URLhaus Database

You are currently viewing the URLhaus database entry for http://ltahhya.com/content/attachments/ZvohMCQGzsTzGf/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	702112
URL:	http://ltahhya.com/content/attachments/ZvohMCQGzsTzGf/
URL Status:	Offline
Host:	ltahhya.com
Date added:	2020-10-16 13:43:04 UTC
Last online:	2020-10-17 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU003017334 created on 2020-10-16 13:44:07 UTC)
Takedown time:	1 day, 0 hours, 53 minutes (down since 2020-10-17 14:37:30 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-17	Attachment_2020_10_17_68278.doc	doc	294c6f87d8514072c30988bd55dd643c5c018b9f9ae05b9db1a97d034b31e092	55.00%	Heodo
2020-10-17	FILE-2020_10_17-558730.doc	doc	fd4a45974318a540bf249d7aa768f6d4ec1bb268bb05e5028935db34aff711f4	n/a	Heodo
2020-10-17	rep 20201017 F823.doc	doc	61a22d08e168e2bce5feaf96a0859d60c6bd10b4c9f1a32f302c9e75a4463650	n/a	Heodo
2020-10-17	FILE.doc	doc	ba1aeafd7f85b7fe6d27c96a0fc87b47c20150c8adb74124716adeb6ef26a98b	n/a	Heodo
2020-10-17	9347T_2020_10_17_47416.doc	doc	adbad3c068d4497ae8a6a18056cfc39fb152c2085f694dcace8e772cc1867f22	n/a	Heodo
2020-10-17	75010L_S7553.doc	doc	ccad29eac2b2a4c03fc1c9a9ac36544345fb0a5f454746c05dbb5f02d4d53210	53.23%	Heodo
2020-10-17	list 20201017 XH4962.doc	doc	971e189c279099a876618c3226ef35e5afc62b91daf3b8bde466a424fdfaa063	n/a	Heodo
2020-10-17	dat_LCP918855.doc	doc	203a54f8692f6554ad685a3d9e94ec1f3482366c3c455312540f744cbda4f479	53.23%	Heodo
2020-10-17	file-264430.doc	doc	6820620122b2210629007eaae85c11949f1d113edfa9e10c0a0678069bcefa83	53.23%	Heodo
2020-10-17	inf-20201017-P10634.doc	doc	4bd01a5aa1d997804821b42665124f2fd7799102613bf0bc2e7eed3bac76543d	52.46%	Heodo
2020-10-17	9085NQ YR857377.doc	doc	ac172c6a7fb2f8004f019c9dd8d7400f660d58187ed3adcf2502c5effc15271b	51.61%	Heodo
2020-10-17	ARC 20201017 DT65032.doc	doc	c64264c7336d7e9f516999fa287be55be63b634b63f5ebbf1bab24e38ada5e8e	51.61%	Heodo
2020-10-17	List-BBH90261.doc	doc	1e52bc38ce5e8a3c4da25a7c7e4d8169a31fa22bfdd9e43759ff57d25b40db02	n/a	Heodo
2020-10-16	MES-2020_10_17-LDO051303.doc	doc	f248106a010a23404bc680541ff725431478f2a3a368efc846d4bee707af6c22	51.61%	Heodo
2020-10-16	Attachment_2020_10_17_SSF556.doc	doc	528b63ef8c44d0a5b08974fb6ad9efa60e0021ce6993d25b30ef1b90c00df222	50.82%	Heodo
2020-10-16	Dat_2020_10_17_286.doc	doc	38a7276166183fb51e2c60c91165d139295de90105097cb4e24b077d3fa5d56f	51.61%	Heodo
