URLhaus Database

You are currently viewing the URLhaus database entry for http://hamgroup.in/content/OCT/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:698790
URL: http://hamgroup.in/content/OCT/
URL Status:Offline
Host: hamgroup.in
Date added:2020-10-15 23:23:04 UTC
Last online:2020-10-19 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-15 23:24:03 UTC to abuse{at}godaddy[dot]com)
Takedown time:3 days, 16 hours, 21 minutes Bad (down since 2020-10-19 15:45:58 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-1738391551021369435078.docdoc 1f9fcb8ad3585c6cbf7250308fc58ebd7fd913baf350cbd3d7fd8934c9e33e43Virustotal results 50.00%Heodo
2020-10-17I_M4RRST2Y6N6.docdoc 71c1be4d00ef4ec74c73abf05187dacf0335a393a145eff2b2efd68cbaa91b67Virustotal results 54.10%Heodo
2020-10-16PO_10172020EX.docdoc c25321d27755dd74dfcb51c16c96a607d16b09b59b1cbe7f025dc89763d9d630Virustotal results 50.00%Heodo
2020-10-16FILE_JN7934848659XM.docdoc 3772d83153c2d54a8a3dd72055370d3db69948bf4eafeb69018ce518c7801d05n/aHeodo
2020-10-16DKA_100120_NXW_101720.docdoc 70c3e11a1960c379e6be0215b70999623bb37cad12e932cf4d222f70f078c6d2Virustotal results 50.00%Heodo
2020-10-16O_PO_10172020EX.docdoc bf79372e0c3a2b7a3b0df0f3994621206443404f5c382b8ad5e5c609c6b0e043Virustotal results 50.00%Heodo
2020-10-16REP_Z3QSVW4.docdoc 6539d2ac4a847b3444866e22b642a335e3d8b92d40031a090fa315aef1af2930Virustotal results 51.61%Heodo
2020-10-16DOC_GP4588028641OL.docdoc 69bf38e708fcc10caf5824bb4460ed7f950dfb3085f715c81303b992c3bb6857Virustotal results 51.61%Heodo
2020-10-16BAL_02124439.docdoc 59330f6abd11ccf8373697955746b598be71ca8c69774640b41ebd9650abb398Virustotal results 45.61%Heodo
2020-10-16INV_0IVRUC3PFI7SLXG4.docdoc 8215f350c6c5d2b5f615bcf7260cb9eeb60747b75a9e6a8e4b9c3ef3b70b8cfeVirustotal results 50.00%Heodo
2020-10-16REP_UZ7084892195PU.docdoc 1c3dd09ac057aa6b432e637992b2d3f2dac3ec4212fbd51771b0bfd7be470110Virustotal results 48.33%Heodo
2020-10-16DOC_PO_10162020EX.docdoc ba3ac6b60b4acb6aa9b534e4cdbab1c537fdb07b6fcd10d5e16f076fac5fbf1dn/aHeodo
2020-10-16BAL_61442075724897148144553.docdoc 01b41659d4b3ca5ad9f986d2029f5aa621310edb658267e5f478bd784df82874Virustotal results 45.16%Heodo
2020-10-1651285093.docdoc 58d9abbb83b6f4df5a5dc7b782ecfc3a0a400197866d76f14500b97d206a7eabVirustotal results 50.00%Heodo
2020-10-16FILE_75278346.docdoc ebb3b2f3e028448f7177bbd45d2de8b72115e600efa71bc4f649ef66cb30e2ben/aHeodo
2020-10-16FILE_KQ0041377281RD.docdoc e4c1c671c5a35d55de0ae7e2ac20beabe562eaa22291d214907a9d0f7cd9b3a8Virustotal results 43.55%Heodo
2020-10-16BAL_739155375.docdoc ffa06f345711cab1bbf64ad42a6ab9b9264655ec20d39fd3ab37d4e950c98b8aVirustotal results 46.77%Heodo
2020-10-16DOC_DQB_100120_BVE_101620.docdoc a9aceace56c828f6185a5d3c739ae2a2e43d825c4b884faf02f5acf460a6be5fVirustotal results 41.94%Heodo
2020-10-16INV_16018050.docdoc 89157919f283aad6306a78ae43e54b55c2431a0a64dbfcef22df553bf09ae681Virustotal results 40.98%Heodo
2020-10-16BAL_76567367.docdoc ccaca18fab3cf85f49be61cdac5f891f12961393dcfe120af01e6a75b3768b71n/aHeodo
2020-10-1676341157388335245297365.docdoc 519e99b2b51817d9c3a57f04c52948b561d6735932cc19d0359d4ddc24f06ef5n/aHeodo
2020-10-16INV_YKBUEV024XMQ4.docdoc 4bead4acd3e94b0d94cb2d3be3f50f5d9b5dd425a0d5d5caf6af43b13539d717Virustotal results 47.54%Heodo
2020-10-16PO_10162020EX.docdoc 4fd64971da3d120c01238f1c29e00e84e585a2d8ac726d0d6a954a7b6140c066Virustotal results 46.77%Heodo
2020-10-16H_PO_10162020EX.docdoc e33080e4baec5f692b6a9902fbf0661cef6fd33fdc1ace3cd95e64fe9c70118eVirustotal results 36.07%Heodo
2020-10-16INV_GLQ_100120_OTX_101620.docdoc 84e8abea7d9cd4e2d9c01114ed11fb7e62c9ca8ee2b0f89c9d99430189e2b02fVirustotal results 37.10%Heodo
