URLhaus Database

You are currently viewing the URLhaus database entry for http://ahrgintl.com/cgi-bin/DOC/i5eqeos6/lontem/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	620962
URL:	http://ahrgintl.com/cgi-bin/DOC/i5eqeos6/lontem/
URL Status:	Offline
Host:	ahrgintl.com
Date added:	2020-09-29 05:30:05 UTC
Last online:	2020-10-06 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-29 05:32:04 UTC to abuse{at}hetzner[dot]com)
Takedown time:	7 days, 8 hours, 37 minutes (down since 2020-10-06 14:09:13 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-30	FILE_477592627509711.doc	doc	a3d743d11312e842641d3124985266cfd1471f8d21881fb7dfc8dfa9cbd1fe47	26.23%	Heodo
2020-09-30	BAL_PO_09302020EX.doc	doc	63d11b10d793151af69aa10ba45dcd9de40ca61834d018e42474786090043655	n/a	Heodo
2020-09-30	FILE_PO_09302020EX.doc	doc	e8a8b9fc12cfa3ee4f3cd91504cbf5b9af3281a25798c9c23c319044b39b551f	n/a	Heodo
2020-09-30	P_1KBUS23.doc	doc	5fa75a02b1c855828a4a11cf3cf8da64502f2b4023c776b5f37c98ef894df875	26.23%	Heodo
2020-09-30	CB9955879928LD.doc	doc	728b1a60c5af8cf394d48d6bc7a6a273117da463ab6316c2b43a2fe72b26709c	n/a	Heodo
2020-09-30	INV_64624371639439923.doc	doc	79b57cc855cd58d4819bb711bb59dd13e35949ada72c908e0f968d51aefc35e8	26.23%	Heodo
2020-09-30	INV_1174313275989814039426840.doc	doc	54f93880d0f4c65aaa29acd1dff0cb761aa8dc7388f96435e8c55ead32b30dfe	25.00%	Heodo
2020-09-30	REP_VX6203900508NS.doc	doc	a6bda5016faa4796392e20bb0d8076147b2d6ea0f899019aed66cab6a4ad220f	n/a	Heodo
2020-09-30	FILE_ED0509888823UB.doc	doc	340edbbc6b875bfedadf402c810c9fbdde4fb3d9fee5d5f9996b9723d9fd5c94	n/a	Heodo
2020-09-30	VZSC_5587693599331.doc	doc	e2a69925ef4b6f6223ed63f7f448dfe63141874f1a6d195735f3846c4ca9ed8b	n/a	Heodo
2020-09-30	4356886296724.doc	doc	583be8560739028b53b2363adc1a5198c194b0ea7abb706f3dd49e9a170d7f79	n/a	Heodo
2020-09-30	DOC_16407990047.doc	doc	a4764b420e55695dd9b02d5ca980f126958001ea30e96a74b2e9321661bf38ff	n/a	Heodo
2020-09-30	VKQ_445203591.doc	doc	a5bc68599f8ed3a4cdd8e4894aad9cd9fa0753278b8a44af04debb277960d44e	22.95%	Heodo
2020-09-30	XHVL_PAW_090120_FGB_093020.doc	doc	0a2e10583a6c70298eb3c353e0a15ebd98c8a9ae09db8e6cc9cef513e39c95dc	22.58%	Heodo
2020-09-30	DOC_WZEKLKE3.doc	doc	f8fb4db3104cc2c9f261f3b3b43acb4132f5759f8e485677651a52478610f5bc	20.97%	Heodo
2020-09-30	INV_PO_09302020EX.doc	doc	e9a9d7c87ef767357d0019c6185d27bec8449b2abd340b93b54b6621c426fc14	n/a	Heodo
2020-09-30	FILE_10365097666.doc	doc	24e3ba16d86892e3c786b97123151b7a2294602a61bafd3c546475d0597a2a37	45.90%	Heodo
2020-09-30	394097399748596436.doc	doc	d0ce4cd7cb0a84604bbd7f40f0aa48a2f09e21fb9eb3d4b72d64cf88790f3081	n/a	Heodo
2020-09-30	REP_VR7431516239QT.doc	doc	c648f66670c65dcb17a1ec6a90617481190da0ff1eced41135b2435893b66c22	n/a	Heodo
2020-09-30	DOC_PO_09302020EX.doc	doc	09920ec2c5029cdb6177cee45414e34e9307a6f40548df1ba80385c44cfcc613	43.55%	Heodo
2020-09-30	DOC_OAM_090120_OYM_093020.doc	doc	3d322e72fd831b7624674c0a9ed650c75bf0cf2d05e5c2dcf7746ee4187260b3	45.16%	Heodo
