URLhaus Database

You are currently viewing the URLhaus database entry for https://ambulanceservice.nl/export/FILE/meb90305935983qq1qou6so4/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:589770
URL: https://ambulanceservice.nl/export/FILE/meb90305935983qq1qou6so4/
URL Status:Offline
Host: ambulanceservice.nl
Date added:2020-09-21 20:43:08 UTC
Last online:2020-09-25 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 20:44:04 UTC to abuse{at}microsoft[dot]com)
Takedown time:3 days, 16 hours, 2 minutes Bad (down since 2020-09-25 12:46:10 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-23DOC_3753139846282110785639569.docdoc 887fa6a834121789518a2119d59559b212de2d235e454fd67d1e000e8ee7df1dVirustotal results 32.79%Heodo
2020-09-23BAL_UGZ7Z2U0K.docdoc 5d5e964840d2d7f401bae3568724b259b02c4485c211ccc7ec23c0273d11edd1Virustotal results 35.48% Heodo
2020-09-23PO_09232020EX.docdoc 46cfb218b8b268ef4372057514f93c2282c6eeb1474b574f5f8a3c291cb6269eVirustotal results 34.43%Heodo
2020-09-2359144148.docdoc 5d0b46e5ac5ae916c339102eb13396bf43d1c7c757bc63c6ddad859b8ba97f05Virustotal results 33.33%Heodo
2020-09-23QJL_090120_FTT_092320.docdoc 68829c16b0c9bb2f8079fe163e05ccc8662973e4ce79afc0693733937fad88e4Virustotal results 34.43%Heodo
2020-09-2333779367.docdoc 26614fe04700998a42fbb7c3d84cbce63bd4a32aa9de3efe130ee1366827c094Virustotal results 34.43%Heodo
2020-09-23FILE_VKM_090120_RJV_092320.docdoc 19a24c966abfca03a9b378497958b7a78167e51a43af3059a5eba3f3eb725e73Virustotal results 35.48%Heodo
2020-09-23FILE_XID_090120_ERI_092320.docdoc 4b0e29a0d673d560b6df4e53351b808d2e1fc353ccf87d6488ab1a387056212eVirustotal results 37.70%Heodo
2020-09-23DOC_PO_09232020EX.docdoc bbb6d73f3985fbf140b54d8d677505a103c94a9bb2c084c3fb92dc9c80e06a80Virustotal results 37.10%Heodo
2020-09-23146142773218925531.docdoc 8e5061f5e4e9ccedd7ff53ed54e71fd8aa5b7f0233554264714dd85d6554dd49Virustotal results 36.07%Heodo
2020-09-23Q_70052675.docdoc 97bae791d515284ffffb690411af072b65fbef72417cb49229d6f02def55dcecVirustotal results 35.48%Heodo
2020-09-23INV_49291562.docdoc 48fb9960d4880303b9ac71ab8d6d52f5853ad6b0520aa8a6ebc470ddcbd3085fn/aHeodo
2020-09-23U_32368899.docdoc d3cf2b43d2a246e276c8ca88790a65e01e230e8c8c39127d094f43247e2f0175Virustotal results 33.87%Heodo
2020-09-23BWUE_PO_09232020EX.docdoc 83fea429143a296d2ee25541c1ba6861d46671d6ec7aa0aeeee4a81b6e252696Virustotal results 33.87%Heodo
2020-09-2365248715.docdoc 69007e954807d4f901eea9a2bca96a833d6c05deb30aa76ee89c52c5bf011d45Virustotal results 34.43%Heodo
2020-09-23REP_PO_09232020EX.docdoc a367f82673d105dca478418602c9f38633a5347fc2b0f565e828cb4b52e89424Virustotal results 33.87%Heodo
2020-09-23REP_HW7462838737KA.docdoc d83b4457e963cb82b3322d4ac94c492e4ee3c024573964d25ded75239d9623ebVirustotal results 31.15%Heodo
