URLhaus Database

You are currently viewing the URLhaus database entry for http://pongansealeer.com/content/paclm/uym6VywCCmAXPmsEyv2p/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:723750
URL: http://pongansealeer.com/content/paclm/uym6VywCCmAXPmsEyv2p/
URL Status:Offline
Host: pongansealeer.com
Date added:2020-10-20 13:36:11 UTC
Last online:2020-11-27 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-20 13:38:48 UTC to abuse{at}alchemy[dot]net,dnsadmin{at}alchemy[dot]net,support{at}vitalix[dot]net)
Takedown time:1 month, 7 days, 18 hours, 3 minutes Bad (down since 2020-11-27 07:42:09 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22DAT_20201022.docdoc 5216b40ab431ee50f4904d8d52cf5a72d749418f6fbc6b0823bbd20a16f83e0bVirustotal results 45.16%Heodo
2020-10-22CX000 X561.docdoc 801d2ae370c4e9631b5740affb87d1628701bd436a299ea95ecc2df89a18e164Virustotal results 54.72%Heodo
2020-10-22list-2020_10_22-7123479.docdoc 73c0d45f6d58aaec07b9f3300fa2afd32a726b70e2b8101fb899f258e55f71a3n/aHeodo
2020-10-22list_20201022_4348459.docdoc f9129c9f5ad280b2fc327f6b8399d107ae082284f42b7fa1e6939a39c52ee243Virustotal results 54.84%Heodo
2020-10-22MES-20201022-JR26471.docdoc 949394bdc364c283732e10d165b523463c5e3415f4ca80269720f45609aaf1a8Virustotal results 53.23%Heodo
2020-10-22List-20201022-1205422.docdoc e22adb293242bbe12e653ae5f927e75dccbeffda728053fc11b830c8197aa330n/aHeodo
2020-10-22Arc 2020_10_22 75262.docdoc d8eae12f16be0cbadb9af8719924b8d4f4300222594c27279dede135d2f8ec2fVirustotal results 49.18%Heodo
2020-10-22inf_20201022_773076.docdoc ad3c048eb59ada4d0ded811b7c3556545c9c44142f3086df2fae7501341bb6afVirustotal results 48.33%Heodo
2020-10-22ARC_750.docdoc c775ac213184bc72135d373b13a19c873cb4d3823f8c895ddd4c6158886c08feVirustotal results 49.06%Heodo
2020-10-228116-20201022.docdoc 554ff1a900c5b97921e83840914338e5cf8141643ab9e5a4e3a5744599c8850eVirustotal results 50.00%Heodo
2020-10-21REP-2020_10_22-YTK314821.docdoc 8b7b1d3a7f7ba09c903b61c93243abda2dadc43a36441e7f2d52707089625f80n/a Heodo
2020-10-21Untitled_2020_10_22.docdoc d65ac49f3e3c26aa5a64eb44cd03e3d4e66f10dfc24adb8dba89260852589e14Virustotal results 44.83%Heodo
2020-10-21DAT-2020_10_22.docdoc aa388c2278d9ca8c8841bb81441797821169bd089f2550c1ff77fc08394914f1Virustotal results 44.26%Heodo
2020-10-21list-2020_10_22-X73233.docdoc 11c7dd1537f0a9fb591efd42ec9cfb3a2c4a3025c5e1dca1b5d865ed4c2901e4Virustotal results 43.55%Heodo
2020-10-21WK6209_20201022_FS415.docdoc 301cf568e4fe620ea088536605e0337a3e04e40694ddfd1f7b66584b600b1252Virustotal results 43.40%Heodo
2020-10-21FILE 20201022 17416.docdoc 6477cae7caf3f4cecf4e4f17f4c6dd85d5bc5d7aa2517575063852656754b9a0Virustotal results 41.94% Heodo
2020-10-21Untitled-JFA623.docdoc caf10b76dc340cf0bb674ca1cd687301597708c9d9e9a23391490effab9d1cc2n/aHeodo
2020-10-21UNTITLED_0332.docdoc fef93b028655be20b53ae539bf033ff36d1bfb342edd5da67769a3b6c1907819Virustotal results 45.28%Heodo
2020-10-21FILE 20201021 5823.docdoc 8537810517cd5dd09f54c8b9b8ae8800be7178a6bd57e6b35effba2f254dc891n/aHeodo
2020-10-21Attachments.docdoc 050a8a2b5d5ba787aa7aa56c2df4b93986f649fbc41820cc7081d7c48c2c0a6fVirustotal results 46.67% Heodo
2020-10-21mes 20201021 85082.docdoc db55d45b61330aa1239d316a79985bb40dc18f39a23195b0b9174f289f25b25bVirustotal results 43.33%Heodo
2020-10-21rep 829.docdoc 859abb1ec18da77d67adf4f8169fdaeb35da9b930db1f093e731b0749f6b82b2n/aHeodo
2020-10-21UNTITLED_20201021_076572.docdoc bbb06db34f51c53da6ae7059ea01e98f90c45e21de62c91bd299adad0b13944bn/aHeodo
2020-10-21Mes-2020_10_21-31912.docdoc daa1056189a708c56aecf3c760fe3c15eda062b969b53cb871f1e44a934be86dVirustotal results 35.00%Heodo
