URLhaus Database

You are currently viewing the URLhaus database entry for https://ics.co.id/cgi-bin/invoice/2sxopjo5buz/1leypkb4/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	724383
URL:	https://ics.co.id/cgi-bin/invoice/2sxopjo5buz/1leypkb4/
URL Status:	Offline
Host:	ics.co.id
Date added:	2020-10-20 16:13:07 UTC
Last online:	2020-10-24 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-20 16:14:04 UTC to abuse{at}pc24[dot]net[dot]id)
Takedown time:	3 days, 9 hours, 20 minutes (down since 2020-10-24 01:34:46 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-21	WUG710B2XVA7O5.doc	doc	7606c587c9a22687f99deb394aedd9be63d066c53c44d9cb78dc3a03319f670c	29.51%	Heodo
2020-10-21	AR_6266187323964192216708.doc	doc	8a2b904ad14790b5a69146c0f573dc2da8adc472159bba2aed0afdfe0a550d5f	27.42%	Heodo
2020-10-21	I_2405996179956097.doc	doc	02a8230dfddee28c717cc288e1573b5a44194cebefd65b8a20d0e37e2e086a1a	n/a	Heodo
2020-10-21	INV_3024965962680142.doc	doc	f168ef97aa8cb399a6f327fb6a301f7ae5e115c7ed1ad5c8b59819663bebd7e2	n/a	Heodo
2020-10-21	A_PO_10212020EX.doc	doc	d2a68a5159ea637fa9428d39a0d9469c6c2db0b16b2de2593070c17a0ad49520	n/a	Heodo
2020-10-21	JVZ_100120_YWT_102120.doc	doc	fe647619aa21d737e9f948fb92a9286a5f03bac06ab881535069fe060bfd622c	33.87%	Heodo
2020-10-21	BAL_PO_10212020EX.doc	doc	abd94a7b58ada746b22d9d6a4ef2b3847deda4d5569325459951c0c7f3b2a355	33.96%	Heodo
2020-10-21	FILE_935554622673309596951.doc	doc	cdf08877df82aef07518f10414f3dc1ec0bca6a662ee6191b7c76105bb51a0b1	31.15%	Heodo
2020-10-21	DXC_100120_DIS_102120.doc	doc	f762fa2e19b39567f9550fec095e6bf1f7655fee2bfa11190f293736f74f57b5	n/a	Heodo
2020-10-21	DOC_317953712.doc	doc	ce72abdb386adab53d71d068388c21107144e7d9c1acfa2f898d0ce6d7b2acef	n/a	Heodo
2020-10-21	831252405.doc	doc	fe15277e67a0613b3d95b606ce70df9644eda15dbf383f2523d089ba239fead9	n/a	Heodo
2020-10-21	N_01579283889462296305.doc	doc	64c0402c0b906a218b1e4c2101145066a57b5a034a16a82957081f8ca15b4763	32.08%	Heodo
2020-10-21	1990732271964252057553667.doc	doc	d6edabb30c96ad35f08d16e274d639b6a5a5208e7b35167d56392a44b3842599	27.42%	Heodo
2020-10-21	FILE_09937734.doc	doc	a3b816362471dd5502a7f46f5dc0bdab4ecfff681f06c9aab0d9e227ec535fae	n/a	Heodo
2020-10-21	BAL_WD7127131947EA.doc	doc	71e55ad14abd213d5627b65f8f045b2c9337c629a556868c692376c331d9fa58	n/a	Heodo
2020-10-21	BAL_PO_10212020EX.doc	doc	14db2954827c22a1f16b0326dc0d7443d94cd16d6bc7da92a933e19e64a34fdb	50.82%	Heodo
2020-10-21	79410128.doc	doc	af36ad567085faaef5425d233641e227fdf842e426001e855103b942dde705ef	46.55%	Heodo
2020-10-21	33297781109842.doc	doc	71c25e3712abdd3d405b0a43f2819fb51d16dd9bf3c5fd5c9ecd04b028240533	47.54%	Heodo
2020-10-21	QB4041365300ED.doc	doc	99e0cc7017a32fc566d969c88fae5cc8db236858e93bfe804e18a1c4a08e94e8	50.00%	Heodo
2020-10-21	FILE_PO_10212020EX.doc	doc	850a811a1e29aafadeaca369778609e35c77edcb8588f69f153e44195d40d6b5	n/a	Heodo
2020-10-21	BAL_AP6826894210CK.doc	doc	b886042bae6dcbb3ff1e2343630f7c873d2fedbc6b59147c40346b16f69c8603	n/a	Heodo
2020-10-21	FILE_81133136.doc	doc	1c69c8db95ce9e60d2cd1b61601b96a3a5bca68602f2da10fb5cbcfd2e354401	37.74%	Heodo
2020-10-21	REP_11KD976PLADX63.doc	doc	844d9efee04baab149ff86c31963c101151796f861eb84cd816fde655e3f7f78	39.34%	Heodo
