URLhaus Database

You are currently viewing the URLhaus database entry for https://pkk.cilacapkab.go.id/cgi-bin/INC/zMGOxLi7XBzvmKW1/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:703097
URL: https://pkk.cilacapkab.go.id/cgi-bin/INC/zMGOxLi7XBzvmKW1/
URL Status:Offline
Host: pkk.cilacapkab.go.id
Date added:2020-10-16 17:47:12 UTC
Last online:2020-11-20 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-16 17:48:04 UTC to hostmaster{at}iconpln[dot]net[dot]id)
Takedown time:1 month, 4 days, 14 hours, 3 minutes Bad (down since 2020-11-20 07:51:11 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-17Attachments 2020_10_17 CKU09973.docdoc 294c6f87d8514072c30988bd55dd643c5c018b9f9ae05b9db1a97d034b31e092n/aHeodo
2020-10-17Mes 2020_10_17 I2615.docdoc cbabf68dbf69bbc9e13cf1c4decc549416db53379348b45da4b5fedff65152afn/aHeodo
2020-10-17FILE 2020_10_17 649844.docdoc ba1aeafd7f85b7fe6d27c96a0fc87b47c20150c8adb74124716adeb6ef26a98bn/aHeodo
2020-10-17FILE 2020_10_17 DSX016529.docdoc 560cbfa962587b928c5ba13f5cce70b94a0a90991ee4f4db32f2a6c6a3936237n/aHeodo
2020-10-17Attachments_2020_10_17.docdoc 7e8f0d3a035cc6aaf58e4f892900fd85148d09fb03b8b258eaca0db120d1c628n/aHeodo
2020-10-17LIST_69573.docdoc 308b5a0affafedcef7431861d7785ddf4db3314cf5e18d5fdbc4c0168cc63ea7n/aHeodo
2020-10-17ARC-20201017-091383.docdoc 3b4872190aebbf74f2d47fcc2d043a4715838ec3148f56fdc7034c991b73949an/aHeodo
2020-10-17GGE036-9880.docdoc 559b9d806bede7814d4c85984a6e6815356e1ce8e730ca7907309e03eed5fcaen/aHeodo
2020-10-17arc-L6555.docdoc fca525a70cdbc09d5adb7e320849a4e9958f5edb129e2accce15281a340edf54n/aHeodo
2020-10-17Arc-2020_10_17-UC10699.docdoc 5422842242a23ce0b01dd8151fb9d86c9c6b41ed43c792e7c4b714cc2cd2a1c4Virustotal results 50.82%Heodo
2020-10-17Mes-20201017-7669.docdoc c14604804cc32fb30b522dd9dff211839670ae27b989326efce1e69589bc9d36n/aHeodo
2020-10-17mes-2020_10_17-3814.docdoc 1e52bc38ce5e8a3c4da25a7c7e4d8169a31fa22bfdd9e43759ff57d25b40db02n/aHeodo
2020-10-16REP 20201017.docdoc a9d9b8357ff803bd36d7bd0c12c770487fe774ccd22e81318606bad0f6ddaf90Virustotal results 52.46%Heodo
2020-10-16Doc_2020_10_17.docdoc 39319e4e0e23653363b81024b93090dbf717424cc2dcc3c0291e6e56e3328ed2Virustotal results 51.61%Heodo
2020-10-16doc-2020_10_17-ZDZ5715.docdoc d546749eeff6828f731a5f79a2352276696d9ce6d5614dc6e9779fa2dbbe6799Virustotal results 50.00%Heodo
2020-10-16Inf-20201017-J75893.docdoc 691b2fc6acbee6cf5fb93b6afad38eb2f61c4a211cb17cb3c617c2bdebd48f61Virustotal results 49.06%Heodo
2020-10-16Dat 20201017 QWP0062.docdoc 5c58c91ffdffd84690c6746f6afc2eaeacd03df2e4a83c6e662755624113cf5bVirustotal results 51.61%Heodo
2020-10-16Dat 57455.docdoc ee2a584f20b8fae9caa25baa3476b1dae0aac0d511a2a2584dde95eeb42c4d06Virustotal results 52.46%Heodo
2020-10-16LIST_KLX7697.docdoc 1d74d9c148d2a786425f0447d4415368184fd896521dc5054434c999fce03a31Virustotal results 52.46%Heodo
2020-10-16ERR067_4251.docdoc 7440c2b0a8f5a75b09af167e9259a5fb5f7f449e9c496ccfad8f5675abcca4acVirustotal results 50.82%Heodo
2020-10-16doc 2020_10_16.docdoc 14fb23d425064edf96ba4acb656479002d69054eccbae3688760eda138dbb67cVirustotal results 51.61%Heodo
2020-10-163309034_20201016_KB984707.docdoc ec0b8068eb55934e5173fd8006c8cff634922830e46673abcd0c0a2e2e6d3b4fn/aHeodo
2020-10-16doc-HN2906.docdoc de085b2aa71406dd284396b50a4931dc24c0648c58b6b5f8dc22b9d7b2d491d7n/aHeodo
2020-10-16ARC 20201016 601.docdoc 946f2932db99a282d3ebdec264e3de1b8c260b12f95769381d8bc99433b66b93n/aHeodo
2020-10-16ARC-20201016-774120.docdoc ff2225f50847fbfdff2af9e81b67fc82dc5a26f7c4a78edbe36d775f1c153c22Virustotal results 46.67%Heodo
2020-10-16doc 2020_10_16 ISZ133711.docdoc 63cb438c25d14547c6f29080fab1777e51f4a00ba4e84206a6366d3c088a5db6n/aHeodo
2020-10-1659856440 2020_10_16 7311152.docdoc b443088167d74ff3bc8ef184ca3771959b274954d6adb5263830985dbad709a4Virustotal results 48.39%Heodo
2020-10-16list_20201016_873075.docdoc 3cc8c557bf3d2dd43a937e6a38d78f32dddf8e118a06663c5eb8f3dbb4bb9afcn/aHeodo