URLhaus Database

You are currently viewing the URLhaus database entry for https://www.lbbniu.com/underswamp/Document/QlJXHaytPD/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:722862
URL: https://www.lbbniu.com/underswamp/Document/QlJXHaytPD/
URL Status:Offline
Host: www.lbbniu.com
Date added:2020-10-20 10:06:23 UTC
Last online:2020-10-22 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-20 10:08:22 UTC to abuse{at}alibaba-inc[dot]com,intl-abuse{at}list[dot]alibaba-inc[dot]com)
Takedown time:1 day, 17 hours, 0 minutes Poor (down since 2020-10-22 03:09:03 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22LIST 34924.docdoc 3379baf82ca7321958a7bad316d77e8fd7c185bd6ccaaae060455773fe11e544n/aHeodo
2020-10-22FILE 20201022.docdoc 4adb138d8a23b32849309c792bab7949cdff073d4d2c42b0f65860480aacce9fVirustotal results 54.72%Heodo
2020-10-22DAT-167.docdoc 6407da897b1e8b2083810dc2b7ef04784f712c5acaad0ff349c2b4f2da6d1c31Virustotal results 47.54%Heodo
2020-10-221949_EGH469949.docdoc 7e06d6e4416c03c57f49e313a7c39e11b679c1348500f209711decaa97496614Virustotal results 50.91%Heodo
2020-10-22INF 2020_10_22 JT061472.docdoc 487f725ad8ca9d27909e0d464bd66320a013bc84772aeeacb8b50224615b3158Virustotal results 49.06%Heodo
2020-10-22arc 2020_10_22.docdoc 554ff1a900c5b97921e83840914338e5cf8141643ab9e5a4e3a5744599c8850eVirustotal results 50.00%Heodo
2020-10-21REP 2020_10_22 450974.docdoc 12c68e1e99b281571fac81330a1178884fa80cd2487d5687440f1df72e8fe9f6Virustotal results 50.94%Heodo
2020-10-21MES_20201022_911.docdoc f13a49c549ae816c43052303db11be0ba311905c106801ef8e0098027523e1baVirustotal results 48.08%Heodo
2020-10-21Rep-20201022-791.docdoc 917994ccbabf6d6480a31a433491e371a63fc34f4de8fb8fb53fa5dc8fad5bc4Virustotal results 44.26%Heodo
2020-10-21Untitled 20201022.docdoc 11c7dd1537f0a9fb591efd42ec9cfb3a2c4a3025c5e1dca1b5d865ed4c2901e4Virustotal results 43.55%Heodo
2020-10-21Rep R7243.docdoc 6e9c7d2344a9b04e3cbf19b720c085623b1e42f65a465b8014ff6ae68016fcd3Virustotal results 44.07%Heodo
2020-10-21MES_2020_10_22_0983983.docdoc 6477cae7caf3f4cecf4e4f17f4c6dd85d5bc5d7aa2517575063852656754b9a0Virustotal results 41.94% Heodo
2020-10-21Rep 20201021 O931561.docdoc ef8c0459a311cf0e92880ee25a10a7308c3b53dd688040c6dfdf404a5d912418Virustotal results 43.10%Heodo
2020-10-21Arc-20201021.docdoc 58dd14b9873993e348c4ddb26836d43f01fd619f9d56f694f752a5a9db63aa60Virustotal results 41.94%Heodo
2020-10-2175313916_2020_10_21_8484538.docdoc 0a05340e1d61cf0994abfacdeb416ee8bc250794a5282cb2edcb4668387da003Virustotal results 45.45%Heodo
2020-10-21Doc-1033279.docdoc 16dab6417b0e7d1c239ab1da4a440cd337131e881935898f35a1bf1bcde61744n/a Heodo