2020-10-21	FILE_9871268479985468777697823.doc	doc	192d1f4fdc36c10af1e2e207ca659c5b7549c01b189257a12f226c42a6c6b4cf	n/a	Heodo
2020-10-21	INV_PO_10212020EX.doc	doc	fe1e5c66a4990cc515e5925db68def9f29f1893d9c6d3fa6b47e05f5c5f618dd	46.55%	Heodo
2020-10-21	GVU_100120_YIM_102120.doc	doc	d8d4feb29b46ade146a7b8343070d2a975e4b0e186ca6aac31ea941e46a7af73	46.67%	Heodo
2020-10-21	DOC_M5HNPGFG.doc	doc	927877d8e5e4459c44bb91a386050f2aee647421c37048212690b5caa0fba080	48.39%	Heodo
2020-10-21	DOC_01177253.doc	doc	a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225	n/a	Heodo
2020-10-21	DOC_PO_10212020EX.doc	doc	730dc7281140bb144e159ad27638ff4f4d3a021999727a26b7731250343a3f76	n/a	Heodo
2020-10-21	EUJ_100120_KNM_102120.doc	doc	614bbd10017422522d46a734ed08de066834e449d5802b036b0231a39b0c043c	34.78%	Heodo
2020-10-21	Z_SKZ_100120_RLR_102120.doc	doc	afcfe7ff49c2df7f47347c4c49d64ac3f027b1c79f5d090a0daf526fd65d859d	41.67%	Heodo
2020-10-21	DOC_EJH_100120_PZW_102120.doc	doc	8db61b871aac2949105b26c1ca2a22579e3b3d6e99aab20279c3bbea5dc87b8b	n/a	Heodo
2020-10-21	EUNQWDUUJ.doc	doc	89e10dbffeb48b429f49468630b9b93f988c4ca3e6a7de17367b398447309bfe	n/a	Heodo
2020-10-21	DOC_NHZ_100120_TTL_102120.doc	doc	7b59e4314d2b1bbefd045815d54be5bd19315bcd13e3de6816a36bfd0930e032	n/a	Heodo
2020-10-21	DVW_9ROLJCBGACE.doc	doc	cd0c0ee5979ebfa7ed73a40ee1f879f2b65cc57ed38619fc4f7e186c15e54128	38.89%	Heodo
2020-10-20	INV_PO_10212020EX.doc	doc	681fa75f785a2b6eede8e0045ce0ba666fc0be736b8bba8d23f474b0bc400a7f	39.62%	Heodo
2020-10-20	BFM_100120_NVN_102020.doc	doc	8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915e	44.64%	Heodo
2020-10-20	INV_0127119502982281079558.doc	doc	549072b3e94570b866d20997383d99b1b2a7b9a014cd41ab974cb0853307058f	n/a	Heodo
2020-10-20	F_BR2752968698ZG.doc	doc	bcdb89d7d2d271835e7e1ceff879417bb8a1f2fca4c85f072c93144e846b39a7	45.90%	Heodo
2020-10-20	INV_13930156.doc	doc	0cc0e53f93e28f521e6741dd09848e105ecaa03babb51229e44c7bf9bf6676e7	n/a	Heodo
2020-10-20	BAL_SJ8875551589LW.doc	doc	bab707f338d98b9ae46b7775dfe552e80b39498b2703f95077f0ff3b2b622790	40.00%	Heodo
2020-10-20	FILE_PO_10202020EX.doc	doc	2c098fc9ec5e14a94d73127218496cc9200f1d77c6799f35009b67bf45313451	41.94%	Heodo
2020-10-20	F3WZXYGX1.doc	doc	621a14c4ff1196a5f40b5abd1aa47738a2855dcb1ac4f16c7e577d6f53935c08	39.62%	Heodo
2020-10-20	26461571.doc	doc	61706a00aa6fab85343ed0d7b0505944440912b170374796f8a1df54ff125836	n/a	Heodo
2020-10-20	EG4846779844HH.doc	doc	92a7b39028f2bcf83296d5e09e65311b2f58f18fae952f1729e0f6cee6792754	39.62%	Heodo
2020-10-20	FILE_ME6119832251CO.doc	doc	65e77a7fdaacfc77d7798aa1fb60ea3b8928c8b80889cbca1d664af5d26e2c5d	n/a	Heodo
2020-10-20	DOC_5105354851948.doc	doc	b5933f1e9cda9927074ef0e3a34160c567aa03c76cdd96571e25349448e1a7c4	39.62%	Heodo
2020-10-20	PO_10202020EX.doc	doc	dc4424c660cc882687e934977d90d1e7725602d1d702466653d1968d2ac1a066	38.98%	Heodo
2020-10-20	I_HJH_100120_RWZ_102020.doc	doc	4deb00a4faf8cd846d7255a2cd780aa8722c1a13e7a38efefeb981758a881d2d	n/a	Heodo
2020-10-20	X_RD2047842480XT.doc	doc	937cee303cc38262306e3f7b0d0203d2dce7610f5fbbcfe8d5799e1866704287	38.33%	Heodo
2020-10-20	92063633.doc	doc	534d9419df41c2350d681ec677b6673e97f1177d08bd6650094fc6dfd010ad6f	n/a	Heodo