URLhaus Database

You are currently viewing the URLhaus database entry for http://leapmom.com/ukeol/invoice/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	723409
URL:	http://leapmom.com/ukeol/invoice/
URL Status:	Offline
Host:	leapmom.com
Date added:	2020-10-20 12:22:17 UTC
Last online:	2020-10-22 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-20 12:24:53 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:	1 day, 21 hours, 46 minutes (down since 2020-10-22 10:11:30 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-22	ZBR_100120_QMY_102220.doc	doc	e01b2dd423d602c30905f88e9c829c72498492b0ebc8c6625f81b78ad77dcaa6	43.55%	Heodo
2020-10-22	99475104.doc	doc	455f8632f48a5ccc69cff5f9636f1457e4027d280f7cccfae6aed7fcc8bafbfa	42.62%	Heodo
2020-10-22	INV_VYRUTLWV3.doc	doc	2bfcddec3862fcbe053dd6a0d03d5987ccfa1942950e8c9bea56fa41f6fcaa5c	49.18%	Heodo
2020-10-22	INV_WGKNH0C09DKK.doc	doc	34b4f674b3fb2522db0c058e836245655b4588f4bd0b35b5c2bbfcc3bc75916d	49.06%	Heodo
2020-10-22	FILE_1157789825876530989351682.doc	doc	74fdfd61d063ce1229044436c55ac1dba3e3c765e8b26674587cbde6704601a1	50.00%	Heodo
2020-10-22	DOC_6M00V98U0YWD.doc	doc	056f25e8944119ad3d9d651d77cc32cef6621c5cb3498b47161738be7aff416e	49.06%	Heodo
2020-10-22	LLI_100120_TTB_102220.doc	doc	775be0a86b7a5d27adf04eb982cbd8f223f06ae88dc5f6a33a26774d707f7bcb	48.21%	Heodo
2020-10-22	REP_RCI_100120_SGJ_102220.doc	doc	638d64989d1dd97fb0243d59735dcc9441f106f3eaa6288d3c6e18a2b11aaef7	47.46%	Heodo
2020-10-22	MOW_100120_ETD_102220.doc	doc	0e04f78f02f0f9fcdb39483727feb5378dd09035b80679065c5a4b43687170b5	49.06%	Heodo
2020-10-22	H0CEO40IROUUJ6Y2.doc	doc	9fe7e239b00579f78275ddcdb282bf2b112dad4d3a0bbc7f183e800244486bb9	48.00%	Heodo
2020-10-22	WZR_ERFI2UFC2.doc	doc	4876b24f79e4db4a3df03efb480f32506ce94c7c60c1410d47b6722a66765552	42.00%	Heodo
2020-10-22	TRC_100120_YXG_102220.doc	doc	7a9d24e23c3cd1701c2de8826db43aa1dc7d2b73c6c4fd50f491276725a2ad4b	46.77%	Heodo
2020-10-22	FILE_9KTGX9YX.doc	doc	d6a01afe9b81e65f663d1e158125f608fabf18a1b663d705398cf817f9a95c21	45.90%	Heodo
2020-10-22	EWS_82089571.doc	doc	9c0aa6a67f05f22e0bf2889fef6bb38dbbc89fa9da70a8b6ac6cfe0b45f3b704	43.33%	Heodo
2020-10-22	QCM_314681415949869074.doc	doc	dd44fd55293b9113d93ec32356861c6813ad6c23d399625147eb4ad930d71f24	43.33%	Heodo
2020-10-22	DOC_80M4R53M2DU7DD.doc	doc	4665ba876c251ac6ea1e6dcf5ce0a09af31397be348343317144e459901013c0	44.07%	Heodo
