URLhaus Database

You are currently viewing the URLhaus database entry for https://zycccccc.top/wp-content/Document/v72368912641045j0n6n5iw0nbh/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:609810
URL: https://zycccccc.top/wp-content/Document/v72368912641045j0n6n5iw0nbh/
URL Status:Offline
Host: zycccccc.top
Date added:2020-09-24 11:03:08 UTC
Last online:2020-09-26 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 11:04:05 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:2 days, 6 hours, 58 minutes Poor (down since 2020-09-26 18:02:16 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25DOC_GYF_090120_FVP_092520.docdoc 8a73bdca97395b9f659104c200734008fe685faff6734fc31ce0cd575090f1b2n/aHeodo
2020-09-25INV_HW4127987800GC.docdoc 870bc543d566751893f393fcf0c7abd3bceadb183ce2f7384e8922bb56a5bbb9n/a Heodo
2020-09-25BAL_MB8880461645BQ.docdoc fe2ee906d8d8678d7ec22ed99ec97b47b6bc55850eefac61f9ec622f2a049bb1Virustotal results 25.81%Heodo
2020-09-25X_878171075173048039.docdoc fe3018c09ebbc1ba8e04839eafcb353384ffb23b0be6729808a820abc068b280n/aHeodo
2020-09-25T_ETY_090120_NHR_092520.docdoc 89825271f1b18375f523320908826b553e9da21bce402e9844bd3d55446fb509Virustotal results 31.03%Heodo
2020-09-24REP_63LX1U6AHKI19Y5.docdoc 7732eb513243e6e3a764a526f3e87061885357e7adc6901e3ff647b039b4bda0Virustotal results 30.65%Heodo
2020-09-24BAL_03881641.docdoc cdd71002bc856432c4601d28ab82f21a59cc5dfd779119a556b6e353a3a9f5efn/aHeodo
2020-09-24QG_WQP_090120_XCY_092520.docdoc 356e4701cc94b7ffbf517afeef9f5c0bbe45782f861d51859f0bf099df96581bVirustotal results 24.59%Heodo
2020-09-24T_WX0459469294XI.docdoc 46996b6a7e3fb5f718730ed86bbfa6e57792d961db1bd60352e17703af38134eVirustotal results 29.03%Heodo
2020-09-24MPWS5HZOZ8KS6.docdoc 35774d12164e3314ec57dde2f5948d18c0e60439fd49b21753e4e0954b3325d3n/aHeodo
2020-09-2419533358.docdoc 7e1935fab86166df5d6770468bf12c57a50720c0b7ba90e21accf2ca8493ce15n/aHeodo
2020-09-24PO_09252020EX.docdoc dcffae4b2bca57b2e8b65609a127df9975ff71d81bc14a409f0058dba81ebb56Virustotal results 29.03%Heodo
2020-09-24DOC_HXDGI6IWK.docdoc 96d9b3d02df7aea418bb5629677cc35f0eaee5ea68e2373e23a730378f5f5297n/aHeodo
2020-09-2418750956.docdoc 2a3395e9459dc5f0fc72621c2299e98b4226e6b99cf6069d89004e3d430a219dVirustotal results 29.03%Heodo
2020-09-24FILE_GUA_090120_QLU_092420.docdoc b638a54fb8b1ae9d64723adeea13dfada5ef1ad4d4c606ed9a34370f4d216d09Virustotal results 30.65%Heodo
2020-09-24INV_41534086.docdoc 5bbcb03cbdf0fa9eb5854ee7d5c7d3669e469fbde2dd1cfe0b6c4767dd19d138n/aHeodo
2020-09-24ZT4381408908BL.docdoc e01196c04524311bae1b2b2ab4a49a03bcd266c6ba9f9b5a2fdf3804e9bf71d6n/aHeodo
2020-09-24PO_09242020EX.docdoc e065d7a8263671a9d5afd66e671dd1d8cb12ccadcde39686f63b37c411d977ddn/aHeodo
2020-09-2419316924.docdoc 85264b8b2a7f29ff8c64c3de97d3e17a58c4aa09c6a67460d5be96117461224bn/aHeodo
2020-09-24INV_CMG_090120_MFS_092420.docdoc 35ef0a522e2f7f98db76cd53d203d6389d65b2c0337b598482f1ca0fcfe5953dn/aHeodo
2020-09-24MXHG_UM2527157031BY.docdoc ce2603e03a1742baf5735e994899aecaa1075b7d6a3a811070455dc802e8df15n/aHeodo
2020-09-24FILE_14129105.docdoc df802c906676713581817048e135afe20200029ac5ff1c840ba82b5bbcda75caVirustotal results 22.58%Heodo
2020-09-24REP_TJ3885876801QB.docdoc fe9b0b3adac87d1fe5b13863ff7ab54660757a7bc0b4996cfe241ff357c57b3dn/aHeodo
2020-09-24K_PO_09242020EX.docdoc 8b90ba12e56de7cf064ee54d147a39175bea9149cef12b45b5fcc04b43808d9cn/aHeodo
2020-09-24INV_YX2745253972ZT.docdoc 37b5d86751a2c999901df382ddadc7aa72d891a4e24ef527e02266ffab2efa41n/aHeodo
2020-09-24FILE_36789504.docdoc 460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974feVirustotal results 33.87%Heodo
2020-09-24XGV_07915746.docdoc c84034e8688e0d58d35845c4ad72561fdedd79c6ec344ec1dc7ed759a126a7fdVirustotal results 31.15%Heodo
2020-09-24DOC_U500MLMZG.docdoc bf6caeac64ebd3eca96f936635d26ea90e62f1093b72146a98a20623a13688cbVirustotal results 27.87%Heodo
2020-09-24INV_1872981368202317787193891.docdoc 93c0790b6cd535f144d4fa5ee875e3fbc326b0572a4cb139f83195f4761fc370n/aHeodo
2020-09-24JS_RY4660918549FW.docdoc 994f606a00cbfa00d23303bdaf545487afedc4d6fe4d580890a702d11411885cVirustotal results 28.33%Heodo
2020-09-24FILE_04629289.docdoc 322437c9e679266325e5e5e4e5192b3480e02f680d56fbede6b807db9def583an/aHeodo
2020-09-24FILE_PO_09242020EX.docdoc 5c7bfd1823b37a4f48ff0166d60e88e0be88ae562cf87c6bf393597da4fd835bn/aHeodo
2020-09-24WN_754780443069346223.docdoc a94c9c08f50269a35b62b24f4ae73d063488222a7affb150ac25c8d7409ef28an/aHeodo