URLhaus Database

You are currently viewing the URLhaus database entry for https://zhidong.store/wp-content/Jd0doUXjGCVL/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:750564
URL: https://zhidong.store/wp-content/Jd0doUXjGCVL/
URL Status:Offline
Host: zhidong.store
Date added:2020-10-26 07:58:07 UTC
Last online:2020-10-26 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-26 08:00:06 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:7 hours, 5 minutes Good (down since 2020-10-26 15:05:25 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-26DOC_DF8656243915EK.docdoc 5135a184c7ea24f1bf46a4796d393b8f9488561a95229d973f0b813d9b42094fn/aHeodo
2020-10-2606435004.docdoc 08815b189e49c8ac0b9650dcfdc52a7443d90353a83d3393b9e104bb4c2c0701Virustotal results 37.29%Heodo
2020-10-26INV_LZ7389153464BK.docdoc 101310be8d9c74b53f725cbceef8f70a73d34ab291c171112fa6ce2329007f33Virustotal results 33.87%Heodo
2020-10-26FILE_PO_10262020EX.docdoc a63c502e6b17dff5564bd862d8f81577c7311ae759e5dd3a63e9ad5e91071a40n/aHeodo
2020-10-26REP_PO_10262020EX.docdoc e3cbc40c3b3bd22386ac4aa9f5dce1a1899ef16204c2fb4482e9ba13e543781an/aHeodo
2020-10-26REP_YEMT5CLSB.docdoc 456eb2b478caa00b10e1c06ca22eab8d9cc7a130334049be232b800a32d5d005n/aHeodo
2020-10-26Z_39739276.docdoc cb06c91714c2fa41bb1d338cec4b8aa362b69c0de1c1b44cdad71390dbbe3a02n/aHeodo
2020-10-26DOC_29961087.docdoc da1652d93c500443c646c476a32a65ee7ad8adc03abd169589fc00ee3879a1c9n/aHeodo
2020-10-26INV_PO_10262020EX.docdoc c8959b9a6f38cffd770385974d04143a3d7fcf70e54ebcce7613405d7a6bd3b8n/aHeodo
2020-10-26REP_PO_10262020EX.docdoc 4343a180d81cf52e9f2f70c0f81b8257d962257206468da7df7837f49bc85d28n/aHeodo
2020-10-26FILE_SE6612197849CI.docdoc 869ef726a8060a24935adab01239f7d11f05e832b2cd768306d0da71589f28d1Virustotal results 33.33%Heodo
2020-10-26PO_10262020EX.docdoc b5677c41094c0fd7f9b09b9d6950d82b375e3b9800cc6da701bcead69058c603Virustotal results 34.55%Heodo
2020-10-26FAV_100120_FWJ_102620.docdoc 5255133f0e8cd2c6c6dbbc60bc3d0ce40680c9c229550d03f263a8b82bc20143n/aHeodo
2020-10-26REVLF2AO.docdoc a674fd9e7c8d0449f546bd564f7a40ef8bf90b2556701d7a8c42674a00156fa0n/aHeodo
2020-10-26REP_55I8MZ4PGCHI6UV.docdoc 7b59e11a0e2d33d71f4b3dd69e318053dacbaa32b8921e3a7c917388289dc51fn/aHeodo
2020-10-26FILE_PO_10262020EX.docdoc ab125f206005c4070c7dfb3080c5c6be85bf7c30f2d929c22dc27d9b24af90cbn/aHeodo
2020-10-26B_PO_10262020EX.docdoc 43631f394e9fa7131ec1ecc4094ab518bfc84a2a951addee15989b2c9dd3507bn/aHeodo
2020-10-26DOC_195363077605334656700321.docdoc 249a84f8889892c8c941b0d7f57f005aa62ebc5584bfc22be06f0cca031891d4n/aHeodo
2020-10-2609024110.docdoc 4b6fc2e1d81c172051911f8b2be0829801c483b04c1b63348ee6e19a5718dc48n/aHeodo
2020-10-26INV_9LLUNDNV7KB8AUED.docdoc 80010abe36b57ef34cc2ce4b60279baec022ba3768fe907e007aa675a341741cn/aHeodo
2020-10-26YX5S8MG0J.docdoc d607c74a53bf84e436d5306201e63f4516aaa9f004b3c127ffeab57e7644658dn/aHeodo
2020-10-26INV_86041247.docdoc 815acab77c8e7ec0b24cd22bf3f7d2c1f9d7b31da76a70fbc08a6099ff5a2554n/aHeodo
2020-10-26BAL_MDV_100120_EHZ_102620.docdoc 67786c012c609d51f05ab8baf0b6d2730fb368dc5e7830120f783c17fafd1342n/a Heodo
2020-10-26REP_6221667008234.docdoc 414f48ed1cf0f4380689592cab6c66a326d4ae0fee3e41a6e94fa0c33a554b36n/a Heodo
2020-10-26DOC_XZ885AWFG12G1Q69.docdoc 2c4a01a71a1eac1f16ef57bdaea22b0385e3bf629fc2d056cfadd8b543aa0160n/a Heodo
2020-10-26FILE_VVA_100120_XRI_102620.docdoc a81064e23717d95825db7c05759045acda36e771c3575b00d2d97acbc3ee5fc5n/a Heodo
2020-10-26BAL_78004631923203.docdoc 9f2786e91567af2fdc96c1a170edbba81393e6cebfc54729c6f3bb872ca2ea07n/a Heodo
2020-10-26BAL_ARO_100120_TQC_102620.docdoc 6f3dac0c5d07ad84868364179e3a86c77cbbef6c3121e4d67d6c69a09225e41an/a Heodo