2020-10-16I_0866192432422866611.docdoc 41b726329c763a097034a2dfa26775648a8594cba8ea2c6604391618c5798a2eVirustotal results 41.94%Heodo
2020-10-16INV_QO7793281181JN.docdoc 9c52e949c6c2ca01cb5bf09538ef75451e8aaabf492927bbc8a9f6253007a31bn/aHeodo
2020-10-16DOC_75234817.docdoc aaa0b201b6ecd9225b9f151fef9ab72ef2b37f5b2a35ae38b130f2b9b7cc5e8bn/aHeodo
2020-10-16REP_01633493.docdoc 06ed9f71bb75c3f1c65fc774e6cf9914f9d7f8e54cd0cfe68ff7e71de686f446Virustotal results 36.67%Heodo
2020-10-16BAL_5LOGN5BT9SQ8O.docdoc 6a643872b2481769c2b5927a429f7f678557018b9e08015b2be084d104bbad4eVirustotal results 32.79%Heodo
2020-10-16BAL_506283599447626026.docdoc da2a69c132b4eabb8906babde63fe2c5d82fb6fb40d94a025e2794eb845dae32Virustotal results 33.87%Heodo
2020-10-16INV_OL5409968553RT.docdoc 33c9159cb870c324fdc315846558083363dc9560f0156ba73478128c25a3b38cVirustotal results 32.76%Heodo
2020-10-16INV_PO_10162020EX.docdoc 768292084d86bc82801ba526575885cc35839752d121e54b146b9fbf489e11efn/aHeodo
2020-10-16INV_BRI_100120_RGW_101620.docdoc cbe66db13454415d1c87617d055c8ad6421a9bf6d53b6764c4af1f4d9bf2c9b6Virustotal results 30.65%Heodo
2020-10-16REP_NFI_100120_KEQ_101620.docdoc c9146e559eeaafb38494a657eb583b6833b2c35dd60eafe2140ee8bc22150c96Virustotal results 31.03%Heodo
2020-10-1676890871.docdoc aa3af1b21af839268143b000b0e8f4a431079b94f69c8025f31315e8ceac2b47Virustotal results 32.26%Heodo
2020-10-16N_4TL5PE4GQB.docdoc 8e9462c9a3766b0a41a21d609caf5c36fd65d502b5e17bde7bb2a99628d16bd6n/aHeodo
2020-10-16ZM2379565330PE.docdoc c4e5490b2508ceaa3f196549d3c7d2865225ebbd56af97bc4a753542204c6641Virustotal results 32.26%Heodo
2020-10-16WC3539186446CK.docdoc 3550b173f084aabdd854dc658b31eeac18f28c421c23052d45d5e8a92f8a3e93Virustotal results 32.26%Heodo
2020-10-16DOC_PO_10162020EX.docdoc d22ae8bce1c58f49acf052afd9fc15bcb9f31f7849b5cc3812ac610c97b3d984Virustotal results 50.00%Heodo
2020-10-16INV_D3GXRMQJLOYGJP.docdoc 83f30b3a4a10e5a1a7c91c9ca69d9bc4551924e63d41ca17faf0be34297659daVirustotal results 50.00%Heodo
2020-10-16Y_0153067063951803628.docdoc 72b44b8e255ace9d74a54f19671fdcfa1b296bb221e038ab578044b55b309afcn/aHeodo
2020-10-16BAL_5091928749552742373384.docdoc 095fe16690d338ae33d6608dbe94adf60f398907737417666034e7a5b64eded8n/aHeodo
2020-10-16INV_RYY_100120_UCS_101620.docdoc e7c9e9fc1b9ce622bde709c5498c23114ea5f1716b9c3acf0091fd7a01960777Virustotal results 50.00%Heodo
2020-10-16J_NTS_100120_ZKV_101620.docdoc 18a1cbac953dff9b006371606aa8ba5ebd1794c14f128e5f46d46629e60383c9Virustotal results 50.00%Heodo
2020-10-16TCT_100120_JHT_101620.docdoc 195a50cab4bfb5ffc40475b4cfa57218d820afafb3a5f4398fa2cb446a290e1fVirustotal results 49.18%Heodo
2020-10-162377458825.docdoc 2955467d39aee8efaa08f284298b86e105ff6b8855c674bb41e38ca21d2c6bfeVirustotal results 46.77%Heodo
2020-10-16HB_12589983338150.docdoc 197ff18c407c279e436240984c946009e24dc90b17cb986b9bf9554278a8a699Virustotal results 46.67%Heodo
2020-10-16PO_10162020EX.docdoc 2ea42eea9abe81ee4415154eabd2fc00bb951b3a234e1b3ef9e824d77ee97732Virustotal results 46.77%Heodo
2020-10-16FILE_MWH_100120_HWJ_101620.docdoc a0af2c0d46bfa10fc4589560d7055a18babee6615726fb2893b817e111f9ecbfVirustotal results 46.77%Heodo
2020-10-16GL0970931647LD.docdoc 1d9754d306c2afe8fd501b6a7449ce2b31988935a52af20866fe321c5a5b0645Virustotal results 46.77%Heodo
2020-10-16REP_HK5069506931BZ.docdoc d3c37e88878ac9801e592c464b9f3e15b30ef3096684d4efb9ca6cc6dd042734Virustotal results 48.39%Heodo
2020-10-16INV_946173772190880606113.docdoc dc7ade8fcae56fa5c268c86c9602ade9af26324733a73c86e60274a9f5b8e864Virustotal results 48.39%Heodo
2020-10-1554C4UB2.docdoc 928793e8f0d35a4a78f1935358fffc9f25ccf0b8f0d4cf8ad4a9e7a1508f22b2Virustotal results 50.00%Heodo
2020-10-15JFC_ZX8162880218GD.docdoc 00534d43b370927552e8c71deae866472d34d67e1af2d02b93067c8b2fbc279fVirustotal results 50.82%Heodo