URLhaus Database

You are currently viewing the URLhaus database entry for http://www.samasamak.ir/sys-cache/Document/597bbUH96VHRP9b5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:755063
URL: http://www.samasamak.ir/sys-cache/Document/597bbUH96VHRP9b5/
URL Status:Offline
Host: www.samasamak.ir
Date added:2020-10-27 06:54:04 UTC
Last online:2020-10-29 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-27 06:56:06 UTC to abuse{at}netmihan[dot]com)
Takedown time:2 days, 5 hours, 15 minutes Poor (down since 2020-10-29 12:12:05 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-27arc 2020_10_28 24946.docdoc 2c0e571af9551f882e0f962c19799154fd0e9d82e9c8876d726a11f50cbc9676n/aHeodo
2020-10-27doc_2020_10_27_07525.docdoc 19edb720e222817dc696093f3000cbf44dc66691e3b3f096f395366f794c6ca2Virustotal results 20.75%Heodo
2020-10-27Doc_2020_10_27_262699.docdoc 2601d9525dd1d87f14ecb71e836de82f20354f4dde1251e0847e313c57d8ff7fn/aHeodo
2020-10-27inf_20201027_493.docdoc c4478df05ea4d77b2886f04b1a0b8ab67fd66e0f90064c0fce17fdf1171aec22Virustotal results 18.33%Heodo
2020-10-27dat O419753.docdoc 65ca688afc9a4a3542b3f24aec0d15a23d4ff309adc0aec528c289ed1630fee2Virustotal results 20.37%Heodo
2020-10-27Dat_20201027_DJ8669.docdoc 882bcc061c75ffecf676b125f0a6b158e37c86cad7fe3de21013be35af4caf3eVirustotal results 19.35%Heodo
2020-10-27ARC-2020_10_27-24709.docdoc 3e7da102b07bbaea5c74141f98f1f839361afcd88f5c1b108eceb3692f9b17fan/aHeodo
2020-10-27arc_2020_10_27_IW2169.docdoc 9a665625762701ef94a2ebac83e7afc5fe24eeb05095df8655a980ba20f75343Virustotal results 19.35%Heodo
2020-10-2754587689-20201027-ATN886469.docdoc 440710866f2af5dec3a2fb47d43a20a8d599fadce987787c6772a857b926669dn/aHeodo
2020-10-27MES_2020_10_27_2197.docdoc 014c6092529a2c8fcb1cec8bbd38eaa844a0dde7451752cefc4844dcfee2f647n/aHeodo
2020-10-27mes_V98068.docdoc f8f047504577050366a1b44e5ba124fe511fa03a25a2232e94b2c86c82abe7c9n/aHeodo
2020-10-27INF WS1608.docdoc 930b2c650c02155d23102b7f5af7341f24dfc1f37c40d1eb601a7472af87d28en/aHeodo
2020-10-27DAT 2020_10_27 H203.docdoc b91805dd757e2c22fd237b95a5414b7ecf4bfff23e7e48d024ac493fc7af96c5Virustotal results 33.33% Heodo
2020-10-27inf-NXV613101.docdoc 9addd2e4077d5a7c24bccc8a9108404f079a61f851615ab2e65deeeece42e424Virustotal results 34.43%Heodo
2020-10-27INF 20201027 DOI61899.docdoc cfff055973943fbc6e70ebefde29c7326b56b50e44a62b01e07197b15b54d8a2n/aHeodo
2020-10-27Doc GTV7934.docdoc 3474063e6f75dad6d13132bd3a1892c04b65b561906d8ddc8ccc78335b1b0ee5n/aHeodo
