URLhaus Database

You are currently viewing the URLhaus database entry for http://jiafunongye.com/application/Scan/3dwq5hz37841052152992qpo5oc06oo82qx1k/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:587912
URL: http://jiafunongye.com/application/Scan/3dwq5hz37841052152992qpo5oc06oo82qx1k/
URL Status:Offline
Host: jiafunongye.com
Date added:2020-09-21 17:21:38 UTC
Last online:2021-01-05 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 17:22:22 UTC to abuse-noc{at}west[dot]cn)
Takedown time:3 months, 15 days, 15 hours, 6 minutes Bad (down since 2021-01-05 08:28:58 UTC)
Tags:doc emotet link epoch2 heodo link ZLoader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-23DG_87430089.docdoc feb0d1ca74f0ed4ae64f6c17873194dd6429d16f0b925b8354051f7d7bb04b45n/aHeodo
2020-09-23ZQGOG5H.docdoc 45d80072d3caf8df2c3d54d35168efdd6a9e53c59a5f5118d1a1c459fa5daa25Virustotal results 37.10%Heodo
2020-09-237BWDB6IX1WZZ9.docdoc 952b656649c633a039c06ac4138ac005b789c82749170299de7fbb2a45f22a10Virustotal results 37.10%Heodo
2020-09-23FILE_7UA3BXK8QM9BJI5.docdoc d3cf2b43d2a246e276c8ca88790a65e01e230e8c8c39127d094f43247e2f0175Virustotal results 33.87%Heodo
2020-09-23FILE_2259401449139.docdoc 83fea429143a296d2ee25541c1ba6861d46671d6ec7aa0aeeee4a81b6e252696Virustotal results 33.87%Heodo
2020-09-23BAL_GBW_090120_OID_092320.docdoc 837c550fff034632d2b0963b5cbef7f23f932fb6439d9ec26b324655c31b1320Virustotal results 32.26%Heodo
2020-09-231042152486119933323.docdoc da4ac5f39651115952df54281588b4d3c682fd42b1b6a7a98a06f369d7177ed2Virustotal results 32.79%Heodo
2020-09-23M_PO_09232020EX.docdoc 20ef957f84144a3fad2d3e3b68b6159c70b7fc25c13fc2185d1686235fe49676Virustotal results 33.33%Heodo
2020-09-23BAL_PO_09232020EX.docdoc bd69ecf726bce791184672d5e8317729c49e46729a648023c07701eb61a005e5Virustotal results 29.03%Heodo
2020-09-23FILE_DW0425868401XA.docdoc a877dd61b25805e938555868388a8543768fb01e9c45ae6072c261f61264d466Virustotal results 34.43%Heodo
2020-09-23V_05458242.docdoc 21c40bfbb721e32e33612b797ea16cf7927dd9df4d355a8ad1509ef924b30428Virustotal results 35.48%Heodo
2020-09-2349470595.docdoc 93fddf6220e95dc443df2a8bea1bd77d75a502ca3d7ba4428a6f7eccdf3c659eVirustotal results 35.48%Heodo
2020-09-23INV_6484289937582809.docdoc c482b94b35c677f27e5911c44179f984768ceca5388c34e6b5bdafa23dac794bVirustotal results 36.07%Heodo
2020-09-23INV_3325821759012878205823600.docdoc 15b6e8645e321e35774c5f7b9e295ba0e3d31d3f116e7a67724e6e0e5f8f3ed8Virustotal results 36.07%Heodo
2020-09-23OYO_VN5605776976TB.docdoc 5a6efe389fc1530d950fe7f4032d8f0c585eb3c4ccd412e20bcae526b12691b6Virustotal results 36.07%Heodo
2020-09-23REP_10409076.docdoc 9ada6e70d1ea3cc0f566130a6c075640478ba1a8c0b42a0dd5e8b0a318ea1009Virustotal results 36.07%Heodo
2020-09-23PO_09232020EX.docdoc f732dff0368dd8ff983021f4786d2c04ecb2f9196327138f25d6ca5272c9b556Virustotal results 35.48%Heodo