2020-09-23REP_KMT_090120_XTK_092320.docdoc 0d15d81842c24d36b2e24fc1f2d8eeca0cb46f6afaa26190d26a0fce7480a855Virustotal results 33.87%Heodo
2020-09-23INV_XE5212010710YE.docdoc a877dd61b25805e938555868388a8543768fb01e9c45ae6072c261f61264d466Virustotal results 35.48%Heodo
2020-09-23BAL_PO_09232020EX.docdoc 5ee7aea51b23645203711f5af8db6a5ed697f0bf9ece2adb34c6a23a6e220dbbVirustotal results 36.07%Heodo
2020-09-23FILE_QYC_090120_PZJ_092320.docdoc 50c9d530111fe31904255db5abdbabd939542a19af71c656dcdfd44c9fe2b4b0Virustotal results 36.07%Heodo
2020-09-23IYLV_94579522.docdoc 80345dcdae23c5209ca98dc5266bfd4e989d51223a302e41c5193bde6c6544f9Virustotal results 36.07%Heodo
2020-09-23INV_16114040618387716716.docdoc f5b67fe09ab73847439a9717d70cce333257546046c604d4d3299ff681fa34d6Virustotal results 35.48%Heodo
2020-09-23INV_ASOEUTXIZLB4UL.docdoc 9ada6e70d1ea3cc0f566130a6c075640478ba1a8c0b42a0dd5e8b0a318ea1009Virustotal results 36.07%Heodo
2020-09-23IMQSAEIEGC.docdoc 23228721f30ca78a87d92bafd441f784d43b35778a46e3fb21fcca990fdc778dVirustotal results 35.48%Heodo
2020-09-23PO_09232020EX.docdoc 69c8a52193abe2bc88f50c8148f109627cb56b3dae0b2a0ab1ed528d5b4cd559n/aHeodo
2020-09-23BAL_UKI_090120_QVL_092320.docdoc e701a67030bc767a30c999f4bc07249218be0f846de4294b4ca96b3a64ea169dVirustotal results 38.33%Heodo
2020-09-2340352477104387.docdoc 33029135b1c5093cf9c743ba3bd14e04bc7e7a2ec9c971b92555dc08bef6d405Virustotal results 35.48%Heodo
2020-09-23INV_VM9033442599ZT.docdoc da2fe1d2b170aaa6ee81df5b4ad4ae8d3d2f216ef0c9a00dd079e755b620dde8Virustotal results 37.10%Heodo
2020-09-23DOC_35612192.docdoc 2f949a337c2746a62b0f22fdbd222a7783251f0b81a7332e4724a59da312369bVirustotal results 38.10%Heodo
2020-09-23I_PO_09232020EX.docdoc b3a84427b070daa7ceb7b51063673a3718f2ef81766fd7523b494f4a29052ab6Virustotal results 34.43%Heodo
2020-09-23IG3199384235DQ.docdoc 7fc71d784c714360d684b4c25382fe807f04a3cbd861352f3c19fa0fd789e59dVirustotal results 32.26%Heodo
2020-09-23DOC_C77OTT835QVTB.docdoc 096e7d0d8016a7efe13a6bcfe45e2b78d115eb681a6f855b639a9ca3c8db22c4Virustotal results 35.48%Heodo
2020-09-23DQ1091313928FZ.docdoc 53dde3ba3a9c47b693f01a8904d5d1c223cb25c08f0488ff97b08e05dbbc7be6Virustotal results 30.65%Heodo
2020-09-23INV_YU3059265042ZO.docdoc be8eff5238b1b4c55eaf6bf5399d71b18bc093dbf2344c41e86f192173e1a5efVirustotal results 33.87%Heodo
2020-09-23PGM_090120_RQR_092320.docdoc 07e10c57641a11b12fa27dd4b62a01b1f1db583eb0f33e25154c1e495d45066eVirustotal results 27.42%Heodo
2020-09-237516522351833092439555301.docdoc 8545f8aee7ed198b20effca9952996d49c5b91811a6dc47bdda10aa92e633938Virustotal results 28.33%Heodo
2020-09-23DXD_090120_HOL_092320.docdoc 052552b8940e682ef01c6161f4b074cbcb5dcf412f62b64eafda4e3b304368ccVirustotal results 27.42%Heodo
