URLhaus Database

You are currently viewing the URLhaus database entry for http://onex.co.za/journal/lm/5KBqGENURpGvE84pYjM/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:596806
URL: http://onex.co.za/journal/lm/5KBqGENURpGvE84pYjM/
URL Status:Offline
Host: onex.co.za
Date added:2020-09-22 13:01:05 UTC
Last online:2020-10-09 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-22 13:02:12 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:16 days, 11 hours, 14 minutes Bad (down since 2020-10-09 00:16:43 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25Untitled 20200924 264293.docdoc 241da35fc47abf50c83032be9bdb0df27d81d7d1920055a76b7a84aedeb8a30dVirustotal results 53.23%Heodo
2020-09-24MES_6423.docdoc ba70c35fa9fe6c659211cb57c37743fcbfa7c18cd4904cd8da6963aa573b65e9Virustotal results 20.97%Heodo
2020-09-24Rep_20200924_WC412.docdoc f8286d31cef36d7550c31eb76cb122ccff1a17990f0d72042ae3fe756d50b4a8n/aHeodo
2020-09-24Mes-20200924-DK34755.docdoc 6dbe352bb9203a1b268ab47b35f5d86b3f309a8e2595f8ece915bd547bc9c33fn/aHeodo
2020-09-24mes_20200924_R2630.docdoc d82d5b660d95337c8161aa70584a8f8d8ac9134a4566571a7514b8912fe15766Virustotal results 19.35%Heodo
2020-09-24OUQ5559-20200924-A0131.docdoc 6093c4cfb002d365f8ed7749c339b75a92ae859f23a5989378d8096481daa5caVirustotal results 43.55%Heodo
2020-09-24MES-2020_09_24-2317762.docdoc 448c58d4e526ffd04116fb0f31bd9971ce9f51c993c4368e3ef8a54c93a2c70cVirustotal results 44.26%Heodo
2020-09-24O851-20200924-823826.docdoc 4d3529cb9c98cae2816c1b943de1d50f2acb43769d288fffa8b7e28324faa8d8n/aHeodo
2020-09-24PIU1077_2020_09_24_010.docdoc e7f6321d905f4db566091d8d4520f4d128bf66917cc86d794f1d435352ed2899Virustotal results 37.10%Heodo
2020-09-24835 957333.docdoc 89a45325b3f1df9afd4f37462ca8202a64c8937098465331f9c8e11a042f9280n/aHeodo
2020-09-24Attachments-8035.docdoc 43320c9feae650e3c06d36b9e410a8c53026cb49b0ff87d773cf1f72cab00143n/aHeodo
2020-09-24LIST 2020_09_24 UXU6378.docdoc 0d16dbc897960b7bcf3efddbcff01a0178862dc16208725dfba45d5ebaa109c8n/aHeodo
2020-09-24INF_261.docdoc 20994e696d6f973aa02b7ba5d2265c0888048ca6fac06b739208feff988aa8a8Virustotal results 33.87%Heodo
2020-09-2471046 2020_09_24 LP416872.docdoc 9b6ddc314258dd07193fca458631855ec60eaf598557379f4bfb34cf178a0d41Virustotal results 32.79%Heodo
2020-09-24Arc-2020_09_24-PBM83689.docdoc 459d111095342d54bfb487028848de4425f55b76dd86c33da107f3f09edfc4a0n/aHeodo
2020-09-24Arc 20200924 OO444677.docdoc d459ae5f366703f6a9c1ad00f597a966ab17bbe733d0eb970e94a9e1ed912dc7Virustotal results 32.79%Heodo
2020-09-24DAT 2020_09_24 TRT35451.docdoc a1eadd639edafd2b4c14ee3c756169cf8cba0b790c132d2a40f21f5febfecb77Virustotal results 32.79%Heodo
2020-09-24Mes-20200924-26763.docdoc 004393cd825cf21d4459f69da4a083e90490e9c9497fc8eac740cdc269cbf2faVirustotal results 27.42%Heodo
2020-09-24List_F807.docdoc 94e4fe6c73db0e80100417fe60ab8d9b1fe7fc9ece7a2923861e1e1d42717d4dVirustotal results 27.42%Heodo
2020-09-24DAT 2020_09_24 FQ5361.docdoc 723d382c65591be516dc0f62f769cd79b42fffef91a244bf773da31d1478f631n/aHeodo
2020-09-2457483728_649568.docdoc e5393bee26b731a4036fdd9744d6b4f51d3d3ce1387b402ba4d69f2e6662d58bVirustotal results 29.03%Heodo
2020-09-24M62547 OEK591.docdoc f7561790eb64bec3a2d4c3bef288b826285ba9af1ddb3d05c1308778884a4052Virustotal results 30.00%Heodo
2020-09-23File 2020_09_24 MKK893.docdoc d5925a52ac9cd59de6d9a5006d99886c79175fa1b26006effce8f26ca1a6385bVirustotal results 27.42% Heodo
2020-09-23MES 2586552.docdoc f3d1c3c53293c401bc39848174a8b6877d25542de861e94b8e6560c63a4e94e6Virustotal results 27.42%Heodo