2020-10-21INF 839.docdoc 8bb0bf83fabae17ac116f654d04944c66027ecb3243a2831aeb6f87fc392bde8n/aHeodo
2020-10-21Untitled_2020_10_21.docdoc ee0a2fe5c7b689bc059cf0849b40346779fa307da94bee18344cb200aa5f0315Virustotal results 43.55%Heodo
2020-10-21INF 20201021 02019.docdoc 859abb1ec18da77d67adf4f8169fdaeb35da9b930db1f093e731b0749f6b82b2n/aHeodo
2020-10-21MES_2020_10_21_280371.docdoc c6399ad2cb80918e4096e5470dc07b0702c875006aa6b83078d85fdbe5a79ae9Virustotal results 39.62%Heodo
2020-10-2157194 20201021 529.docdoc f5e06729985a8332d74568dff36ebfc8dac7e0b52b6629c78df8d6095f8d5413n/aHeodo
2020-10-21inf_20201021_LBF749876.docdoc ef613896b6dae13013f72c27afbabebb56995eb5f3dcbee3b1847d0bab3f0406Virustotal results 32.76%Heodo
2020-10-21REP XXD638964.docdoc 0b8e56c320095e3c3115231277fb787bdb09ff540c7c88e56a84bc3f0e6b2509Virustotal results 32.69%Heodo
2020-10-21UNTITLED 2020_10_21 77316.docdoc 6c0ae95f51a00be8dfda2a6cb025bc98ffcabead12c246527001c4f3ba4097e2n/aHeodo
2020-10-21N096-20201021.docdoc b0a31c904ff4253b07ed800ad34632f96db4ffb69c86f8df2e22ffbccb9f3705Virustotal results 32.08%Heodo
2020-10-2129504688_20201021_212783.docdoc de28cd90ef4c76e9340eb4c969cd3f18be3e86efe5682598389387cbc661f5dfVirustotal results 33.93%Heodo
2020-10-21File-2020_10_21.docdoc 16ae43a8c77de4d2af1864c4e5de2fc5b91136fbcfc8bbb60f90d2478a3408f9n/aHeodo
2020-10-21LIST-2020_10_21-D5485.docdoc b269785cdb8cddfbeb1e29850757483c8b6c922351f2da8be01184b9bb4ce3cbVirustotal results 30.77%Heodo
2020-10-21File_2020_10_21_149.docdoc c72823b8cc723bcccbd12917f6ee2c96aace3f7fa27b0ad8907d451ba9df5e1eVirustotal results 32.08%Heodo
2020-10-21list GPP75456.docdoc 2ed7fc29d8c300523e1c3539aef67fd024ffa66e8d46be2857bb203eba6ef33aVirustotal results 33.96%Heodo
2020-10-21File-20201021-ZEP4764.docdoc 07bfe70b006fae4c1bdd4778f53370a428d8752e8e40fe8eb644ba21f3e1f542Virustotal results 29.03%Heodo
2020-10-21Untitled BBD206966.docdoc 78f3005049ec1854b2a0a85b6435b252cadce5e63c4398a38166b870b46b4197n/aHeodo
2020-10-21Inf 2020_10_21 MR412.docdoc 93add3f9a6eb8a5206d09393a24640c68f0e49f34a92bd400d53af71bc0d5c32n/aHeodo
2020-10-21inf_2784.docdoc ae6211c500d8209fca2d71af7b2329fc59cd558d293c06fbce25637bfb7f71a1Virustotal results 26.23%Heodo
2020-10-21Inf 2020_10_21.docdoc dded675b308edf6e278e9167b39fcda7838009dc6d92247e657f16d3556dee5cn/aHeodo
2020-10-21rep-28388.docdoc 6b749bef4c41f8ae1b526a867501b90582c8fdbce49a45967bb1dfe30b34f4b8n/aHeodo
2020-10-21Rep_2020_10_21_ZL2052.docdoc a495d84c58b2b130270804a0b6840b81578da34154f42c5223e3f34214daae0en/aHeodo
2020-10-21Rep_2020_10_21_80260.docdoc 6ee7221144959a0dfd4775ea0c04d42bdf8e39c34f4b7631636750ea80914f88Virustotal results 26.32%Heodo