2020-09-23FILE_84245908.docdoc 770a13e4b2ad169f027bbdb1dbd5317f83cdd7a7b28e6ac67e30614cdd534a29Virustotal results 27.87%Heodo
2020-09-23Z_PO_09232020EX.docdoc 1c64de03ffee1b612358e9f45424fa90efb35ee3f384839c5d48f8932bdb23a9Virustotal results 31.15%Heodo
2020-09-22TBFU_PO_09232020EX.docdoc 820f15f2465a43b8c59cb29bb3d528d3312a6ffef820420bb9c3730d2bd98fb6Virustotal results 32.26%Heodo
2020-09-2284D3UNHI.docdoc 8b086b781acec12715982f30c39eb5d20950325e39a5d84b33a6df96d9edcf8cVirustotal results 31.15%Heodo
2020-09-22BAL_PO_09232020EX.docdoc c12fac9cd3355e4f8d1f11015cd59fd3b476b20758d57988889bff4c5a352726Virustotal results 30.65%Heodo
2020-09-22HIUPG8BZD.docdoc c4ed4d279282ab289d7a00ba9d05f1f31af4a3dafbe02ae91aba6585d55506cen/aHeodo
2020-09-22UQ_KDK_090120_NGU_092320.docdoc 23bc63af094f80c54cfecb85f86f0b2f1975ae55f29d9d66ea61d6612c36a567Virustotal results 27.87%Heodo
2020-09-22PQ9276925745VL.docdoc a7305cf8e088408136fdfd5deadd230a7d00a03b1cc3fc12fc0705a30b4e0ae7Virustotal results 30.65%Heodo
2020-09-22WU5460162473BH.docdoc e543adff7cba9ec05fc7d78a55b89e22cea00ca50df6e67e06250420b9f2ec48n/aHeodo
2020-09-22BAL_PO_09232020EX.docdoc 1d2f06cbed29c06113fd84cc5a4db4be24346887afa63d85909dd60882a38336Virustotal results 27.42%Heodo
2020-09-22REP_6334232236052782363802238.docdoc 96d1563a935b2b69580ef4ad19410bdb741917fc4d0aa8855e4eba258db0645fn/aHeodo
2020-09-22REP_PO_09222020EX.docdoc e446be795bac5464b1bb80859e2ffd0857fe8d26f1f6973457b491498010f0c1Virustotal results 27.42%Heodo
2020-09-22REP_04UFHTBW.docdoc 98f1a8a99449cb92a1d946e110ba5decc069079ddd01fe5ded4bc075313f3bd6n/aHeodo
2020-09-22JWQL_RI0305661460WL.docdoc 04648ce7223361494ad5620c674be88a869710007f672d05721b77af59be70fdVirustotal results 27.87% Heodo
2020-09-22REP_2455806393215896.docdoc 698748ed65c5d697095b866208160f8b4142e8d3e66a8cf826de1601fb3b080bVirustotal results 27.12%Heodo
2020-09-22KL6143081697KV.docdoc cc43bfd0ea39a3afc6283e4734d480bf62fbbb227016a5cb42d288a8f5f3c956Virustotal results 27.87%Heodo
2020-09-22608835610347367.docdoc 02503f6546f32015f98eb839efb8b3d86d56b8ab5de5a30b5d6e99b4bd41802dVirustotal results 32.26%Heodo
2020-09-22UNXRU33QAWPXI2.docdoc 0de0e21b2d6345de1cea6993fb9a6844eb12ca11686ea8c82a1792e030233557Virustotal results 30.00%Heodo
2020-09-22BAL_33306635.docdoc 2bf3d0be0ec0aaaf33db1bbe5cd306e4f922dc550013d001e834f25ad4897e2cVirustotal results 28.33%Heodo
2020-09-22DOC_WNR_090120_OMB_092220.docdoc 6c12352efd4f3c01d75a62ff92dc923f367b1a81dcb6b7ccb436c8a27f1f3be2n/aHeodo
2020-09-22BAL_MQ8412686497PK.docdoc 50938c1e8bcfd60435f294949bf3b07533f8b5ccf1cf92d08a77f4a222037092Virustotal results 46.77%Heodo
2020-09-22INV_64823431.docdoc f8268201b25212a26e7e88ac111369a98dc7773599dec9742198ad00e0bbd2fcVirustotal results 23.73%Heodo
2020-09-22BAL_MAB_090120_QWE_092220.docdoc 868edec3ec279aeead8acb68afa154463ee9c468e59e7a39c2ac8cc532356c27Virustotal results 46.77%Heodo
