URLhaus Database

You are currently viewing the URLhaus database entry for http://jovia-defense.com/cgi-bin/public/PvCnJ5zi1Dde2yzrON/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:586237
URL: http://jovia-defense.com/cgi-bin/public/PvCnJ5zi1Dde2yzrON/
URL Status:Offline
Host: jovia-defense.com
Date added:2020-09-21 13:20:06 UTC
Last online:2020-09-22 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 13:22:27 UTC to abuse{at}hetzner[dot]com)
Takedown time:23 hours, 9 minutes Good (down since 2020-09-22 12:31:52 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-22inf_2020_09_22_WH409905.docdoc c1c64fe054f9be96a2d05c6e7957db0b63d92542154af8a46ac60bb7d5d5d622n/aHeodo
2020-09-22DAT_2020_09_22_8795.docdoc 3a4fbf0f22071cd991a4eb2507569ee2d1e7d3042ad2b693f2f818c8e895f543n/aHeodo
2020-09-22PUW1455-20200922-QWU877.docdoc 0d70d473dd82d66be63e961914b3fccdaac41677e69ee91706bb0be406144501Virustotal results 45.90%Heodo
2020-09-22Mes_2020_09_22_ZK532536.docdoc 7d7c3ac7f91ddd427921fa257d0e556486d9819ee2e21115247c2b5d763007b4Virustotal results 44.64%Heodo
2020-09-22AYN99385.docdoc cf1ab745ab6a4dc857eb8232bcbcfe7675540dbc45e29114985c290ff415b8den/aHeodo
2020-09-22LIST-2020_09_22.docdoc bd998a59bb0b75d07938e1029daa924b403fe978916d651be170097274746b9fVirustotal results 40.98%Heodo
2020-09-22Inf_3167571.docdoc bc077632ea6bd7e0d83fe02cd1b706c078d7bdf7a18b0c1477c0c3f94d2f14b1Virustotal results 40.68%Heodo
2020-09-22ARC_20200922.docdoc 89897d1c075f86847a7234b13cb4acc27b16a32f115215baef6c5d41b0f4d67dVirustotal results 32.79%Heodo
2020-09-22Rep-20200922-06656.docdoc 8e31bc6780cc77125d2c78fc762ac2cdf7640be4edf71770f144fd26adc4721aVirustotal results 32.79%Heodo
2020-09-22Dat-20200922.docdoc 264bebcec7d291b85da0a2b0a2bc5fa300b07c9612b461f7ad9f2d55dd4389b0Virustotal results 31.67%Heodo
2020-09-22Inf 2020_09_22 G5256.docdoc 1692576fa20b26d4b08f7ddf02890b29ee1afd8c20ae52aeb87abfbe023c7209n/aHeodo
2020-09-22File.docdoc 217d18116ca119751a9e29f6ed27a4fe97fe6fc8bfe088610cf7841c4fd8dab8n/aHeodo
2020-09-22Attachment 20200922 TZ71392.docdoc 061d0e30973bd296c440a37565de8038d2952e85e0800e599c4049fec446fd8dVirustotal results 32.20%Heodo
2020-09-22inf-93808.docdoc 08eddac7838ced651892ee94e145a639d010807c45f3bd00e9752dbc1590add9n/aHeodo
2020-09-22list UPS25498.docdoc f9c1f50a35c2941949d6ee8e91935c1fcebd4b1f46849f8870ff3267bc5a88e6n/aHeodo
2020-09-22file 20200922 1294124.docdoc 8a2890bb71a8c5efcd1478ee7b30ed6d9c942d68f9a2b98bcbce5ebeef693071Virustotal results 31.67%Heodo
2020-09-22LGR8966-96099.docdoc cbf5b0482bc2cdc04d1f4ffa6c39d4517ef6793289339305a64f7820553bdeacVirustotal results 31.15%Heodo
2020-09-21UNTITLED FR695.docdoc 47fc0c61caa3805d7cb0fcc8a8466dbf5cd3f4df9456bfea6583b9ac2d83c0aen/aHeodo
2020-09-21arc D469662.docdoc 457b6a08f7e1b6cf8d09929198bf73710085c58f346b256d31d99645df480e67Virustotal results 31.15%Heodo
2020-09-21doc.docdoc 752cfdd4b5bd5525a1b48d12b73710003b76530b232e19a33add7a21712daa98n/a Heodo
