URLhaus Database

You are currently viewing the URLhaus database entry for https://phongkhamdakhoathanhhoa.vn/cgi-bin/Pages/BOmAHNvOBFMHU9FcU3B/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:546713
URL: https://phongkhamdakhoathanhhoa.vn/cgi-bin/Pages/BOmAHNvOBFMHU9FcU3B/
URL Status:Offline
Host: phongkhamdakhoathanhhoa.vn
Date added:2020-09-17 17:09:07 UTC
Last online:2020-09-19 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-17 17:10:23 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:1 day, 10 hours, 35 minutes Poor (down since 2020-09-19 03:45:55 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-19Untitled.docdoc 4c294575dcf08d7b4946e3d8d883d7a62ab36dd5170bf983df08adf59d7414dcn/aHeodo
2020-09-19Arc 2020_09_19 B519008.docdoc 0b20a73da9e858ca63b3e038817d2cd82a98535eb4ed6c1dbb214e3e066bede2n/aHeodo
2020-09-19Dat_2020_09_19_3684010.docdoc 17b333cc6c291651161d6bab9f62df4f89a31b13b8b8db8722c6e6d069d1bc30Virustotal results 22.81%Heodo
2020-09-1989367ZXJ_2020_09_19_U45048.docdoc 1f4636599b3de756ee92e6c14346ceabf27b76d2b45abe64d1d9f48f0e4c3bf9Virustotal results 22.03%Heodo
2020-09-19mes-20200919.docdoc 12184c3b864ed546a8c1c0b94d18631228a2cd6caa38e1d6c332c113d327f21bn/aHeodo
2020-09-19mes_P537.docdoc e4873536ba7b163dc9a87dd2dc7d447b502e63eaaebf88fcf4635d423772db47Virustotal results 22.03%Heodo
2020-09-19ARC_20200919_0997822.docdoc 57335ffb483da81d9154676109daceab8f15e679af95fe3d0313f09d70619d85Virustotal results 22.41%Heodo
2020-09-19doc.docdoc 0b58ba1859d47221ab95122240157d9d4bc885723fb94b700f1c36cb28edf3c6Virustotal results 22.03%Heodo
2020-09-19Inf_2020_09_19.docdoc d0b4b470d5e523a36a9751cec3eb8c5e1fae85904ab8637b745f1aebea3aa8cdVirustotal results 22.41%Heodo
2020-09-18File 20200919 2114.docdoc 3eb7679ffcb5eb0cd537545d2e28ad49fdb4bc89366476f731659703b6707ff5n/aHeodo
2020-09-18Untitled-20200919-7639.docdoc 9cfbd2b1385991e74144b32795611bff463960304a0bac67116378ec94caf271Virustotal results 22.03%Heodo
2020-09-18dat_20200919_62648.docdoc c23cc89488404b578a22052d1d946ea0e421961bb77a5c4b002d890506c2aba6Virustotal results 22.41%Heodo
2020-09-18UNTITLED 20200919 XD866727.docdoc f0e6815411621dc6ccb4ca55c8c1ceba4ed59cc0f64b6884f0d93d49f9493bb5Virustotal results 22.41%Heodo
2020-09-18ARC X119543.docdoc 9ad2fe8f74ea62256c9ad4c199d69c91b8c76f9a605cb5c038fcbec9d0e85054Virustotal results 22.41%Heodo
2020-09-18REP 20200919 CS773.docdoc 52ec22303a14b98735b2056a66731212dbd583c099eca26f8a12fcebc1724760Virustotal results 22.41%Heodo
2020-09-18Doc_7768.docdoc 5dcb34b82840165da4c8d3f693522093656d8731ab6ffade09c8f5d2b8376408Virustotal results 23.73%Heodo
2020-09-18Doc 20200919 2503998.docdoc 7234cb8db24e20ba0abe1fb9f9a177573e1e83122a6f3b8debd45e34b67a7775n/aHeodo
2020-09-18mes U6953.docdoc 94d5445a36c1741b9e7cf1a4a3d93f84511094b007a15afa0da3f586cf405132Virustotal results 27.12%Heodo
2020-09-18File 233321.docdoc 6c10c2ec829e5c74174f1c3237f44a6aaee6d53c6fa9eaec16e8caeacc3a8b9bn/aHeodo
2020-09-1833167DKT 584.docdoc 6582b37fd7a1c9ef797e7f6db679df941000a9f14475cff833abe8d4b78e51f7n/aHeodo
