URLhaus Database

You are currently viewing the URLhaus database entry for http://email.undp-fakhoora.ps/cgi-bin/DOC/qKsPxx5RqNaNxF6yy/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:621614
URL: http://email.undp-fakhoora.ps/cgi-bin/DOC/qKsPxx5RqNaNxF6yy/
URL Status:Offline
Host: email.undp-fakhoora.ps
Date added:2020-09-29 07:38:10 UTC
Last online:2020-10-01 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-29 07:40:05 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:2 days, 8 hours, 11 minutes Poor (down since 2020-10-01 15:52:04 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-30Mes 2020_09_30 ZIO99336.docdoc 730e5405f5a4d477af48b3a110b6dd2286cce2a05b4ef3f28d0abb9faef71de8Virustotal results 22.58%Heodo
2020-09-30UNTITLED_CP85142.docdoc 2888b551e17e7d62e62ca0cec57591c6d9e40b39c0db60b31ba14b2e39fd86e0Virustotal results 22.58%Heodo
2020-09-3008668353-20200930-BJS6124.docdoc bb859c1cdc55c8efda32c573ecc7e09c0692cf12de6a7c4bdc300e6e86456782Virustotal results 23.33%Heodo
2020-09-3083059KAX_2020_09_30_6525.docdoc 9c64b681d05175b3e7768a424579e19e1cb064bc89e07001c94b31a19a6db8cdVirustotal results 22.95%Heodo
2020-09-30Doc NFN212.docdoc ce437cd41adb6661b0e4389bcb5f69ac300b5e9c7fafe156dec9f8df767b625bVirustotal results 22.95%Heodo
2020-09-30File 2020_09_30.docdoc 2e596652391370bfcf5e776a4379dd5061fcb4441200889c726c34ea6207ee9bVirustotal results 20.34%Heodo
2020-09-30Attachments 2020_09_30 ZK376.docdoc 0fd48786b12e8874cb785d93797affdebf211a8f67c6a295a1a95758003d0efbn/aHeodo
2020-09-30doc 2020_09_30.docdoc dca2f3f5cd4fc577315e8bd9fcb344afb5cdc0726cd6349dd3698c48cc0542d4n/aHeodo
2020-09-30233720_2020_09_30_139012.docdoc f6ed8a2b25a6f8f693aa0aa17e1a77c02888113452cbbb4efae319131fd375ffVirustotal results 24.59%Heodo
2020-09-30Attachment-2020_09_30-70956.docdoc 2fbc53c50b9b33c49311e11a41aa64660b305c9c7d4a4db3986c59a1a77696a8Virustotal results 22.95%Heodo
2020-09-30ARC.docdoc 6332f6b0886bc926911339247b72278894fc0667a705e120fa356efd3691962bn/aHeodo
2020-09-30Doc-20200930-DR828.docdoc ce1d7fe9a715dbd5b408b17ff12010a67d3d1d002a9484370931304e35254f12Virustotal results 22.95%Heodo
2020-09-30File-20200930-39125.docdoc 8499ca7bd03946d76958ade70190e439f10d822405083e41472af011d95445den/aHeodo
2020-09-30UNTITLED AZ299058.docdoc 2bc311aff7d90ac42c818d1850c8eff0fca326e6c334899f8041c63a59753465n/aHeodo
2020-09-30Mes_2020_09_30_00161.docdoc 9273393ed610f4c4e9b5b8870bc8c0afc1c6e208d055a10f5eeaa64ba87bcc65Virustotal results 22.58%Heodo
2020-09-30Doc_2020_09_30_GXP646.docdoc e03fed3300d293debbc3a22ecad92ca0d5081711bb790d7a954385a2abf5ba1fn/aHeodo
2020-09-30Doc-20200930-BLJ74545.docdoc ea0313fd5620c355be450cf83271f033601347eed4e661eddef0fbf152e5808an/aHeodo
2020-09-30file_20200930_TW5540.docdoc 9849bf91ef029b6a492bd6c1b39b888e264d7b14a1574d64502706cc65d51576Virustotal results 22.58%Heodo
2020-09-30inf-20200930-SB73138.docdoc 7d295d64ccbe51777d0ddead2fa213c37017ce33adfc3ab35ed81d988315f756n/aHeodo
