URLhaus Database

You are currently viewing the URLhaus database entry for http://word.ahavid.com/wp-content/Documentation/yj2yRLZ3spSMqIMaRji/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:609536
URL: http://word.ahavid.com/wp-content/Documentation/yj2yRLZ3spSMqIMaRji/
URL Status:Offline
Host: word.ahavid.com
Date added:2020-09-24 07:57:05 UTC
Last online:2020-09-25 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 07:58:03 UTC to abuse{at}amazonaws[dot]com)
Takedown time:1 day, 3 hours, 56 minutes Poor (down since 2020-09-25 11:54:42 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25arc_9679289.docdoc 679372a330a482eb1eac0878fea681fba87a3282cde739609dd40db33cd927c6Virustotal results 32.26%Heodo
2020-09-25List-2020_09_25-077.docdoc d87bdd3b998a90b8bc51695a9a116b1d36ebefd77abf020a0e25f68d3ba78e2cVirustotal results 29.51%Heodo
2020-09-25Inf 2020_09_25 QR531.docdoc 63e4a64ec861c7b00d27985d7cbdde693dafaa9c83c3cd4ef1ced790eb003e7cn/aHeodo
2020-09-25Untitled-RT5714.docdoc 48a443d0ad6f5a7221d22b942387069852f6bb26e9b7021896f0e00bb686e8cfVirustotal results 27.42%Heodo
2020-09-25607APD-20200925.docdoc deabb6dfaf51bbc52d6fa526e9bc3c13b637a4af860a9dc58401506e57fd3bcbVirustotal results 26.67%Heodo
2020-09-25LIST-6845.docdoc a21cffa6aee262c7cede6e64c0727d655e4ebf9ecdb510368317786c1560c2c3n/aHeodo
2020-09-25inf 829.docdoc 3101936e0728832c4832f064bcdcf7c74eddb6059b8eae77bae27fd82b778b74Virustotal results 27.87%Heodo
2020-09-25list_20200925_113.docdoc 96459a6082710026b6f6be7a41a2aeae9be085342714fe3c19d840ce41e6958aVirustotal results 28.81%Heodo
2020-09-25File 2020_09_25 2111615.docdoc 19665d81b443fbbea43c2269393dd1497a8ca560342eb9bcbb5bf6133033c0dfn/aHeodo
2020-09-25Attachments 63544.docdoc 63c70c3f9100ecbd5ceed01c952d8fa54927a057e656b6b29e6013c8fc1dd735n/aHeodo
2020-09-25Dat-2020_09_25-PV9098.docdoc d6cf890c67aff19145aa458c76f73d0cfd4a7d654888191078d657ee679e6370Virustotal results 27.42%Heodo
2020-09-25File 524773.docdoc 863bbfd4a6aee7bd20295337291b74770af7e88442951513db49b33586ee71f9n/aHeodo
2020-09-25805KW-2544618.docdoc 2c2bd59c12d94c6c039f7a27058ee2a8bc65f7256f93cca4c4d1f42189a72509n/aHeodo
2020-09-25REP 587713.docdoc ff685ed9373dc788b1bc9a3a9df0a8f106d1c452b30277f03fd749bdf19eab3aVirustotal results 27.42%Heodo
2020-09-25mes_2020_09_25_ZUF745.docdoc 8a4e924a1386092b4556faf8d55ad43371667e0d5505cc121d2cc281ee52bef8Virustotal results 25.42%Heodo
2020-09-25ARC-2020_09_25-OZP908.docdoc 9d71d83ccad45ec81540fa2fdd1ebb126016b0a66de537c53d72f71ba21085e6Virustotal results 27.42%Heodo
2020-09-25DAT-20200925-IS612842.docdoc a498490c2d2082417852e61a598fa2606f70d6a8fd7fd5f6ae72ac00b1276126Virustotal results 35.48%Heodo
