URLhaus Database

You are currently viewing the URLhaus database entry for http://ditaket.am/new/Reporting/km3la4/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:608124
URL: http://ditaket.am/new/Reporting/km3la4/
URL Status:Offline
Host: ditaket.am
Date added:2020-09-24 01:22:02 UTC
Last online:2020-09-29 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 01:24:04 UTC to abuse{at}contabo[dot]de)
Takedown time:5 days, 15 hours, 36 minutes Bad (down since 2020-09-29 17:00:20 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25PO_09252020EX.docdoc 8a73bdca97395b9f659104c200734008fe685faff6734fc31ce0cd575090f1b2Virustotal results 35.48%Heodo
2020-09-25INV_BWZ3FC573.docdoc 32e608f5734fcb68970d54ede47ece4cf463eced4316ce2fd04fb7869d2072d3Virustotal results 29.51%Heodo
2020-09-25BAL_WXM_090120_HDZ_092520.docdoc 5527db4d50b16756417124cf891df4ce3d61c561eb2782f339973dc75c73390bn/a Heodo
2020-09-25D_XY6891924191PN.docdoc fe3018c09ebbc1ba8e04839eafcb353384ffb23b0be6729808a820abc068b280n/aHeodo
2020-09-24DOC_6736022488811508817349153.docdoc 30a0c59711e06c411f4e1a20c649f507a1ef69742192df4ede24d92289aee591n/aHeodo
2020-09-243ZJXCMIE.docdoc fe2c4c0e8452ed6b2c6e644296e472af18a988e142404e89061f6cb8f2420593Virustotal results 30.65%Heodo
2020-09-24REP_NA4476136657YU.docdoc 8e4be7abeafb997210d1c39bf851ab0c4cd097268cf3664f53c72abc3dcce92fVirustotal results 30.65%Heodo
2020-09-24PO_09252020EX.docdoc 071b94219cf7f333e5e3c76753c74ec9a5d71f9d4ccf17cb631287fe3508e39fVirustotal results 32.26%Heodo
2020-09-2499820462.docdoc b77cd70861b08e97e103e926c367d38fb18c9588b70cce776fab3c7b9888c31cVirustotal results 29.03%Heodo
2020-09-24REP_BAW_090120_HYR_092520.docdoc 72b9920e61919b7fc85e4427fa0bcad4d660a87904174a9f3bc2c7ae664ef434Virustotal results 29.03%Heodo
2020-09-24ITN_61318398.docdoc c4fc9ec7954c1bc71dc415464f2813e6151dd7c106526dfe3aa8d97ec3b8f9deVirustotal results 32.26%Heodo
2020-09-24PO_09252020EX.docdoc 96d9b3d02df7aea418bb5629677cc35f0eaee5ea68e2373e23a730378f5f5297n/aHeodo
2020-09-24BAL_LL1068013071JF.docdoc 6d43717aa6587cc1a8d029dcad43de1a604e0e854bc22f651ca12066bc796713Virustotal results 29.03%Heodo
2020-09-24JEKDIBJR1LKQP.docdoc 715f9dc1efa5fca591ca9ec3b12ea2cbfb023fdeb8f0964988c191a7be6166c8n/aHeodo
2020-09-24ZJ0381497928MO.docdoc 5bbcb03cbdf0fa9eb5854ee7d5c7d3669e469fbde2dd1cfe0b6c4767dd19d138n/aHeodo
2020-09-24TFC_090120_ZBX_092420.docdoc 7ef0c540f3c535a1789981bcbe5e3dd3ba3809e8d6ef1a9745f00ccd018db031Virustotal results 29.03%Heodo
2020-09-24INV_0463080119781120500323757.docdoc ea20a59b71ee8c21c84eece43e58023ef1be9265e0198df81b95d6af3b4d38e9Virustotal results 29.03%Heodo
2020-09-24094886648239.docdoc 520c035bd0bd60fac0008ee46cd8e3eab4dbdc31d8270d9559efb1e7b5016c7cVirustotal results 29.03%Heodo
2020-09-24REP_494800010183833.docdoc 00fbe37855be5d55bc265f0e5e3f284ede6342549349e4b33cf2511347b3fc13n/aHeodo
2020-09-24IQ0979736518HX.docdoc 0043af7d182b9d6145aa3d75f6ced14fbddfab10b615e6997bd426d3a23da6a7n/aHeodo
2020-09-24TJS_S0B1L4LN0KA.docdoc f6f1cf12aa5337999c20c4cfd641254575e981ad7c463944cfe676ec92a23165n/aHeodo
2020-09-24RM0855172320XY.docdoc 1e8a41d3b5b66bf2151302e128b041ae3994ea9a2a0a688a098fb691a692e222n/aHeodo
2020-09-24INV_Z58C73HOGUIOBWG.docdoc 32bbcef052b442f62a2fbb0c5dad498dcb779148f31f2e51d4f7a38245024f8en/aHeodo
2020-09-24V_322746276832681270314.docdoc 43204d25bd95979baf79eb7193cc7466a0fd658e87c94d666d71b88ac6979e88Virustotal results 20.97%Heodo
2020-09-24B_PO_09242020EX.docdoc 460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974feVirustotal results 26.67%Heodo