2020-09-23292875841921059721149.docdoc 69c8a52193abe2bc88f50c8148f109627cb56b3dae0b2a0ab1ed528d5b4cd559Virustotal results 37.70%Heodo
2020-09-23WLVCMTSMPQ929895.docdoc e701a67030bc767a30c999f4bc07249218be0f846de4294b4ca96b3a64ea169dVirustotal results 37.10%Heodo
2020-09-23DOC_PO_09232020EX.docdoc 3ccb6e15d1d669f80a3b40e294920eda308017848943e5539c5493a5e39cad03Virustotal results 37.70%ZLoader
2020-09-23INV_IH9112865930CW.docdoc 5cb9f67f8d803e2b5cbdfa3f2be7bb32a7cde2670256be9d0c998626a49ce7f2Virustotal results 37.10%Heodo
2020-09-23DOC_UYX_090120_CTC_092320.docdoc 18ccda5cbdc33dc68b217344cb63c776f444cbef19c75a2cc96e73cac848d039Virustotal results 38.71%Heodo
2020-09-23BAL_KU1456759771ZG.docdoc 93fb00cace65d90b02ab79f949887b3eaa5b0a0bca1e4a9d7c20576f8ad18deeVirustotal results 33.87%Heodo
2020-09-23INV_841358678330127364846741.docdoc e757a53e573f1584dd56ed851acc303473be8922e8f879bd1dd8f9b8dbec4eadVirustotal results 31.15%Heodo
2020-09-23REP_OMW_090120_HVV_092320.docdoc 8fe10663f36d8403d8c75b3a696a4dd96ded71c95bf3e5d88f34c4dc7ec96835Virustotal results 36.07%Heodo
2020-09-2330580558.docdoc be8eff5238b1b4c55eaf6bf5399d71b18bc093dbf2344c41e86f192173e1a5efVirustotal results 33.87%Heodo
2020-09-23DOC_SS5646796276XZ.docdoc c6e601d3f1268441a2518c331465ffd7acd22aae6e1526662ffcac834946f259Virustotal results 27.42%Heodo
2020-09-23AF2165130702HN.docdoc b9230204a6b5bb648c78437d34a9350a40aa179243813ecef19402cd1f319b96Virustotal results 27.42%Heodo
2020-09-23INV_50868051.docdoc e446be795bac5464b1bb80859e2ffd0857fe8d26f1f6973457b491498010f0c1Virustotal results 26.67%Heodo
2020-09-23KVH_090120_OMR_092320.docdoc 1c64de03ffee1b612358e9f45424fa90efb35ee3f384839c5d48f8932bdb23a9Virustotal results 31.15%Heodo
2020-09-2364717410.docdoc f94576c2ff082f8f5ac03f20eeb1be3c83b209f14f3c70834719faa2398405caVirustotal results 29.03%Heodo
2020-09-220NNZ3YJ151.docdoc 820f15f2465a43b8c59cb29bb3d528d3312a6ffef820420bb9c3730d2bd98fb6Virustotal results 32.26%Heodo
2020-09-22P_HNK_090120_VRU_092320.docdoc c288a47cc4303a39755120a6450d469a858b7bb662f27fddf022bb2fad4553efVirustotal results 27.42%Heodo
2020-09-222S2YV7PGEHNAJ.docdoc 0c850e85bc3e92d0551863e1ce5cd03c3c3404ceeb7e38aed586706c4134f4a2Virustotal results 29.03%Heodo
2020-09-22DOC_PO_09232020EX.docdoc eec6b346639f5aa9208c2fbc57161a281b1f72b3902a41ffdfe3a3a5b1ae3a3an/aHeodo
2020-09-22PO_09232020EX.docdoc b84c54a1704a22ceac88f79804b5a23b2a64547cadf21d76291d01f84b0e77d6Virustotal results 31.15%Heodo
2020-09-22M_PO_09232020EX.docdoc 5503f97a821a1c8dee9c3e1bcdc31e1fc7d98157b552c7cc79605a9d68dd8b12Virustotal results 30.65%Heodo
2020-09-2222776923.docdoc 1d2f06cbed29c06113fd84cc5a4db4be24346887afa63d85909dd60882a38336Virustotal results 27.42%Heodo
2020-09-22REP_12477687709.docdoc 8f8f1029e9909427e27aa6d225db5eb6d8767560af23836c44a0abff203eae4bVirustotal results 27.42%Heodo
