URLhaus Database

You are currently viewing the URLhaus database entry for http://bannafsaj.net/content/public/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:698646
URL: http://bannafsaj.net/content/public/
URL Status:Offline
Host: bannafsaj.net
Date added:2020-10-15 21:42:04 UTC
Last online:2020-10-19 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU003016086 created on 2020-10-15 21:44:05 UTC)
Takedown time:3 days, 16 hours, 55 minutes Bad (down since 2020-10-19 14:39:18 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17REP_5NU9IUFH6NIRBHX8.docdoc 360a5cb7eed923017b4ef07460e7652362cdf1fc0a902516addbb8e244e30134n/aHeodo
2020-10-17483803843868730878780.docdoc b0f945ed6afda303421f9501b2b2d1d2996a132eb27486911019cb9996538460Virustotal results 51.67%Heodo
2020-10-17Q_AS4175321979MC.docdoc 5ab2456a7a5d44a28ef32f5ac8c55e8eaf4b24802b2d326a29cd9aa4199e0b97Virustotal results 53.33%Heodo
2020-10-17INV_PO_10172020EX.docdoc 169fa4037e8c45a38a3b2e862d860e955fc810c63682c78155bbbd45820b83bfVirustotal results 54.84%Heodo
2020-10-1785220927.docdoc fa3c245c0bfe5a4b95d229481cbdac5dc3798f1948badeecb3dc692f589c5f7fVirustotal results 53.23%Heodo
2020-10-17INV_1Y78484Y5O612G.docdoc e9fc0607223bdfcf6365b914d806c89315bbdfff9681454d6b67b060ef04024cVirustotal results 53.23%Heodo
2020-10-17J6D00VTZS4Y.docdoc fdcbcd4f6d22900775055fa03ab8643f72041e73d6af1c271a672ce65268e0ddVirustotal results 53.23%Heodo
2020-10-17FR2571938811OD.docdoc ff9996026d66c80170010bab3d84d0ba1ecac3a6b87f8e694008feb0bc0b3d4fVirustotal results 53.23%Heodo
2020-10-17ZEN280H4.docdoc a9c15187e473446421b0e900dcd094ee8be1c5ac010d6d2a19bcc988f60d7ddbVirustotal results 53.23%Heodo
2020-10-1704190488.docdoc 72e665a7d43027e4ad6206ba82bfb44f113e89c81b249b2c9ea29c45faf022ddVirustotal results 53.23%Heodo
2020-10-17DIYD_QG0649368621EZ.docdoc cab952f8c6436054516b7fb9b6dc980a0921858a4a312229099f2817b9846340Virustotal results 54.84%Heodo
2020-10-17INV_58783659.docdoc 9e5f94414bcc33c4f9405dd2c0747ccc8c79921dbaab834a1ce8cd0205bb1f9bVirustotal results 53.23%Heodo
2020-10-17VJ7734987055RY.docdoc 127e5f88e44a1886181820087f5a2d1bb09ecec7ca49c027c33c9cdead79c1acn/aHeodo
2020-10-17FILE_4S0V69A1GOWTD.docdoc ab8be8e21a7c5f0a158818bdf5fa9883acaffa78d8cfa5cae36ba7d756b8fed6Virustotal results 50.82%Heodo
2020-10-1714600335.docdoc 4f1b55b5cbbaa28b0d87b93dd256cebd16df18a51e081378940ad152fd24da8eVirustotal results 50.82%Heodo
2020-10-17BAL_085070067643318556020.docdoc 0b6de51a7fc8020fa3be7dfd2c2b6665da9ebc357d07f70828653ef7191b9dd0n/aHeodo
2020-10-17INV_GE0764180644DP.docdoc 252e05a52d4bc9d3d266533b1a75bfab674989b8d3a4f0ff8d898529379329afVirustotal results 51.61%Heodo
