URLhaus Database

You are currently viewing the URLhaus database entry for http://a1bazarbd.com/application/lbe1qva29r/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	725405
URL:	http://a1bazarbd.com/application/lbe1qva29r/
URL Status:	Offline
Host:	a1bazarbd.com
Date added:	2020-10-20 20:29:07 UTC
Last online:	2020-10-23 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-20 20:30:05 UTC to abuse{at}hivelocity[dot]net)
Takedown time:	2 days, 15 hours, 30 minutes (down since 2020-10-23 12:00:51 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-21	SM_10009201605.doc	doc	ecd75e84e671beaff2f01378288b8c7bdacfb9d9cfbe9a03e9fe43cfa69eeeba	30.19%	Heodo
2020-10-21	BAL_EH5YLIE6GHSAIMTY.doc	doc	f168ef97aa8cb399a6f327fb6a301f7ae5e115c7ed1ad5c8b59819663bebd7e2	n/a	Heodo
2020-10-21	Y_65226888.doc	doc	afaa3e615a4cdb709e0914026d5c1d07892391f9e7a2540e8f35da1b810515da	24.53%	Heodo
2020-10-21	INV_20154035.doc	doc	503fdf65f1c044ed826175a175b354f7dfb32e1fb66e83065827d7365f1b9dc9	34.43%	Heodo
2020-10-21	INV_PO_10212020EX.doc	doc	abd94a7b58ada746b22d9d6a4ef2b3847deda4d5569325459951c0c7f3b2a355	33.96%	Heodo
2020-10-21	INV_QQR_100120_ZUY_102120.doc	doc	52caf1a070aa97f41dee32688e691efd22f50efe87a8f77d4a36a28281c19136	30.65%	Heodo
2020-10-21	FILE_89855942.doc	doc	ad28c5637cf46e7d7e2c3c841334cfac3be445ea84fadcfa2b42829a5718fbe1	n/a	Heodo
2020-10-21	PO_10212020EX.doc	doc	ce72abdb386adab53d71d068388c21107144e7d9c1acfa2f898d0ce6d7b2acef	n/a	Heodo
2020-10-21	REP_42128170.doc	doc	f93730c27fbb9a6c6cc64e5f4d9127854a0c11d165e699569dd0828ebee3ec4b	27.42%	Heodo
2020-10-21	PO_10212020EX.doc	doc	b27ba8b639475544466c43ebd426609308dcc0c1f4842f45627c564e96678335	27.42%	Heodo
2020-10-21	BAL_PO_10212020EX.doc	doc	d6edabb30c96ad35f08d16e274d639b6a5a5208e7b35167d56392a44b3842599	27.42%	Heodo
2020-10-21	R_QVQ_100120_OEJ_102120.doc	doc	e88388bec3164944678627db062b753e76b6f7f710a9fabc43dfe69e7df2f366	27.42%	Heodo
2020-10-21	LY2207473795PC.doc	doc	1865098fcd518717e48cae856ca1cb02c85a12a37eac4934fe3ec1a7ac2040ac	25.81%	Heodo
2020-10-21	REP_21180088.doc	doc	3c7b26a013548adeebf30936453b373c34b920df67fb1b135775f0ea8ba32341	n/a	Heodo
2020-10-21	INV_1323930224700.doc	doc	71c25e3712abdd3d405b0a43f2819fb51d16dd9bf3c5fd5c9ecd04b028240533	47.54%	Heodo
2020-10-21	KOT_49929463.doc	doc	988037ab30e7fefdcaff766f160658d982522969787c02fddfd09ce912573dc1	n/a	Heodo
2020-10-21	PO_10212020EX.doc	doc	7c22299823a1e18a0b708214938185faee0fa695ce9e511d56cfe81cb1aaf58f	50.82%	Heodo