2020-10-21	DOC_34788588.doc	doc	c772e92b4aa5c7e34108bb1b418cc47bf1561c6ea5944d194eff1af7cefbe4e2	41.94%	Heodo
2020-10-21	PO_10212020EX.doc	doc	890535144da2084ee8e9431e6521be9719100cc5bec7679a4d7bdce3763a692c	41.51%	Heodo
2020-10-21	16839527.doc	doc	b730b36a22a6d6da4bf394e59e3bdb0a0bc32a3adc8fea6f568a58b926a7fdc4	n/a	Heodo
2020-10-21	BAL_87517378.doc	doc	a607fcbdbc7033dabce78e1e902b9822bfe98a9a901c350b44c8f053fb3851c3	38.71%	Heodo
2020-10-21	INV_PO_10212020EX.doc	doc	0a5d824ca0ad50ddefe5b2ec81f933ffdbcdbe615da5a32ae460f4ae70a85be5	42.31%	Heodo
2020-10-21	HH1508336975JO.doc	doc	6c52ba615fd75e8a7738fdd98fe8ff427af4329304aa95229333232c92d814f0	30.65%	Heodo
2020-10-21	BAL_204037315.doc	doc	202d0af84b5b68cf2a54ce8f9afa3befc8f994b934e380cbc1dab9dfdbd11bcc	30.65%	Heodo
2020-10-21	CPY_100120_KYU_102120.doc	doc	7ea2564f31750ad752cc8d364cc4eeb167fcb8ff1bbb49f96e3926c95f82f715	30.19%	Heodo
2020-10-21	FILE_95474228.doc	doc	05c3a6aa1d912bfb9f1a5d70ed968c16b5e36f90c738ecd3c40756c2b3c48f26	24.59%	Heodo
2020-10-21	LWSQ_33982862.doc	doc	f168ef97aa8cb399a6f327fb6a301f7ae5e115c7ed1ad5c8b59819663bebd7e2	26.42%	Heodo
2020-10-21	936438158.doc	doc	4e38c2c63f4d9aa5935914a9f792526533ae7ff0f2278bdd6570bf2379e1e125	21.31%	Heodo
2020-10-21	4P1YSG04TL6GIEQF.doc	doc	35888d0adafd3483ecb0eb4ed74e6d662c462fb957261c83b02f6b21c48731eb	22.03%	Heodo
2020-10-21	FILE_OTV_100120_SRP_102120.doc	doc	fe647619aa21d737e9f948fb92a9286a5f03bac06ab881535069fe060bfd622c	33.96%	Heodo
2020-10-21	6128230288.doc	doc	df23f7673bff775b6e684f5ba9d205d51e926537e185534fb4726ce87e541f04	33.87%	Heodo
2020-10-21	TJ_7FMFB7S.doc	doc	3870c4b69f68d86fe116181343d8d6d97a22d191a028b02f300f0e5d1e33eb60	32.69%	Heodo
2020-10-21	PO_10212020EX.doc	doc	ce72abdb386adab53d71d068388c21107144e7d9c1acfa2f898d0ce6d7b2acef	32.26%	Heodo
2020-10-21	BAL_93743119.doc	doc	cb14f9efbce55984f2bdf345ced2928c530ab4b909c54aa15f7c8efee7490bb6	27.87%	Heodo
2020-10-21	DOC_3328212784787769589316184.doc	doc	7fd4239f8f25bb0287746f554cbdffc534ced3346467f2a882722772a9d44d34	32.08%	Heodo
2020-10-21	REP_II5772387074KI.doc	doc	87beff4cbd449ccd79a749854304ec24ebf96ade1f9f2b29e2c386a593e182a9	31.37%	Heodo
2020-10-21	DOC_26580314.doc	doc	88c45b613e6367cbb58e012779f1cd95ff6a44efc175b2163185aa309e18573f	27.42%	Heodo
2020-10-21	5NCOE2WWG.doc	doc	6d21ebd2968beb17398f1ae51734c82dc41ee7eea21a41abf7ede25119c77b79	25.81%	Heodo
2020-10-21	REP_688013040.doc	doc	71e55ad14abd213d5627b65f8f045b2c9337c629a556868c692376c331d9fa58	n/a	Heodo