2020-09-23Mes_20200924_ZX255.docdoc 96307c5a62e457f86a55e67c624892de7b841d9f9e37545fff75861f6ff6e749Virustotal results 29.51%Heodo
2020-09-23Inf-K0737.docdoc e213173e3eda08277bd3f8276a466a8eb67f19823c6fb95aa45a06fd29fcd646Virustotal results 27.87%Heodo
2020-09-23file.docdoc 5f81d77b9f520598ee93cdda1bbea38982756b2457fbdea877739ce5dacb294bVirustotal results 27.87%Heodo
2020-09-226148 2020_09_23.docdoc 41324ce5731ef12252c333f6b777f49fc8d45e9a7ab785823e48e08c8c6c330cn/aHeodo
2020-09-22LIST_20200923.docdoc a132f8367518b36376bd03160587713674ff98805021fed3d6e3ff58c045a97dVirustotal results 26.23%Heodo
2020-09-22572.docdoc 04087a4a4bb61e7f81ef96d89e29efed54b189a7821d5424c2d7d9443ecf56f4n/aHeodo
2020-09-22doc-2020_09_23-6863299.docdoc 9895cbda416306bb0fea5069cc2c9525a714f63de4260492ec34e1d5697ae24bVirustotal results 32.26%Heodo
2020-09-227847387_480.docdoc ace46d2110313599b081c85c401a092182633a33621e529365657305eac4c094Virustotal results 32.26%Heodo
2020-09-22dat-20200923-P864087.docdoc a3687bbc2aeb593d37b6c271d3a7cf88eae1627ed4534daa58c52ea4ce175585n/aHeodo
2020-09-22list-20200923-29474.docdoc ed8d8e2b3ecf9f7c9623777392dfc8655b5c3db9800977815afe28fd2a380a8fVirustotal results 29.03%Heodo
2020-09-22Inf-DW44282.docdoc 9239a6b5f8db1ff1643aec4cf3bf3bb20d07753ffe2b686b091154ba96d97c42Virustotal results 29.03%Heodo
2020-09-22Untitled.docdoc b65531ece6eaa37f17e7288f476839b5b62cf10e5c4a0c9ad70b236b463820ddn/aHeodo
2020-09-22Doc-2020_09_22-85841.docdoc 519ade7779233a4aa1559c30318a4785bb0e2c995a56b01fcf95b4b69e1a3fd0Virustotal results 29.03%Heodo
2020-09-223519019_20200922_721.docdoc cd537ffeb9d0a9e21855ebee9da69cd5b7e1c0839e6fca3be47f0a695a41d2e4n/aHeodo
2020-09-2223985_2020_09_22_T1311.docdoc 3c8a083cba6f42eeca7d197da85d0ab24ee5e9e03de7d32eb976903c4bf4a604n/aHeodo
2020-09-22File_2020_09_22_KV2312.docdoc f70acfaf7932e07a6befae363c753f68bfbd78961bda44459f6051aeda261c90n/aHeodo
2020-09-22File 25674.docdoc 1c009a1ea64d66b79cdfd6b376038c334b5d2b492c90aa17333d91b49a354eddn/aHeodo
2020-09-22Rep_20200922_6938990.docdoc 955417c2e173ab3f64f91ad4d7921703e936abfc30a3115a22289becd6fb94dbn/aHeodo
2020-09-22file_HVU14067.docdoc 104d2e1471c7993b4d02e8043079b61edd68a9c7744f66779b40d798cc1f8da1n/aHeodo
2020-09-224260571 2020_09_22 CB03917.docdoc e95caa819c63e8dceb7ebc92b63885e1e55904cdae653c53e75ce71afc69f711n/aHeodo
2020-09-22doc_2020_09_22_NR671.docdoc c4699bc83e2c480aa53af341f4b67b5dfb27cb5d28fb09a7619b55689b686ae3Virustotal results 45.90%Heodo
2020-09-22Arc 893.docdoc 4b28c06d34e565248875bbf66d52172c0b485192dcaab8144efa61fd00fddb5aVirustotal results 45.16%Heodo
2020-09-22YIN981 2020_09_22 084.docdoc c02f344560f245e4228f6f218c205578449c7da6d58290a4e59fe7a1fc87a1c4Virustotal results 45.16%Heodo
2020-09-22List-N299.docdoc 8ce52163ceab79b32f012e6129070434d32ea30dfab92da2a9e62e79da693497Virustotal results 45.90%Heodo
2020-09-22arc-2020_09_22-528.docdoc 8becb7ca0d2d13bc1e667d22cf222c927c6b952a67daede438a39afcf555629eVirustotal results 45.16%Heodo
2020-09-22Attachments-20200922.docdoc c7ca7a44edf6effa174d0b1dce9466bcc8e5f5acb9c0fe0e9925104c9af8e5dan/aHeodo
2020-09-22doc_2020_09_22_YKW5821.docdoc 1af6f1965d4e602979e445d1fd72691e2fc2abc5c9bf5fd7ed175c7fcb76dd87Virustotal results 35.48%Heodo
2020-09-22MES-2020_09_22-L03587.docdoc 21522233d51172d1c9e3dd7ac515ae5cfaa2233c12d418866d392063e32088beVirustotal results 33.87%Heodo
2020-09-22Doc.docdoc 9d69feedac414e2e1554965f077deb501f1f7a47ceb72ab2b68539c8314e602bVirustotal results 32.79%Heodo