URLhaus Database

You are currently viewing the URLhaus database entry for http://amruthacollegeofeducation.com/css/payment/a1zi5536tf7n/eu4lfqyuym37gs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:695233
URL: http://amruthacollegeofeducation.com/css/payment/a1zi5536tf7n/eu4lfqyuym37gs/
URL Status:Offline
Host: amruthacollegeofeducation.com
Date added:2020-10-15 01:14:04 UTC
Last online:2020-10-16 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003013773 created on 2020-10-15 01:16:05 UTC)
Takedown time:1 day, 5 hours, 26 minutes Poor (down since 2020-10-16 06:42:39 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-16FILE_988748790953726.docdoc 44b5ac3a1688e978f2ab497cb9a2b77b9a4a27edb617212e27b63035becfb148Virustotal results 50.82%Heodo
2020-10-16KO_5U1ISFM4UN.docdoc d22ae8bce1c58f49acf052afd9fc15bcb9f31f7849b5cc3812ac610c97b3d984n/aHeodo
2020-10-16FILE_GNF_100120_KZR_101620.docdoc 91b7f176ae3c1a59512db4552cb758df748b75fbe33fb7d1632f59ea0f7cd905Virustotal results 54.84%Heodo
2020-10-16PO_10162020EX.docdoc 72b44b8e255ace9d74a54f19671fdcfa1b296bb221e038ab578044b55b309afcVirustotal results 51.61%Heodo
2020-10-1624440130.docdoc f677579d45117ccb457830413b6ee450bfe97425e2b31f2b582368410b0b78e9Virustotal results 50.00%Heodo
2020-10-16W4L2H711AEBO7HHV.docdoc 862a3557cbd080c1e4b737d044d2a849ffc1fda3cd46e474ff947ff583357464Virustotal results 50.82%Heodo
2020-10-16FILE_S762HYVYVG86Q.docdoc c1a5fabe5d3cfa0cfe41476eed0e59b226db234ae57ea097b50adac70d5d9f98Virustotal results 46.77%Heodo
2020-10-16FILE_I9KNQ38Z.docdoc 220ac344a6cec573fee38bce085d019effbac440a1edc4f463c1f5b676b6d082Virustotal results 46.77%Heodo
2020-10-16KVD_OLD_100120_WEP_101620.docdoc 874551f55294cc8838b596c8ffd8d4600ade4c1e932ea618012210a3ac7137c2Virustotal results 48.39%Heodo
2020-10-16481578069653.docdoc 677cb2fc5d7a4e66220d66445d3a7fa7129fefcfad236744a558140e65d7264cVirustotal results 48.33%Heodo
2020-10-16YW0452460380EY.docdoc d3c37e88878ac9801e592c464b9f3e15b30ef3096684d4efb9ca6cc6dd042734Virustotal results 48.39%Heodo
2020-10-1619223678.docdoc 4175a2dd2295146108a2fb6d370f0d24239715d3709a82c0c6ec420a962efe90Virustotal results 48.39%Heodo
2020-10-15701213161775640411062.docdoc 0ab272f979fa9aed2035beb2f578c7dd1b689f64452457def9e7aca2d1c91a3aVirustotal results 48.39%Heodo
2020-10-15Y_61447365.docdoc 98d7c4d63fcd23e0417a08c9645e5bb0729a1fe136941495b001db7126726608Virustotal results 46.77%Heodo
2020-10-152G1586MEM.docdoc 766e921c13edd4367d95fd44b3070b9d4bbee1886ba2e298fc91f030e5e034acVirustotal results 47.54%Heodo
2020-10-15938820098395144587.docdoc 9ff3fa5bcfc5a9b21abf19a4f8f3c406f0874fd93f8508c58e42529f672a6d23Virustotal results 46.77%Heodo