2020-10-17DOC_1CG458P23KY2.docdoc c85fe8825461de0503c8b9b612f01c88a1124e0c33ace58d20c22cf40c4bd03fVirustotal results 51.61%Heodo
2020-10-17DOC_V0MPAX107L3D.docdoc 61cf4ff84de3e35dd24e8df00464aa832912b8c378cbffc5da91abc576c809fdVirustotal results 51.61%Heodo
2020-10-1786VIA0R.docdoc bb96b8f7ca8418e8d16ada7ed78c33abe3bd24d7ca843033cc73e73e4c606fdaVirustotal results 51.61%Heodo
2020-10-1727958719.docdoc 8d13034de40b71141b07afd251984bb9b827f62b140815127683e779ebb9ab43Virustotal results 51.61%Heodo
2020-10-17INV_51659118217439567486057.docdoc 19b133b4ad7b5c3072ca746a89f06864d39ca4c8985ddfb2eeadd125ff5cd7a7Virustotal results 52.46%Heodo
2020-10-17HB3082214153WS.docdoc a106e1da9cf3b1b5b2f7211307b55422cf772fb176003bd02070def6d3b1c13eVirustotal results 52.46%Heodo
2020-10-17REP_TJX_100120_NNZ_101720.docdoc 4f6043ed53481592c3b9db4608a157df568b466062cba2018b8e5c59bfb40563Virustotal results 52.46%Heodo
2020-10-17180664881203.docdoc 8d9046f3f3aef8eaa74dbcc4aa33811b0f06438b3c4fd36bda76c6190da4f669Virustotal results 50.00%Heodo
2020-10-17INV_83875717.docdoc c40e490d1149a43b982a7c65d5f04d36117a86623374f75bf8d47f31090f8b18Virustotal results 50.00%Heodo
2020-10-16BAL_JSVA09E9D6QIA.docdoc 8e0082cbc47e4f5638313b20400e4874bb6371c424ee7ba8eb29009692653676Virustotal results 50.00%Heodo
2020-10-16YHI_100120_YBN_101720.docdoc 2d4a3ae690cd64017a114de08ffb095c8208ca65f5647809600f6caf8ff7cd97Virustotal results 50.00%Heodo
2020-10-16BAL_5969697744426099975571242.docdoc 34470931a684a070f70a0ed741a36c388fb0c082426aebf15aeedbc28a4d778bVirustotal results 53.33%Heodo
2020-10-16Z_23341850.docdoc a839eae9fc1e20736e9567c9192a4fd061ed644bb68dd494ab47644d1006554eVirustotal results 54.84%Heodo
2020-10-16DOC_PO_10172020EX.docdoc c829616c0d226e76bf936406e344c75c3abea9656fdf7b4b1d73934e6a853b3fVirustotal results 51.61%Heodo
2020-10-16W_670501835517520.docdoc 0e28ab1cfd540547e916442f60de01263eaf13058f99d4cd5d15a2cd5c078f1aVirustotal results 53.23%Heodo
2020-10-16REP_08901451.docdoc 8215f350c6c5d2b5f615bcf7260cb9eeb60747b75a9e6a8e4b9c3ef3b70b8cfeVirustotal results 50.00%Heodo
2020-10-16RHWU_08135582.docdoc 1c3dd09ac057aa6b432e637992b2d3f2dac3ec4212fbd51771b0bfd7be470110Virustotal results 48.33%Heodo
2020-10-16FILE_OS1578701471VU.docdoc 153c0d18a1b3639fe85f33bd426a65c66aa6af75ba5aa2ebfa89d6cdb7cc62aan/aHeodo
2020-10-16INV_18839354.docdoc a556f655a5fe240f6e969c6e0c449f47d357b453c5940205ce2d867f7ca64e4eVirustotal results 50.82%Heodo
2020-10-16CP_86353937.docdoc 11c67e93ede508aef0bb3d1c43fd0dcc4109fa2c3c93811c94f36094662b2c23Virustotal results 47.54%Heodo
2020-10-16QH_75315143.docdoc 66e5c84f7f729e36ef0aa28a083377587825de39b6871269f4c8f6cc72899a1fVirustotal results 50.00%Heodo