2020-10-16	2588FS-3837.doc	doc	fd15389b3b01c59ca8423ab71c03de2492fa548fdb0905592ffe35c9289a8227	50.79%	Heodo
2020-10-16	doc-2020_10_17-4178.doc	doc	cecc7a6d54b23fac9722185d9674512f5b51840e9909978de84128d07172791b	51.61%	Heodo
2020-10-16	List_YB733.doc	doc	4773da38da0ba3154bbb3b813c803bd6e1f9ab3bad1888f1402f7b17073620ec	51.61%	Heodo
2020-10-16	74564DAB-2020_10_17-TVQ5381.doc	doc	1d74d9c148d2a786425f0447d4415368184fd896521dc5054434c999fce03a31	52.46%	Heodo
2020-10-16	File 2020_10_16 RBY362.doc	doc	0d613e3b8dd87abdca992787394ba93c986820dd46d13b63128699ff814aa6e7	52.46%	Heodo
2020-10-16	Dat_2020_10_16_0620.doc	doc	14fb23d425064edf96ba4acb656479002d69054eccbae3688760eda138dbb67c	51.61%	Heodo
2020-10-16	8097Z 2020_10_16 505.doc	doc	becd0ea41a6c3f2b51a69aa00a1cbebef6693500be304c1930355601ad2972a7	51.61%	Heodo
2020-10-16	REP D7533.doc	doc	f4af9d4a8529e7b2cc1ffc59afc271f35f63fd2f0b043cecdc60553c2ff8259c	50.82%	Heodo
2020-10-16	8317816_N8298.doc	doc	87955bd537228add4702cc4c61db1af1de1ecef23a67ab74fa37955d95b4e4f6	n/a	Heodo
2020-10-16	list-20201016-4151.doc	doc	0ec477654d5520def268531ea738a0d3bd64694440a9185716a92c79625e408c	51.67%	Heodo
2020-10-16	ARC 20201016 VAE1945.doc	doc	efa2f9cffa55872a76e7c96262a7d1b6fefb7d09a0512dc93ce7ccbdca723fad	49.18%	Heodo
2020-10-16	MES_V1204.doc	doc	73af5d8dc838da50fe5bf91e2d5b0c477691b5f53a915e40966cce23390b4d73	n/a	Heodo
2020-10-16	H2895 TN530.doc	doc	99afed8fd21f68965ded2cd4051511265ad6e953154eb5c8cca034a58bcfef0b	48.21%	Heodo
2020-10-16	mes 2020_10_16 UI079.doc	doc	ca508a2ec2285882a4ee19834c8de77fc235883fceff0661c61d174b701d086b	n/a	Heodo
2020-10-16	Attachments-20201016-3693563.doc	doc	b8fb1c34806bb5e82591e936edc95a15e5fd910fbe6d4c97b2a9ea1627b1b0b0	n/a	Heodo
2020-10-16	LIST_08265.doc	doc	3d174288f7635774e7a13856af27d6b6893b4e387f3bf60e18b153cd31b25acf	n/a	Heodo
2020-10-16	ARC_20201016_9442014.doc	doc	56521a08dcd3eb2911de6c97551da434a6983d232f6d33ee36578865f7f55adc	44.07%	Heodo
2020-10-16	UNTITLED-2020_10_16-AHY0506.doc	doc	18f9f98dab8623a8b0c06b6d25747d727601b4551df382ffb88ff536f6df2762	n/a	Heodo
2020-10-16	File_20201016.doc	doc	682c65a21c88785eb45b7596c27eb24784a6d2415bfc04fb99c12bbb8f3b6da2	n/a	Heodo
2020-10-16	FILE_G51188.doc	doc	f43ffb253ed400fbee717e198d3419277815ddfbf133fb99c20a4ea9294297bf	44.26%	Heodo
2020-10-16	ARC 2020_10_16 2183.doc	doc	f4ae4cc6876a750648cb2ded60108251649fdbb953732930c0c8c23488ea1bab	n/a	Heodo
2020-10-16	LIST_2020_10_16_77392.doc	doc	b277f3e080de00f3b8a501b5ee86e73114fa42f6fddbd962117a2e3d53e9cc9e	41.94%	Heodo