URLhaus Database

You are currently viewing the URLhaus database entry for http://www.singleauth.net/m12_gift_list/INC/BVmDtF1MxN/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:698690
URL: http://www.singleauth.net/m12_gift_list/INC/BVmDtF1MxN/
URL Status:Offline
Host: www.singleauth.net
Date added:2020-10-15 22:29:10 UTC
Last online:2020-12-06 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-15 22:30:04 UTC to ipas{at}cnnic[dot]cn)
Takedown time:1 month, 21 days, 17 hours, 6 minutes Bad (down since 2020-12-06 15:36:07 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17Inf_2020_10_17.docdoc a9d9b8357ff803bd36d7bd0c12c770487fe774ccd22e81318606bad0f6ddaf90Virustotal results 52.46%Heodo
2020-10-16L8696-20201017-9676.docdoc f248106a010a23404bc680541ff725431478f2a3a368efc846d4bee707af6c22Virustotal results 51.61%Heodo
2020-10-16Rep_2020_10_17_HT3996.docdoc 113ad60c6cf207f078325f4bd37200b9fdb820ddc2bfeac79a49a347aae1308aVirustotal results 51.61%Heodo
2020-10-16Dat 2020_10_17 600.docdoc 5ee53916c491a77206e7a09eb75c02983fae90474ddcb7d0099a47113b4675acVirustotal results 50.85%Heodo
2020-10-16list 20201017 510.docdoc 38a7276166183fb51e2c60c91165d139295de90105097cb4e24b077d3fa5d56fVirustotal results 51.61%Heodo
2020-10-164603 QE2171.docdoc c5480c5bcd7c9b06e744ebfca49ef98e45da1200c5e3762d6b47d9825189f3eaVirustotal results 51.61%Heodo
2020-10-16Inf-20201017-3440.docdoc 5c58c91ffdffd84690c6746f6afc2eaeacd03df2e4a83c6e662755624113cf5bVirustotal results 51.61%Heodo
2020-10-16file_MD076719.docdoc d0b24fe52a88df1055812d9b2a79e7acee0b02add126d467c4054a93771b2ba5Virustotal results 51.61%Heodo
2020-10-16Mes_20201016_VTB0670.docdoc 38a11481f8db3eb3a204bc7199da74cf95b722b0b5ff283001ff594b5bde8dfdVirustotal results 52.46%Heodo
2020-10-16mes 20201016 96816.docdoc 0d613e3b8dd87abdca992787394ba93c986820dd46d13b63128699ff814aa6e7Virustotal results 52.46%Heodo
2020-10-16rep-2020_10_16-078.docdoc 14fb23d425064edf96ba4acb656479002d69054eccbae3688760eda138dbb67cVirustotal results 51.61%Heodo
2020-10-16File-2020_10_16-EPW642826.docdoc ec0b8068eb55934e5173fd8006c8cff634922830e46673abcd0c0a2e2e6d3b4fn/aHeodo
2020-10-1694035Y-20201016-32412.docdoc f4af9d4a8529e7b2cc1ffc59afc271f35f63fd2f0b043cecdc60553c2ff8259cn/aHeodo
2020-10-16Mes 474968.docdoc c9590b8ccebf3eaca2e64fc27644c7e7a3966d001c3168c1f56c9e943bc18360Virustotal results 43.55%Heodo
2020-10-16ARC-2020_10_16-6081.docdoc fef1542f85d70667aadc0ed3e4755b0fa709566515c2768f4edd721979046efan/aHeodo
2020-10-16rep.docdoc d382b252799d94951c351f38f54c1154fed8293f5018c4441b345e556f5fc26fn/aHeodo
2020-10-163212WNN-20201016-X918.docdoc f4ae4cc6876a750648cb2ded60108251649fdbb953732930c0c8c23488ea1babVirustotal results 43.55%Heodo
2020-10-16MES 2020_10_16.docdoc 902d3b48f1baafaf6f2c85572b13693b97da55c7f52fe0833634a73227137570Virustotal results 40.98%Heodo
2020-10-1612863WEC 20201016 51328.docdoc 72a2bf831430cd44111573ad0def537b2c01a81e03d95970f1e9a43f77c2e9d3Virustotal results 30.65%Heodo
2020-10-16doc 20201016 QUR7906.docdoc c6be8d125f6dccc62a17537a3a547063304f338cde4c9e36b1d612316e94798aVirustotal results 32.26%Heodo
2020-10-16Mes 20201016 35815.docdoc 482a9136d1dda15269085f5cfb180a08dd5f02bc4b744ceef7c6f3340929c6d1n/aHeodo
2020-10-16file 2020_10_16 KHQ140.docdoc aacd12efd23212b0b9b6324b46e0c5c94877447ecc6f5757f31799e606b7a9ean/aHeodo
2020-10-16Mes_2020_10_16_20676.docdoc 6980b31565edaf3afbcff9d9e5944ae0ef03b5b895ffbe8416a5ba976a24f66cVirustotal results 32.26%Heodo
2020-10-16DAT.docdoc 33e9aa06794873710331ae9974a1df6d3d1529d39553dbd6a504a1181b05bbe1Virustotal results 46.77%Heodo
2020-10-16file-2020_10_16.docdoc c85e897e957fa44b137c35917ea9886343ba4b8d4fbc13668515d382ed874555Virustotal results 46.77%Heodo
2020-10-16REP 2020_10_16 85239.docdoc a575516d48e96ddfbaa7108fdf2f06fe978074c0a71ff7162c8631b757b8cdc1n/aHeodo
2020-10-16Attachments-20201016.docdoc 996992e84d7b7738fc92c7128d94ee35099ffb68e829cb534597b46b854ce1beVirustotal results 40.98%Heodo
2020-10-16doc-2020_10_16-5878.docdoc 41ad31125a6e154486cdaf02fb3a0e8f7c7ae67f8828e9502b4d25f731cb6386Virustotal results 46.77%Heodo
2020-10-16rep-2020_10_16-141.docdoc e1fa8ab1bc95406a6ca6938a72337e0b9206e90dcd5517bdcf36c487c5a92bd0Virustotal results 41.94%Heodo
2020-10-167335XUX 20201016 J301221.docdoc 8ca596c47a7c3f64989bdd6cd89f70123d1edd290b90213073d63af492531845Virustotal results 45.16%Heodo
2020-10-16LIST_2020_10_16.docdoc 713ac4f03c7fe5fadbe01634828fa46a784a546c3604fa531d1b14efe197f7bdVirustotal results 40.32%Heodo
2020-10-16list-2020_10_16-NPP8953.docdoc f937a97bd6491ef93fb7aaf9ba74ab45293543764c0c47415bc01da8b23e9a70Virustotal results 41.67%Heodo
2020-10-15dat-2020_10_16-657.docdoc 859a52cd1b0aa5c84836f1d4b6e63be3df7155d97fcb2f40fce4a55d4bebb495Virustotal results 37.70%Heodo
2020-10-15list 20201016 563.docdoc 9ad0875a2102f3ee12801e8cbaa933ceb7837cb914ec2102841a5e40a0eaf5d2Virustotal results 38.71%Heodo
2020-10-15INF_20201016_H12794.docdoc eb03d4e9200be3cfb0b55c695c5c7e2f2770759fd4d2e8018dfc0161e8441802n/aHeodo
2020-10-15DAT 20201016 89151.docdoc 38852b2a879c31c5f6a1cb8ad7874b20c2142d496ad73f9901c2088d2e006ed3Virustotal results 38.71%Heodo