2020-10-21	PO_10212020EX.doc	doc	82be718b9899accb7da0f67cb57fe43902f7b3e35a17046fd69ebe212749b09f	49.18%	Heodo
2020-10-21	DOC_07968333.doc	doc	71c25e3712abdd3d405b0a43f2819fb51d16dd9bf3c5fd5c9ecd04b028240533	47.54%	Heodo
2020-10-21	B_99607062.doc	doc	aef69b034379dfae45642c5c2271b27f04298dab56a9de3b608ab2d3cb00fa72	50.00%	Heodo
2020-10-21	DI8605630732WK.doc	doc	3f28d23c6650e22fa69d824efc5153fd46fecbbdbd236ae7b4ee15bae4ef556d	49.06%	Heodo
2020-10-21	931394057854809552.doc	doc	70a369ce3943f743ffc7740c3c003a5f00705abf0505641d7d193d5cf79b8dc5	50.00%	Heodo
2020-10-21	YC_CEH_100120_QRL_102120.doc	doc	b886042bae6dcbb3ff1e2343630f7c873d2fedbc6b59147c40346b16f69c8603	48.33%	Heodo
2020-10-21	PO_10212020EX.doc	doc	66ff2845aa49250c6a643867ff07164647006a80a5fadaddb5d41c99fd6b9452	n/a	Heodo
2020-10-21	V_OIE_100120_LMH_102120.doc	doc	1c69c8db95ce9e60d2cd1b61601b96a3a5bca68602f2da10fb5cbcfd2e354401	37.74%	Heodo
2020-10-21	DOC_OFU_100120_QCU_102120.doc	doc	d65b0da5366ec38c1f2a4590b31d6603e933919179361a9a8e71ad368331f751	n/a	Heodo
2020-10-21	DOC_XQE_100120_ZWS_102120.doc	doc	93fb03c686c462d3f728d3b60ed657502b3dca9ef498d902326fa7c87a81cb81	47.37%	Heodo
2020-10-21	FILE_BGTGXSTOEWNIO.doc	doc	ff560f270317afc9d31e1eae55c277c99bdd45f9fbd3a2dc44e8929a25ff065c	n/a	Heodo
2020-10-21	FILE_84162621.doc	doc	d8d4feb29b46ade146a7b8343070d2a975e4b0e186ca6aac31ea941e46a7af73	46.67%	Heodo
2020-10-21	BAL_NK8934718867DJ.doc	doc	56074bdd23c71846faa6ab17e8fc8485ce763ae329af8573a9e877dd6ec6513c	49.18%	Heodo
2020-10-21	ZHO_PO_10212020EX.doc	doc	a977513362ad46e1cab8cdf98638a7e3edcd11796c732a818660e18e49b74a5a	n/a	Heodo
2020-10-21	F_YR99PUD.doc	doc	25d12cabe3d39e681a0b8c9ac88206110f66071089e92667ee0fed7bc917e918	46.15%	Heodo
2020-10-21	INV_4B3UOYP.doc	doc	730dc7281140bb144e159ad27638ff4f4d3a021999727a26b7731250343a3f76	n/a	Heodo
2020-10-21	AE2366213436RN.doc	doc	076c6a22ade8278559bc05b10009c61e2bea31bec02ae5d2b92466600ecbb446	40.35%	Heodo
2020-10-21	G_5EXNF68V.doc	doc	8db61b871aac2949105b26c1ca2a22579e3b3d6e99aab20279c3bbea5dc87b8b	43.55%	Heodo
2020-10-21	INV_90745414.doc	doc	9a65518effade1bf32d7589d7f7a8a028f9fa7f1fca4491673680847d26d3f0a	38.89%	Heodo
2020-10-21	965762681152208253.doc	doc	92e4476fe9673fe19a33b4c306402a172f3b2124ad380f0782517a9e15fec347	39.62%	Heodo
2020-10-21	BAL_3FPC0EVDD.doc	doc	a78451771b5a8e66fd912d10f9b621e52239473334785ec68755db5e60594ecb	40.32%	Heodo
2020-10-21	FILE_LPO_100120_VOB_102120.doc	doc	17ac0ed02b6127efefaa0cc936604bc12947c394e902bb8bf88e37b6f0829d9f	n/a	Heodo