2020-10-21DAT 20201021 969.docdoc 979c0685f093ea7bc14af8e86d49f06dcc4789b17b8fe8b318df26f5012b8f6cVirustotal results 26.23%Heodo
2020-10-21rep.docdoc 63e2b5f533ba1e271f9236ed5592860efa584b94b229eaddd4c9a679cacaee47n/aHeodo
2020-10-21File 20201021 61188.docdoc 5a843479ad3478098d5368af91185841daf632b21ce09c3a5246187341f7901bVirustotal results 30.19%Heodo
2020-10-21DAT-2020_10_21-JZP596749.docdoc 5d6f4b6de00e003f6594eaead9793f4cd6ac08cb35812dba692ed30e5009cbb0Virustotal results 26.23%Heodo
2020-10-21Untitled 2020_10_21 PZA6012.docdoc 1352305c9a2204057efd3947f80e983fc0740c4d172a271cec9f78191fc2caf3n/aHeodo
2020-10-21DAT 20201021 WS9570.docdoc a886955819a431586bb94b3b3960c906f5cdf2246de18906fbd6b469f021bf91n/aHeodo
2020-10-21Dat_20201021_R7412.docdoc 43d04047627c2d334f2de109882639ae0bdacabad54dfa75e18e6387be466145n/aHeodo
2020-10-21Doc_VDI73910.docdoc bcc4b6dd12c681e21f14ec6e0d79b4a74a6869536475fa61f8705c3a2a48efdbn/aHeodo
2020-10-21Arc 2020_10_21 467264.docdoc b337275d19213dacfdddc08d854bde869161ed3d7f00e1e665cc7dd28a5dc602n/aHeodo
2020-10-21Attachment_8755424.docdoc 5678071ee4b08346299b80b0c58ae14beb8b4ecb90265ae72f97a9b1de00be24n/aHeodo
2020-10-21Mes_556.docdoc 9b5113e55188fa28b7186e461bf5c88065c351a5cbb85b9e30a1a222d17201can/aHeodo
2020-10-21File-20201021-573630.docdoc 02adc1a510e1bf604b8c3213367eee939d64ff58772dda46fc8498180a27b6edn/aHeodo
2020-10-21mes_20201021_3287948.docdoc 19f3e6a3e66bd4eecc8b8261cace1e1414a63789e541d3c21a493119e01701b5n/aHeodo
2020-10-21Arc_20201021_AY736093.docdoc f6328c84218954acc4ce89645e57f610d7c11fc404c27350c6a5d7e328541e6an/aHeodo
2020-10-21R45051-2020_10_21-917.docdoc a3739438bd54340937905305ec828223cffb8c5735c69854d186f45169bd09c7Virustotal results 40.32%Heodo
2020-10-21494BJ-2020_10_21.docdoc 9a426ce994bcfe132c70f23dcba22c43b05864a64adcc072773d0b4c117964cfVirustotal results 38.33%Heodo
2020-10-21Inf_09151.docdoc b8e12953f745ae773cdf1a34f42d36a3aae0910e137e0be56e267ec4a8ba6b4dn/a Heodo
2020-10-20File-2020_10_21-3543559.docdoc f88dc743752553e1a19bec0caa6b4120dbe99f85db8aab309dd25b2a33e7ef04n/a Heodo
2020-10-20list-20201021-MF6951.docdoc dd9c19188f9ba72dcbf8ee74f01f5b507cc4623ad96800c3f5664166c61715c2n/aHeodo
2020-10-20list-EWU551.docdoc 0fe1e8504b3073bcac87230b7c8246dc263ad53568a2439f767e581be42409e2n/aHeodo
2020-10-20790GA_W933.docdoc e29ed36edd45d2345cc8304608acefd9540287d4e6e84f9eb805893a1a646be1n/aHeodo
2020-10-20UNTITLED P73549.docdoc abd190507abe82dd0ba2c472139f8bd5622c4ed59ec44a53eedd9979daa2215cn/aHeodo
2020-10-20Attachment_20201021_FBI445050.docdoc 7b2c8ed709b78f72450d05ce48a750a1a7a4303689466699f9eb3961ab94fff8Virustotal results 35.85% Heodo
