URLhaus Database

You are currently viewing the URLhaus database entry for http://congtyquangdung.com/sys-cache/swift/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:606680
URL: http://congtyquangdung.com/sys-cache/swift/
URL Status:Offline
Host: congtyquangdung.com
Date added:2020-09-23 18:43:36 UTC
Last online:2020-10-02 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-23 18:44:03 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:8 days, 7 hours, 9 minutes Bad (down since 2020-10-02 01:53:26 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25BAL_PO_09252020EX.docdoc 8a73bdca97395b9f659104c200734008fe685faff6734fc31ce0cd575090f1b2Virustotal results 35.48%Heodo
2020-09-25WE9873724504FV.docdoc 32e608f5734fcb68970d54ede47ece4cf463eced4316ce2fd04fb7869d2072d3Virustotal results 29.51%Heodo
2020-09-25FILE_ZM6536307053RD.docdoc fe2ee906d8d8678d7ec22ed99ec97b47b6bc55850eefac61f9ec622f2a049bb1Virustotal results 33.87%Heodo
2020-09-25O_087597267353553.docdoc 89825271f1b18375f523320908826b553e9da21bce402e9844bd3d55446fb509Virustotal results 30.65%Heodo
2020-09-240I3N1MPH4M2V93WJ.docdoc 30a0c59711e06c411f4e1a20c649f507a1ef69742192df4ede24d92289aee591n/aHeodo
2020-09-24XKP_090120_FXF_092520.docdoc fe2c4c0e8452ed6b2c6e644296e472af18a988e142404e89061f6cb8f2420593Virustotal results 30.65%Heodo
2020-09-2405299793418615.docdoc 356e4701cc94b7ffbf517afeef9f5c0bbe45782f861d51859f0bf099df96581bVirustotal results 32.26%Heodo
2020-09-24INV_56484750.docdoc 071b94219cf7f333e5e3c76753c74ec9a5d71f9d4ccf17cb631287fe3508e39fVirustotal results 32.26%Heodo
2020-09-24BAL_JN3980468145FQ.docdoc d0d83818424904de50c76c45ef3c2bde9e3d7a9527fa2ad35524721ab65f0f2bVirustotal results 23.33%Heodo
2020-09-24I_4620516618972532.docdoc 7e1935fab86166df5d6770468bf12c57a50720c0b7ba90e21accf2ca8493ce15n/aHeodo
2020-09-24Q_89974612.docdoc dcffae4b2bca57b2e8b65609a127df9975ff71d81bc14a409f0058dba81ebb56Virustotal results 29.03%Heodo
2020-09-24INV_67720918031742075003584.docdoc b9211d9fdc8cf882f69237754fd387b887bd80a07f2abe12c2f687dd04ec3ad4n/aHeodo
2020-09-24CWK_090120_GQY_092520.docdoc d25aed1074e6086a1e8ee4fb6885c8accddd96469d110e343f36d2e13aaebee2Virustotal results 29.03%Heodo
2020-09-24DOC_295936249416321841.docdoc 715f9dc1efa5fca591ca9ec3b12ea2cbfb023fdeb8f0964988c191a7be6166c8Virustotal results 29.51%Heodo
2020-09-24CTE32YP29CIAGNCP.docdoc e8920178a654a05f4d58c417ab5df624d778f70deb69ef450e79c6511c72e55bVirustotal results 21.31%Heodo
2020-09-24FILE_HP3769248386KA.docdoc 9f420a6781e129b0eb85adb6d30b0e390b5c9e7625a14eae99752e7a5ed0914dVirustotal results 20.97%Heodo
2020-09-24I_RBM_090120_KOP_092420.docdoc f558184120407b98a2f1473322ca913b07ff58cd20d06ae924a355e11821dc9bVirustotal results 29.03%Heodo
2020-09-24BAL_56533229.docdoc 0043af7d182b9d6145aa3d75f6ced14fbddfab10b615e6997bd426d3a23da6a7n/aHeodo
2020-09-24PO_09242020EX.docdoc f6f1cf12aa5337999c20c4cfd641254575e981ad7c463944cfe676ec92a23165n/aHeodo
2020-09-24REP_PO_09242020EX.docdoc 29f8908fad78f532f3e53d23cd10d6289376b52c559e2398ab3a2ceb671ba1cbn/aHeodo
