URLhaus Database

You are currently viewing the URLhaus database entry for http://kevinley.com/lib/swift/rj6vvh4262m/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:731933
URL: http://kevinley.com/lib/swift/rj6vvh4262m/
URL Status:Offline
Host: kevinley.com
Date added:2020-10-22 01:02:05 UTC
Last online:2021-01-10 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-22 01:04:05 UTC to abuse{at}nframe[dot]com)
Takedown time:2 months, 20 days, 12 hours, 33 minutes Bad (down since 2021-01-10 13:37:29 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-22FILE_ID4559901971QP.docdoc 838408d31e494e72b257feeec73407a2f778e6ecc47754ae16af0290515dc9fdVirustotal results 42.00%Heodo
2020-10-2290592624.docdoc 43fdca763d6c5a29b37caa60b67219e78151ebfe7fda9129ad8dc96f91c1a990Virustotal results 42.86%Heodo
2020-10-22Z_BFT_100120_FRF_102220.docdoc bac7b15c1cc9eedfd4670ffe4383b4c9562b04a5fb2cece968408833f933a765Virustotal results 44.26%Heodo
2020-10-22HPM_TT5287610278IL.docdoc a479d5df4923cf3d9c170aa218de43da798baeda6247d5f044fe539826c58cden/aHeodo
2020-10-2291L3GDMYK3SB.docdoc 09ca823f72332cc93ad72355e7aeb4e5349ff3b196300906051fc3b0335da612Virustotal results 44.23%Heodo
2020-10-22XE_HV6QEQGAI0.docdoc 7726801f846f3a79f073244ea0ffbfbed6ee847b498b4ae15f94a1dc09489fdcVirustotal results 39.62%Heodo
2020-10-22FILE_ODF_100120_BWZ_102220.docdoc e3cd7451ef720df2cbc18258725e7d4e5b881f0ab970b5d1f9343c1d9754d2acn/aHeodo
2020-10-2231793519.docdoc 9240c94cc6ed0ba3216b915f27c3b8ed8995206803a332f664297fa4d5e1c72cn/aHeodo
2020-10-22BOF_151027572229335.docdoc ac0f321bf0c06b4983efc4726ccb54b8e31995d53ffef62f095057770c240829n/aHeodo
2020-10-22DG724B4.docdoc 64043ad11e076ee6e0b96158f87f864ca48289e112734d2b59678e752d176307Virustotal results 37.74%Heodo
2020-10-22E_64613790492465776.docdoc cda2a4d05c53cff76ef32a29480efec51818dc2f26b02999980a33f1051d732bVirustotal results 40.32%Heodo
2020-10-22UD3494821970FF.docdoc 2337d245436dac2318a71b141e75aebfd4c1e83e960db9e0b032909fd991dc44n/aHeodo
2020-10-22FILE_07402495.docdoc 2012a08768e19ce57c0229fe901f5710998a91d936f73c4ca838dab581c5010dn/aHeodo
2020-10-2289731471.docdoc 1398dfcbea47214d59bb327957bac69b2db7c06a50da13399c63aa797fa5fa9bVirustotal results 40.38%Heodo
2020-10-22XWG_100120_VBQ_102220.docdoc 27a2f3fc365f4d0624325a33456e529aa149ccc2488338c41ebe8971c1bead0aVirustotal results 57.41%Heodo
2020-10-22BAL_10499585.docdoc 2e45410e293f870df9a2729fd8d3e0aabac8b6aa79365b502a849f90ccb67b67Virustotal results 45.16%Heodo
2020-10-22ITHN_PO_10222020EX.docdoc d7aaad6773873f2f9419d99407b5160aef1799db14f54629f82d831d54c25806Virustotal results 46.67%Heodo
2020-10-22XJJ_2388800604384.docdoc 6b40e4dbe404cb318f67b97e169ba8742307b6366d824567b5b76f81e355c04eVirustotal results 43.10%Heodo
2020-10-22INV_3915953806367219539.docdoc 84571ac969ddfed387fb68ef51f1c23448f401e13f42b3cb3c54e42963682d9dVirustotal results 49.06%Heodo
2020-10-22ZH1772927448MI.docdoc 0270a190a68a88ef9a11d8bfb5a6d38256db6f38774772426cb5a578d2f981daVirustotal results 49.06%Heodo