2020-10-15DOC_NMU_100120_DVT_101520.docdoc 966af50d9ffd82cdc2a4fa693620dfe90172ef15047cc10d3b35fcd47ae47c4fVirustotal results 46.77%Heodo
2020-10-15G_YMX_100120_MCJ_101520.docdoc b9bb517022d0b2c98532d6239bd55d7a33911467a4ca1d6c8d69736530a6157aVirustotal results 46.77%Heodo
2020-10-15INV_97649894.docdoc 28a6bdd824538dcbdc61dc5ffe9d61ccf016e4a4bb027becec2d522503ec8b0aVirustotal results 47.54%Heodo
2020-10-15PO_10152020EX.docdoc 200fd063fbce58987452058b68b6f0d32d9fd51afddd74f6ed466124627fc51bn/aHeodo
2020-10-15PO_10152020EX.docdoc 928793e8f0d35a4a78f1935358fffc9f25ccf0b8f0d4cf8ad4a9e7a1508f22b2Virustotal results 45.16%Heodo
2020-10-15BAL_TKE_100120_MHC_101520.docdoc 3a655449935db1d07871d79739c4fe01d8792844b72e4bc0c3f2c936b6d5ee1fVirustotal results 43.55%Heodo
2020-10-1556363223.docdoc 590e91cfd2bc7164b8528b3e845e9d45e8328e9148b90c0836936e9d870ca895Virustotal results 43.55%Heodo
2020-10-15INV_02239982564356166662257.docdoc c584c1bd086b6f8007e1a594498dd51149f97a492dd8113493a6dd21f9134ad6Virustotal results 46.77%Heodo
2020-10-15ZU2960083410YA.docdoc d9b7b5c042c7906658d29f0f2ce9d72212853dba41328c900b11987b9c264639Virustotal results 41.94%Heodo
2020-10-15FILE_WZ6476078485KG.docdoc fa437d31c734102e84da67e8db9d8af76a88f24bc9fd85ac6e53f60ac3d98726n/aHeodo
2020-10-1555866898.docdoc 1183f1f5d6bf413a47030f417d0318bfb96102da8bdceef6eb88de412a134c6fVirustotal results 41.94%Heodo
2020-10-15FILE_PCY_100120_RML_101520.docdoc fc98055fe4921aa92b5fb0b2cbbae5ebc0ffdc932d1ca890b893c19a838d03d5n/aHeodo
2020-10-15LT5046589691FR.docdoc dbd52eeae1181eeddab6c7e1fc6a63564fdf6c6ab43a2ce880a8f1af89531022n/aHeodo
2020-10-155531820379260956175314.docdoc 5ab7feb155d115d799a41194045fc38c07b387a68020f3a94e1cbc64c18d4893Virustotal results 40.32%Heodo
2020-10-15BAL_48967510.docdoc d04f49d5a7da98df4a83199f7e7774d37e26204185184aa8a05abaab485874aaVirustotal results 39.34% Heodo
2020-10-15REP_DTJ_100120_LTC_101520.docdoc 4e6a0c30dbcc9c81697110910d0edcbf9a9f5442eaf0fed07248c448429580f5n/aHeodo
2020-10-15AM16ILC2O89WJBVC.docdoc d86352496d079f14dc91a06448f118b5035b992f0edc956a2d8a58b92a0f7417Virustotal results 40.32%Heodo
2020-10-1507787141.docdoc 361fb5f143468200213bea5b095c5524ce0bf1d54d56d49604f8328fa918e169Virustotal results 39.34%Heodo
2020-10-15REP_VMM_100120_MSC_101520.docdoc 126e0cb8e06d086d1cb6cd52b90ecd444ee192b4be22ab082735f5c3e8b37228Virustotal results 38.71%Heodo
2020-10-15FILE_JEZ_100120_FHP_101520.docdoc d78facd499d94ec13b381733eee00bd566ddd24ee98d4a1a7316fcaaa126e043Virustotal results 38.71%Heodo
2020-10-1541590158.docdoc f1240c9ee1acded26f34268c60493158d33b479859efcb608efd96167344e35dn/aHeodo