2020-09-22Q_LWW_090120_JGQ_092220.docdoc 770a13e4b2ad169f027bbdb1dbd5317f83cdd7a7b28e6ac67e30614cdd534a29Virustotal results 27.42%Heodo
2020-09-22LSB_87952515.docdoc a306f78cac809e60ccf84e607470e4c43f0de4efe4dcd2f0e470786a5f672a35Virustotal results 27.87%Heodo
2020-09-22EEM_090120_VWI_092220.docdoc fa7f4b3fa89ce1e3cf1f45674f36346e729aced2de513c5a058f935c65b3cffcVirustotal results 28.33%Heodo
2020-09-227NTE2YY0D.docdoc 0bf81a6e813d1474fb8f3bc1b2071f479aa978b3e536a2c960d60226fd1ebaaeVirustotal results 27.42%Heodo
2020-09-22FILE_PO_09222020EX.docdoc af31068680a432b4d1d2164488f6353795fbb745479373bbafc6a60e9cf25169Virustotal results 27.42%Heodo
2020-09-22MHU_090120_ECL_092220.docdoc 71f31402f23d959b496d57ee5c41f38bce086c449bc5de99d93329e25f768efdVirustotal results 49.15%Heodo
2020-09-22BAL_JY8769276300OQ.docdoc 26df475661d0c478c1fd69028ee3eca341beeb52a8d3a364e0c9d2796718325an/aHeodo
2020-09-22H_PO_09222020EX.docdoc 1d12bc28a0362a431737a2d47cc51541e00538ff36044ed6118651874846c674Virustotal results 30.00%Heodo
2020-09-22FILE_PO_09222020EX.docdoc 115d1ed6f823c370e1b33dfa97569b4c77dd8e1021f3e62f54ca9860da3d0033Virustotal results 23.33%Heodo
2020-09-226U0PGI87K3CF.docdoc 280a1aaaebe209d8b8f7a652fd2f9f9efbbb3a6731328ee3d5da4caff1bfb02aVirustotal results 23.33%Heodo
2020-09-22PO_09222020EX.docdoc 50938c1e8bcfd60435f294949bf3b07533f8b5ccf1cf92d08a77f4a222037092Virustotal results 46.77%Heodo
2020-09-22REP_JJR_090120_WQE_092220.docdoc 16e58be61afe2d7b3d8b921e05f4e72ff5bd396480f6b904a915cabbd7985044Virustotal results 22.95%Heodo
2020-09-22BAL_IY8377626604UW.docdoc 4f13f8e154b6537497a46e1bd9506a4e62bdcedfd0160ff65601669b2a12e280Virustotal results 23.73%Heodo
2020-09-22INV_3J6FGIR6ADPCJ.docdoc 9b11606a300700f5efcfe21ec1403b6308a09a7758da7d26c85ef9129ea4872dVirustotal results 46.77%Heodo
2020-09-22REP_4080507938947192266239.docdoc 8937064c7ab860bfd3cba7621752a85796caa4092d34225474a42f0f6a5ce234Virustotal results 46.77%Heodo
2020-09-22BAL_50141244.docdoc ee9c083f564292675dc436701b08e7e57bafc7483a2df297a361ccebd2456f95Virustotal results 42.62%Heodo
2020-09-22VOKR_PO_09222020EX.docdoc e35241d0acf067d5dc065ec54e636c3043c23322d6e5ff9e3d76110ce6ed0ac6Virustotal results 39.34%Heodo
2020-09-22BAL_4538525387446.docdoc 9787b45133bcc34be0a429c433382108adfb5e5d3f2636e5a2c818dea83b3118Virustotal results 25.42%Heodo
2020-09-22REP_49477971.docdoc fbd4657d791ee13cbdbdf2360d65bf1cfde6851a8111c43ab4b1c3f2fa02c6f7Virustotal results 23.33%Heodo
2020-09-22P_165101375385397.docdoc 818b06749e98293ab2cd52b9c405ada1373ce68de595d2087cf854cb74e15632Virustotal results 32.26%Heodo
2020-09-22LXQM_33907379356729.docdoc 013f49af6f7f5e1e34116aa22e1bc2ba4babbb2c0b0f97bf4da287ce88b16a16Virustotal results 51.67%Heodo
2020-09-22G_MLK_090120_SSF_092220.docdoc 5b38fc0a82ee2bad1bffc097d51204cfc0a8891028bbe88ccc02e3aeb5bdc701Virustotal results 51.61%Heodo