2020-09-18LIST_20200918_2489.docdoc f8a679c8dd6ae3c69e27a43a59ad55018d6e6ea9d4a7107431420e91747e0be0n/aHeodo
2020-09-18INF 2331508.docdoc 1e68ebd904cacf30d35734935dc212a7484e063e1a3519783249d890572a19ecVirustotal results 30.51%Heodo
2020-09-18List-641.docdoc 25c51061c2d3618e6fe43b51487ff7abad46d648b8d3b9661d757ab481a3a4f4Virustotal results 25.86%Heodo
2020-09-18file_20200918_968.docdoc d11e0d61ffbe21f3332d5c924ca98eb451fcdeb3f1b732a43f3fbaf00360b103n/aHeodo
2020-09-18Doc P238683.docdoc 29ac650dff5b8f0112208661787f71aee27ef4057505b5cbf826c939915a7843Virustotal results 25.42%Heodo
2020-09-18DAT JFB0774.docdoc 59be634c99d32cc1d2bdfc3663c81ef4a20e38bfb841fb02cf3152233aa9f7b2Virustotal results 25.86%Heodo
2020-09-18Inf_20200918_BKS5433.docdoc 07b5c8867dfd8461d140a439bce35285a61af1eab432f8a79a9880a37bc63d85n/aHeodo
2020-09-18List-0643.docdoc 437dab8ba10eb91c00d79f3019265d85eeec7dcd944ee86186a542f24a31b596Virustotal results 25.42%Heodo
2020-09-18ARC-2020_09_18-UJO588781.docdoc cf337ac21b1dbe1439ccc8e3c14b127de51485ce28d8602826284d8c0516d7dan/aHeodo
2020-09-18FILE_2020_09_18.docdoc 2e08d4af746ba90b49a8af24bca94ae3e15bbbe98b5550b32046ef49208ba1bbVirustotal results 25.86%Heodo
2020-09-18arc.docdoc bd489be4b4636b4c0b9c2d7749b084fa534ec31195744d5b02e9d073925dd44dn/aHeodo
2020-09-18Mes-7808.docdoc be86b5ea3c48b9d43e811f922b79b52f338279ead7c969ea4a290783d408eebbn/aHeodo
2020-09-18Doc 2020_09_18 049416.docdoc b4d8b63b7237791e55859b2b8382e359ddc8584ebc6e5d4227e371944d48e8e8Virustotal results 25.42%Heodo
2020-09-18inf-20200918-372899.docdoc aacc5c8bd9de7daa3bfb0a533fd26684d6958f57a94d96375aaba9f758353053Virustotal results 23.73%Heodo
2020-09-18ARC 2020_09_18 25494.docdoc f4996a12b80380877e3731ec895564a9b29f8bc236affcca4edfec6ac84b0eddn/aHeodo
2020-09-184551GL_20200918_190.docdoc 15516d337875587c5b3c679d8c166d4e00d5da295727956ddb935e5972ab2aa1n/aHeodo
2020-09-18doc_20200918.docdoc 34641ff2a1fcb443dd5ea8990accecd6e3888c6054c887697c1bc99581c794ccn/aHeodo
2020-09-18ARC_LX850.docdoc 329518d24afcd99e1be7e1477959386d2d882707c5056693cb7b7aaae8b3d75an/aHeodo
2020-09-18ARC-580.docdoc a4e9fa7e865e2c2bae3abbd6d249ecc57198eb070b868ff767ac9220fd806efdn/aHeodo
2020-09-18List 2020_09_18.docdoc 926646a1836f587ca813319f3add693a168a273ba2e60e58283cb000d9ac3b6dn/aHeodo
2020-09-18Mes-2020_09_18-LNY759452.docdoc a980ad21eced39ab6179666648e571be61547ca21fc8dfca1d016158af5036c8Virustotal results 21.05%Heodo
2020-09-18S9778_20200918_AD323347.docdoc 41b56895d7750e19dc5f91eae36162bd717f4f1b7ec054e948d3c236ccec23d4Virustotal results 24.56%Heodo
2020-09-18HXA2252-1335304.docdoc 36919712f986c81feab840bee68faa72d3c7d9ba61a8cfd186b6b1b1190f3277n/aHeodo
2020-09-18INF 20200918.docdoc 5c19e85599dfe9113b66fc72eabb81a8b793504e756111fcf93ee17b572698f3Virustotal results 23.73%Heodo
2020-09-189690868 2020_09_18 VX447.docdoc 17f760ab9c9e275f8937d2a2c6d07db6950660d64fe6f05996909f358d172fedn/aHeodo
2020-09-18DAT-20200918-WZV33992.docdoc 18db8bcb527056d84b100bcad7cf01a5b5f85ab4bfc235ad1bf54c7ace185c84Virustotal results 20.34%Heodo