2020-09-30	FILE_PO_09302020EX.doc	doc	010d313ef5a6680acc6fcdaca0eed3e19f256a23cac861684466d6e7f7138030	41.94%	Heodo
2020-09-30	BAL_ZLEB1LX2MQ7K.doc	doc	0bffbb268223d255d4ebdcee53bd0d8e990843600bf96f811f47a550d1e366ca	39.34%	Heodo
2020-09-30	INV_NSTGOPWD6U.doc	doc	1854226276e84dabaf5ceaefe8e33cd56360b60752eef6ff1a0e8e1657931e53	n/a	Heodo
2020-09-30	FILE_PO_09302020EX.doc	doc	797ac0be9b6e1c912dab41fdf6c487642e027c1a24c2a6510ee3a1a326ef7bb0	n/a	Heodo
2020-09-30	PO_09302020EX.doc	doc	0594dad5ba161c51ba71ffbb41c36696b151edf4d1d7738b31a026cd28164a4d	n/a	Heodo
2020-09-30	J_97153885.doc	doc	bf8dca92c415f9441d506b7b5aace8b6d6bfbd8d67351b32abc27e2ef1e242ef	32.26%	Heodo
2020-09-30	FILE_12158717.doc	doc	98d73b34a062ee1b2c37410e0e1780a6fa53a694ff1df676a5b0213206078d85	32.79%	Heodo
2020-09-30	A15GLCKX07F2YF.doc	doc	5620011cd8bf0acd1f3ecc32958d26a9f38c982b191406bada41f3db5a9250e5	32.26%	Heodo
2020-09-30	REP_45687213.doc	doc	75f032ed1b4c5d9738c4ebee1d878f1fe5307cba5c43dc44ce2443a640e7fb2f	n/a	Heodo
2020-09-30	FILE_AE12GV2IY26F9.doc	doc	587adcb5768ec9aa8b3be79e9ea740bc5052b9d0f09d4b2854fac3ff667edd4c	n/a	Heodo
2020-09-29	FILE_U9O0NQZJ9TTO566.doc	doc	6596f751d97b234516bc66104d96abd644a86657c7c981f245101bb9bba1c004	n/a	Heodo
2020-09-29	BAL_612650487.doc	doc	d6baf92252e2e3e673077f1cea8fc4bf0e240f4383dffc91c53d88857ba5fdf7	n/a	Heodo
2020-09-29	FM8419602159KB.doc	doc	ad21f91ac048eeb669e0a9cc8199225d755cf89a9f5d79d7fb39ef2659f04a9b	n/a	Heodo
2020-09-29	11572086380322484983.doc	doc	a0269d67f007490795637a732bf26ce5976a2b4039df3d784930ef9109697365	27.42%	Heodo
2020-09-29	DOC_GH1108402123MU.doc	doc	a863d09af176344fa94c7820a54398bd505f2ee93f7f66a6f05d3e60b71479ec	27.42%	Heodo
2020-09-29	S_SW0HS33RU9VZX.doc	doc	a7bac9b6662da2eb4c3fa6f12c10d790ab6b8ef1735241fcd2a4d35a152a8965	27.42%	Heodo
2020-09-29	REP_53993117.doc	doc	14e6ea40cc1e124fe353ed7aeb27490dad58d6a116bfddc62aacaa02921c5d88	n/a	Heodo
2020-09-29	BAL_3237867332550984774781.doc	doc	0696c08b3e38944c68c4e41b8589256b865c69f40b1dd4fd6016b27474f54488	32.26%	Heodo
2020-09-29	M_LJ3466521438RN.doc	doc	5ec415733e64c05854cc229c0978d9da72b7615bb092d7cfab7f2b36059af466	n/a	Heodo
2020-09-29	D_U28MLXHSDFCBJ.doc	doc	0242549ebc92f3e40e21ec852316e2a5e84ac870bf1a1a571ba2dee66ecb2128	n/a	Heodo
2020-09-29	DOC_91549302.doc	doc	1a54d91500ff4572c7bd747c5d05133661b5bfa5a961de5468f14e7e66cc7203	n/a	Heodo
2020-09-29	YKAV_89593356.doc	doc	6827be98be808d8165d3ba0a77c452fdfa8e2718d6e479714ced1fcb4158988e	n/a	Heodo
2020-09-29	BAL_PO_09292020EX.doc	doc	ec4b522711c9c62c60b3f21fccf23311177f5c1181cd87082b613116f0b793dd	32.26%	Heodo
2020-09-29	FILE_PO_09292020EX.doc	doc	3af89f74e936ede592ba2d72b80b1be501c5657e80c247863516cc4d28eb0189	32.26%	Heodo
2020-09-29	REP_3XBWLQKOD.doc	doc	28d8b1debd531ebe8e665f3c39a2ac24368f0bec5bdad18264416f150ac1b256	n/a	Heodo
2020-09-29	XX1794855314PA.doc	doc	645c5b6a11b55fb4e8462cb10dbe6fb0275131087d711a20dec2d7fd2fa18264	32.26%	Heodo
2020-09-29	HU1167143758FE.doc	doc	d68b772804de699fd2f1abb0735015fbe96bb1e7d89c9a1358ba210724b39b52	n/a	Heodo