2020-10-21	PO_10212020EX.doc	doc	7afb38a81dfd3bd90de1507b16ccc5ca62644ae6420c8701cb9fefad55f4309d	n/a	Heodo
2020-10-21	FILE_3BCD7B8H31IN7VZ.doc	doc	ffb659e12aeea991c1bca3702e7d3c01cb589251885cd53c4025994a5e3e1309	50.00%	Heodo
2020-10-21	HXU_23169347645235902984.doc	doc	66ff2845aa49250c6a643867ff07164647006a80a5fadaddb5d41c99fd6b9452	n/a	Heodo
2020-10-21	INV_283761969947889748806.doc	doc	c75ff84fe40e2bd56dd64dd2a51d43de4ae2eac42c9efb6df985ff4244f7f974	n/a	Heodo
2020-10-21	INV_QRK_100120_XKN_102120.doc	doc	fdf5102af9db589345a5c7d4e747c98489a7341147058b2a42e337a03fa62baa	n/a	Heodo
2020-10-21	INV_63I7AAIWD7B99V7.doc	doc	192d1f4fdc36c10af1e2e207ca659c5b7549c01b189257a12f226c42a6c6b4cf	n/a	Heodo
2020-10-21	EY6459276550ZN.doc	doc	ff560f270317afc9d31e1eae55c277c99bdd45f9fbd3a2dc44e8929a25ff065c	n/a	Heodo
2020-10-21	GL_23NLIBDSSR5.doc	doc	ef31028a7bfb047b5233493c6b8e14ac6fa49ac6d022b6e016a22276a4be732f	46.67%	Heodo
2020-10-21	PO_10212020EX.doc	doc	927877d8e5e4459c44bb91a386050f2aee647421c37048212690b5caa0fba080	48.39%	Heodo
2020-10-21	KR_PO_10212020EX.doc	doc	a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225	n/a	Heodo
2020-10-21	IMK_100120_PLK_102120.doc	doc	d6053ab1f8a8801a71b22ecf5257f4cdfee7138eb99345ad33ff208e175aac0f	42.59%	Heodo
2020-10-21	DOC_OEFWPKFJBW8PC.doc	doc	1704417eb4662953f9c73cd7ef716872d3a364dd78aeb7418219a4960968a592	45.16%	Heodo
2020-10-21	DOC_QEX_100120_EZV_102120.doc	doc	8db61b871aac2949105b26c1ca2a22579e3b3d6e99aab20279c3bbea5dc87b8b	n/a	Heodo
2020-10-21	MSA_FYF_100120_HOT_102120.doc	doc	2465db836fb8ce33c72ba9c55528a00a290b770a2bb977ecaed539b453c1211b	38.18%	Heodo
2020-10-21	28135951840520.doc	doc	7b59e4314d2b1bbefd045815d54be5bd19315bcd13e3de6816a36bfd0930e032	39.62%	Heodo
2020-10-21	V_63612587.doc	doc	a78451771b5a8e66fd912d10f9b621e52239473334785ec68755db5e60594ecb	n/a	Heodo
2020-10-21	WU8F3MH05TO0WW5.doc	doc	cd0c0ee5979ebfa7ed73a40ee1f879f2b65cc57ed38619fc4f7e186c15e54128	38.89%	Heodo
2020-10-21	YNR_VD3G3J2PJRS.doc	doc	583a7bdb6f07cd4359433a437ffcb7f9dbe1ed88b0a51acfe8ebd88294c940d4	40.32%	Heodo
2020-10-20	DOC_PO_10212020EX.doc	doc	8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915e	44.64%	Heodo
2020-10-20	N_PLNIOX3CX.doc	doc	a22833c512c589e2bd324e3f7287dbb7f27538e8344cac7ec47568883b61bcd5	42.86%	Heodo
2020-10-20	EQEM_MM5449933564LD.doc	doc	1665c4babbff20f237f5f2c33bfa5ba5ee0b63e29c280e51090b1d2ef3bc0fcc	43.86%	Heodo