URLhaus Database

You are currently viewing the URLhaus database entry for http://j2hb-dualcontrol.com/wp-includes/attachments/Sn5k9ipnJY4QWF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:618544
URL: http://j2hb-dualcontrol.com/wp-includes/attachments/Sn5k9ipnJY4QWF/
URL Status:Offline
Host: j2hb-dualcontrol.com
Date added:2020-09-28 19:11:08 UTC
Last online:2020-09-30 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-28 19:12:04 UTC to abuse{at}ifastnet[dot]com)
Takedown time:1 day, 20 hours, 25 minutes Poor (down since 2020-09-30 15:37:21 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-30Mes_2020_09_30_AYR96301.docdoc 5ad5e720729e3c3b4cb7d1c62b6c9d59e1aaf8c327c1008437557ce156322510n/aHeodo
2020-09-30Mes-3712.docdoc bba8eee6c7052816d44796927ca6001f69f76e479ac041cf0331e13e167d0b99n/aHeodo
2020-09-309186880 2020_09_30 E286468.docdoc a577448f59644d5f13e8cf32835c140d6fedc9787e39e6802ab909e3f4ede150Virustotal results 24.59%Heodo
2020-09-30rep 2020_09_30.docdoc 638f854ddf0512642125aa805b9b59a11c6197b711e11aa71db57fabb2f83f67n/aHeodo
2020-09-30Attachment-20200930-15742.docdoc f51c36573e26e1e9e468817539defd6c9ed614f8a76c9a2432664baaaf3cdfdan/aHeodo
2020-09-305513 2020_09_30 234118.docdoc 925b00d3b7c0de40772e08eac5e84478d63382cae3b40124e9e5e3e8157f7c5fVirustotal results 22.58%Heodo
2020-09-30file 20200930 UU032.docdoc 1710e41764e75b641009119a0a1632eafbfca1ea76a900667509d9e06f7e84a2Virustotal results 22.95%Heodo
2020-09-295413425-2020_09_29-I53839.docdoc 066acc4b6455a6207276d70cff609aae9ace158cf6ecc4b9db6825805495a98fVirustotal results 31.03%Heodo
2020-09-29I15411 2020_09_29 2401020.docdoc 735040fdbf1b513dfe79b4c6485de58b176dba061ef76dd8a0cb42e8161551b4Virustotal results 31.15%Heodo
2020-09-29O506_XY913.docdoc 91ea7122c85ab3cea30ad11dea7bd43c4f05a6f4b637e36ab705e327c784ff49Virustotal results 22.58%Heodo
2020-09-29doc.docdoc 23db18611cc3211223cfdd257760fe8f0f127f1113c2ba3790da00e78ed9b0cen/aHeodo
2020-09-29File 2020_09_29 KFT577.docdoc 8f3f64a249482b0a6dd6361950555bb3bee2b9be6a613991d66eb5e221573bban/aHeodo
2020-09-29Doc_20200929_641604.docdoc 1ef1e4c64715bfa17c60820cf15f98d2934c38911c568e96b65890caceb71651n/aHeodo
2020-09-29arc 20200929 HLU835135.docdoc c30af86a2c97e573ed75fd01f26e2693eead6b08202632e784c6e8e8e68bf3b3Virustotal results 24.19%Heodo
2020-09-29MES.docdoc 465521d387904e5bbb9e5d0ecdec9deb84670676357cb7121b42a6679c2617a6Virustotal results 20.97%Heodo
2020-09-29Attachment-E4767.docdoc 0db7367043ae08eca7321211aad04a83ef5866462b9182afc854a0c9d70f9e4dn/aHeodo
2020-09-29mes-03211.docdoc 475f7a5d5ca5a16e679e4f8cc780cef9765e9cc75a3f7e4c76e1f1ecd0238824Virustotal results 24.19%Heodo
2020-09-29File 2020_09_29 XXY622653.docdoc ed9cef79f5dceb4cae1a46854e3724794bb5d809266cd39d048a6edad7aa90a3n/aHeodo
2020-09-29Attachments-2020_09_29-EFP606.docdoc dffe6b12754772da4ccc5aa7c07425a752a3680f801e0df24fc609e879e83e8cn/aHeodo
2020-09-29mes_20200929_V565515.docdoc 3928efa7c8b5593d40342ecd2411be994dc63bcc0a56f74ad10e1602d64cbf5bn/aHeodo
2020-09-29Doc 20200929 4592479.docdoc ddc79b5cef58dfcaaaed830ddccce3755acc13c2ffdedbbf3241cc6b35d3358cn/aHeodo
