URLhaus Database

You are currently viewing the URLhaus database entry for http://canhtannhiet.com/sys-cache/Reporting/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:560592
URL: http://canhtannhiet.com/sys-cache/Reporting/
URL Status:Offline
Host: canhtannhiet.com
Date added:2020-09-18 20:53:34 UTC
Last online:2020-09-21 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-18 20:54:35 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:2 days, 21 hours, 38 minutes Poor (down since 2020-09-21 18:32:36 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-19DOC_85654826.docdoc e9325a711e0f6f605b85898c5b507d4320e1f1dc672c68172b06cda359b5107en/aHeodo
2020-09-19FILE_PO_09192020EX.docdoc 6f78fbb2d641a076bd2f40a39b2802a3ece7627b834468e1af726bc6bcec7237Virustotal results 40.68%Heodo
2020-09-19PO_09192020EX.docdoc 6ff5d18efc03d5074a5c9d0c27a7ab6738e189f681af930bed2809da5a8f7544Virustotal results 36.21%Heodo
2020-09-19H2C7Z0LO6YK9.docdoc 4493d7e26e63be3530687d6898ef66cb46cf1e3f614db9550f426d9416b77787n/aHeodo
2020-09-19INV_93319538.docdoc a17adf48e5d1001ed87a1af31344545ee83df584126c6ade083cdec6fd158105n/aHeodo
2020-09-19PO_09192020EX.docdoc 6551f8c92068a9f5857920d06ee67a6c00db576cdcbf7901a645b734994a0e8bVirustotal results 41.38%Heodo
2020-09-19WOGUZ8LIFIR4GK.docdoc 0fad7aa076137ca0eea07801301e4a9799bfe63d5f5ac04aa449db6fa4201512n/aHeodo
2020-09-19REP_PAX_090120_HSG_091920.docdoc d7f9f33aa1e41e5cf3ed675039323eedced58cb2e29f20b2fb2b6df79ab141d2n/aHeodo
2020-09-19FILE_SR3468520002XO.docdoc e5d9bb556a385de29f04eccbf388a0e8f73f556394bfcaff0a6c7ffb15e85a48n/aHeodo
2020-09-1951538847.docdoc 6da6b99d1e7334c2df666c15e596c4fb9cca58c3f3891e9cc6676580e5b1dcbfVirustotal results 35.09%Heodo
2020-09-19Y_SOD_090120_QRG_091920.docdoc f985df117771ea00d82ebee99e084f574e31d0134d0ac1d15dff5478c02f6b91Virustotal results 33.90%Heodo
2020-09-19DOC_YJY_090120_WGY_091920.docdoc c066bc4500ead9e0889bdaa4bc27671470aaed708c36824216e519d2b9325dfen/aHeodo
2020-09-19BAL_KQZ_090120_ELV_091920.docdoc c48a51d8de6403e9edfbd7add130002b895655dfbe014581e64d0fd7bee83155Virustotal results 36.21%Heodo
2020-09-19DOC_PO_09192020EX.docdoc 4165b27e5b534a04d00fd600c969784706dcd31a10beaa3b585e754f973d89b6Virustotal results 35.59%Heodo
2020-09-19572020609351592.docdoc f324ce3dda20edd6a8a964eb14fe89ea1df9a7bfad867dc0abba653b22534357n/aHeodo
2020-09-19DOC_93410834956148215.docdoc 5b0a648192c791817089baf85e77206be78ec6b2fc7924b465bb1bd718d78b56Virustotal results 52.54%Heodo
2020-09-19V_PO_09192020EX.docdoc 918a64048af4a066fdd935050729fcc70f074457f2943f59469ee5f3bdb0a70dVirustotal results 35.59%Heodo
2020-09-19D_2923873159325148813543.docdoc 53c798816c0299b0b57dfc31682d5bc2a73573f248e05ce8b5427b1b9d908150n/aHeodo
2020-09-19DOC_ZGB_090120_LJH_091920.docdoc 9075458c2a7a9b59a7e7f9e575757a3069952452198a9c17ce3211d3de14eadbn/aHeodo
2020-09-19ODR_090120_EWQ_091920.docdoc 2f74b7cb39258bea3019a9fc83f6fdcd6ed4e675e175236ae83bf0ea02af0e0eVirustotal results 32.20%Heodo
2020-09-1916975003593355880418.docdoc 7991a69a5cbfa005b7685a29ded3f4f849b24fed6a340cbba97dc86d6db9b0a6n/aHeodo