2020-09-25INF-2020_09_25.docdoc ca999399c331765a7219c8d4d46688f5a5b906dbb26af7972ff51761d8ec9413Virustotal results 32.26%Heodo
2020-09-25114ARR PJ937614.docdoc 07d189b2ee68877b394336048609d065644c10d82bc5f58f7994df1c85a9e498Virustotal results 35.48%Heodo
2020-09-25mes 2020_09_25 3985039.docdoc 60708ee02046481b73a1e7bc265756eb3a0e7e7d7e5f28d6a2b3a1fea9dc5f4bVirustotal results 35.48%Heodo
2020-09-25INF-20200925-VL56937.docdoc 21625230474a55191ff09f7f29eaf0cff26e1fcfc6680a91885dda9ddad6129eVirustotal results 32.26%Heodo
2020-09-2547887 2020_09_25.docdoc 90d98540904cb297db85c8cbc30b1510b43c16f60b12a899a565740a3ffdd735Virustotal results 32.26%Heodo
2020-09-25MES_2020_09_25_IE783.docdoc c371ff9b42817e104cecdece97a45a92dbc996cc6630dedb60387b6d2cf3eef7Virustotal results 32.26%Heodo
2020-09-25DAT_20200925_04857.docdoc dea89797b0e3407f423c2d3db4732897df4779beb6caf903ceb16029c480f012Virustotal results 32.26%Heodo
2020-09-25W9226_265940.docdoc b998510a8bf687ea61a4eb01488f3480eabc30b7a9e66f1eded2eecbe9e09280n/aHeodo
2020-09-25Inf 20200925 1925600.docdoc d75299a8e19df9593c413b093ec1cb2822e0418945eff66f18796ab6ec4661f1Virustotal results 32.79%Heodo
2020-09-25arc_2020_09_25_088.docdoc ccdea9cce81a446140e0d879ca8aa9a94abc087dc40e758a648cbd5cafeddf93Virustotal results 32.26%Heodo
2020-09-25Attachment_2020_09_25_OE320.docdoc f3e4a5469d7a04109e3b462ae519198b845978938294d7b0b5f43139a332b649Virustotal results 32.26%Heodo
2020-09-25Mes-20200925-3109593.docdoc 2f61da248ac204ef8f63a0bf142e3c4abd8b1269662f61675ac1351365311640n/aHeodo
2020-09-25File_20200925_L516.docdoc 69165cd9c129bd60fccb936744427651093153871bf0b5f61530461a10add533Virustotal results 32.79%Heodo
2020-09-25Untitled_B3288.docdoc 6c4a580ed3d27939e21cd950e032dcb651ad561d04b1c3661f6d4cf690dfa206Virustotal results 32.79%Heodo
2020-09-25HI18909_2020_09_25_39807.docdoc 15220c43248046fa93074c3c80521f9773803510ac48a42f7de5b5c28c97eafaVirustotal results 32.79%Heodo
2020-09-25LIST 2020_09_25 06860.docdoc a138b244d11022bc107b10ac8bba5574f75ebc1f2d7fe82d50c1b1927868faa1n/aHeodo
2020-09-25rep_2020_09_25_H886.docdoc 98dbf4dffc10dd183a60e1fc7f89ada397f31f8bf1af4205ed10b45bbc8475d4n/aHeodo
2020-09-25File-HRJ955.docdoc bc4fb25044c6fb8629728c6871a7ba7ea53ad1444e093759fe00ad39203a25c0Virustotal results 31.67%Heodo
2020-09-25FILE-2020_09_25.docdoc d43898cf94cf620939c31e9850e566223e334b4298ce958a1d59841dbbd99b12n/aHeodo
2020-09-25Dat-2020_09_25.docdoc ba753a3170901bef149aa59bdb45420ee05fe7331873bdc50db85193881b2e4bn/aHeodo
2020-09-25Attachment_SWA3566.docdoc 9c89759e237878a95c83cded3d21a6adc6f8d4ed97c3d955138c7dfd1b713334n/aHeodo
2020-09-25rep 0194767.docdoc 468f76ef171460d5abba423c31455f99cc4aa8095df3f2ccef2d1bb2b622833fVirustotal results 30.65%Heodo