2020-10-1625891000137968092.docdoc ab228c0d048650a1af093a804ed45ad34e299d116df41396dcb2d6fa5ad5636dVirustotal results 48.39%Heodo
2020-10-16INV_4LJ2DMFOK.docdoc fe64e60c58eedce9a19e9f18a2c5d220d3d38b0aeb719cfbf027218a13121621Virustotal results 47.54%Heodo
2020-10-16BAL_5286902467573818.docdoc 69d1dfe8740210f2f3a0ac300794d5f0e25e14f5b86e20086036c2c501fb92b1Virustotal results 45.16%Heodo
2020-10-16REP_VBM_100120_WQI_101620.docdoc 89157919f283aad6306a78ae43e54b55c2431a0a64dbfcef22df553bf09ae681Virustotal results 49.18%Heodo
2020-10-166970641208448948085787.docdoc 682f6bf35f7cc1f36fb26805da313fa9c07b6b397f6e72c400d1f8ad51e01beeVirustotal results 46.77%Heodo
2020-10-16INV_PO_10162020EX.docdoc 03fbe322a6456e5d9dba965551b7e114ce5e60b069c859a2f86c9026f3b02ac7Virustotal results 45.90%Heodo
2020-10-16M_67933706.docdoc 5c6f2d9a882fc281752198cd5c713aab468bafe4a0ed461ed70556a8dd12b900n/aHeodo
2020-10-1612947431189638027.docdoc 08c39bc35902925027d9fbcb94add1228e58eb5c4b52c63564ff142b0e186970Virustotal results 45.16%Heodo
2020-10-16ZW7823831791KB.docdoc 3318245c4e63d4eb5b201e5804b8aab86d94ab400be4dc180c6aae40113b1eedVirustotal results 36.67%Heodo
2020-10-16BAL_76HIBBWC.docdoc 4d92f4549c627c844dc6c2212d8028b73f0c3d07b19296f0a297ed9577b979aan/aHeodo
2020-10-16RTL_100120_HSP_101620.docdoc e8cf2d2aeeef9972177572c05c58a7659515a991f2601167d7512ea389672c6eVirustotal results 40.98%Heodo
2020-10-16O_PO_10162020EX.docdoc e1350796dd3663bdf614b62a143749edf7e6a79152f8a705253bba4a593610dcn/aHeodo
2020-10-16RWC_DUN_100120_YLR_101620.docdoc 5f94a90f54d5c04a4ba33f0d4884392c5411775d63d2293793f9e0d348bfc88dVirustotal results 41.67%Heodo
2020-10-16REP_DQK_100120_MSV_101620.docdoc 416c28eeaa4f2ecdcea4ff0f31cb81a99f7a9f6ff65c9e96afec641dd8a84a12Virustotal results 38.71%Heodo
2020-10-16DVZ_FRV438SX0.docdoc 47d38038ded63e7475f52b11190a88ecf7f16b7bc13b5a277cfaea452e6bb240n/aHeodo
2020-10-16PO_10162020EX.docdoc 85cafbd8a7231965377fdf168bcf3ebbf41b13c90266dd1bc18d4b20ca6b5f61Virustotal results 33.33%Heodo
2020-10-16D_4606572843218473288671573.docdoc 7473544cf16fbf79ed023137ae14c865b13d3cda65c5bc94cc70af5b2506cbc7n/aHeodo
2020-10-16INV_PO_10162020EX.docdoc 331449b7cf090472612be3eaaf098869cd351983a12f809e5b6dc3860d35c556n/aHeodo
2020-10-16FILE_21344968.docdoc accefbe0f5f7d22de9c59b35078df8ce2c7326f320ef8bfe60df235ec73664fbVirustotal results 28.07%Heodo
2020-10-16JK0639698813DF.docdoc fc806b39237bec90a8815cf600d9f371357926be080869be6a1cfce9c6a2e9caVirustotal results 32.26%Heodo
2020-10-16REP_MJ7410422816DZ.docdoc b3900bcd297271f2e9a902ee2c398ddb51468949bd90a5cbfb6f0531360cc22cVirustotal results 32.26%Heodo