2020-09-24TG7424412070WF.docdoc 60b9c51a988490875a152231c3217de228b7406a1378ab07263aea7f02ecd3ccVirustotal results 20.97%Heodo
2020-09-2428670162.docdoc 7e78d353bf29cfd042c3741647fea216a70d735df0b286f87383bc7732e6ff23n/aHeodo
2020-09-24DOC_00748242.docdoc 37b5d86751a2c999901df382ddadc7aa72d891a4e24ef527e02266ffab2efa41n/aHeodo
2020-09-2471840999.docdoc 460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974feVirustotal results 33.87%Heodo
2020-09-24ZYWD_BRY_090120_GHK_092420.docdoc 3321abc9c460868cfafe80f968ccea4254b02ede808bcabe4dd58055ffddb358n/aHeodo
2020-09-24INV_83Z6PGN.docdoc 0ce47002a6074a859caf912c52447785977b4694c431ba468c48fc21843eba5dVirustotal results 29.03%Heodo
2020-09-24TGN_090120_GIG_092420.docdoc da886aa9c4cf9af28406c6c6b2bd1a84fdca0dd1861259185aba9da512264acfVirustotal results 29.03%Heodo
2020-09-24REP_BEV_090120_ESM_092420.docdoc f97b2fe462e15ffbe47937e6d6ad815595fdb180d137a7ddd92f9f41e5a6b5eaVirustotal results 27.42%Heodo
2020-09-2492459325.docdoc fc98a386a0e52834ae5dcb93beb5aa33305f3e71cd4183a2e47c7c38d9cfeb1cVirustotal results 22.95%Heodo
2020-09-24A_GX2656929696YD.docdoc 5c7bfd1823b37a4f48ff0166d60e88e0be88ae562cf87c6bf393597da4fd835bVirustotal results 27.42%Heodo
2020-09-24REP_PO_09242020EX.docdoc d9e5e99a04e37db7783f369c532e2e6d5171b90a286f2c397fcd6356a1abcce9Virustotal results 26.23%Heodo
2020-09-24REP_PO_09242020EX.docdoc 94b624741c1f94566cdff34893b864991875391da2ac00168f15691c48043367Virustotal results 25.00%Heodo
2020-09-24K_95953996233153647201.docdoc 33c770f81db667213e95c2c605c64bbb8aaedd59dc212d411eee46171f3020a3Virustotal results 22.58%Heodo
2020-09-24DOC_YXD_090120_BFO_092420.docdoc 0c0a47166f8b2bd4ca8b24c44ebdc1729d7dd6a49d3ba2fb400812d5409b7648Virustotal results 21.31%Heodo
2020-09-24REP_JZNGT3WO1.docdoc 3f772c90ffb4a3f86c025607102abfb70ce728d1070671319642e1ce5dacccb3Virustotal results 20.97%Heodo
2020-09-24REP_58994200035723.docdoc e4a782671d6a001f226fd064f2f6204cb368f6e4e82aad502a4d5cd56b65a78bVirustotal results 19.67%Heodo
2020-09-24REP_PML_090120_CSI_092420.docdoc b1ba77be7809b33fe1f34d2a388f0d8397bac88ac18ebf4fab88748d6fe2edf2Virustotal results 21.31%Heodo
2020-09-24PO_09242020EX.docdoc 994c514f41d20931aa98bc87ccd2de05af9f8245435c55b0f29f7d2062c9b5f5Virustotal results 22.95%Heodo
2020-09-24INV_KU9959873586DJ.docdoc 22d0afad8f9bf09478e526450db6e58a140ff80ce34be8b6cab70ec7b9ad475eVirustotal results 20.97%Heodo
2020-09-24RC5828643422OB.docdoc 8b209e2d294b8c5b50bd83d9fd9184268ce21313f7d5876d74c7e10f48ac946eVirustotal results 20.97%Heodo
2020-09-24E_PO_09242020EX.docdoc 77a72a7f45a2e516a520ecb15d79adaa7213cb9778309de61bc9dd2a8a2e5891Virustotal results 21.31%Heodo
2020-09-24PO_09242020EX.docdoc d522d2f16aa3e16dc127e4340ff8bfd23ab4de894995c8dbb75b31bd4b4d73cbVirustotal results 42.62%Heodo
2020-09-24GV_9ZYFQ2XAO41HQE.docdoc 4d6a492ccf58a9712b96c0ce4443b1881fa7405bbda94ce7cc0a92ef06a2daafVirustotal results 40.98%Heodo
2020-09-24Y_KD8840034637NB.docdoc 19cb69cbc19879e5cae4e56b1d702cfcd04c72ebf8a9c795592d509a91e5a2ean/aHeodo
2020-09-24DOC_48067607.docdoc b86aa2863a808be4474b2ee7285bb8642b67c9706f68b81925ae69c824defd8eVirustotal results 37.10%Heodo
