URLhaus Database

You are currently viewing the URLhaus database entry for https://ashkansafaei.com/dup-installer/esp/KwdoQJJRr4wagnf/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:728775
URL: https://ashkansafaei.com/dup-installer/esp/KwdoQJJRr4wagnf/
URL Status:Offline
Host: ashkansafaei.com
Date added:2020-10-21 10:46:07 UTC
Last online:2020-10-22 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-21 10:46:11 UTC to abuse{at}fanavaidc[dot]com)
Takedown time:1 day, 6 hours, 19 minutes Poor (down since 2020-10-22 17:05:29 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22file-20201022-1368375.docdoc 1897a70790c07d00de31ac18813c0c1c5f3344f9251634f3e8152603cdf6d13dVirustotal results 37.74%Heodo
2020-10-22UNTITLED_20201022_726.docdoc 536230d01e577e98aed429debfdd2232c6866262a424e51086e7f9a09315aafdVirustotal results 38.89%Heodo
2020-10-22Rep 3138846.docdoc 33d8282536536c651d28cb08401045d2a01d13e2606369788ecf8ffe2136a4b6n/a Heodo
2020-10-22list-20201022-5744.docdoc 00ad72bb1e58786803aaee6dfa9219f44508be27c7806c618bbd5928d4c3b647n/aHeodo
2020-10-22MES 2020_10_22 378128.docdoc 41b98ae44f02218d483e91575b218e2695bd769beb1fb3bf346e64c6704db4f8n/aHeodo
2020-10-223473.docdoc f1e431fd81e02e7fcad767fa5c94f6e6a6091d759579dfbbb73ef2f3f8a2ccc9n/aHeodo
2020-10-22Mes_20201022_219968.docdoc e2b2399627f40dd364d961bfd6869f3b5feec404cee4269c78c65b253635b6a8n/aHeodo
2020-10-225293_2020_10_22_5702.docdoc e7730e780f02da8d3ddf075b379bddf96077fcda744be9b8ed7f7cfe955a1323n/aHeodo
2020-10-2201673H IPH147.docdoc c67df1720ca49472579f6d51dd602773181f6d4a20a3cb3743f0aa63b62a1901n/aHeodo
2020-10-22list-2020_10_22-6335.docdoc 438816e26c1c01dc30d1e4cf41c81ea57cba45585a6b1911541e7500d8cd7d29n/aHeodo
2020-10-22FILE 2020_10_22 HO061.docdoc 0f2bcf1cb715e9a6d68742144e1873d1b155918aad4f06fd6f1400c1652e6907Virustotal results 45.90%Heodo
2020-10-22Attachments_20201022_SFJ244.docdoc 28d7df1cfe3f4b54de75d26a0486e3119953861d40f1079fe891aa4f188d4804n/aHeodo
2020-10-22mes_2020_10_22_62331.docdoc 01ff0e16a69fb1f02f3fc51b9910ecf23c3fa2345da49c19b8ecafe7d7c4c5a0Virustotal results 45.16%Heodo
2020-10-22955298 2020_10_22 868.docdoc 8b92f8e7b69533e9a25724f3ed4647b004cc55014bbbc598c8ef4abc0556c425n/aHeodo
2020-10-22Attachment 20201022 9987.docdoc d698f9999a19af7a26cc57b993a61eab7797cd50b9d595533f4a42be249b72ccn/aHeodo
2020-10-22Untitled-8574977.docdoc 8982d65c66f1a925e76a653c8fcfeba4de1e3786f54f3f991edc5d8fcd508560n/aHeodo
2020-10-22file_2020_10_22_223477.docdoc a76299d22a2643338172ebec3e27885892ec71198d34b1d8e32ad7fded995701n/aHeodo