2020-09-29	H467BTDW5.doc	doc	d61c94700e11dc1403447594b7f872aa897b6c504694e1fa839173b309e4db89	n/a	Heodo
2020-09-29	INV_46416885.doc	doc	5ef294f07935f058d75cb1588cb92c95325d7f2d888d38db85d1083041ea4fff	n/a	Heodo
2020-09-29	FILE_DA2752269322LX.doc	doc	cacff24b1921671b1b6a2863e6a5dab6f343194aa1b534a27b05b735bd793edd	n/a	Heodo
2020-09-29	INV_30842798.doc	doc	d3461e80df2f5fd3509e98212a3fa95e931e1311e382e800fdf0469d256a3e57	n/a	Heodo
2020-09-29	INV_XG8900415154AY.doc	doc	844dc7bc8eab502d43f5eb0a7501fc0b97ed3192fe06e4e2f33d69dd28fb63f5	33.87%	Heodo
2020-09-29	TUZ_090120_VDW_092920.doc	doc	44227b77d84cd888cb5d44f59159a5bdc0c7b3021042e2d2814718e870c2b237	n/a	Heodo
2020-09-29	REP_76223305378206080.doc	doc	af66021f5673c71460b46b35f0d09a751b24676c36e0a9524e18841c4c4dcb80	n/a	Heodo
2020-09-29	REP_KO5040091613NX.doc	doc	75284ce88d24ec303b134ab93a005af756cfd8e65c06fd2438579d8ff10dd621	33.87%	Heodo
2020-09-29	FILE_PO_09292020EX.doc	doc	1999898a5441491078f5f533f24d54dc15a13e67d32ebe74c63c6be7aeaf2508	n/a	Heodo
2020-09-29	TH_45823579.doc	doc	3ac2fab6d38a1b39310ed1c690ee400a2e3fe82c6c762a2c0d795a4140586832	n/a	Heodo
2020-09-29	PO_09292020EX.doc	doc	61b3bffbe6f5f008409753927951f85f0dcd74b415a048381011c73d24e0d469	n/a	Heodo
2020-09-29	FILE_4088613655.doc	doc	745c43f7578cbd7dc997f5fcdb6f547c74055514e0120e14dbcdc4772babb5ac	n/a	Heodo
2020-09-29	REP_641728662868766059326.doc	doc	2c95d5fcdfdb060215112fb122d9315d7e155ffd00e61593df65e257922e252c	n/a	Heodo
2020-09-29	DOC_PO_09292020EX.doc	doc	d286eeb463240cec38ca707bac6d0bab917ed05ed87cda5f42f3865dd2cbdc1d	n/a	Heodo
2020-09-29	REP_KS8532584323NR.doc	doc	59f15b56958e59270a62cc0cdd726486f7afc4094d189b78461abebb9ba864dd	n/a	Heodo
2020-09-29	PO_09292020EX.doc	doc	6e2b253000053aeeec708e1f19dc55340faa394c2a8dc55c25b19caa4bb8200a	n/a	Heodo
2020-09-29	DOC_FR6203291143MO.doc	doc	05f1651c27d78b774cd2de8746ece22449b03816577af4b84582dd60ca81643a	n/a	Heodo
2020-09-29	DOC_SM3715016980UK.doc	doc	3cb011a2c44630292f7bb448f1b55f5a6a9e8c7b7514c335de2bca6bab587e22	n/a	Heodo
2020-09-29	DOC_1809198696899794.doc	doc	b8ce486a27d2199da8187d23d31051c584a094ced356eca2749361016658a90c	24.59%	Heodo
2020-09-29	L6EC46BDU8AP66.doc	doc	e70eea5dcae2b820b19bc58b794ff2b23ec6a26d8fa07f05171b1acb8585fefd	n/a	Heodo
2020-09-29	UW7723129073JQ.doc	doc	8463091366fd555af04f6e98903f8959e0735f49e6ca9bd462cabdda01e5ec9c	24.59%	Heodo
2020-09-29	87938083127259089279482.doc	doc	cf492ac392714f285fa0b842ab4721b3581c56da3171f28be3d10b7803c89c0f	24.19%	Heodo
2020-09-29	REP_9469762499237691759185.doc	doc	a0d65313a8c5c4788cbe425f50f07f9a6ca0bacbfacc94abe3eab4edd1ac6d98	n/a	Heodo
2020-09-29	67148773.doc	doc	512e86c0f2211d705a479616c64b67624b68d4ae0e713e7d8f4a03d62e9d021e	23.81%	Heodo
2020-09-29	INV_PO_09292020EX.doc	doc	e32364f053e1ab52c7871c0ee65de7c7b8231a1ab67f3c3ef459af3c1bcdad2e	24.59%	Heodo
2020-09-29	PO_09292020EX.doc	doc	ac227d3a7a5726f8481ab18b06d8afab6c1d4f31572578a71f4375020fa715c1	n/a	Heodo
2020-09-29	DOC_FY9796009386QD.doc	doc	f0b67e53770af42aa08ec513bd9ea60d15d3b506a1d2609e88e0ce31009681dd	47.46%	Heodo