2020-09-25arc 20200925.docdoc 338374311ec35dc25851d78e8010631a9916964ac819276eedd10d43abc31f85n/a Heodo
2020-09-25Untitled_2020_09_25.docdoc eba3ace46b88aad94a3879c3cb6cf843194ff99b8b32a9c934831f2e48de58aan/a Heodo
2020-09-2558126-2020_09_25-RUV43219.docdoc 30764cdbbf01f356c76a2a12d07a2790ddfc8b485fb87998f945cd77ab79ff3dVirustotal results 31.15%Heodo
2020-09-25628119 2020_09_25 09240.docdoc 84dfa573291310a15b9a67c8643b77e36306ffeaccb56637c4be40b776558d80Virustotal results 30.65%Heodo
2020-09-24mes_20200925.docdoc 22cf8ae36d6a536307d19a4683966503ff80c76f9963dc106fca26f9d790972fVirustotal results 30.65%Heodo
2020-09-24Attachments_2020_09_25_2003.docdoc 55c07a85acf2783c3aedcea2b6d5b549b5410eb30b725b6751cd4b77faea914cVirustotal results 27.42%Heodo
2020-09-24List_2020_09_25_7803559.docdoc ebaa30a2c8ad119dd582d5c0dabf5d156ec19c6b11707b1796322ae4ec6555b2n/aHeodo
2020-09-2479032164-SOE666581.docdoc 294308e4126c97816ce6f96e921b335cf45bf0906b1ca94d1b1c4f5ba9feeab5n/aHeodo
2020-09-24inf-20200925-OCR912.docdoc e30954491227d012c82dacddc3299730619d5f9edf66a0d7769f87cc5bd184fen/aHeodo
2020-09-24REP 2020_09_25 DXQ76610.docdoc 6ad9b0dacfcb42e74938b2e5511f039017a29e3ff73f4606e6c2478b98b86e4fn/aHeodo
2020-09-24MES_20200925_511.docdoc 40553c3c1a1a2ff36541fff6d148b3d3a89962869b7d29d3dd978f4957bb53d5n/aHeodo
2020-09-24mes_20200925_426.docdoc 479f549b2b68d98c8a2c7ead53fb42e5426084076981572c022aa746fb606b9cn/aHeodo
2020-09-24Rep 20200925 DJG517610.docdoc 6991f9a8888476af7bed3ea346ce83bb2b83a0e202e63595c574dc05293c2429n/aHeodo
2020-09-24List_2020_09_24_3003.docdoc 9c0ee5ec6927fc3d66e98e5fb2f0094f98853e71849bb51140dfc573c16864f8Virustotal results 25.81%Heodo
2020-09-24file-20200924-279.docdoc a04eec7be461e708f8df91a5118fe261a5a18b6ab866ce9a032631ba8fca505aVirustotal results 29.03%Heodo
2020-09-24Doc_2020_09_24.docdoc 4815d589849d7746ef065299605ec3253455d8b1f58f3c08f57a323a45912ff2Virustotal results 29.51%Heodo
2020-09-24Attachments.docdoc 22e968ba677ba56dd1d0fa54404737fabfd551950e007c6b526c683cb920d99dVirustotal results 29.03%Heodo
2020-09-24FILE 2020_09_24 923471.docdoc ce6c5b403794988f1f8b87e204c73e7de295624d14d9b2e7b2115ece7aae362cVirustotal results 27.87%Heodo
2020-09-24List 2352504.docdoc 4bf4fd8fbc2393d9f481cabefe7bce1b95a3b389d0240ac379990028255e46f5n/aHeodo
2020-09-24file 20200924 LTP626.docdoc 1fba84d3bf95f4bcd6dea7cb0e278712f39c4adae6b83a63f00252c1e7e82c34Virustotal results 24.19%Heodo
2020-09-24file 2490.docdoc 7a11e2e89a4548c968baed637d81d8db702acba0ad82d1571be8617b8b704cf4Virustotal results 24.19%Heodo
2020-09-24Attachment_20200924_LDC229.docdoc 57c819aa8037219a797527d244de0184e442b0f39eb6dd73b17661ab7f97969cVirustotal results 24.19%Heodo