2020-09-29MES_YR33414.docdoc 2af6ee72c4fc0cd1ff72c28e91edb4b7f854dab317591ca48ff21589c7f65fe6n/aHeodo
2020-09-29rep_20200929_TLC660946.docdoc a172322135f760ced398ed29bdc125263aa20fd42391c0ff1db2c8d29a9fd5can/aHeodo
2020-09-29Untitled_MEO970.docdoc 1a9b68acb14a41b81e465462a902db345c061e9c26d442d55f4310203b27e3b5n/aHeodo
2020-09-29REP-20200929-P877.docdoc e7d217418054f69a30b81cc69cf1d35d00097ac3c1b0a0175a61d72134c5f417n/aHeodo
2020-09-29Arc 016.docdoc 15915a01d4795b2cdd261061864a25011d8856f97865e6538890f9259958392en/aHeodo
2020-09-29INF 2020_09_29 2926.docdoc 6393adce2e6fe6411ce0d55abdc750cf798b4d5e95ac789d82fa303e456ff200Virustotal results 40.32%Heodo
2020-09-29Doc 2020_09_29 IF433.docdoc eec9ef739ef8f2d773dba3cd334596007989d12949c6dd86972257b3117335c9Virustotal results 40.00%Heodo
2020-09-29REP-0253.docdoc cab62d49d500e135acf0c1331510182e4fc10de9a53592bdb1b081825e42cb7eVirustotal results 37.10%Heodo
2020-09-29REP 2020_09_29 L831511.docdoc 15e628ef0bab8fa7574005e71632246fa922e8aeabe4dec14dccfcfb2d87beden/aHeodo
2020-09-29Attachments 2020_09_29.docdoc 5f87d95e028a5e898dd317d4a0e297434e8b30770d448c4a07687bfc44e9688dn/aHeodo
2020-09-29DAT_20200929_U322274.docdoc 085bd44289d94c5a4c9f4b533a6c4c65d15d751153585af0272085401818dd04n/aHeodo
2020-09-29FILE_2020_09_29.docdoc e56bc063733d1ff4a57a70fa7ba2925de15320cae5a623a2f04fdd771c879f43Virustotal results 32.26%Heodo
2020-09-29File_244134.docdoc 431d361d091946539cac8ed89298e63de4e17531277e185f37c063dd89273ef6Virustotal results 32.26%Heodo
2020-09-28mes_2020_09_29_052.docdoc 355499f144efa41f21d80a9c65951bc118d0198a598fbe5c252c1fe5e64cde9aVirustotal results 29.03%Heodo
2020-09-28Attachments 2020_09_29.docdoc 203faceaea459744bcbda58dc7d1805054c4cbc185f4ffb562a9a24cf8a3f8ebVirustotal results 27.42%Heodo
2020-09-28doc.docdoc dadb16f08fe25c42bd7288b792eeb520d80dafb26c05bd0f61eba97663e01971Virustotal results 25.81%Heodo
2020-09-28LIST.docdoc 90b703f697621ba12b491e3057f8c52fc9c3565a9d6e049daf34862f8c2044f8n/aHeodo
2020-09-28inf_669523.docdoc 7bf0020fa5c284f04b805e38e363c917a7947a5cbc5bd2c8f44d92a3c9ce2926n/aHeodo
2020-09-2826937WW_20200929_HIP748.docdoc b1536376623a3ee055f99e8f84ca15064207d45742c50d65d7e7f70f9fe2c241n/aHeodo
2020-09-28File_2020_09_29.docdoc 0a360a97df16c9d01ea98b8b59eb8a84b4aab0326bc08469f0bc35b53390ec6aVirustotal results 30.65%Heodo
2020-09-282961_2020_09_29_CI054646.docdoc 3fa1ed1c55588e5de1196a700249785a9b6c8d62a0d4155cbc47379a316836dbn/aHeodo
2020-09-288198R-20200929-PC79258.docdoc 0537a8b60f70cff3524ae128de8c36be3e5c5d546657bc22795e8e8b2e1a02e8Virustotal results 30.65%Heodo
2020-09-28List_2020_09_28.docdoc 8d6ffb5eaafe5c0d15deb863ace61fcca818ddbdcab0897d010162fcd5336516n/aHeodo
2020-09-28PL52945 20200928 VP255.docdoc 0a30286f2c6136992c19ec3d8b6d67aeb198133f5e4fd0fd477ffdbd1a3b2c5fVirustotal results 32.79%Heodo
2020-09-28list_20200928_MDN4413.docdoc b5dcefa00718c69e6ac0d71818f99e2f2eda27c7e8c6e34d1c3f8ff0aaf6f034n/aHeodo
2020-09-28rep_HNO629.docdoc 35e2c95e440b0544928138cde2f7a90406a33d9907aa72661ab482740a8c4d28Virustotal results 32.26%Heodo
2020-09-28UNTITLED-2020_09_28-149152.docdoc 9229b8aa910b6a3a82477341ff66c9e89779d37ee24826a7b4c370fbd0bf4e62n/aHeodo