2020-10-15IHM_100120_ZEM_101520.docdoc c0262229e5edd279237ae1ba85efc2937e3c3f4ef2ab8bd8be3b243fe1862fafVirustotal results 38.71%Heodo
2020-10-15FILE_99909699.docdoc 8a18bd4ad8eba8310bcd422c1ba2612b6ad2adbcbdf5fb76408f85fbf496b5ben/aHeodo
2020-10-15REP_65015301407950.docdoc d30ec2dde96e92164e6be1b42ad79b2b25464da4be6140e0965cb115a5d9e8ddn/aHeodo
2020-10-15BAL_PO_10152020EX.docdoc 149107eec47eec15d6160353b5102a17c8b552474e89828511de257fd78d3a52n/aHeodo
2020-10-15BAL_SK3301607306WJ.docdoc e09558c501eba43c6277ae9a4437c35bde70855092d6ce522e882f2658be75d9n/aHeodo
2020-10-15REP_PB3779697696ZF.docdoc bfa26a715bd9a8a6890d9037bc8c675e67a0a18e04386dc88dfaf89218ab9d67n/aHeodo
2020-10-15PLJ_100120_IIP_101520.docdoc da773aecb5b38de74a2aa07b5e5f4c66165271f9bbe3fa5a5a4f06bed264adf3n/aHeodo
2020-10-15DOC_42732979.docdoc 2a3d73d8e391636548a28421a0cceeaa7fab08cb60380bf090a57a1af35b96fbVirustotal results 37.70%Heodo
2020-10-15DOC_28387660.docdoc 3cbba280192a0fd99aa090f95cc1e2291a670a7cf53bca32811ff38da7289a95Virustotal results 36.07%Heodo
2020-10-15REP_ONGWDMRLX96ZB48D.docdoc b0639e0dc0de31e5a868142dce9b0b73a942fb5b41c0592245d8011c19728c32Virustotal results 29.03%Heodo
2020-10-15M_HMN_100120_UCH_101520.docdoc b36b1ab739c6689f92c3da6e9a8c93a009756069b982b64e74e4075e98badc70n/aHeodo
2020-10-15DOC_DPE_100120_UCN_101520.docdoc 09b2a0a619eef827aca5df812a125f278c915c56afa75e6bcbd55e47265034bbn/aHeodo
2020-10-15REP_UBP_100120_CKO_101520.docdoc 09ca73e0406c4d96a73cbaa68660617439ee99224d2603caf1610dd5cad5cb25Virustotal results 41.67%Heodo
2020-10-15FILE_61322594.docdoc eb0efcd4366f3c4e3f529ff2b1e108a1fcb1e3ef0e7485cef709d9351d64b55fn/aHeodo
2020-10-15DOC_19342032651474.docdoc 5fefd7066e7cb6344aa6f4ceb150de371e98cc1de2af7bfa2fa46cb4949ff0aeVirustotal results 32.26%Heodo
2020-10-1526944331.docdoc b716ead26e4edc1ca7925f26ba16cdbe932e9cff3fbb636630f3d7bad4ad487dn/aHeodo
2020-10-15C_75059696.docdoc 9c3dffbaa146c61c106f2b76127fe024ec9193641c046de19b1d144335206b7eVirustotal results 35.48%Heodo
2020-10-15DOC_KVP_100120_DBM_101520.docdoc 0acbd96443e33ed3c7bb5928e381f4440eb99308be50ab1a869a7bc118e57076Virustotal results 32.79%Heodo
2020-10-15DOC_AN1668086681QJ.docdoc a62460b5048b49481c6096c23dc3b6f0f0fa84b37b632c80b6395400314ebc7dn/aHeodo
2020-10-15INV_LSL0FWKZ8.docdoc fd12780ca0e4c591da35bf3d215c22a47050b1a68e524ce4d0434ee2414cbf3aVirustotal results 32.26%Heodo
2020-10-15DOC_PO_10152020EX.docdoc 2d22c090ca32c456c3d88c382392a124bf484fb67ef5737c1e9c6ed81b87e4fdVirustotal results 29.03%Heodo
2020-10-15REP_TPJ_100120_HPF_101520.docdoc cca3799a5d79aad049795ea6a869e22d90d248ef1c1193d5d5933237b20157c5Virustotal results 32.26%Heodo