URLhaus Database

You are currently viewing the URLhaus database entry for http://hi-so.net/4L3F3pQSWq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:623302
URL: http://hi-so.net/4L3F3pQSWq/
URL Status:Offline
Host: hi-so.net
Date added:2020-09-29 14:00:37 UTC
Last online:2020-09-29 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-29 14:02:04 UTC to abuse{at}sakura[dot]ad[dot]jp)
Takedown time:9 hours, 21 minutes Good (down since 2020-09-29 23:23:37 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-29UNTITLED_2020_09_30_BFC16357.docdoc 1c66d607d768fda8908683a9139ba103d12f44f588c622dace25ea46c28f9945n/a Heodo
2020-09-29rep_20200930_0337146.docdoc 08c3a51969b9ccfcd46ad14ef1a7599a798c21e693a582ac6d8f449f77f4fc09n/aHeodo
2020-09-29C850 OKR80877.docdoc 8666706e9ee66b8e782269a6c387b2ce242c017e7507bc5d65fcbedbc021f2c4Virustotal results 19.35%Heodo
2020-09-29Untitled_2020_09_30_542.docdoc 7b65d8ab639b2e52bf89d1991cd330f6290b79269e2699b295b134f62689d29eVirustotal results 19.35%Heodo
2020-09-29MES-899755.docdoc bd56a042ecf4e68f3f6d427ca4ee9ad03267b1e53db58ae19e8335e34f6231f1Virustotal results 19.35%Heodo
2020-09-29Dat 2020_09_30.docdoc cdbc3d9af98086634425aa8705246094a3b602fd00a7f35717208a55a4da2144Virustotal results 20.97%Heodo
2020-09-29doc.docdoc 3ed38db3201fe400b1e0533ba551a1f631a550297afec1d65ce776dc9ed958e0n/aHeodo
2020-09-29279976 20200929 846591.docdoc 2225d21fb51eb2731d606c94088c9ac64900275d5970515cba58374eab5dcdceVirustotal results 19.35%Heodo
2020-09-29mes-2020_09_29-OD54266.docdoc 66e0d59d4c4e46b4e5589d41dbb45277b6dd25aba1efb68deada81d72a492aebn/aHeodo
2020-09-29Mes.docdoc 43302ab823d78926b1d6c64d95d04cbb45c97d5d8128ffe8eacb17bf0ed2ed24n/aHeodo
2020-09-29Attachments 20200929 57853.docdoc d43559c27961577b292cd3c8f65aba9e464eea39d831d95cd2155c885c74d96fn/a Heodo
2020-09-29arc_20200929_85445.docdoc 71052fa8607af31f75e8e9fa311bfce8992c7a67551f8f15b281547f57aaa0ffn/aHeodo
2020-09-29DAT_1368149.docdoc 6a026a05a3a131e3e0c18682b71562c9e66f18aa9fa41342f8e4f1638346368bn/aHeodo
2020-09-29file-20200929-0420.docdoc 275a46a9c86fcb536d7dee38a273fadc27066204b68ef852423568f9f925ae81Virustotal results 17.74% Heodo
2020-09-29Untitled_20200929_RB939488.docdoc 3939481b8307ac66766600073b45ebd146e9675fdb765f31f650dca3290f91fan/aHeodo
2020-09-29547 20200929 GEO685.docdoc 94664f71a4235a5be2e24ea979edb2133d68b3d4ddd2a3cad56741bedb13edc1n/aHeodo
2020-09-29Arc_20200929_WCK906491.docdoc 9d62529a510f5ff1233ee41b2df2feb66813e33d5827aadd11b8d28984fd4bc1Virustotal results 37.10%Heodo
2020-09-29Untitled-2020_09_29-323.docdoc dfb7fbf86fb1570a1800e0e7134f58fb4babb231287e95aa698ff283ce1b45e3Virustotal results 37.10%Heodo
2020-09-292688947-2020_09_29-6121425.docdoc ebe5c60d0f35c3d6f839899e01aef73d251b2ba41e0d7ca848d1302b1c9906ecVirustotal results 37.29%Heodo
2020-09-29arc_3906.docdoc 0d6a4adbdcf1eb88796382eb5c208b6bb92242af7b560d07e66647478e265758Virustotal results 37.70%Heodo
2020-09-29Dat 20200929 B42800.docdoc 65021d78e36b926f2d707ed3ec8162458f8f9fa93b435a74d8ba57b7a46b5fe0Virustotal results 37.10%Heodo
2020-09-29dat-U505.docdoc a2983168d457ca0f8dcaa3646efbe123873003af21cc494c8171175df0e0a9ccn/aHeodo
2020-09-29Inf-P8950.docdoc 485c489c206a25350005243077ba88ed94b9261239ea06d06e1d5a883d69a70en/aHeodo
2020-09-29Arc_20200929_202.docdoc ae306a6cc155bf68ece16f8f6a7b65692511d84af5c2d0f8375c31975b1b2769n/aHeodo
2020-09-29MES_20200929.docdoc 76b5f9e5cb59fcac0d2e8109a019fc56b03e5a26b1a0406ffc15f63dbd6514ebn/aHeodo
2020-09-29rep-KMZ1921.docdoc c45e98d9c02f898d3f7f7f86e60bb708155c604c1125c3dac174e757bcfeb775n/aHeodo