2020-09-24REP_SF1664178508TB.docdoc d038ad9d31d6764ec9e5ad2246c2f2a99e0c06ca8798bd54e73deecb05dab14dn/aHeodo
2020-09-24XB_CN6304348034UU.docdoc 2e3f0cba76c76de6beb1d7782576c1913d7a5ec9e471a36bac04827d26b0185dVirustotal results 31.67%Heodo
2020-09-24T_PO_09242020EX.docdoc 0513605e1d28ab01152da25d30cb6762b95b79d8183cb775c505abc6f341e4f5Virustotal results 30.65%Heodo
2020-09-24P_PO_09242020EX.docdoc f97b2fe462e15ffbe47937e6d6ad815595fdb180d137a7ddd92f9f41e5a6b5eaVirustotal results 28.33%Heodo
2020-09-24REP_ATF_090120_GJH_092420.docdoc 322437c9e679266325e5e5e4e5192b3480e02f680d56fbede6b807db9def583an/aHeodo
2020-09-24REP_3GBWEJZ7ZWY1.docdoc 5c7bfd1823b37a4f48ff0166d60e88e0be88ae562cf87c6bf393597da4fd835bVirustotal results 27.42%Heodo
2020-09-24REP_FO8189451675RN.docdoc d9e5e99a04e37db7783f369c532e2e6d5171b90a286f2c397fcd6356a1abcce9Virustotal results 26.23%Heodo
2020-09-24L_L0X5SYTT5Q6.docdoc 35fdf71d1156a709edbfc6250568a61a62afb183218e5fc5ffc1249ab07bb4b3n/aHeodo
2020-09-24J_07568781879368780823192.docdoc ab91db60823e2094091fd21a60eda971c965e334da7b12f08b02334d781397e4n/aHeodo
2020-09-24BBT_PO_09242020EX.docdoc 21e3f5e7a57c3e1871bec153b6876e793eea367a4c1cb2876681f858454ee52cVirustotal results 21.31%Heodo
2020-09-24REP_2147283725396536.docdoc 5b276cd9dc10cbdf1dc7dcb147761fea97b3b9407dfd13b460721747f767238fVirustotal results 22.95%Heodo
2020-09-24S_PO_09242020EX.docdoc 6e5bcd9db826f2b855f63e8a591e02ebb0bbd141387d2922e3e251fc8ddbcbb8Virustotal results 19.67%Heodo
2020-09-24JKW_0905445309031.docdoc 860994a6cb882e801a963f6e00a8bca34f28efaa71b690e5f77b8c2e644dafb6n/aHeodo
2020-09-24V3F9IARY5BLL.docdoc 3aa1d5ce7ed49ce9dba790282a20ea4768c173c06418f513522ee6d401aa527aVirustotal results 20.97%Heodo
2020-09-24S_76404197.docdoc fe0a0b77df06046dffc8059552a1484dfa263360d127d452805142945aa4e5a8n/aHeodo
2020-09-24YWDEITR2V0X1FL.docdoc e03588b5c327278e634c775b1f13c311c8aa3494cddd7aff114eab54dcae3c5eVirustotal results 40.32%Heodo
2020-09-24PO_09242020EX.docdoc a92504d33c04f21f1e8bfc2322f66cf3d45f486ed7ebbf78f3ee270fb0d3e3a2Virustotal results 39.34%Heodo
2020-09-24INV_XBM_090120_JKC_092420.docdoc a92c46f200df0158c9798071b11a95d81eea54126f75084d6b9b381d992d4d0cn/aHeodo
2020-09-24DOC_57111124.docdoc 21d6462af9e28cac11c5b8bc20c9f07e953c7af99c15966175e8b8cfc8ee9363Virustotal results 37.10%Heodo
2020-09-24REP_B44A59NPQRYULM.docdoc 600c433856179a39c24e978c417634772d605b733afea857de865c8ff787105fVirustotal results 35.00%Heodo
2020-09-2463566892.docdoc a48a197539aed2368c68f377ee4e1a8886412cabd39050e98b3fab282c089d39Virustotal results 37.10%Heodo
2020-09-24BAL_TZN_090120_NDT_092420.docdoc 109faa9ffefc2e21ff1a72efcf3e665b4be5820282f07f8fa54c14bc9f243803n/aHeodo
2020-09-24BAL_PO_09242020EX.docdoc 3b95077a69ba1ee1226face3a5f83a78950357b93815180ebb6b6772cf8212e8Virustotal results 37.70%Heodo
2020-09-24REP_UWA_090120_WDT_092420.docdoc b427adb1ae5fd4b290ab65b93ea392c40c42f186b732f90768099681494d10caVirustotal results 35.48%Heodo
2020-09-24X_97204320.docdoc fba080b64f42891f1ddec30a5a83c9881e8b8dc2e577226eb1575654caddc56fVirustotal results 35.48%Heodo
2020-09-24BAL_PO_09242020EX.docdoc 55d2d07c2dcaff03658304df8b3b1b80946d30f441ff14743dd2ea7130333746Virustotal results 35.48%Heodo
2020-09-2485180298.docdoc a7beeb1521d12c379e5eaf94aa8b734f806e5ee1cada250f51dc5c3be983a7a1Virustotal results 27.42%Heodo
2020-09-2447403042333691320335106.docdoc 6e7ae3df631cfa3174a4e9e061f71a3453806fe930adca05896343d9e6f07ea4n/aHeodo