2020-10-21dat-20201021-1957.docdoc cef936ee53c8e9333c3c499878b39e33d50a8e39f1674c63bdb34ac04ba01630Virustotal results 27.42%Heodo
2020-10-21file_2020_10_21_XH655699.docdoc 736b01e012c04160ed392539a55149cb0922c301cf3468486f06a3c8812e6b64Virustotal results 28.33%Heodo
2020-10-217980318-2020_10_21.docdoc 45e8ab5bf357dac888cc71a4043d96fc6d2b37648c9b3fd4ddefac2a29061431n/aHeodo
2020-10-21DAT 2020_10_21 L578097.docdoc a05a744b4a1fdd51ad66321ae664cd65055ecce0148ddc113812497983d17160Virustotal results 29.51%Heodo
2020-10-21REP 3474.docdoc b361711d30d76f59bf40e1cd7590527b18e4336788722790adc5742c75c9dbb8Virustotal results 30.51%Heodo
2020-10-21Attachment_KZI132.docdoc d64217395d8a43cd86ae4f154bcfcb62755241a26e4bfbdd06f049fbbfa38fcaVirustotal results 25.42%Heodo
2020-10-21Attachment-2020_10_21-YS825804.docdoc 14aabf98ce332fde71c1bdac65a5476cbc11e0e2b93090fc0bd261229cbc7213Virustotal results 26.32%Heodo
2020-10-21M0115-20201021-Z049.docdoc 3848d4bfc3547de4e0b281e6198687d021d31987b1c2293974dde91ca59bb017Virustotal results 29.09%Heodo
2020-10-21Dat R287.docdoc 2e9a3608379ff1e883b3a8cde0d7dad3b7cb2ffe30f054a0d352978f556675b9Virustotal results 29.09%Heodo
2020-10-21REP 2020_10_21 8402143.docdoc 6ee7221144959a0dfd4775ea0c04d42bdf8e39c34f4b7631636750ea80914f88Virustotal results 26.32%Heodo
2020-10-214485VRO.docdoc be674cdc4921eab96f2c4aa24169b31f3e1e9f0f3408e0ee559d2606e60bbc32n/aHeodo
2020-10-21FILE_2020_10_21_8014542.docdoc 2d9bc2a6fdfb9e47c6ceb269181f1d67e3afa468d65f51c0d8108000c6bfeb5cn/aHeodo
2020-10-21arc 2020_10_21 7268616.docdoc 637c64d5bbef5333c8f75b6e1e107884cae410b1cf90f5a6ab2cc577b18d077dn/aHeodo
2020-10-21UNTITLED-20201021-WHL571.docdoc c6858724d73a92b7a827ea4d5883d64215922372710c402b347327099995cc38Virustotal results 30.19%Heodo
2020-10-21LIST 20201021 5737.docdoc 9e04556dc6b12df83f098d47c133dc107fd6744578121ba173447f81d8f8c959Virustotal results 31.37%Heodo
2020-10-219220425_20201021_536.docdoc 7fb68dac5d6f05729a9b4a2a2ffb710ca020105f6c071eb3b568ba7487d27c38n/aHeodo
2020-10-21List.docdoc 06886e4b3f2cf61bea7355471e536c230a5b1dc4c060af0780b2dd74c30056d1n/aHeodo
2020-10-21FILE 20201021 I370222.docdoc 64bf368dda7d11512d1478656bbeac5aefa274c8c52de6fc0fe4dec6eb57dbaan/aHeodo
2020-10-21List-42269.docdoc 0d1d03adb65c5235c4809f4f31e493d216df1b417bdca90126705ccafc8f4d16n/aHeodo
2020-10-2181408850 4508347.docdoc 30c2b15da17f4b9021312d4014ac958386b5939446750150595f8544c4d8f3a6n/aHeodo
2020-10-21INF.docdoc 5678071ee4b08346299b80b0c58ae14beb8b4ecb90265ae72f97a9b1de00be24Virustotal results 44.83%Heodo
2020-10-21Arc-20201021-47351.docdoc 2918744bd6d4370e10ecf517c9c5c264edf439dc9a11612a21db5306d4c1fac1n/aHeodo
2020-10-21INF-20201021-4549906.docdoc 9bedcc0b34dbbcab87baebe329c2dc66a4d01287e541da22b3f08a80d07e1501n/aHeodo
2020-10-21INF 20201021 69126.docdoc 41ecd60f9b52ec888a65419df5910382015ad496799b7b8865270fcaaf12ae00n/aHeodo
2020-10-21AIP5587 2020_10_21 15188.docdoc 2ca5f560d67437d266d4f24bfc29b108a29b963d3e5eff6e05f7be37513948d6n/aHeodo
2020-10-21Inf 2020_10_21 1390830.docdoc cbfbc0c7880423211b4ca4e059bc216b66c042f58c5ec965086dca64e0d29c74Virustotal results 40.32%Heodo
2020-10-21doc VQQ112.docdoc f9fe25b8f33f0a31dd98d6d9835a3c3997842d4e3e0ecbf74172f5d88218cb39n/aHeodo
2020-10-21Arc.docdoc ac06d56d750a46e13b29151c551aa058eb82fff816f2511d81ccf4fc17a582d1Virustotal results 40.32%Heodo
2020-10-20doc_2020_10_21_58977.docdoc d89a7526499e9b53bedceaa103bae82a247aa6fe2544d50525a6a2cf87ecea6bn/aHeodo
2020-10-20REP_2020_10_21_143982.docdoc 28de9a545bff02be8a015ea386ce91d917b531e57f13d1d24522d2255f803b71n/aHeodo
2020-10-20Arc 189354.docdoc 4b40d74a2217c78437f786a94a102f5967d1612bffb39d48041302bca7754997Virustotal results 32.61%Heodo