2020-10-22Mes_2020_10_22_91496.docdoc 01776da98f2ac077981a29489f399705ddc19dcfcf9584190b858fa1f894a6edn/aHeodo
2020-10-22arc_20201022_KM828077.docdoc 051445a7b1b9b0f6f20f835fe8986c838a361380fe4b78f774869d8a77b3a192n/aHeodo
2020-10-22rep QJZ2769.docdoc 7aa11ae6ea89e8c71406781ad7fc5d3079dc2943d3bbb82615eb3df9644d4722n/aHeodo
2020-10-22UNTITLED-8677.docdoc c7a85af45b6b4f958e7464875678139be6209edd9d863301247c0c4469b29428n/aHeodo
2020-10-22File HR408.docdoc bc7e498a2c13d46c6d7325bef302aee156605e0e5d97b88c85fae9aff1909f6fn/aHeodo
2020-10-22mes_890412.docdoc 801d2ae370c4e9631b5740affb87d1628701bd436a299ea95ecc2df89a18e164Virustotal results 54.72%Heodo
2020-10-22Untitled_20201022_ZVL4020.docdoc 44825c2bae3d56eabd7956d7f042f944a78988f626e43a3e94204ace8c69cbden/aHeodo
2020-10-22arc.docdoc cdbf8419848b3e25541c5b07f18e858bfbf617cb2243f88043155b945098a90an/aHeodo
2020-10-22Doc 20201022 SBU471.docdoc 9a5f7fc561d1559bbe98baf1125219a78c0a7b1eac2b2ddbed4d43a7e4b810b7Virustotal results 51.67%Heodo
2020-10-22rep_YL86997.docdoc 90aeee97e0274703c7aaaebf22decaa0c4c4e1c626f2bb0713892ee662256842Virustotal results 53.70%Heodo
2020-10-22list 2020_10_22 I098.docdoc 6468266c5994c400937bb96f344756a764ad1fcf5b00cc3135183b89bc60eb4dVirustotal results 49.18%Heodo
2020-10-22rep-2020_10_22-VV751.docdoc 9087f71d3212d9993850675dbb49738d95935583898777aee073b8fb35cc3150n/aHeodo
2020-10-22Rep_6746524.docdoc f3cda1830eb3782eba4b5fd88c607cad17aab9e75cfb871fde33247cfa1176ban/aHeodo
2020-10-22MES-85785.docdoc fe6f81016020f3eec5b5568f60ee0c8468c2fe814af9eaaf8976b3df45d83e91n/aHeodo
2020-10-22Untitled_2020_10_22.docdoc 1789852f3ddb4d213c5808af892d7c5d8585b400ed67fa5e0ce8e35f4fc293e2n/aHeodo
2020-10-221372645 20201022 XCQ560.docdoc ccda7e2a1aa2d6ecff5cfbf3878c3146d9116ef8a288f4ad6e2763ea9f7c46bdn/aHeodo
2020-10-22arc.docdoc d8eae12f16be0cbadb9af8719924b8d4f4300222594c27279dede135d2f8ec2fn/aHeodo
2020-10-22Arc-2020_10_22-49738.docdoc 4533627b4348507c5c05eb7090b96e31e60b845f30f585af35267657efd11cf5n/aHeodo
2020-10-22UNTITLED 20201022 953608.docdoc 554ff1a900c5b97921e83840914338e5cf8141643ab9e5a4e3a5744599c8850eVirustotal results 50.00%Heodo
2020-10-21list-20201022-HSR884857.docdoc 12c68e1e99b281571fac81330a1178884fa80cd2487d5687440f1df72e8fe9f6n/aHeodo
2020-10-21155978-2020_10_22-BQ7933.docdoc a6a0435d980b4a2f75c95757aa7d6b7810c901e612b8d6414f8dee775adc4dc0n/a Heodo
2020-10-21Doc-20201022-3093408.docdoc 917994ccbabf6d6480a31a433491e371a63fc34f4de8fb8fb53fa5dc8fad5bc4Virustotal results 44.26%Heodo
2020-10-21file BY156.docdoc 3a50c2c4c531d62cd92b9c799af0e0deda105f9690655f85e403d1a54cd14416Virustotal results 45.61%Heodo
