URLhaus Database

You are currently viewing the URLhaus database entry for http://tukopamoja.info/js/INC/wgCa9D6or76SxpjyMcv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:624338
URL: http://tukopamoja.info/js/INC/wgCa9D6or76SxpjyMcv/
URL Status:Offline
Host: tukopamoja.info
Date added:2020-09-29 18:06:35 UTC
Last online:2020-09-30 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-29 18:08:20 UTC to hostmaster{at}nic[dot]ad[dot]jp)
Takedown time:7 hours, 7 minutes Good (down since 2020-09-30 01:16:08 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-30Rep-2020_09_30-LU198.docdoc 58e15d1f9b2a0305fc813114cadb2bcbd2401fe4fb778cbccb17b95e97d5b7acn/aHeodo
2020-09-30List_IG36915.docdoc 9d6a2742e7b189220132964cb3ecc21eb2bf93bf90143787ab21937cbb1b2e5fVirustotal results 32.26%Heodo
2020-09-30Dat UD62538.docdoc 02c3c1d0653a24c203ad1bcef154e65e155db910100619634569eed5982b5d26n/aHeodo
2020-09-29INF_2020_09_30_PM0231.docdoc dc873a463b8cbee41eb8683d98db5a331553402391ba1c16e664c7034eb1acafVirustotal results 30.65%Heodo
2020-09-29Attachment_20200930_0223.docdoc fe1ce0fd30ae39c4347efaf4fd829853c3df12a2eaa46b281faf17855b5c3a2dn/aHeodo
2020-09-29Dat-2020_09_30-813.docdoc 1d742e585ed7b4c237726a945da11795c46da01716e9da561d98fff100ee938fVirustotal results 31.15%Heodo
2020-09-29Mes-498.docdoc 08c3a51969b9ccfcd46ad14ef1a7599a798c21e693a582ac6d8f449f77f4fc09Virustotal results 29.03%Heodo
2020-09-29Attachment-20200930.docdoc b6924c37febb8c64ef7ba11d8266e713aac4062636eb088d498cb095fb68010fVirustotal results 19.67%Heodo
2020-09-29mes D08524.docdoc 7b65d8ab639b2e52bf89d1991cd330f6290b79269e2699b295b134f62689d29eVirustotal results 19.35%Heodo
2020-09-29dat-058.docdoc 733396f8631195450342e999f4b7d1e4134dae74cc2ec95438d0c2611e65a6e5n/aHeodo
2020-09-29FILE 2020_09_30 WQT7922.docdoc e217a7b6b8d3730d1f902b14dce65e6146ed92bf808d911ff003e7dbb8f29a71n/aHeodo
2020-09-29MES_D96009.docdoc 0750c5ef1066dc83b228d1a3ac248ae8ad5825377fd3d39e8749ca492d395599Virustotal results 20.00%Heodo
2020-09-29Inf_20200929_JWU0744.docdoc 3d235a4140752510bfc661fe22f35beed507a33c01e5ba04d7ef218b9a9f4f8fVirustotal results 20.00%Heodo
2020-09-29ZVZ24900-2020_09_29-356.docdoc f7a5f4499460af59d26675a0a4e6e45c7422b7f830447a95d261fb2950001aafVirustotal results 19.35%Heodo
2020-09-29MES_20200929_6776175.docdoc 59db370e5d8a40c599cf93b60ad3385c1dcf1f4bf9236334c3f4b5be21faa05an/aHeodo
2020-09-29Untitled_2020_09_29_UUM3664.docdoc 685e3e4ea0851f195ade4ba3673387a5c69eb1633d3daae4666e5aad9dabaf7en/aHeodo
2020-09-29Doc 20200929 33481.docdoc 0c7d2c1664ccd97c72a5f0e32e5cb2f5b3b0b558e61edbbe58dfc4b9b937699fn/aHeodo
2020-09-290994H-2020_09_29-1436165.docdoc 6a026a05a3a131e3e0c18682b71562c9e66f18aa9fa41342f8e4f1638346368bVirustotal results 17.74%Heodo
2020-09-29IU29225 TN717613.docdoc 921da5273108d6ad01908788a042bdd4df3d839a19ab915a8ab9bfcdfb17bab6n/aHeodo
2020-09-29Doc-915109.docdoc d435b2493ea1edeebc83a76235d60fa8e4f0f9323ae6fed0920974f35c301fe0n/aHeodo