2020-09-1865878-579043.docdoc 1977a3adfe1c4cabbf2555c097598719ac5955e1300726f0af8a4834ea9d2335Virustotal results 20.34%Heodo
2020-09-18389-20200918-738.docdoc 16d16c19afc038d847158afb27766eb624e2d095168da4fd3ddd985c9554d119Virustotal results 20.34%Heodo
2020-09-18inf_20200918_399.docdoc 6c9c0682b5474b6cb1e3f3784a90c0b2e62f8594aa9ad25a2616ad05adf0a302n/aHeodo
2020-09-18doc-20200918-Y736.docdoc 23cbfb675b38359788fb1f2ea9602ba6ad72c26ca1765dfe3c24d4c61b2e21e4Virustotal results 18.64%Heodo
2020-09-18INF.docdoc e1203e7b58681aee0876eaf804daf413ef6529d8ebeeb71c75cf7eca1afb853fn/aHeodo
2020-09-18Untitled-20200918.docdoc 4f3d22c52b1b34560307bf95b348de9d6cfb59a23d6e3156d934f45e5e6a5e0dn/aHeodo
2020-09-18inf-2020_09_18-B052.docdoc 17a69b1fbc9455bd28f59830de156396f05d316f5a763dc30d20a72a81995b83Virustotal results 18.64%Heodo
2020-09-18Inf_06339.docdoc 8bbd95bf430fd81a07c1d7a4da8c52f11723d9377d058fa0d6fe565a94a81cfan/aHeodo
2020-09-18file_G773.docdoc cdbddc6e344dca0161e590649d5937d6271bd7c6fd53cdfac8ac5f235b4b2ad0n/aHeodo
2020-09-18arc 2020_09_18 OGP15160.docdoc 7e1aa0e9d97274ba63cbfedc8a3138d9b84396440f5313d513aca4c424a12f96Virustotal results 18.64%Heodo
2020-09-18Attachments-TP532432.docdoc 8cc271a3c843d86d10e06a206bdb54c29e0879fb671d22d8eacee4b90ce21f38Virustotal results 18.64%Heodo
2020-09-1834545_20200918_6471474.docdoc 279d2ffef26dd65fe6e5f9340f1f68b1ee8613a2b580b94cd1817d0f236502daVirustotal results 49.15%Heodo
2020-09-18List-EMB05488.docdoc ee557edbc49aa2b3e356e776e4ce00dfd865a95968678856d0d1252d58a7c600n/aHeodo
2020-09-18880563 20200918 NLP632519.docdoc 08351527dc3368afc69b9bf7060a8f5346c318f56212006abec92f731070d67dn/aHeodo
2020-09-18REP_20200918_1935.docdoc 0df431c411b6f60ead1ff2fdea0f2d4d694e639e4abe69a078792118997f8a84n/aHeodo
2020-09-18Attachments_U6664.docdoc 93343d4d5ac39575750388f42909a8ff470366cbae5a3ad577f5bd9af07ccf3bn/aHeodo
2020-09-18MES_20200918_084.docdoc f6255c1d9d5c191c0265b5b1fbca564c2a9f38fd1e93cb25ebf3073f0e560e29n/aHeodo
2020-09-18inf-20200918-201960.docdoc ba2672913493f1b112bd60bf5b2a277361c1ae2122c208c3ce55e55f14da909bn/aHeodo
2020-09-18mes_GNB361789.docdoc afec45f4897df0117cbcbec6972de56bd81af8ee3e6b1cf88507764596a9f927Virustotal results 39.66%Heodo
2020-09-18Attachment 20200918 HF747675.docdoc 8669123b64918b7f8a0706453cdfb5886208f5e31dcf5d89e598b2ecd0dc025fn/aHeodo
2020-09-18list 20200918 60151.docdoc ae2debd077e0cc2e764ce16c176c7d08129ef095bfae6c5196dc3789f6ea0612Virustotal results 37.29%Heodo
2020-09-18Rep_Y191.docdoc b66215c81ae8df5da62c75848142dac423c6b48bb860d3117eb6cb9d65e8399an/aHeodo
2020-09-18ARC 509231.docdoc a5dcf96a690cc7c036613316d9003c9f6ee74e66dc2a8ac00502e63f8dfae85fVirustotal results 35.59%Heodo
2020-09-18Doc-2020_09_18.docdoc c386868e3f526e0cd5d9093ae760761ebadb17cf74591886e56d8de0d3097f1cn/aHeodo
2020-09-18Arc-DKY552.docdoc 48d9902f9387ffc07af22ed14eaaebb093f37f8f63d4942f0d76744ae6f14f4an/aHeodo
2020-09-18mes-5657.docdoc 562c1a653b94bfc9219306d06089d0621f9f3fd9712476d1e543828e67d1eb83n/aHeodo