2020-09-22W_XWW59U012.docdoc e9eef03a2437c273d0745bcc0b14df9ad8c3cb2807330029d609796172ad5d45Virustotal results 22.95%Heodo
2020-09-22REP_TY1311905199DD.docdoc a714039155100cefcde16b35ce58326190b758e5cb309369d07650f56ea89a13Virustotal results 23.33%Heodo
2020-09-22ULY4X08G8OG3WE6.docdoc 0495430e2cef343573a79a505b3e553b20cd8d0328d9e3169adb568b4452da2dVirustotal results 44.26%Heodo
2020-09-22WRK_090120_FEV_092220.docdoc c644ecae09d26a7e2d91c741f78016ac572f541901955f91642e77b55cdd4f74Virustotal results 33.33%Heodo
2020-09-22DOC_YG3397698147VU.docdoc e67daa065f0f3b78765e2306fa6a76b1c8dd01247b9fabecd118aeb07c2d8e62Virustotal results 30.00%Heodo
2020-09-22INV_PO_09222020EX.docdoc 06cd9d2fa67f536c1ab12dd95c98d8e8f8a5066fc945a0a4f16591658ea49383Virustotal results 25.42%Heodo
2020-09-22DOC_SKS_090120_KKE_092220.docdoc 133bd4b316ead52ed9f34a16c1cf897cf69ebf2c69c2bf92b97d1a0a3e7b0515Virustotal results 31.67%Heodo
2020-09-22INV_KG2516807933HD.docdoc 013f49af6f7f5e1e34116aa22e1bc2ba4babbb2c0b0f97bf4da287ce88b16a16Virustotal results 51.67%Heodo
2020-09-229LN96QK.docdoc 5b38fc0a82ee2bad1bffc097d51204cfc0a8891028bbe88ccc02e3aeb5bdc701n/aHeodo
2020-09-22FIL_090120_WRU_092220.docdoc 5afc0cb3678f76158e4a1f13c92dc70d4f35a711631f63ba0ebbac906b39256an/aHeodo
2020-09-22BAL_75870187.docdoc c2ab565abcbffa0a64129a761bc41abe273dd626c4dd8592441e07474a847532n/aHeodo
2020-09-22D_QWD_090120_KYY_092220.docdoc b8457d934a203d67e6a38c141b5929516d0cb9900a6217419fb3e0edf537ec7dVirustotal results 49.18%Heodo
2020-09-22K_WUK_090120_QME_092220.docdoc 04cabb338b7a3e94fdf32d4bc5677be8a6320b982cee3ea841041bdac66d1693n/aHeodo
2020-09-22FILE_50023606.docdoc 1e077de7f01a0d239a1aad3c66e1399b709836c2a325f5838bd75a45e90f83feVirustotal results 48.33%Heodo
2020-09-22399079165365598122.docdoc c81a8e36fd35e1dc7a1630db51f84cf46292375453bc046cf68c9cfb25f99849n/aHeodo
2020-09-22BAL_WU4700056533YG.docdoc af8bf361d20991876059324d82a58cec0fd954b981438085e5c5a48bc3f83d11n/aHeodo
2020-09-22PO_09222020EX.docdoc 748c41d1a000aea514c6a37f5c1e4f0c856109a038d5303337d2564bd75c21fbVirustotal results 49.15%Heodo
2020-09-22INV_54406029.docdoc e9fd5fc869a22a5f9b22333cbe9745985826875b2f62983c8e0964531dd9cd7fVirustotal results 50.00%Heodo
2020-09-22DOC_LET2JNDI2.docdoc 1381f92160b73b6c0bb7968095746ad79ca485ed8190e82e45a020dbb51772f5Virustotal results 44.26%Heodo
2020-09-22REP_482QL9HWQ7D.docdoc 1b29befdf0bca8218c36edb5cab59349355ecbdc760f419096bed97f5630be14n/aHeodo
2020-09-2285141166.docdoc 17a4cd0f460a143155b26a1c6c8c3c21526d3e3209e90c80a3e1913d6f283caeVirustotal results 44.07%Heodo
2020-09-22Y_VMC_090120_USX_092220.docdoc 8d49090e5ad1ca487645e8dad8b6e90d267b4a7f5d4cdf4d9c4441d969f088caVirustotal results 45.76%Heodo
