URLhaus Database

You are currently viewing the URLhaus database entry for https://leapmom.com/ukeol/browse/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	609707
URL:	https://leapmom.com/ukeol/browse/
URL Status:	Offline
Host:	leapmom.com
Date added:	2020-09-24 10:03:12 UTC
Last online:	2020-10-22 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	gorimpthon
Abuse complaint sent (?):	Yes (2020-09-24 10:04:05 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:	28 days, 0 hours, 22 minutes (down since 2020-10-22 10:26:47 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-25	BR6392755538QI.doc	doc	8a73bdca97395b9f659104c200734008fe685faff6734fc31ce0cd575090f1b2	29.03%	Heodo
2020-09-25	70110204.doc	doc	870bc543d566751893f393fcf0c7abd3bceadb183ce2f7384e8922bb56a5bbb9	n/a	Heodo
2020-09-25	FILE_8WWI060W.doc	doc	ddca7bd9923ea1a93f054a8ea4c749b80793daf20550c9ee2f4e63446572c400	22.58%	Heodo
2020-09-25	BAL_PO_09252020EX.doc	doc	802f04236dcc8416e167f809dda60e5623b54d39bd04e74dd1f1db148afca2d3	n/a	Heodo
2020-09-24	REP_PO_09252020EX.doc	doc	30a0c59711e06c411f4e1a20c649f507a1ef69742192df4ede24d92289aee591	31.15%	Heodo
2020-09-24	FILE_LEAO348OGCQDSOAM.doc	doc	47e84b40c894119dda8c1abf4033b74ccdea7712d9ee871dde8360c87e7951ba	20.97%	Heodo
2020-09-24	W_7511752395979.doc	doc	d4aeeadcea8487c5cde690583d8fb442c9334208e54fd53d3714e0ec9bf0da91	n/a	Heodo
2020-09-24	REP_68213217.doc	doc	cdd71002bc856432c4601d28ab82f21a59cc5dfd779119a556b6e353a3a9f5ef	n/a	Heodo
2020-09-24	DJN3RIDLNFR.doc	doc	c8e1fe8c16784222fdc737735ed29812a5f1721e61b75f3386fa6ea802c9b525	21.31%	Heodo
2020-09-24	FWOS_FS628JMLT.doc	doc	46996b6a7e3fb5f718730ed86bbfa6e57792d961db1bd60352e17703af38134e	29.03%	Heodo
2020-09-24	DOC_NH8383507531GB.doc	doc	9dd8a90d5bcddd1b1748a24fbb8c636601ce3a3d198b95e342958492db07fd98	29.03%	Heodo
2020-09-24	INV_PO_09252020EX.doc	doc	dcffae4b2bca57b2e8b65609a127df9975ff71d81bc14a409f0058dba81ebb56	29.03%	Heodo
2020-09-24	DC7681371516SN.doc	doc	d25aed1074e6086a1e8ee4fb6885c8accddd96469d110e343f36d2e13aaebee2	29.03%	Heodo
2020-09-24	PO_09252020EX.doc	doc	1fd6fc5f6c0b08fbefe966d1faab12454848f8bc73d826a7c6c843d8da75a16f	29.03%	Heodo
2020-09-24	INV_GPK_090120_NSD_092420.doc	doc	715f9dc1efa5fca591ca9ec3b12ea2cbfb023fdeb8f0964988c191a7be6166c8	29.51%	Heodo
2020-09-24	12387789.doc	doc	e8920178a654a05f4d58c417ab5df624d778f70deb69ef450e79c6511c72e55b	21.31%	Heodo
2020-09-24	UG8987958705AG.doc	doc	68d56a79c843b1b6a5d9937b5f98c3ecd25a60ebbffb348a9e08cde6dd1a98fd	30.65%	Heodo
2020-09-24	1562444937579302.doc	doc	2c9f95721bca3535da3fda89ec8fe49002a06a7fe0aa92c9dee5ad34872c388e	19.35%	Heodo
2020-09-24	DOC_PO_09242020EX.doc	doc	f558184120407b98a2f1473322ca913b07ff58cd20d06ae924a355e11821dc9b	29.03%	Heodo
2020-09-24	NOV4EFW566KW2.doc	doc	9c92b09435e053ed7b07f0d33360b840b95e0bbd64092e06bf09020307e84b9a	19.35%	Heodo
2020-09-24	REP_IZN_090120_LRD_092420.doc	doc	b8c075d4057bdd225bd2328001ef2cc8efb5e79192d6c2fe8279677927714ec8	n/a	Heodo
2020-09-24	BAL_GOQ_090120_OWV_092420.doc	doc	1e8a41d3b5b66bf2151302e128b041ae3994ea9a2a0a688a098fb691a692e222	n/a	Heodo
2020-09-24	DOC_MF1608630654SV.doc	doc	7f2909dbaff2ca4d076322b968a100de8c38b257858149d44dc8976189d2571f	n/a	Heodo
2020-09-24	95535988.doc	doc	60b9c51a988490875a152231c3217de228b7406a1378ab07263aea7f02ecd3cc	20.97%	Heodo
2020-09-24	BAL_16714745.doc	doc	460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974fe	33.87%	Heodo
2020-09-24	E_CCF_090120_TNK_092420.doc	doc	c84034e8688e0d58d35845c4ad72561fdedd79c6ec344ec1dc7ed759a126a7fd	n/a	Heodo
2020-09-24	FS8831427955WP.doc	doc	bf6caeac64ebd3eca96f936635d26ea90e62f1093b72146a98a20623a13688cb	27.87%	Heodo
2020-09-24	O_17777802.doc	doc	0f7fafaf2dc62f6f85fa3ffe292696219d28c05b0c6dc088bf2b7314d5bfdac2	30.65%	Heodo
2020-09-24	X_PO_09242020EX.doc	doc	dc23f6e5f31c7c3ce882dad5d90a145687e954e34019d5cfa3fcc72afe96bb52	28.33%	Heodo
2020-09-24	GF4531973552ZN.doc	doc	fc98a386a0e52834ae5dcb93beb5aa33305f3e71cd4183a2e47c7c38d9cfeb1c	22.95%	Heodo
2020-09-24	INV_47304792159595808472.doc	doc	7e5a42a73c29e93f48c97d924845eef4cce7d6a931dadaa19068f78f4bb83015	30.00%	Heodo
2020-09-24	INV_PO_09242020EX.doc	doc	27dc3b44a37b8d1d2c9fb8be66fc68db20eddfd82efd9aec4a13681328129242	n/a	Heodo
2020-09-24	ZH0713732264IQ.doc	doc	b917f18fc68c1232bfae7c7930a329fb6758d94bfef9604d75586b41733d2426	n/a	Heodo