2020-09-30DAT 912818.docdoc a3f7b976b0c108284bf0de59187798f84d509ad7182c92761cedbb9b35ba4a3dn/aHeodo
2020-09-30Arc-20200930-843050.docdoc 848472a593e725755e8a0b52a61189cab28bedfa9f8d62a7a528790838e7d9acn/aHeodo
2020-09-30Dat 20200930 2883492.docdoc e750318c6f5ae04efc1b912fd250a9bdf7c83ce3289a31f303d03bc0e9e4b11cn/aHeodo
2020-09-30File_2020_09_30_K9558.docdoc ce00e37ae25728419ee8bb78a1abcc5bad02bbd0dbf436d5051b7ff766f5985aVirustotal results 21.31%Heodo
2020-09-30MES 2723678.docdoc 32ec09ab815a3ca2d96ed124d841dc8dadc0f752aade3f0cd9ea04c51c6f1eb9Virustotal results 47.54%Heodo
2020-09-30Mes-3553.docdoc ab29dfeede441ff65801a3bd6e00e12eb35038b0142cfdb133fd029ed7ec4ee9Virustotal results 47.54%Heodo
2020-09-30513-20200930-O70121.docdoc 45fe2fda54ec2b495e927d8205639f79fc95f1de2c7325a84a6651092c11733bVirustotal results 47.54%Heodo
2020-09-30LIST-20200930-8475.docdoc 3bdee9fdd814363fa073be396eda19d9242d4bfd82702110dff7564d61ef4a8eVirustotal results 46.67%Heodo
2020-09-30inf 4031.docdoc 23ccebb7161e48fdb44034be5f97acd1bfa117b92ee7c747f07dfcbd15d5fd9dVirustotal results 45.16%Heodo
2020-09-30List-W3344.docdoc 267561ab8d4856ba0064185a8d6269693f1c580b721f16db305b6a9299f5c41dVirustotal results 45.16%Heodo
2020-09-30Attachments 2020_09_30 763123.docdoc e8687463d9ab753f201293dcf26cc49ccc1d536ca5eb2807821502b5e45a4b3cVirustotal results 45.16%Heodo
2020-09-30LIST-78647.docdoc 33477bed1839bb45bcfd3358705d97b3db5e567c2c551e666d8ac934ec20dd9bVirustotal results 45.16%Heodo
2020-09-30Attachments 2020_09_30 0009841.docdoc 18c9ca3eaf44c72da3a3b8a071775d824b0c4020005a02f213b248ca246e95f4Virustotal results 45.90%Heodo
2020-09-30UNTITLED 20200930 429.docdoc c5fb0bf46e7abc0dc192a51dc5e8c8f05df4c91bd08dc53d536cd4ffbf09f89dVirustotal results 41.94%Heodo
2020-09-30Attachment 20200930 NT221960.docdoc f72f43e5d32d5bf4ab91a6e04550dbef93f82764320a7403d8b59952c208beadVirustotal results 40.32%Heodo
2020-09-30arc_2020_09_30_MY315.docdoc 10294374734e4bb56cbf03eba2d257784ac87c057586d27a97c2b8b30f1f0f6dVirustotal results 38.33%Heodo
2020-09-30dat-2020_09_30-0696.docdoc 058c2e8f57729727ed29b3c713fb0147a3b79eb1ca1360453aad3185f45e41c8Virustotal results 35.48%Heodo
2020-09-30ARC_2020_09_30_CKW9896.docdoc 1d44cd8c3d04874dc41108bc844eb637f657064927fc28927f68c95fe596bcaaVirustotal results 32.79%Heodo
2020-09-30mes_20200930_90042.docdoc e24108e3bfdc205fb409b17e7471d0fa880daa6a6ff8379a3195b0ce9b646d83Virustotal results 32.26%Heodo
2020-09-30File-20200930-M198.docdoc 58e15d1f9b2a0305fc813114cadb2bcbd2401fe4fb778cbccb17b95e97d5b7acn/aHeodo
2020-09-30rep-2020_09_30-6307.docdoc 541afbe8b457f589a760cae7ecbf5d520a7f1ecb81bf9d2e2f5ddf90cad8a418n/aHeodo
2020-09-3047307AVC-2020_09_30-IB46643.docdoc 1d5392f655dcdc6f812366e57505b4f345c53a8c5ede33a7f7b9d6e05c3deaefVirustotal results 32.26%Heodo
2020-09-30DAT-2020_09_30-033136.docdoc 8b094b3853afcb79ef514333bfa570faac9b7996f06500f174020ce0e5a31751Virustotal results 31.67%Heodo