2020-09-22AG8773623565CL.docdoc a4d02d24de895123063f7062ff2720cfabcd60945cd3da5eaf5806bfba5a0a1en/aHeodo
2020-09-22DOC_PO_09222020EX.docdoc 4fd47f6362c18cb84870b1ec539061b4151310f6ff481c6da680eee64f41a4c5Virustotal results 50.82%Heodo
2020-09-22DOC_MP1252386387JT.docdoc 193194a1f2cec3953fba2121f846171524d92ef27569d72e891d3a175cafa647Virustotal results 49.18%Heodo
2020-09-22VC1759680229YU.docdoc 3df6e7a0157c80044bf987544ff878153df7d16a46c4e4b60824c3264bcd2e78Virustotal results 50.85%Heodo
2020-09-22DOC_IK4912701649DI.docdoc 04cabb338b7a3e94fdf32d4bc5677be8a6320b982cee3ea841041bdac66d1693Virustotal results 48.33%Heodo
2020-09-22INV_26532320.docdoc da29c1b9164477223f7972b2fba8d5fab34d0abe2cfac9e4eb18150dacc690f9n/aHeodo
2020-09-22FILE_4563399545683061110.docdoc c81a8e36fd35e1dc7a1630db51f84cf46292375453bc046cf68c9cfb25f99849n/aHeodo
2020-09-22INV_68001737.docdoc af8bf361d20991876059324d82a58cec0fd954b981438085e5c5a48bc3f83d11n/aHeodo
2020-09-22ZTX_090120_YOD_092220.docdoc 9520ce496fa9afff4f1fcb5f994f1c8cc4c85506af12a2fe71358e164d6e385fVirustotal results 49.15%Heodo
2020-09-2261768437.docdoc dfc0eeec857c03af491878b0b6e9a4fe2dd417135410856677216baf78681909Virustotal results 48.33%Heodo
2020-09-229960030767423203560986.docdoc 2009f9056e90d2564b967fa225b898cbbdb0cd957efec3b1211b18925d410695n/aHeodo
2020-09-22AQR_090120_XUJ_092220.docdoc 6b58f3d639dbfd3f04c2534bac10583c7e2d0ba1e88ef31ebe443fc18f409a76Virustotal results 46.30%Heodo
2020-09-22CJB_090120_ZOS_092220.docdoc 8d49090e5ad1ca487645e8dad8b6e90d267b4a7f5d4cdf4d9c4441d969f088caVirustotal results 45.76%Heodo
2020-09-22INV_BSC_090120_HZS_092220.docdoc fe1fbbade251f94508504fe8861a87b7c721755f8116854ec1497d79a8a84dc5Virustotal results 44.07%Heodo
2020-09-22INV_PO_09222020EX.docdoc 49a1ffaa1b08021d92dd0139fad4b585e8b601c2ca7c74eca69ea9f3ff06ad79Virustotal results 40.00%Heodo
2020-09-22FILE_00176564.docdoc 3329e54a271ff895664104546d9af52c00ce1284be48322d3ebf1cc34db74169n/aHeodo
2020-09-22PO_09222020EX.docdoc fb096cb018d3c66f22c322028f9e8f1f049e9a9eb3531f9e893c3d2522f35951Virustotal results 36.36%Heodo
2020-09-22INV_6521689978556196086421319.docdoc 718113e004b811df9d311a7edec1092b2aab2d9173d762022544a74b5ba02657Virustotal results 32.79%Heodo
2020-09-22DOC_820403071914.docdoc 3ed5e00e046ce19a840746219ff3efcd6fcc4ddd0b608e51203398bfe2360da2Virustotal results 31.67%Heodo
2020-09-22IBS_090120_BSB_092220.docdoc d937aee7869b57f5784a642a274c6c32b57ed26aaf0594e7adbbf3f980c4ff98Virustotal results 32.79%Heodo
2020-09-22PO_09222020EX.docdoc bd38c9ebc5f59c75025f18cb277410b634a0bb913fd8258f370c98984b724adaVirustotal results 31.67%Heodo
2020-09-22M_09521177.docdoc b664feace8781e7ad1ed550dc5f1a66b77b73f75228c1898a1986b67fd543477Virustotal results 31.15%Heodo
2020-09-22FILE_ML14RF9ZPPJFI.docdoc 7c15b14e3a1a2b381be48aa601e40dbbbc0b493b584c13314459e7e5ca57a953n/aHeodo