2020-09-24DOC_ZCH_090120_JKK_092420.docdoc c157afe5eb9208b3fe20c864292c3f7a3c1eb02486f1a6b31fd8ef0349a9f3faVirustotal results 36.67%Heodo
2020-09-24VTO8D0NT.docdoc 7aed739ebb48064d94fa17f51816a7d3f4414ec8d578a6bde0830e844055e971n/aHeodo
2020-09-24FILE_18155631.docdoc 3b95077a69ba1ee1226face3a5f83a78950357b93815180ebb6b6772cf8212e8Virustotal results 37.70%Heodo
2020-09-24DOC_3344757132841559556.docdoc b427adb1ae5fd4b290ab65b93ea392c40c42f186b732f90768099681494d10caVirustotal results 35.48%Heodo
2020-09-24DOC_19294284.docdoc fba080b64f42891f1ddec30a5a83c9881e8b8dc2e577226eb1575654caddc56fVirustotal results 35.48%Heodo
2020-09-24BAL_PO_09242020EX.docdoc a5be49695d9d336e787b37a7a4955307a263c426f7cae3cecdd69d2bfe026585Virustotal results 32.26%Heodo
2020-09-24S_4520441901281103407797591.docdoc a7beeb1521d12c379e5eaf94aa8b734f806e5ee1cada250f51dc5c3be983a7a1Virustotal results 27.42%Heodo
2020-09-24PO_09242020EX.docdoc 6e7ae3df631cfa3174a4e9e061f71a3453806fe930adca05896343d9e6f07ea4n/aHeodo
2020-09-24FMGSV4I.docdoc 9ca8f66ca174af2d6d9944b2cfda4685bd8710217610c24b6332ae5436c52405Virustotal results 30.00%Heodo
2020-09-24INV_PW4399667115XF.docdoc a6bdea3758ccb519e3736628a467290a74b47562f8a489e89346642276c9f177n/aHeodo
2020-09-24PO_09242020EX.docdoc a279b3d82c086e59725b814eb8f6ddde5387efb28b19f197dcb6a82e239f9906n/aHeodo
2020-09-23Z_PO_09242020EX.docdoc 324337642923507f95f8882431a523b118e670bec80dc82ea989321c6abd2e37Virustotal results 29.03%Heodo
2020-09-23REP_PO_09242020EX.docdoc 16d16ae909ca22dc9c0dbac471cd299964065913894d10f00e91a967f2eac359Virustotal results 29.03%Heodo
2020-09-23FILE_OS7611767483XZ.docdoc 8c5a7c3909eb8fa754ea6c689f2063f553e1400cc12b30266c8f59479453ef0eVirustotal results 29.03%Heodo
2020-09-23ZDG_090120_YTJ_092420.docdoc 13b44fe04aec7fdc7dce67de3a987317ad25ab9301110382847ca08bd645f2beVirustotal results 27.87%Heodo
2020-09-23BAL_44475288.docdoc 76435bca763f869f80daabd795435e20bd52e2cff25a5594ccc20c8be946a2e8Virustotal results 37.10%Heodo
2020-09-2304109065.docdoc 313e8d2e8e5432e430d5fade511692fd225e588b5b619ddc500195e15e56d5e0Virustotal results 36.07%Heodo
2020-09-23REP_RV373UE8HS2.docdoc 5d7354671a544c392039f3b512158f3505f576f34e4942109e8a7adf19bd07b0n/aHeodo
2020-09-23PO_09242020EX.docdoc 042dc54cf3a44dd90279a0057a99dbfd68e9b60897d814d0d37a6f28da370859Virustotal results 34.43%Heodo
2020-09-23REP_AZH_090120_CKJ_092320.docdoc 8baf1240f6b87a1faeefc1474c846750b7bcf2feb0aaeeef6ccc53420596b41en/aHeodo
2020-09-23REP_OX6C98K.docdoc 887fa6a834121789518a2119d59559b212de2d235e454fd67d1e000e8ee7df1dVirustotal results 32.79%Heodo
2020-09-23DOC_COUIYI9AVJVXM0.docdoc 3d0062b20db4e52a4f9612964699a06f8920aa931e2126424d8190273b7eb948Virustotal results 35.48%Heodo
2020-09-23DOC_SI4819472101CC.docdoc b9b92fd2db926541ffe87cdb4d652394ddd2b33559d51db96c862ffe2e6c2e1dn/aHeodo
2020-09-2387835977.docdoc 6bb96965fcd7c4acb3b22a1c3f1459a042c13a92860c474997aadfb217a905bcVirustotal results 33.87%Heodo
2020-09-23BAL_70008252544709193.docdoc dc22889242c4ec3f0a5cbe5050df8ee1ccc8231c28a144700b02bbaea1e2a1d2Virustotal results 31.67%Heodo