2020-10-21Untitled_20201022_435397.docdoc b0c85dd1a6b5d4bfce3d3c6e43835a5620a90ecd6c05b9ede24d42a7e5aa3f4cn/a Heodo
2020-10-21Attachment-872647.docdoc 42538e931722bfc76683ba8032a3f9771599b561326a105c20053210ee28d4c2Virustotal results 44.44%Heodo
2020-10-21file_20201021_02115.docdoc 382b1a0f067ecc88abc364985124f68c71a5797947e7036e30539e67a7850666Virustotal results 43.40%Heodo
2020-10-21list D2737.docdoc 74c87529363b4abfb536c94df924723c6d3a0e119f4ed159c5fe95ab3e7d0349n/aHeodo
2020-10-21ARC 2020_10_21 6487.docdoc 53a72171110a18e1b7b4302fbff1f54163c7e209cd54719f1956d4fc1324559dn/aHeodo
2020-10-21Untitled-2020_10_21.docdoc 609666e54bf1d06e8f14165ad4f9e4ab933bfb39a33d324371a8b6a4b9c8b4deVirustotal results 46.15%Heodo
2020-10-21file CGE6375.docdoc 3faafdedcb7f8728f2193ff7669464d51be04943a9c2d2e3ba497ffb2df39591Virustotal results 45.00%Heodo
2020-10-21LIST-20201021-BB05955.docdoc ee0a2fe5c7b689bc059cf0849b40346779fa307da94bee18344cb200aa5f0315n/aHeodo
2020-10-21Untitled 20201021 1407.docdoc 7d812b3579d4c3f9b7d05487763dd9253ce70bebca34b9d46735f76435e3fdd0n/aHeodo
2020-10-21Mes_1066724.docdoc be8592fe40eae75ea31c80082aeedfc8b44d7b7ab759e11d8dd723b4bfdd66ebn/a Heodo
2020-10-21Dat_2020_10_21_3832.docdoc 9f892449d9dd2097e8a1fffc51fb03215b306bc4cd0d8a1399d936a0cf4477a2n/a Heodo
2020-10-21list_61447.docdoc 1c9f16cb8efe6d27052e6e20471366e7516176926ff0f7c04038156016be4b0dn/aHeodo
2020-10-21Arc_20201021_33545.docdoc f0415058ab469e03360e6156b90c73936670b6158a993f6060f7220ffa13bd9dn/aHeodo
2020-10-21FILE-2020_10_21-9440.docdoc cb2d5bca61f30f2981328f2f022088c7e4e3d4a55b67b51647dc13f9608209e6n/aHeodo
2020-10-21dat.docdoc 9bef99c8e12327ded16455d788af6804370777cf4cdf3d260f60e189cec14401n/aHeodo
2020-10-21Attachments 20201021 038.docdoc 1eb788a6417ddafd7915da6bfc3bb6867c6a567fe83a2104b67420fa919935fan/aHeodo
2020-10-21MES_20201021.docdoc edf554e5aeb28ebb63fed5c33e0bdbf9c41029ad8c0f5d8d53af19aa7b523f6bVirustotal results 31.03%Heodo
2020-10-21Doc 20201021.docdoc b269785cdb8cddfbeb1e29850757483c8b6c922351f2da8be01184b9bb4ce3cbn/aHeodo
2020-10-21Dat.docdoc 881741565a39d73570fb7d87b93748e3cbbf48fdae4e6d4f005df02ea864d60fn/aHeodo
2020-10-21File 2020_10_21.docdoc 6531b0ec21c07726a5ffd07358273a78cff9d8df4475f1bf34e27d1b8214dd63n/aHeodo
2020-10-21MES_20201021_N52841.docdoc 07bfe70b006fae4c1bdd4778f53370a428d8752e8e40fe8eb644ba21f3e1f542n/aHeodo
2020-10-21Attachments-2020_10_21-44955.docdoc 7b379e5dd60536e28d876fd99a019dbf070807482a1aa9e2f29ce9957914c93eVirustotal results 32.14%Heodo