2020-10-22H_PO_10222020EX.docdoc 9c0cb6e2390b59f199cd4dfbca2d6eb2106969b29ec8df33e4987474b80344ean/aHeodo
2020-10-22Q_PO_10222020EX.docdoc 7eaf0df9dd2a33ee958384a9472366f58f1c0a204360efea6a7f8b0d298560d0Virustotal results 45.00%Heodo
2020-10-22XP_G09UQF6H247ZBWD.docdoc 7bfb9f41a2dc364df62a43b35f7df6f6ff2fd74302c713e8fe91e00a83100dbeVirustotal results 41.67%Heodo
2020-10-22D_NES_100120_BKZ_102220.docdoc a3a0cc50da6331891009253878be3d1a6525255acc59600fb3aedc6066c1f5e9n/aHeodo
2020-10-22DOC_42906710.docdoc a23a71fe2b845869e2dae7d48a5e35155dff172244d5ba0556d61d69255292b0Virustotal results 45.16%Heodo
2020-10-22FILE_A3PE93WWSTOF.docdoc fc523dab17f69be0ab6b14d0c02e81b083dd380e76e40267fbd6b1a56128c6ccn/aHeodo
2020-10-22DOC_GAE_100120_CZF_102220.docdoc 5e6f9a748268113d3da7867313c0be3f5891553c5690a01354fbbee0d530a136n/aHeodo
2020-10-2261168444.docdoc 0699c1bda793c7aaa9fc01940fe91bbe470ff01abfcbb32ab93d7a6a329e0d13n/aHeodo
2020-10-22FILE_78232998.docdoc c0936a09ea5471f2231fa2a66fff1dbb1c8f42f2a37d63e01ea45b4d40682d4eVirustotal results 43.55%Heodo
2020-10-22FILE_08894340.docdoc 4b59c4db6b4d14e2dfe7730fe25ed0dc21bb251a5c1b053cdd70e28cfc195867Virustotal results 43.55%Heodo
2020-10-22REP_R8RUTINPHE7H.docdoc 06b86e35e985fee3edf6863adbb7aa0ca5dfb2fa3965fa7430152a0fc787232bn/aHeodo
2020-10-22INV_0485514913373383799.docdoc 0da81935024d0599fd8d9347b3b1cd7d1c3224a851735ee92224a3f2cfe007ddVirustotal results 43.55%Heodo
2020-10-22FILE_X74J5Q19RZ9M.docdoc f62d13aea4567bd1e91c07f80dcf79d672bc4e446045a810f58c9c9cde7cceben/aHeodo
2020-10-22MVB3A1BHOY7W551.docdoc 7ea7e8e50ed5f1d982d9e997b05f46be02dd03e44b514e6b214f687eb011605en/aHeodo
2020-10-22S_EK3S6YGJJRRL.docdoc 933160e989dc335e391fdfba72751039c4c1c68f1648aa634af269e0e0600ab6Virustotal results 50.94%Heodo
2020-10-22INV_GLP_100120_JKM_102220.docdoc 2bfcddec3862fcbe053dd6a0d03d5987ccfa1942950e8c9bea56fa41f6fcaa5cn/aHeodo
2020-10-22REP_PJA_100120_RED_102220.docdoc f4485fe8056305da48ac8453716ea0fa9c6633da1a1f87e01dae3908da1bbbe6n/aHeodo
2020-10-220PIGZZEFU2.docdoc 74fdfd61d063ce1229044436c55ac1dba3e3c765e8b26674587cbde6704601a1Virustotal results 49.06%Heodo
2020-10-22PO_10222020EX.docdoc 24ca326ece108e2ec02346c32536bd5cd2a990364f8d8c9fa35b082ba4a68f2fn/aHeodo
2020-10-22INV_85446048453656.docdoc ff7bc571e097d09b02234d6bef98da4468da5c7dfc197e2cb20f1a00eb85f61eVirustotal results 45.90%Heodo
2020-10-22JDNSGAYRTED0TL.docdoc 00be3474f86c64b8ed871822ccfe02e7bdcbb4b5132682ee36915e8553952648Virustotal results 48.33%Heodo
2020-10-22MGXI1TIJE.docdoc 26675160f52f90a778a8e6489be6b67a6982742a192595c69b9d87e49e11cbf9n/aHeodo
2020-10-220109655741.docdoc 7a9d24e23c3cd1701c2de8826db43aa1dc7d2b73c6c4fd50f491276725a2ad4bVirustotal results 46.77%Heodo
2020-10-22MJN_PQ3780245937VT.docdoc d6a01afe9b81e65f663d1e158125f608fabf18a1b663d705398cf817f9a95c21n/aHeodo
2020-10-22BAL_AN9N3B9RMALBU9.docdoc a087c45b5ed8a1c9d91f0b920d6f2510bd5d82d3813af9653757607709da9d87n/aHeodo
2020-10-22BAL_Q1ZWVWNJIJK5J2.docdoc ac34efa35d04bc35c3bc9eb52c130c25c9841995ed37b75e3f9e04d7c2599bb4Virustotal results 42.31%Heodo