URLhaus Database

You are currently viewing the URLhaus database entry for http://sharkrigs.com/sys-cache/DOC/e1xvc3cryry/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:607592
URL: http://sharkrigs.com/sys-cache/DOC/e1xvc3cryry/
URL Status:Offline
Host: sharkrigs.com
Date added:2020-09-23 22:57:06 UTC
Last online:2021-09-17 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-23 22:58:20 UTC to abuse{at}ukhost4u[dot]com)
Takedown time:11 months, 28 days, 14 hours, 9 minutes Bad (down since 2021-09-17 13:07:25 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-24582410432.docdoc b0c9e63cd039da312aea84e7c632e4faab8fa1bf3b6d8382f6fd898635c39941Virustotal results 22.58%Heodo
2020-09-24LN3876959923LN.docdoc 69ff6eb0a71090b17e21b2829b6108b2eebf8bd12b92fe587ce103a4c5cc0f3dVirustotal results 20.97%Heodo
2020-09-24INV_JOI_090120_WID_092420.docdoc fe0a0b77df06046dffc8059552a1484dfa263360d127d452805142945aa4e5a8Virustotal results 20.97%Heodo
2020-09-24WL0419155410LU.docdoc e2dffd7e2a3663a738dac21fd590dec2cce14df9ccf7aebcc5944258a827bc04n/aHeodo
2020-09-24I_485977359888.docdoc d522d2f16aa3e16dc127e4340ff8bfd23ab4de894995c8dbb75b31bd4b4d73cbVirustotal results 42.62%Heodo
2020-09-24L69514247TNXDG1X.docdoc a92504d33c04f21f1e8bfc2322f66cf3d45f486ed7ebbf78f3ee270fb0d3e3a2n/aHeodo
2020-09-24FKH_PTE_090120_ZVN_092420.docdoc a92c46f200df0158c9798071b11a95d81eea54126f75084d6b9b381d992d4d0cVirustotal results 40.98%Heodo
2020-09-24RF_PO_09242020EX.docdoc 21d6462af9e28cac11c5b8bc20c9f07e953c7af99c15966175e8b8cfc8ee9363n/aHeodo
2020-09-24XAZ_090120_WXY_092420.docdoc 353903d7b90942b9e45059e7a1ea56eea91c412f5cf0864982870f55f9e61e98n/aHeodo
2020-09-24PO_09242020EX.docdoc 813c3689cf9fecd602a950034dcd90f060f360f68193e239a02e13ed8587c220Virustotal results 37.70%Heodo
2020-09-24BAL_PO_09242020EX.docdoc 3f165297835a1afd80d7c9fcf087b03e04dd420e6e747ae16a5d0cb6da8eaa97n/aHeodo
2020-09-24907832150476579544498.docdoc 3b95077a69ba1ee1226face3a5f83a78950357b93815180ebb6b6772cf8212e8Virustotal results 37.70%Heodo
2020-09-24R_58765986.docdoc 3e64351afeaa45724ba4e119f792781b8f1e311623e056e6c7f2f27f2ee9cc5an/aHeodo
2020-09-24PO_09242020EX.docdoc 8c2167e0297ffcef1e67f0aed9f87dd7de95a4b552865584b7bd0185ac8f98f9Virustotal results 35.48%Heodo
2020-09-24INV_PO_09242020EX.docdoc 80bbc6addbc3d97abecb341c4441b7963d70a2a863d25cf0d35137632a841fa4n/aHeodo
2020-09-24LAXL_3763541860.docdoc 098e0c52d47feef3ad6ad20535919541c76799f4bddd67233049509a0ae8656dVirustotal results 30.65%Heodo
2020-09-24BAL_MHB_090120_NDX_092420.docdoc 6e7ae3df631cfa3174a4e9e061f71a3453806fe930adca05896343d9e6f07ea4Virustotal results 29.03%Heodo
2020-09-24REP_NJX_090120_IQV_092420.docdoc a6bdea3758ccb519e3736628a467290a74b47562f8a489e89346642276c9f177n/aHeodo
2020-09-24OE_66426115.docdoc 0e30a7bc2d19a489b6c26b22e411e9f691cfb0b9d693a5888ae064519809470cVirustotal results 29.51%Heodo
2020-09-2465015021.docdoc b3d57ca8076070443526c2cb24b0a0ec82bdde3df2573290b884425536b600b6n/aHeodo
2020-09-23FILE_BY1545456327TK.docdoc bad24e6bdf40e58be83bdeb717bcb1a09ae986e50f8c51fdc11ff8de777a4482n/aHeodo
2020-09-23BAL_10095589.docdoc 1c5a69e8a8d964a5898cedf16872a9903fcf2ec9f08ce3ecd9510f8d4453c4b9n/aHeodo
2020-09-23INV_KBP_090120_MIF_092420.docdoc 13b44fe04aec7fdc7dce67de3a987317ad25ab9301110382847ca08bd645f2ben/aHeodo