2020-09-29Doc-20200930-5584434.docdoc 98c87f2f2e124f5e8444896304f556a844430d6543223343abc894702abf99e3Virustotal results 30.65%Heodo
2020-09-29UNTITLED 20200930 692133.docdoc 1d742e585ed7b4c237726a945da11795c46da01716e9da561d98fff100ee938fVirustotal results 31.15%Heodo
2020-09-29Inf_7813088.docdoc 349dd2ac63132716ea7360223fd038575e1b7144925c60d87589880fbd488670Virustotal results 29.03% Heodo
2020-09-29KV438 2020_09_30 005.docdoc e3de30ef5c7981eda918d57d374e0b63e76c17fdba1ac6c9c710bf76fd1b8526n/aHeodo
2020-09-29Attachment 2020_09_30 IPB763.docdoc 32a76ed8013dd82d6e6063013236d7fb37bb205dbd6ff84ab785e5af12e6b3f0Virustotal results 19.35% Heodo
2020-09-29MES 20200930 1432.docdoc eece33d8fe3704d0c5ed8c9cbe5420d406c6e1fb12f835a35d64fb6507eb1b17Virustotal results 19.35%Heodo
2020-09-29List-2020_09_30.docdoc 4d320a36571c9892b7730fe7903d3eb8a96dd16575194e01c8b202f77930f86fVirustotal results 19.35%Heodo
2020-09-29Untitled_ON274.docdoc f9c7cad1321f589fb0fd68646c0760dcd9cfdd72004cb61598fa14599b5b9bb3n/aHeodo
2020-09-29list_2020_09_30_500348.docdoc 19d5a82b8056b9cd822a25887ad12f5938466a09bf946ddaabf0c7a8b1b2ce7fn/aHeodo
2020-09-29FILE_20200929_A705559.docdoc 2225d21fb51eb2731d606c94088c9ac64900275d5970515cba58374eab5dcdceVirustotal results 19.35%Heodo
2020-09-29MES 2020_09_29 3089.docdoc 66e0d59d4c4e46b4e5589d41dbb45277b6dd25aba1efb68deada81d72a492aebn/aHeodo
2020-09-29Dat_2020_09_29_DNH150610.docdoc 6194e7d3103ec7b0b5b6cfd8e1af03fd2df8ee7769deae970acac611b50238d6Virustotal results 19.67%Heodo
2020-09-29List-2020_09_29-1322727.docdoc 140254a1f60e331ddaaa70ddd79ef03759dd73aa778c4e098be6ee6d8513c08aVirustotal results 19.67%Heodo
2020-09-29Rep 20200929 U780584.docdoc d43559c27961577b292cd3c8f65aba9e464eea39d831d95cd2155c885c74d96fn/a Heodo
2020-09-29EJ36867 2020_09_29 RUK5224.docdoc 885cb015e8924282f5028218981fc2fa18f0632d756276439b9da9a64a36db29Virustotal results 17.74%Heodo
2020-09-29Mes.docdoc 7deabab60b46840fc78c6ccbc66788efd8e35df7951374af54ce37d51d4b0ed2n/aHeodo
2020-09-29dat_20200929.docdoc 8dc94be7486bc7ed3174caa03f1f6a57dabcea9e39fc85e33505be2f1c6f7d64n/a Heodo
2020-09-29rep 9048.docdoc f363539a468889742abe35748f7f351c58d42294cf01ec320abf7642d5bed79bn/aHeodo
2020-09-29list 356861.docdoc b07cb9a5fc81cbe285694c19922347436507a8f62430a39839351fe573def2d3Virustotal results 34.43%Heodo
2020-09-29REP 2020_09_29 76980.docdoc 9beaf1bf8908bc5c4b8e6ed453058c5fffab9a3ad4dec3e2a92fbc6afb00b0aaVirustotal results 36.51%Heodo
2020-09-29doc_MJW79933.docdoc 0e5df02eee4e4ea12ffc82d147544638e2ef823b439f968d9ab64ad4f6810e23Virustotal results 37.10%Heodo
2020-09-29FILE 2020_09_29 58343.docdoc ebe5c60d0f35c3d6f839899e01aef73d251b2ba41e0d7ca848d1302b1c9906ecVirustotal results 37.29%Heodo
2020-09-29mes 20200929 0762.docdoc 23b449fb112ad9151ab2a3e4951ca38ed7ee57f9025e3c70de11fcdf956ffb98Virustotal results 35.48%Heodo