2020-10-20	DUV_52032135.doc	doc	4ca0b870975a5eb49d50074ff6d1f7b8481ae723a8aef2ff922accd28ed9a96d	n/a	Heodo
2020-10-20	FILE_431288574447556653.doc	doc	8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915e	44.64%	Heodo
2020-10-20	93890277.doc	doc	6f38eadeaa66f8291d39404657f414c63a1a29aa2a8368ad16f536242f8acc65	42.31%	Heodo
2020-10-20	REP_PO_10202020EX.doc	doc	0cc0e53f93e28f521e6741dd09848e105ecaa03babb51229e44c7bf9bf6676e7	41.94%	Heodo
2020-10-20	1611061728804887451013987.doc	doc	80911a9fc7a1cacae8657c27427e3d2f1a350d3ce6425517da3d1d2fed63e7ce	40.74%	Heodo
2020-10-20	81664256.doc	doc	2dcdf03e311cc231854f3971e8e39171b8829e3e72cba54cf82c624519e7e737	39.62%	Heodo
2020-10-20	L_1AJMHE36P6NAM19C.doc	doc	db0a0ba8be33544149207aa8dd5ab2fc57b067ca676e309d26035b85a7b93a11	40.32%	Heodo
2020-10-20	REP_ODF_100120_BZQ_102020.doc	doc	6bac12ad611439d3d004be53bed73d3db7922872af54d05b0c06ef3fd7948aa5	39.34%	Heodo
2020-10-20	J_CH7309872167AN.doc	doc	2d08d60236c8d4fd7d1579f8d0086ae205f602f0c2ef9d738485b5cbd5fb3f6f	40.32%	Heodo
2020-10-20	BAL_PO_10202020EX.doc	doc	7c33eefee09c32ed7149ac1697443af70a1c89b3f5ca229b74a214e9038a2668	40.32%	Heodo
2020-10-20	OQ8192525847JW.doc	doc	dc4424c660cc882687e934977d90d1e7725602d1d702466653d1968d2ac1a066	38.98%	Heodo
2020-10-20	JUK_100120_HLO_102020.doc	doc	efc1339509400bc331466167390a450566546503ddcb3083bfeeec3365d29544	n/a	Heodo
2020-10-20	53000526.doc	doc	b512afcd2e8231f4b0ed812b652026b433dd1189ff247fe75d31d6d9a9ac0c28	39.62%	Heodo
2020-10-20	VM_VH3139562909BJ.doc	doc	3a8287a81d763e34609872325add4dfcccd8609540be210a698596e019647947	38.71%	Heodo
2020-10-20	SB6218281279QR.doc	doc	7a8b2c156f080eb853a85b4e9beece21fb85945a3c4e0a3ecdd548ba52b88de1	40.00%	Heodo
2020-10-20	HYS_100120_HCI_102020.doc	doc	30a0def39ec452987fd23fb19c1fd9728defa4971f7f1319de103dbbbe68ee55	n/a	Heodo
2020-10-20	FILE_ZD9816649528TE.doc	doc	717d8cbfd8b6e490d31d7e4650d8ab128397cd69b31470fd4d873a903337c58e	32.26%	Heodo
2020-10-20	PO_10202020EX.doc	doc	96220b48da8d87785f5eaaf4bdbf6fd3b1b36215fada943ccbf3e4ef18455bee	37.70%	Heodo
2020-10-20	SWI_PO_10202020EX.doc	doc	4ad0c747113a4ab5f1b3fed246b0e01e41b2254e259fca4eac3c7b5273b659b3	n/a	Heodo
2020-10-20	U_FI3873474037OO.doc	doc	e839ad79ebc64c9a9f35e974ee0331fb9e05f62ce04e2d5a7a75082ccea2613b	n/a	Heodo
2020-10-20	FILE_PHT_100120_GPM_102020.doc	doc	406f6bc163ccca617883401b8494b298b649d3560c3e1f59c9cb9f20a539eca5	n/a	Heodo