2020-09-22BAL_GLLX8RQV.docdoc 6696d2b4bda784271bb22b8bf2ee6db7547f366940a5bba7444ec265cbc1b0e1Virustotal results 31.67%Heodo
2020-09-2244035053.docdoc ed6598e7e6d37524439397ed78a735fe41117f47c0964cba780b5800d4eb5146n/aHeodo
2020-09-22WT8216143507NS.docdoc 9addba96a219cf69e04822cf43a65d6b7da0f848ac179d2276ef2a448ca362cbVirustotal results 34.43%Heodo
2020-09-22BAL_0832943160462282252533.docdoc 6f9bccda375580566f4824b5dad0662ea49be1f410eb2bd5c38f3561dbac29e4Virustotal results 31.15%Heodo
2020-09-21PO_09222020EX.docdoc f032da6342ee3da2b15c96ea27035574335bf6c5133bc03871bba1958206d66bVirustotal results 31.15%Heodo
2020-09-21REP_95365973855356772628.docdoc 6aaa5d1200a0ddb1900acfe0f5b79eac2ce5b928d30db37c4f21e43cea55d69eVirustotal results 32.20% Heodo
2020-09-21FILE_4758728536.docdoc 4b79ba0096d15d6a7c759fdf3e094194707f88072e8aeb0d53979a88db734ae2n/aHeodo
2020-09-21BAL_PO_09222020EX.docdoc 86a8ee1c5f1f5ce84a8f3b31c04f51e324a47d2de0936339357ee0e9a139e0c6Virustotal results 30.00%Heodo
2020-09-21BAL_FI1416342509WP.docdoc 74c1fc2f43a4a426a9f4ffbc4738e6107d95009d67a202f0c8a2a1b80ef60937Virustotal results 31.03%Heodo
2020-09-21DOC_548005404608945876479688.docdoc 04b6915557c386d4219e56049dca6eeef6f30b41f45fb525d36977e248fbf4ecVirustotal results 31.15%Heodo
2020-09-21INV_HH2138866527MN.docdoc 025f8afc4fe9c491ab36c4b78e7f60620250a2bf76c231186993727526ffd6can/a Heodo
2020-09-2169956539.docdoc 9f3a5491d61d0e1c05f436639b20d24b38465f96aecdda836f9fe292d1af0b34n/a Heodo
2020-09-21REP_DUY_090120_MWH_092220.docdoc 778a7dec2a3a0d2021406e3186ff559dea78e4a07678dbf5619e3cd6d7d8217dn/a Heodo
2020-09-21BAL_99658630.docdoc 292a48621b6f7863d1a7d04f25cd2c6ddbcbf5abac1282941d3ba20ae076b776Virustotal results 27.87%Heodo
2020-09-21PO_09212020EX.docdoc e6573ea6cfe0bdb4f9b3d43b7b68207d18fb492c9ed35aaf6bee52d0d681a9ddVirustotal results 28.33%Heodo
2020-09-21ZU7556395097HT.docdoc 5af136d60a366d4fa170883a816b530f4ef2828bfd11eafe0204c4f202deb748n/aHeodo
2020-09-21DOC_806798668238.docdoc 6ca00f6d839ec9a1a0d786abef71fce3d2d88018968bbd427a8e2d25f6099c57Virustotal results 27.12% Heodo
2020-09-21INV_36519802.docdoc a8c861e70b70f3ec09e75901bc0b04a5023a54cf7e33eaa618a99450d15820acn/a Heodo
2020-09-2190442821.docdoc 3ab0702a3d820e15619e9125350d5275da998abed6d3231e31428a8443a2b604Virustotal results 27.87%Heodo
2020-09-21W_PO_09212020EX.docdoc 0e035ec654420f302e735b6b6f18580b07146b5ffb121bca2f3979a89e9ba4d7n/a Heodo
2020-09-21FILE_FH2590447196EZ.docdoc 3783d48d6d44d88d9bf4bbb9eaa9b4f10b258447d45b5d8c2e49c5132cdc9284n/aHeodo
2020-09-21FILE_389258904975549013816.docdoc d8abf84298ab1a8eb2758c92dc9a1f498b76299bfa39ea678b6b310675668df3n/a Heodo
2020-09-21INV_KT6211579193FZ.docdoc 217964d82326beadbb7b8928ecd9d4badb90db271cf1345f197c995e260ffebfn/a Heodo
2020-09-21DOC_RXP_090120_ZNH_092120.docdoc 521bf0da13001abe96bb049cc75c8a958f5a36ff2265f135fe0ccc502d3e3354Virustotal results 25.86%Heodo