2020-09-29LIST-2020_09_29-650.docdoc a2983168d457ca0f8dcaa3646efbe123873003af21cc494c8171175df0e0a9ccn/aHeodo
2020-09-29File 3826.docdoc 25dcc3dce3031c258dd8d8b7dc193ff62c9b87b3151f7409948b2d0971d71ee0Virustotal results 33.93%Heodo
2020-09-2938063_96664.docdoc 48adcca64fae5cf89784d59c1d33575b632b44a419024d14af1adefd991606e4Virustotal results 32.26%Heodo
2020-09-29Untitled-030945.docdoc a9643a8847565b34079c4107d45f5b06f40ac2de0cd8df1c72f040effb1645a3n/aHeodo
2020-09-29file_20200929_83329.docdoc c45e98d9c02f898d3f7f7f86e60bb708155c604c1125c3dac174e757bcfeb775Virustotal results 30.65%Heodo
2020-09-292464_20200929_PPE427482.docdoc 2d5865da0724161f447942466a8db75f6eaf4a66fab25679472abc2385df5769Virustotal results 31.15%Heodo
2020-09-29doc_DB56487.docdoc aef1553160a730913e114ff63310a0511bb11b89cc95e591abbe55dfc55f5098n/aHeodo
2020-09-2940296530_4797204.docdoc 9858af3026287de59fb6de44a3f4292c9f370130a7183c08e450b4417e8796faVirustotal results 30.65%Heodo
2020-09-29mes-2020_09_29.docdoc 5b1798854e2ba3b74bf2987aca9b603ab1913a6d60f99bb38a660270a2ea9f3aVirustotal results 22.58%Heodo
2020-09-29DAT-MQI6663.docdoc 32092e05020bf5b9068a781d7bb994885d071fc05861e7bdcf3d979fe36437f6n/aHeodo
2020-09-2973397NJT-20200929-HO47275.docdoc 98ca5617082e699b7edf525fdceb3e43d181d5907503029ea680366ec177d376n/aHeodo
2020-09-29Arc 2020_09_29 HZJ305.docdoc 741e14a66eb965aae9fcc7da6bc90f096cb91d8492405b53d81e9d13ea0100eaVirustotal results 24.19%Heodo
2020-09-29Attachment 20200929 782.docdoc 2a7cdc32ae1da5fb9bd23b44e0e5e8fd2a2473d168eb04d37faf6660e39addd6n/aHeodo
2020-09-29DAT-4077.docdoc 405eafda68956f4def6b853f960ee3ee58fd39ad89c0c28ceec2cd79ba8255f1n/aHeodo
2020-09-29Inf-20200929.docdoc 1ef1e4c64715bfa17c60820cf15f98d2934c38911c568e96b65890caceb71651n/aHeodo
2020-09-29Dat.docdoc cac06b51ffab60f06e2c63890ef00ee519095bdb694fcbf45f78ee1b0e6607fdVirustotal results 22.58%Heodo
2020-09-29Rep 2020_09_29 140.docdoc 76a639dea41375773f8298cbacfe89d220e90c7697d326fa38eeeba25313fef6Virustotal results 22.58%Heodo
2020-09-29Dat_2020_09_29_HE34788.docdoc 2a3f1606dff59a1aed0077676c39e10d432a1c36d244d4b4fb8e5d6fa7e68e57Virustotal results 24.19%Heodo
2020-09-29Arc 2020_09_29 V347362.docdoc e4af97d602c50a37297d2f5b045c58a05362a9e8ecc5adbb4d1e01e484f591e2n/aHeodo
2020-09-29Attachment 20200929 263033.docdoc bae30fc2075fb76889eb35df55c22cca823da3af80c5efd94438257443e0f698n/aHeodo
2020-09-29FILE 996.docdoc 41e163d85fdd54b56a26d8ad9df6c258431dbf5584a1515b5050eba93037416aVirustotal results 22.58%Heodo
2020-09-29FILE-2020_09_29.docdoc 8b2f092d7111a63a1e399dd9961fd728074628eea1b4f6d61ca40b3efe2521fbn/aHeodo
2020-09-29LIST I169.docdoc e4d5f99d00e84f5a06038d8f40ce5025786f6bb2c9d618cb12b86359d8acf7d3n/aHeodo
2020-09-29MES_0306209.docdoc 475f7a5d5ca5a16e679e4f8cc780cef9765e9cc75a3f7e4c76e1f1ecd0238824n/aHeodo
2020-09-29dat 2020_09_29 F800.docdoc f464ed4cae1eb3e3eacb5bd81cf88686ad8d321e7d77d91e397524b3a907b47dn/aHeodo