URLhaus Database

You are currently viewing the URLhaus database entry for http://ai-hut.com/club-treasurer/azfnbuw5v/qt47rv23bzetb/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:731617
URL: http://ai-hut.com/club-treasurer/azfnbuw5v/qt47rv23bzetb/
URL Status:Offline
Host: ai-hut.com
Date added:2020-10-21 23:35:08 UTC
Last online:2020-10-26 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-21 23:36:24 UTC to abuse{at}alchemy[dot]net,dnsadmin{at}alchemy[dot]net,support{at}vitalix[dot]net)
Takedown time:4 days, 19 hours, 53 minutes Bad (down since 2020-10-26 19:29:56 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22SBMD_24616459.docdoc 838408d31e494e72b257feeec73407a2f778e6ecc47754ae16af0290515dc9fdn/aHeodo
2020-10-22BAL_TS8750143566PN.docdoc 7870bb6e747db99efe1cf3586ceffa06734408184572a3d7604608401ae9e2a7n/aHeodo
2020-10-22FILE_4426560965265696319572.docdoc 143a635255333363ae3017af09505f23784d4fe518164c2c25d97f8b8ec77e4an/aHeodo
2020-10-22FILE_CSE_100120_SXD_102220.docdoc 1fe29e28174521c55bb6e73db876f3e783ba9eb0905a51be0d2ee6254bb903e4n/a Heodo
2020-10-22BAL_478227050867168196.docdoc 9efd979157de0caaf41c017ec54c0164a339103e2a19255e4e8666024d477fc7Virustotal results 40.98%Heodo
2020-10-22WMB_100120_VUJ_102220.docdoc d718bafb38535e5c1ca6fb484a744078d3ff431987ae87ce1682bd38f8aa350cVirustotal results 38.46%Heodo
2020-10-22INV_CXU_100120_ERZ_102220.docdoc 9240c94cc6ed0ba3216b915f27c3b8ed8995206803a332f664297fa4d5e1c72cn/aHeodo
2020-10-22BAL_JM6562921170RT.docdoc 57d9d932f3b8454a13cf0936d97745f31ce5d791ac52d8633d7e9ca8c505b574n/aHeodo
2020-10-222HLGB98.docdoc 130b0d52b8df9059f2964dae24544b8b6f7b9d9c2aff69e233802076bc6f3c0fVirustotal results 37.25%Heodo
2020-10-229489608784.docdoc 016ee663cf0779e773c6fb5644bf4f69f509afe3733132a014cc9fb1c777dcdfVirustotal results 41.67%Heodo
2020-10-22DOC_PO_10222020EX.docdoc b56dbb47b8ccce583801528377d4979222c7ccdcc3bcab559a7fa6469fe02008Virustotal results 38.98%Heodo
2020-10-22INV_61822232.docdoc 39f9a4e83cf3f6afff9791b1108e352eca518740f2cc4c2ecedf3c42b886a9dan/aHeodo
2020-10-22FILE_7071467203940.docdoc 86125d06c4642f375152fc3dad1cbd7d0e7aafa981fd6e2174ec2f19dd1b91faVirustotal results 38.89%Heodo
2020-10-22BAL_PO_10222020EX.docdoc 1398dfcbea47214d59bb327957bac69b2db7c06a50da13399c63aa797fa5fa9bVirustotal results 40.38%Heodo
2020-10-22DOC_10920164.docdoc 4d021161076f99a75dfb666d3e39d11b00bd70327c45d3d5b013c27c361dd74bn/aHeodo
2020-10-22AIF8AIUK1U.docdoc b4461b5c2c529cceec7d5f7ca41dae1c6f767b6fb54c560269f4ddd7d64878eeVirustotal results 43.33%Heodo
2020-10-223015445049116280951.docdoc f84f03da92518ba991641be1e7096fef4fa7914d858e207b1a645fbe7c2291eeVirustotal results 43.33%Heodo
2020-10-22REP_VMA_100120_CFF_102220.docdoc 06dc08ea7da16ee44235f6f6009c538b3db08f6198613fbf8c66be4446da7e6an/aHeodo
2020-10-22SCAGOZ8RJT.docdoc 84571ac969ddfed387fb68ef51f1c23448f401e13f42b3cb3c54e42963682d9dn/aHeodo
2020-10-22REP_XC3979083008ZF.docdoc 81212e2cfa49f33852afa0465e2c4c9fd4a245340e8847009dd5d40bbb0f6751Virustotal results 46.15%Heodo
2020-10-22GLR_18009134.docdoc 9c0cb6e2390b59f199cd4dfbca2d6eb2106969b29ec8df33e4987474b80344eaVirustotal results 45.76%Heodo
2020-10-22FILE_NGV_100120_PWM_102220.docdoc c41bcade49f3e2413b5d95ce09c2ecf30c21b43ab6b306206b9b737f1cd10450Virustotal results 42.62%Heodo