2020-10-20Rep-20201020-AMY21729.docdoc cbf5c08f7777a6731236552b9de30fb880cbea1cd688065475f14c831361001bn/aHeodo
2020-10-206949 2020_10_20.docdoc a15dd737bd44ee3d3b12a2209afed87c8c8f781f0ce3b5e5295b507cbe90e487n/a Heodo
2020-10-20inf 2020_10_20 3620.docdoc 840169523719e4a6f2cfd010b026e432561e625f2dfa020dab535dd43e165ae7n/aHeodo
2020-10-20Mes-N3061.docdoc e9a5e9c3eacc517ddee148273dc5ef07f997026bed7f3ee2cb4d7c333a7fece0n/aHeodo
2020-10-20Dat 20201020 1345.docdoc 3bbe50591f06b846b2dbafbf63eaa4e26247ac697c892a9da67e28d6cc9ab4b2n/aHeodo
2020-10-20REP 20201020 117857.docdoc e519f797fe836f1a33dfd4fa4561cb5d598b9f75ab4d92bec89c32d4a9df29c3Virustotal results 33.96%Heodo
2020-10-20List 7426695.docdoc 84d2f79870b8e82a623b78a70b6fb3d361d708847c605ea05c176b515e58a1edn/aHeodo
2020-10-205625YIS YHC142.docdoc ec601be4c9b923ca08861ada61cf20b542879aff604f64d2b9ea768e79b3e0abVirustotal results 33.33%Heodo
2020-10-20Dat_2020_10_20_9932739.docdoc 38101944c2afcc1aaf05357f69ea1bd51c1ea7719ae978018113dcfa2bca8bb5n/aHeodo
2020-10-20Mes-20201020-0582.docdoc b951eb8332e613a38b35425042bde22919623f2c2498171196808de747bf0207n/aHeodo
2020-10-20FILE_V8325.docdoc 980f165923cab75e3f3a70e4f55669d7e72f99af0f8ee789a4ce91e746cc0faan/aHeodo
2020-10-20mes-2020_10_20.docdoc 2762f9e4fb3fd982938d550c44a28ec54fe08ce9ab7e20c79cc50895e45763a2n/aHeodo
2020-10-20mes WM2008.docdoc 12e07b82fad9e73b029e05af2bf09d2996cc9ffce7e8794880b3a4124018f808n/aHeodo
2020-10-20list 20201020.docdoc b4a525731db40a55e3abb39315e4e8a3f382545e75fb46d266fc5a8fc6396e4an/aHeodo
2020-10-20File 20201020 840348.docdoc 524fe667d487a1f8b5b76b55ac0719de6e28e9720bd04a9a817aaf53c3aeea99Virustotal results 33.33%Heodo
2020-10-20DAT_DV9749.docdoc 123723b516e6fc91c1cdf19558205f1768cf8d773e7d13023e179c8cc6e6cf08n/aHeodo
2020-10-20Dat_20201020_5458.docdoc 60c45c4aed850583c158a7b64f9e6d52bdac2c9570c6db9c712237e605e34b50n/aHeodo
2020-10-20Rep-2020_10_20-VC07951.docdoc 9a2f1d5263c3f7e0728057172230fe567d39bc1affca98ecb30a6e3bd4c0d2fdn/aHeodo
2020-10-20MES-20201020-NPD182.docdoc e99d453a1c1b09bb8137dec33d02b97163edd1363c3e412e00a2521563914aa9Virustotal results 36.07%Heodo
2020-10-20Mes 582959.docdoc 5279756277a897fe69343d68bc9c55af8ca79cd9696f3fffda127ecca2a895c3n/aHeodo
2020-10-20UNTITLED 20201020 HO34336.docdoc 015f1050070a250730f4de15f6ef453df59199e04a4d93cd8bb8ce7cf90bde36n/aHeodo
2020-10-20235YUE F375324.docdoc f38f169e890a0c7cbc55c99a3089ff403390ff7ba46e8a13b9eb1497e7766739Virustotal results 32.26%Heodo
2020-10-20doc 019747.docdoc 8359f916d60f95ffa8f84718bfede02501f601f8aa72d21c00a8d8ccd4126898n/aHeodo
2020-10-20File 20201020 KYN87474.docdoc 6b0720f74545087c277ae287138f2a1c5aaab67e851bf4fb6e69c3ed5ef18d04Virustotal results 32.26%Heodo