2020-09-247563U_2020_09_24.docdoc 24e9c546ce90adef18cc699df5c3df34a05787fdd9733a1767d993de4d63b7a5Virustotal results 24.19%Heodo
2020-09-24Dat 2020_09_24 48083.docdoc 1365a75650ecfa285830cb0cefee3f914deab037e2ca8d4a9efcc2243e2d7a77Virustotal results 24.19%Heodo
2020-09-24LIST 20200924.docdoc 448d37054361739949f57f9d739fbc419ea700bb3278e25cabe15376bf91218fVirustotal results 24.59%Heodo
2020-09-24doc_20200924_JN3112.docdoc cff7cf56c997bd756b8ac77f175f170bb7621b5dc0ee92cba6e3a24e7dbcdbbcn/aHeodo
2020-09-24Mes-20200924-08284.docdoc 7b5378ce13af3f6931afc6d5c872969bbc5a7a238e8f0e09125a8597db0d0d83n/aHeodo
2020-09-24UNTITLED 2020_09_24 WQE18879.docdoc 781059ed8dbae8a755fe64c0c768dd9b0f9603d24b80b3d4ef6d54a937acb2d8n/aHeodo
2020-09-2454886299_SST07143.docdoc ebd949c9405e782f1cfbd38a8f7461d7466d785f9d910d49a3cd4a5d64fa3dfaVirustotal results 22.58%Heodo
2020-09-24Doc_7125.docdoc 662578e28038eff76d3259275b4c5dbc898a193b9b8c1456635f703abecc7977n/aHeodo
2020-09-24Rep-04227.docdoc 613b95abb0bb60d70e4299f1e42e20227bfba659784e51d73d95396a013dfaddn/aHeodo
2020-09-24list_20200924.docdoc 6ca4c4bc99110bba835cc64055378d05d0ac578abdbfb73fd3b4bfd9958123b2Virustotal results 33.90%Heodo
2020-09-24Dat_2020_09_24_ALP384418.docdoc bd244207a04b13c2f19aa2ae6cfcb18baae07a101e2d455f3dc45224e7540b80Virustotal results 32.79%Heodo
2020-09-24File 2020_09_24.docdoc 533105911387edce82f0e5d06f12973eb9267f91c3ed40481bb6cabf571a206cn/aHeodo
2020-09-24UNTITLED_20200924_ROE84096.docdoc a173c80617eccbb5abd724c6c42da5355329ffc94e544185e1401d97c9146964n/aHeodo
2020-09-24Rep_2020_09_24_863.docdoc c41a64f8cc1b83db074a5a46ab347757bac48d2d24afa28e22514684f52a9e65n/aHeodo
2020-09-24Untitled_2020_09_24_VUH803.docdoc 4498f1490461e97e457f5346e061a24752f6fd4913fd5a7193e4cd450379f8c1Virustotal results 29.03%Heodo
2020-09-24rep_20200924_OO399.docdoc e7284f40ba50932744dc9f59ca8fb42e0dee384a97fd14eb5f8ab332aeb86ef0Virustotal results 29.51%Heodo
2020-09-24Dat_8610628.docdoc 2677eca82d20e819b49e10849f94803b189d30af9526a146a14aa65b8393a944Virustotal results 30.16%Heodo
2020-09-24REP 20200924.docdoc cd068c5d74c950762065417db06dbb634c48135e990211e3415ffe6fe766046fn/aHeodo
2020-09-24Untitled.docdoc caec8f597a6104f3633061449bb3873405b3b89a62881cc8985ac007ff591263n/aHeodo
2020-09-24DAT 2020_09_24 66654.docdoc be3c79e9b5fd61ac148d1f5687acadb548a968dc7c12a7ae63a0c9bb31355945n/aHeodo
2020-09-24file 2020_09_24 H108205.docdoc 439df4997262d2db8e015f7449a8b33c9bf2c8db09f8b184d69c7ad6fe968c92n/aHeodo
2020-09-24file_2020_09_24_1513599.docdoc a8b0c95f687d86dc74995de8a27b0d68e8f8f32a07ad8333a1aadf15c1cdff67n/aHeodo
2020-09-24UNTITLED 20200924 EFA807975.docdoc c8b9a0d11a6840cebe44f6b8d1fa372dd39e1cf6ec6e6f761eae82801a7c0bd9n/aHeodo