2020-09-21MES_LN20386.docdoc 408b12e331000ac29de83635501b2c1ad800d8465e28a0a8054f10c4fdcb091cVirustotal results 30.51%Heodo
2020-09-21dat 456975.docdoc f58761d6abe3ad15dbd476209b0096437914904488af5c5be9aeeafa6d598a6bn/aHeodo
2020-09-21Untitled_Q3439.docdoc 30ca3b2aed5b521c1a38f66bbaa8d0bcc634cf59c59493b8388dd894d048ef74n/aHeodo
2020-09-21XK9511 2020_09_22 4772227.docdoc c1fbade9d5f7c2b5705288400f77ce167e2f71ae4bda087c52e2983d2dffbdf2n/aHeodo
2020-09-21REP-20200922-M130.docdoc c0e5018509f8a988f0442d2d6c3a200dc70f4d69bc590c7a7e9720b756267168n/aHeodo
2020-09-2129875 20200921 0024.docdoc b2fdf39787d7404bc206d1a5ed3b41053eaa0c375641af699e74f70281097f29n/aHeodo
2020-09-21inf 20200921 75980.docdoc ee0c171a228697ac111f2fea82463d7b64680e80f9c7ebce77deb08b6aa5bf2en/aHeodo
2020-09-21DQ90964.docdoc 29a072fcb55a3231d48a7dcd2c01e5e71d3feafe5481f97c769e8f238dc2afa5Virustotal results 27.87%Heodo
2020-09-21inf_2020_09_21_EPK3427.docdoc 6351168d14cfa0372803482062882590c98d717dc4f4eb2541fe3a154e8dc40fVirustotal results 26.67%Heodo
2020-09-21VZ416 20200921 E395852.docdoc 65836f35189720691f30ed8f88638a91183cfbf994e08500b8ec1e1c39d54f00n/aHeodo
2020-09-218548 2020_09_21 198.docdoc f85e575ddd651c3d60580fc1e2a4c74eb93f0097b1141daaab16fcc6ec843279n/aHeodo
2020-09-21mes_G691324.docdoc 2cdb7d27ab35b454598dba77166abe2004e91987f96261f66d9a995419936668Virustotal results 27.12% Heodo
2020-09-21Rep 20200921 941798.docdoc 61eb0d422b0465e3df0a4d5167d820688c9b0435aa4d28b8a09cf216487399afn/a Heodo
2020-09-21Inf_20200921_8657.docdoc 06ff769ddd838638dd933879a8a930aeacbcae74bf6df79aa7c9899d90222eaan/aHeodo
2020-09-21Attachments_165995.docdoc 22a29b66bba17966a31c3cd3286dc31fa1c99e45ab2fa9bd84eeee1bd847f58eVirustotal results 27.87%Heodo
2020-09-21inf 2020_09_21 T355.docdoc 82fd021a09f56eb6c9c4129caab80c81c416871df51ed92e6649100c7373ff85Virustotal results 28.33% Heodo
2020-09-21mes.docdoc 17fd5dd4d03d97fe15026bbb396bd51a6338d5b5c5284d1f962c3da4e2ec69d9Virustotal results 28.33%Heodo
2020-09-21Arc AL774720.docdoc bbfbfa4b74ecbd22841d49fe5721601886838b5365ca2da11e07e046670cbf3bVirustotal results 26.32%Heodo
2020-09-21Arc-2020_09_21-058.docdoc 3fec38315e25ce05e197bc39a6136959cf4cdf2b9fa9229fc188a71d464a5846Virustotal results 25.00%Heodo
2020-09-21Attachments-2020_09_21-505593.docdoc a437e2c0bdceb42fa9b6d14a398043dcb832abaed3357f649ae4bd1756802dd0n/aHeodo
2020-09-21Untitled_20200921.docdoc c569edbab23423ba1e8b07d887e2f627f83169707deb8987fd9a8466b998723fn/aHeodo
2020-09-21File-2020_09_21.docdoc 356b82eeebe4eebc57579bc3932589783542b3b169a2f2c85dfa0c78fddb7ac1n/aHeodo
2020-09-21mes-20200921-QC474358.docdoc 8624b86a85ad6c756c26034225f489ef15aa8cfcfdf0dafb529ab9a1718e075bVirustotal results 22.03%Heodo
2020-09-21UNTITLED IE69737.docdoc 099dd1b4e232dd633b835e76786449c0c57439d1584aea04315e86b231201984n/aHeodo
2020-09-21Inf-2020_09_21-9637.docdoc d47b287ef4b8d45599f5a80f2fcee0858d175bf98714aac0f0373baee18c74fdVirustotal results 23.73% Heodo