2020-09-18Rep_L848.docdoc 68a6ee3668a51859a1ccabe683a3d6148c90ec6cab3ed3e4cbf58e3dbfbb5ceen/aHeodo
2020-09-18File-2020_09_18-WSG0286.docdoc d0c7c0505d58965408f42b32eb3cab08e31769ccd07dae21ed285fa67c97f04cn/aHeodo
2020-09-17INF-2020_09_18.docdoc 7e471a0df104975c9e269668322c7a09a6892fc3a375150e2c8b0eef6b7b6f23n/aHeodo
2020-09-17doc_744558.docdoc a799324029ea75b6b4a71f02bce59d976fd0926ce98d134c071d39e892f1da2fn/aHeodo
2020-09-17FILE_X9336.docdoc 75a2eb22895c4eb7c65e35555164b3e60dedc1c777558bc5cb8e0491744d3c7eVirustotal results 33.90%Heodo
2020-09-17Inf_2020_09_18_993593.docdoc 4570e5d2c1356c0ea7261e02960c106cb8b111ad69a1f6e4c2d312ea21093df4Virustotal results 34.48%Heodo
2020-09-17file-2020_09_18-880355.docdoc 2a17a0bcb3ed1f0bbc6df20f64db1e8c7cfef71e891012fa303ab3bc0de7b0f4Virustotal results 34.48%Heodo
2020-09-17ARC NDM0378.docdoc 850576cea8a5bb3ce74dc5287f0f8c9adc2e80fe5c724430473342010405ae4fVirustotal results 32.20%Heodo
2020-09-17doc_2020_09_18.docdoc 50d8f251a1416934c45a1792ac80b2e6ccde91ddfa6e6d89e5cabc851c0a7e20Virustotal results 32.20%Heodo
2020-09-17list-8180127.docdoc 00d004d041cd6d18ac2b3b26f53b642816578698bb96055a921f74a0e16aca23Virustotal results 32.76%Heodo
2020-09-17rep.docdoc e9cf1f46ea78509e6ca98f938a258fd1924972ab31701cce861e82a9efd88408Virustotal results 32.76%Heodo
2020-09-17Inf 821282.docdoc 1bc4a47d0fe2369993ff6f11e93075f7e441de5d443e88719a9787c43f6a277aVirustotal results 31.67%Heodo
2020-09-17doc-2020_09_17.docdoc 69b92a13de9bc9189abf0d3e05336bc19c4d2aed4299571a7bd3537567279461Virustotal results 32.20%Heodo
2020-09-17FILE 20200917 G038245.docdoc 7e5fabcd329b22bdf9699c7d00cb1659f838826669429c9d0e7ec0e7be76f001Virustotal results 31.67%Heodo
2020-09-1743109O-2020_09_17.docdoc d90be023c084db96e93bf06790391fc4800affc006ff542b7521978d5385b8daVirustotal results 32.20%Heodo
2020-09-17inf-889118.docdoc 574db1c62256215b56267056b7bc75607ebdeb37723630387dbf141b2567ae13Virustotal results 32.76%Heodo
2020-09-172337GP 0259.docdoc e5c379900d7e18c7eee5477d6e7172e592542bc6f638b4ec96dc09e0b3ed1110Virustotal results 32.79%Heodo
2020-09-17FILE_20200917_QY052780.docdoc 58f089f35ab451b3970293989462d60ffff53a9e2eb17d9c8d136af5e9b5faefVirustotal results 35.59%Heodo
2020-09-17UNTITLED-2020_09_17-VJF32099.docdoc 1d73c9029ef0fa7df4ae3ee9f8afb936c6528ffb9333bfa052652b58b5d13886Virustotal results 36.21%Heodo
2020-09-17ARC-20200917-LYJ666481.docdoc ba4ca05c27fc14b63451084fd11836fa20c151d3cd4922bb664da0425b870672n/aHeodo
2020-09-17rep-20200917-WR341436.docdoc 46cad0ffaf0d5f1f1d43c5f9a23e3d2dd1a3de391489a357e7e4627fd62bc6beVirustotal results 35.59%Heodo
2020-09-1789005100 CNZ48830.docdoc e8e0ee1f225b4a605c085d0a5261d9dfc0c633676b294f5f329881ff8c242540n/aHeodo
2020-09-17Attachments.docdoc 34de78f47b7608eae238f48273edca81c42d78618e84a547a428d6901aa9bafdVirustotal results 33.90%Heodo
2020-09-17list-2020_09_17-DC825277.docdoc 7116b8982d2e5c63be2e3edf350d562b991314205feda61eb9c8d33cfd8ce0e4Virustotal results 33.90%Heodo