URLhaus Database

You are currently viewing the URLhaus database entry for https://hennnatrading.com/app/FILE/5f04jd1/ek0wgfs9wkfqlb5xqswnwhtv6n3/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:697697
URL: https://hennnatrading.com/app/FILE/5f04jd1/ek0wgfs9wkfqlb5xqswnwhtv6n3/
URL Status:Offline
Host: hennnatrading.com
Date added:2020-10-15 11:11:07 UTC
Last online:2020-10-15 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-15 11:12:11 UTC to hostmaster{at}nic[dot]ad[dot]jp)
Takedown time:11 hours, 48 minutes Good (down since 2020-10-15 23:00:24 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-15385887768006956015674911.docdoc 0ab272f979fa9aed2035beb2f578c7dd1b689f64452457def9e7aca2d1c91a3aVirustotal results 48.39%Heodo
2020-10-15HN_PO_10162020EX.docdoc 98d7c4d63fcd23e0417a08c9645e5bb0729a1fe136941495b001db7126726608Virustotal results 46.77%Heodo
2020-10-15FILE_706578320810658828837963.docdoc d9dee0ffa4b0f9f8ae5c312de758420aef5fa12d4489a8c5f3e5ee627ea966daVirustotal results 46.77%Heodo
2020-10-15Z_7USNG7MN5TK8VU4T.docdoc 874551f55294cc8838b596c8ffd8d4600ade4c1e932ea618012210a3ac7137c2Virustotal results 45.76%Heodo
2020-10-15DOC_AOAAYW2T8RJZ.docdoc 9e6ccb86ca25351f22a9960687787487cd93476f21e943368886f63c03167222Virustotal results 47.54%Heodo
2020-10-15DOC_RW1015895738UR.docdoc 29d8f14d9aad7f7303bfffcff57109e4a24983050638c356af826bf4febc04a2Virustotal results 46.77%Heodo
2020-10-15INV_89646210.docdoc 677cb2fc5d7a4e66220d66445d3a7fa7129fefcfad236744a558140e65d7264cVirustotal results 45.16%Heodo
2020-10-15FOR_100120_RYN_101520.docdoc f0abef25579afd4a06a70b4a55ce9b492df87c17b66b1949f541f679f6376b84Virustotal results 47.54%Heodo
2020-10-15FILE_10780032.docdoc 3a3dd7687c72a79fe44ec05be24ef77e62e6b1cdcf3f202251d6c12e94475dcdVirustotal results 46.77%Heodo
2020-10-15MTS_ZQ9611775039UY.docdoc 4175a2dd2295146108a2fb6d370f0d24239715d3709a82c0c6ec420a962efe90n/aHeodo
2020-10-15KVMSZG0VAVUZV.docdoc 2889aa2818bb6b697ece0258b29a039f5f46f85444792ecad4d3667806bb5610Virustotal results 46.15%Heodo
2020-10-15OZH_100120_XRV_101520.docdoc 39c25de18abaccdff5bdbe5fb490b60e00e8b38d1c30556115d11f468d4b6a76Virustotal results 45.16%Heodo
2020-10-15GTS_100120_HEK_101520.docdoc c584c1bd086b6f8007e1a594498dd51149f97a492dd8113493a6dd21f9134ad6Virustotal results 46.77%Heodo
2020-10-15AN3736013561MD.docdoc 6f0ceb3c0b3cd6f963d2f3fd18d56b6b2efc81264aae48892a3da6f028e9de66Virustotal results 41.94%Heodo
2020-10-15PZ7677194087RQ.docdoc 81fcbb632ef9fc5a4bbcbd81603127c1a0238b784579f62735dad19fda06ab77Virustotal results 41.94%Heodo
2020-10-15BAL_PO_10152020EX.docdoc 3f6955a4c8030234f81c5371a9fe055356a777586aec5021a269eb74083d6ce6n/aHeodo
2020-10-158E3VRDVJH4.docdoc 680221d36ed6fb5e4e98995e827e0b4e4e54b17783b70834fe88879a5b54b400Virustotal results 41.94%Heodo
2020-10-152134667232930796700.docdoc dbd52eeae1181eeddab6c7e1fc6a63564fdf6c6ab43a2ce880a8f1af89531022n/aHeodo
2020-10-1531270977.docdoc 4ca916c008b39d7fb20cc3e639ed697d7a55e9aff96c574d84ef918f7488cd03Virustotal results 39.34%Heodo
2020-10-15INV_181346375867588865901418.docdoc 1c16646cfeab936d7c06b734940cc016e92adedd7f48dd60de9d7ae5b9c0f0f1n/aHeodo
2020-10-15BAL_45334424.docdoc 108c2c7c6598b9ff017de74522cabbaee096e3a62cc018573c6ce7c759a7dceaVirustotal results 38.71%Heodo
2020-10-1540450392.docdoc fac59c311d502bd79eeed90be635654883567581760cae6102e5e888e7722985Virustotal results 38.71%Heodo
2020-10-158679743166528.docdoc 0850678a5e71af1138fff503d804bcefac8f4f1879bd6ef978b7b2ef7ec7a5f4Virustotal results 40.32%Heodo
2020-10-15PO_10152020EX.docdoc 7697faf6a3ac06e7f465152759a63f92d67946fef445bd4c26c487b579ff857dVirustotal results 39.34%Heodo
2020-10-1530846094547346934937.docdoc 099d655f10b7e9d0e9a55994e8e8fa9ee064af726187f27e444a4583731c58ddVirustotal results 38.71%Heodo
2020-10-15FILE_PO_10152020EX.docdoc f1240c9ee1acded26f34268c60493158d33b479859efcb608efd96167344e35dVirustotal results 38.71%Heodo
2020-10-15REP_GY3540212627ME.docdoc 05ba870897f8bb59e4f8ee8881409a2543c3ff6d94b8079eb5f60f1ab86bb7b4n/aHeodo
2020-10-15AOSTVOBGPAZL43L3.docdoc 302feabf564340c14d1f92d13de41df335b09e8258375d7b778f67a69f57459en/aHeodo
2020-10-15XU8996281359QP.docdoc d30ec2dde96e92164e6be1b42ad79b2b25464da4be6140e0965cb115a5d9e8ddVirustotal results 32.26%Heodo