2020-09-22DOC_PO_09222020EX.docdoc 313348d434b780af86ba7a2d374246c8188545ba67cafdb86907a445c2052df6n/aHeodo
2020-09-22DOC_EZSYPTRH0V0L.docdoc 61b104c81d6e07bc38102631a844c6247bfb16ff720fc134b3a95d601df23fabVirustotal results 42.62%Heodo
2020-09-22REP_05005567230.docdoc 8e8096345532892bc0b1ed5814672ac5c4e4cca7e1e60d8ffe087282d8c2aa6cVirustotal results 38.98%Heodo
2020-09-22M_YMG_090120_DDH_092220.docdoc b014c2416d9b6457a33a1c69cb00a1183b6342db10f39dd9b9ed3ce8b14e3be8Virustotal results 39.34%Heodo
2020-09-22PO_09222020EX.docdoc 718113e004b811df9d311a7edec1092b2aab2d9173d762022544a74b5ba02657Virustotal results 32.79%Heodo
2020-09-22EE8952497324OF.docdoc 76d7ce6a12f4c9d03615c5255b79835bb2cff27e86deb3cb790932cdca164ac7n/aHeodo
2020-09-22BAL_BGQ_090120_HOU_092220.docdoc 58dca36db6814be3bc7016599693d84cc074f17451bebe7eb98baee99cef0ac9n/aHeodo
2020-09-22INV_FMZF0TCME7MDER0.docdoc b664feace8781e7ad1ed550dc5f1a66b77b73f75228c1898a1986b67fd543477Virustotal results 33.33%Heodo
2020-09-22REP_PO_09222020EX.docdoc b47a1743a01e5885f50abb8a2bb9ad539a52c6b38e1fe97ace7c7165c384a523Virustotal results 31.15%Heodo
2020-09-22INV_NSS_090120_DUS_092220.docdoc c74d9dd73470acf660bc458fed146e653197422214956ce6dc4abfaa8a8a1544Virustotal results 31.67%Heodo
2020-09-22ZBN_090120_OMW_092220.docdoc 09354d76c301e3e65f29aceb76a3bbfa8cd5bc590010a3eaf044b7050c3e61b1n/aHeodo
2020-09-22952071169342021835220.docdoc 0489a6b94e2c6206bd2730cc32c8f873d1ac1af2ad02bdb69a77a8078460741cn/aHeodo
2020-09-22PO_09222020EX.docdoc 1f334e20b45cf7543e44000e09943a75200b0ede54423ea0d4b7b263f721fc3cn/aHeodo
2020-09-21YJO_090120_WFZ_092220.docdoc a09dd0e095d93b68eb0713e31e92eb9caee82983e99ddccdb71177216cc52f30Virustotal results 28.81%Heodo
2020-09-21INV_DYQ_090120_QKQ_092220.docdoc 61ba6999ffd23a0f22f6827b577e773e9d6a79ef366b3260a6b55a792c98d519Virustotal results 32.20%Heodo
2020-09-21PO_09222020EX.docdoc 86a8ee1c5f1f5ce84a8f3b31c04f51e324a47d2de0936339357ee0e9a139e0c6Virustotal results 30.00%Heodo
2020-09-21DOC_RENXU9HN93ZAMWW.docdoc 75aacb9b9e0f3b4113358caf49078bb79286fb9637c523807a8f533d0df7c834Virustotal results 30.00%Heodo
2020-09-21WU0440718574GI.docdoc 39de97c9d5604bd29ee471559a22ce1c35ad2157fb4d71802c96e7621cde7fe2Virustotal results 30.00% Heodo
2020-09-2150142674.docdoc 453c3ac3a5da64e336f00f48a7e77a64a0d1a69b2bb227fe318abd0e873501abVirustotal results 31.15%Heodo
2020-09-21INV_PO_09222020EX.docdoc b0c1e64b3b04df99668587d56d89c513ced13de50d8596e1d49a2eac66c96049n/aHeodo
2020-09-21INV_FNZZVADYET679Y8S.docdoc 469d40c989ee52a990ee653b38417a1fcd785b0a2179e5d997fc82843e0b47fdn/a Heodo
2020-09-21REP_07079453.docdoc 778a7dec2a3a0d2021406e3186ff559dea78e4a07678dbf5619e3cd6d7d8217dn/a Heodo
2020-09-21REP_PO_09212020EX.docdoc e6573ea6cfe0bdb4f9b3d43b7b68207d18fb492c9ed35aaf6bee52d0d681a9ddVirustotal results 28.33%Heodo