2020-09-19REP_SSF_090120_SDC_091920.docdoc 5236f2813e8823eddc52a679a0129cb8f0edca6ffd3d3323cb9d69b037a86853Virustotal results 41.38%Heodo
2020-09-19GB_WZB_090120_GMJ_091920.docdoc 778c345084d688acf88bb52a9c052c1e852688885a2b4c6c3938f6f471888d44Virustotal results 29.31%Heodo
2020-09-19FILE_F94IM2X9CQ0ZY.docdoc 32fb5e68e6524e8f2ea13cdf8686e2f0a5fd28042071482fde48d4110a714158n/aHeodo
2020-09-19PO_09192020EX.docdoc 7a41acc2bae61a34f8177e8d2cfa0b5f268c583906f678bd7331d9aca266f238Virustotal results 41.38%Heodo
2020-09-19BAL_KUT_090120_TPH_091920.docdoc 4fdb1e6203d6e04a6229d129f4087b311a3824e7fc345b00b555b9593f6f9adbn/aHeodo
2020-09-19BAL_48595434.docdoc 2d22cb6bb2684459c707f30b23c49d03c4077803ebd1e4256c071f8d365ada55Virustotal results 44.07%Heodo
2020-09-19C_79356415579221.docdoc fbe06b77331c2615ddb714d8e539f9f8eb7e35024aad5aad9af594b528f4450cVirustotal results 36.21%Heodo
2020-09-1958080599.docdoc 9cd1ed00043bfb185a3b497fb855abad25261f016f8882ae085daa73ffb32deeVirustotal results 46.55%Heodo
2020-09-19DOC_74893159.docdoc 5cc754b56ea15b372576406cb73285d5c74e09ee434b62bb955e5c02caca6b68n/aHeodo
2020-09-19INV_798511870035.docdoc 085e7e7f6527b89c4e08c3a4094c41e50f2f10bf83f6f38feeeb5291f9ae9491n/aHeodo
2020-09-19REP_46779953.docdoc 8de8ea6861abc663aa24c26703bde4b83981117f06c438a6d82c295d178ce970Virustotal results 25.42%Heodo
2020-09-19REP_AW9597296117FS.docdoc 283fa803d0bcd99ac43b6d04b267e8fe8de71ea98d41f73ff426fc27fcba6dc2n/aHeodo
2020-09-19REP_244015264480201975045.docdoc cfa732f080d66f4255202de5836aedb5332dbe226ea5ff3e49c926ee56519cddn/aHeodo
2020-09-19INV_HL5EUT4YMN6W4AR.docdoc c87f8fd591bb21b8ee7da412593310605e465dc013f1607cd0f67c0e39d58685n/aHeodo
2020-09-19REP_IEY_090120_SPE_091920.docdoc 3d097d4ca7e6e88c447fcc85c406838b4fb38f2d3f3365be0e88af7b2b711ed3Virustotal results 40.68% Heodo
2020-09-19BAL_8973135052.docdoc 6d6118565c7f02eda347f3b1b2b485893fbb020108df5e61fd06966bfb1ee2bfn/aHeodo
2020-09-19JH3390621030JN.docdoc a6a8b9e3e602b8727f2687f6906dbc66a534b711594e7064776f9128f0582e0eVirustotal results 30.51%Heodo
2020-09-18DOC_UL1291889037HD.docdoc a89a3fb97be7cefc4d26bbdfb463943abc4b7a4ad8f448b559cabed432592458n/aHeodo
2020-09-18FILE_VTC_090120_ZZI_091920.docdoc c536931bec7f39621f1f86cd9b7b49ba58e35ba7a7f6ce7b92724de491137e3dVirustotal results 38.98%Heodo
2020-09-18DOC_497059949719571.docdoc af7a05d648d4175f924ff2431748c2bf40e15eeb256d2135bfeba80f4adbd149Virustotal results 24.14%Heodo
2020-09-18ZVU_090120_GFK_091920.docdoc e767562438c04ed2d3dee57114d125b4446278c036106d12eb8e7fd9d9a93940n/aHeodo
2020-09-18FGD1ZUUWA.docdoc 05eb736917a11db255084e194c37d2af8e64f70d50bf4c604bc9eca81198fb74Virustotal results 30.51%Heodo
2020-09-18DOC_RIW_090120_CRX_091920.docdoc f517a93071e1c1603f17e27fcacb8895394f49626d63add12daa6f605b453ca3Virustotal results 32.76%Heodo
2020-09-18INV_ZS8226444584XA.docdoc f5fb5d637a37ec6c6c5288f46bb6ad3cb9559037f8df024aba1f9bde1d477a4aVirustotal results 42.37%Heodo
2020-09-18REP_8977673450070717900543.docdoc 9d18ad242b906738ecf1a87d38dfa1b46320cbed0c62244a23c7585251350efbVirustotal results 44.07%Heodo
2020-09-18510169692398.docdoc 2207a632a023bbb96b9b2e0dc6b930a3c725420713dfce30b4b47c7fa3a46932Virustotal results 42.37%Heodo