2020-10-16V_PO_10162020EX.docdoc 8e9462c9a3766b0a41a21d609caf5c36fd65d502b5e17bde7bb2a99628d16bd6Virustotal results 32.26%Heodo
2020-10-16PO_10162020EX.docdoc 18b87dafb2baba028eb4b73c0fa26e56c77d007dfaeaa33de5a7b45a5842a989n/aHeodo
2020-10-16PO_10162020EX.docdoc bf42e7722d1d3e4d7cf1aff7d1b89e586c574c430aadbe24241bf4efa3d89c0fn/aHeodo
2020-10-16BAL_SB4841175752AG.docdoc d22ae8bce1c58f49acf052afd9fc15bcb9f31f7849b5cc3812ac610c97b3d984Virustotal results 50.00%Heodo
2020-10-1690357329.docdoc 83f30b3a4a10e5a1a7c91c9ca69d9bc4551924e63d41ca17faf0be34297659dan/aHeodo
2020-10-16502792576.docdoc 2f87a0d6256f6b6d16ddf69ed183dea4ac225d2ccfd813ec54a0e0de2732e3f3Virustotal results 51.67%Heodo
2020-10-1693830652.docdoc 862a3557cbd080c1e4b737d044d2a849ffc1fda3cd46e474ff947ff583357464n/aHeodo
2020-10-16REP_TOO_100120_FEJ_101620.docdoc 0132d7543ceb26d2709cd377cfaa3132827b865267e7b98d31bcf3f38e3b1c3cVirustotal results 46.77%Heodo
2020-10-16INV_PO_10162020EX.docdoc c1a5fabe5d3cfa0cfe41476eed0e59b226db234ae57ea097b50adac70d5d9f98Virustotal results 46.77%Heodo
2020-10-16MUTG_SJ3665893857QN.docdoc 6bd70c37738737b137dddf5e137cff39eb5baeca80217787c95d5ce885c5854aVirustotal results 47.54%Heodo
2020-10-16FILE_13018334.docdoc d9dee0ffa4b0f9f8ae5c312de758420aef5fa12d4489a8c5f3e5ee627ea966daVirustotal results 46.77%Heodo
2020-10-16BAL_32766919.docdoc 598b4cf3fc5b97854ae8b54625407b4e6b7f05d8ad96b446baaf0855b754074cVirustotal results 46.77%Heodo
2020-10-16N_GDU_100120_VBQ_101620.docdoc 9ff3fa5bcfc5a9b21abf19a4f8f3c406f0874fd93f8508c58e42529f672a6d23Virustotal results 48.39%Heodo
2020-10-1650782223144048872383952.docdoc b9bb517022d0b2c98532d6239bd55d7a33911467a4ca1d6c8d69736530a6157aVirustotal results 50.00%Heodo
2020-10-166S9GPRX5CCN3V9X.docdoc 677cb2fc5d7a4e66220d66445d3a7fa7129fefcfad236744a558140e65d7264cVirustotal results 48.33%Heodo
2020-10-16R_42940130.docdoc f0abef25579afd4a06a70b4a55ce9b492df87c17b66b1949f541f679f6376b84Virustotal results 48.39%Heodo
2020-10-16DOC_22386580.docdoc a44bec73fa5d84c99c152a133907faff21cecbabd17faba199a628c8259be229Virustotal results 48.39%Heodo
2020-10-15PO_10162020EX.docdoc c092eeeaefd8e9d4c328cc78e77530cb40fc820d921ce06c271c47781aae2da4Virustotal results 48.39%Heodo
2020-10-15J_PO_10162020EX.docdoc 00534d43b370927552e8c71deae866472d34d67e1af2d02b93067c8b2fbc279fVirustotal results 50.82%Heodo
2020-10-15T_HFT4SU3YLGD.docdoc 590e91cfd2bc7164b8528b3e845e9d45e8328e9148b90c0836936e9d870ca895Virustotal results 50.00%Heodo
2020-10-15TUV_100120_NYQ_101620.docdoc dd30e8495694397703816d63ba5a77f3eac6a41216b2d2d536d627d85f015c87Virustotal results 48.39%Heodo
2020-10-15TA6442675766WY.docdoc 2955467d39aee8efaa08f284298b86e105ff6b8855c674bb41e38ca21d2c6bfen/aHeodo