2020-10-22IY_MWQ_100120_UUQ_102220.docdoc 2d750c754eeb0df583b0daf91ea2a674ecf074b4a8ae2a814169f7064f197621n/aHeodo
2020-10-2278121231.docdoc 4224abe48af46cd9b10241d21624b0705482576c13400089ddc0e0b9f9ca0714Virustotal results 45.16%Heodo
2020-10-221591485112818618.docdoc 00b5ed9d27b648625d7d287b5073938811a0a2684b6ad6351ca8b0e0cc5f1a54n/aHeodo
2020-10-22DOC_603107890.docdoc b77d0f1db9365317aa34125ce7ef0a68615d90082791c7d921d7e5173bed6d8cn/aHeodo
2020-10-22NL_MTG_100120_ZNI_102220.docdoc b39c953e5621fd7b9af004e2d9195a7a37f9070b736007d74635c5d36d6ccd04Virustotal results 42.37%Heodo
2020-10-22QXJF3BOEDMJOV.docdoc b6055d889e7ac86545888a5da746c4c231ead0afc40a036c3927188e99d7ae9an/aHeodo
2020-10-223L1PC3Z8LW.docdoc 72260fddfa04793a225f545c6e2e63e49eae09375ed3a8a64a5fd3164804be5en/aHeodo
2020-10-22Q_PO_10222020EX.docdoc 0ed13bfe440f265ced87a03e27334e5bb59ad3d45b345e526577b6d168922975Virustotal results 45.16%Heodo
2020-10-22J_47797481.docdoc 3d6163faaf177f1f2cdf65a19ecd3dd1a5c6aaa5e78a93dc20703729171efe7dVirustotal results 43.55%Heodo
2020-10-22BAL_ATM_100120_CTZ_102220.docdoc d810adecb2a17cc42025465a49799119896605f16af88bb79a6342746b7cd8d8n/aHeodo
2020-10-22DOC_68023455.docdoc 2eef34160c2eb32badd3a16ec6ca60426491b8c7d8e986350d5646a66074e640n/aHeodo
2020-10-22BAL_PO_10222020EX.docdoc bad9235b37efab34f7e6cf91e6a80803fdcf8903e2c61d0d6c1f5f9d773da112Virustotal results 48.08%Heodo
2020-10-22RZ9966187330PE.docdoc f00791295a21f7fea2b5a3fc6f14be08b6182388080f8e0666bc87ef8201a362Virustotal results 50.00%Heodo
2020-10-22FILE_YPO_100120_TRI_102220.docdoc 2bfcddec3862fcbe053dd6a0d03d5987ccfa1942950e8c9bea56fa41f6fcaa5cn/aHeodo
2020-10-22RB9313289500MJ.docdoc f4485fe8056305da48ac8453716ea0fa9c6633da1a1f87e01dae3908da1bbbe6n/aHeodo
2020-10-22FILE_PO_10222020EX.docdoc 056f25e8944119ad3d9d651d77cc32cef6621c5cb3498b47161738be7aff416eVirustotal results 50.00%Heodo
2020-10-22PO_10222020EX.docdoc 775be0a86b7a5d27adf04eb982cbd8f223f06ae88dc5f6a33a26774d707f7bcbVirustotal results 48.21%Heodo
2020-10-2220532314092.docdoc bfcf012480833949d47a52c43762fccfd26a1785b134d1da9a84a2f91bca0778n/aHeodo
2020-10-22NGU_PO_10222020EX.docdoc 2622c411514e2ebeb404ff72a11abb8b36da194d0f09dcc95869802a01cf4a20Virustotal results 46.67%Heodo
2020-10-22REP_39976805.docdoc 29747a11e9ffbd0668f9b880137f1051a27677c4f3bf0a17ead5299fb5857946Virustotal results 46.15%Heodo
2020-10-22BAL_PO_10222020EX.docdoc fe681aba1adcf7e82fd0daedeb3af000c89d34693b1dd0022c273e936ed660cdVirustotal results 45.90%Heodo
2020-10-22FILE_697853200952981521967.docdoc 8cf9bf37fe3de456cee48cd50ac6487278290ce4038eee214389512625297016Virustotal results 47.17%Heodo
2020-10-22A_77694847.docdoc 9b4d04d1dad15a8a798ceba5f12e03c81a04335dca8703f2e4790675688590aaVirustotal results 44.26%Heodo
2020-10-22BAL_VO0840054289YF.docdoc 95c62759d32e2a426433130be7fc1c17a3d3787359258f3af33f61760463eeeeVirustotal results 43.40%Heodo
2020-10-22QO6674798096TS.docdoc 476b69835ad34811317226c4b0d9c78525fbb9770f4dc6c649da167a65359582n/aHeodo
2020-10-21E_WSQ99AT31WWT6.docdoc 3af63f662ad3afb788f4f65538788a97811e2a45d869bf83d5ac6dfa9a2251e7n/aHeodo
2020-10-21UD7749720141FR.docdoc 6e31c3ec9f97261ccaa0df6af6c8492d10d748514620ec9c351beb1436269e0bn/aHeodo