee7f615648104a41d003de9bf9567f5473569322da47d33def380dbda210864en/aHeodo
2020-09-187761QYR_20200918_70954.docdoc be065218e692a53d74321795262f984c695178e5735c063069ba03c4ce3a4388Virustotal results 37.29%Heodo
2020-09-18doc 2020_09_18 665082.docdoc 5408fc0375d93c087881cc171b925203fc6ff99a1bc78716bb0f2cee15a69c3dn/aHeodo
2020-09-18Inf-20200918-9044990.docdoc 0fa784f6a6eaad808c6f9037d5515f435da8c204edba06b50d4839499bccd481Virustotal results 37.70%Heodo
2020-09-18FILE 98165.docdoc a5dcf96a690cc7c036613316d9003c9f6ee74e66dc2a8ac00502e63f8dfae85fVirustotal results 35.59%Heodo
2020-09-18dat.docdoc 09e50d506aa9487e90283df7675b3f77f2d6ea20c8cfc8df842e34184ecde239n/aHeodo
2020-09-18Untitled_1045367.docdoc 48d9902f9387ffc07af22ed14eaaebb093f37f8f63d4942f0d76744ae6f14f4an/aHeodo
2020-09-18Attachment_20200918_3901.docdoc 562c1a653b94bfc9219306d06089d0621f9f3fd9712476d1e543828e67d1eb83n/aHeodo
2020-09-18arc_20200918_WUE535712.docdoc a8fbe20181a901e4ee77e91e558cb97c24abdf0654a81d254124fc9dbcfce07an/aHeodo
2020-09-18LIST_2020_09_18_416712.docdoc 68a6ee3668a51859a1ccabe683a3d6148c90ec6cab3ed3e4cbf58e3dbfbb5ceen/aHeodo
2020-09-18ARC 2020_09_18 9873.docdoc 5b75b8ef50bfcbbb530308fd7bf20ca6fed376e9e93b36bfffc74d7917457d49Virustotal results 35.09%Heodo
2020-09-17Attachment 640618.docdoc 7e471a0df104975c9e269668322c7a09a6892fc3a375150e2c8b0eef6b7b6f23n/aHeodo
2020-09-17List 20200918 9717872.docdoc a799324029ea75b6b4a71f02bce59d976fd0926ce98d134c071d39e892f1da2fVirustotal results 33.90%Heodo
2020-09-17INF 2020_09_18 GU1135.docdoc ab28cd14d103caa46a2eb88fa54e290c7d1635b66923eba464d7e5039735aa84Virustotal results 35.00%Heodo
2020-09-17Attachments-2020_09_18-77047.docdoc 4570e5d2c1356c0ea7261e02960c106cb8b111ad69a1f6e4c2d312ea21093df4Virustotal results 35.00%Heodo
2020-09-17Rep_20200918_4859936.docdoc 30f10afab18dd84ed7047bb4264d883050129b1daa2f46ddee12db0294b2f980Virustotal results 33.90%Heodo
2020-09-17List-2020_09_18-ZR3962.docdoc cac5c3880b032b19b17c49f22e4a4d6e6a488ea6c3691a06804eee1e6a443d2fn/aHeodo
2020-09-17mes_20200918.docdoc d80641aed13ba5e1b8d4dfc10810d0a6533a51231342b46851f4357025945129Virustotal results 32.76%Heodo
2020-09-17LIST_20200918_319432.docdoc 870799b3476a6ce872411b3d1e21e8358740cb354b311ed828b3f06df775fd6fn/aHeodo
2020-09-17Attachment_8027183.docdoc 1bc4a47d0fe2369993ff6f11e93075f7e441de5d443e88719a9787c43f6a277aVirustotal results 31.67%Heodo
2020-09-17INF-VZV932.docdoc 7a7facaf5ee1b9709ccc3bb2b8188ee0307b2a7be7e97cead7fdb9c02d232752n/aHeodo
2020-09-17File-2020_09_17-3938.docdoc a377ed127b85562841cd03c0cc1683ab40bf96b9b76cbdae3f968b8359048035n/aHeodo
2020-09-17Inf-867.docdoc ba17dc966ace3c24c249c07b81a95a7036417b57f1ea1bfaa5e089974be42f06Virustotal results 32.20%Heodo
2020-09-17561PMN_2020_09_17_521729.docdoc 574db1c62256215b56267056b7bc75607ebdeb37723630387dbf141b2567ae13Virustotal results 32.76%Heodo
2020-09-17Rep-20200917-82613.docdoc ee3d9beddb37d34ac9153c4bf717005b5922b64eafc401378621594713ec5bddVirustotal results 33.33%Heodo
2020-09-17Attachment 2020_09_17.docdoc fe35529da45302e22bede02816c935c3c7a15bd8840583fdac2c080f12f9fc83Virustotal results 35.59%Heodo
2020-09-17Rep-20200917-W0275.docdoc 45bb15541bf4fa50e30998433c6dd5e214bc778d31cad277d3078cf443fafc59n/aHeodo
2020-09-17inf 20200917 9210.docdoc 58f089f35ab451b3970293989462d60ffff53a9e2eb17d9c8d136af5e9b5faefVirustotal results 35.59%Heodo
2020-09-17doc 20200917 80008.docdoc 7b1c371b484f9023040b2c33f3dc93e9269363924eaa089bef3e4f734362ccf2n/aHeodo
2020-09-17Doc_2020_09_17_ZD2427.docdoc 4f623e4423ce4204a70d67ba54ed3d68b8dc279e8bb84f41e463b4bcf4f949acVirustotal results 36.21%Heodo
2020-09-17Dat 2020_09_17.docdoc 2490b8c9dacc66d7513a5439fc5f4665604d784b9840f8236119c5cac1b19bden/aHeodo
2020-09-17inf-2020_09_17-SLN646854.docdoc 353f0f463155f6b75683ef0d34afa369d3c72b75ff3ee326c2075c05d01a2b38n/aHeodo
2020-09-17UNTITLED_20200917.docdoc 3b8e16eb9d20dff14d08f23817f057a90faa798dcdfb228e8cc56299c8ab1f51Virustotal results 33.90%Heodo
2020-09-17mes-20200917-107641.docdoc e8deaa1c4ab1cf3f1b442441387ef5dff0204fbc8090e717e2d9db6c3a55e3a0Virustotal results 33.33%Heodo
2020-09-17Untitled_20200917_G330774.docdoc ed29661ad4236e52dc3578c4b2fc5a3c448c9d7a51a343cdb6f3c6ab29e0eb4fVirustotal results 30.00%Heodo
2020-09-17doc_2020_09_17_W3855.docdoc e696507a6a8bc034da78b0504f248b60a7f30588f68d5c4bd157b63f0522678dVirustotal results 31.03%Heodo
2020-09-17REP_20200917_NM037323.docdoc 680c553827c6408a1ed529ec9c4e492f757deb6f7c798627a6119998c81e0f89n/aHeodo
2020-09-17FILE_20200917_ZTM22701.docdoc f3b8ff61ea17946cef98f45d9cc0d8a2040fd8786b423f4263667aa81730e644n/aHeodo
2020-09-17ARC_2020_09_17_V7220.docdoc bb9d0e9047a36016202046098d19b5d610686d981482a95ddd10c3ff06bbd3d5n/aHeodo