2020-10-27MES-20201027-153618.docdoc 9f2c651f45219213d5b582411db7948ab1c7cd7b67d8e8d2fba6d8929bd4c3b6Virustotal results 34.43%Heodo
2020-10-27arc_2020_10_27_M912455.docdoc 541f859ac32cad287b78d2c974c701bfdc423e364b1887d596e0a65b33de30a5n/aHeodo
2020-10-2708309 57086.docdoc e0cdf96812571b284a3020fa25032cb1e55574bc3903c7d56f21226daf864d95n/aHeodo
2020-10-27MES 20201027 V75200.docdoc 76db981e79b1d69eb157f002b5c41736b4ccf58dec91a684e658f2e26dfe3677n/aHeodo
2020-10-27file.docdoc 0a250597a73b7d6fa56a871f81455c15e235ee0d7c23101170ca5e0e5f8cd181Virustotal results 28.57%Heodo
2020-10-27DAT-20201027.docdoc 813dd9ad99ecd59f5e71bbc645968c0b85645c169064617b0880ab8ac1195b51n/aHeodo
2020-10-27Rep_G6755.docdoc bfed81c8498333359a72fd9e2f2b1caf7b4e83c2088131ff84b67dca661e11b0n/aHeodo
2020-10-2797870-LVM688133.docdoc 61cfd4ea81be782368c8d30c75eb00a25320ff41b8dfde0a39a0f9a22fcd45fcn/aHeodo
2020-10-27ARC-82184.docdoc 13b9184ef8f2037da6a5cdeb427e5b18a101b5a35782eed96dbcd56a774f9446n/aHeodo
2020-10-27FILE 20201027 8977744.docdoc d2ac9f3c4611c3c30c8a2bad8bee52f08ecf51e25b4a79774c50188c9b3f1defn/aHeodo
2020-10-27file-20201027-NJ569602.docdoc 52cedbd473146069dfb53c24de3f7f8c373ba699a3031c1b85afa1416abef22fn/aHeodo
2020-10-27FILE 20201027 Z241762.docdoc 8b75e4e9788ae77388f81d27eb72f2b8d2cde397b64574cf6286af017fea37aen/aHeodo
2020-10-27mes-2020_10_27-13205.docdoc 82e423cadee5d375fd0c92cf0254f1e0998142f883353fbf9e7bef065904c4aeVirustotal results 35.00%Heodo
2020-10-27EBM168 2020_10_27 07975.docdoc ed4e87a802acc318ecb56a046a99bfeb0c32426bb59be290ec25a813fa76d92eVirustotal results 36.36%Heodo
2020-10-27Dat_C1639.docdoc daa60d8f73b2c61bec74ce17de5877cde16dbae49ab02acab1c9eff4b989dfc5n/aHeodo
2020-10-27arc_27598.docdoc eaa28b2f3d86cf5cadedd86d3b7347b9e134c3049bf90f5f1e7636f9b146d9e5n/aHeodo
2020-10-27UNTITLED 20201027 UNV2062.docdoc 834abd7ba97667a37660ac433cc4866f030599a968d219ca9ab739eb933d11ban/aHeodo
2020-10-27mes 20201027 3561.docdoc 9ba62df3ad72cc00fa33041ace73b541f0c3a9453baf46618b7b36c900e09a6an/aHeodo
2020-10-27Untitled-2020_10_27.docdoc 9288feabb7ee47cae3c66d6ed449c22b462d1a3fae77a10b1651c000235fc2a9n/aHeodo
2020-10-27doc_2020_10_27_Q1747.docdoc 999c516888e9708dae1ac0f2b833a3549ae4272cdcaa246b5d72a1aca3ee7f6dn/aHeodo
2020-10-27list-20201027-U089250.docdoc 12f38da7feba566a053ccc8a757bc94cbfe98e1cdeed88e9a3c1efa95b89fa8fn/aHeodo
2020-10-27list_20201027.docdoc 6624e99caef62a4448f00037c9fb126ea4442107153d3f09b90996abfea9d753Virustotal results 31.75%Heodo
2020-10-27TXR610-584.docdoc 20ed4cfc85e05e6ea4e2cb9902508bdfb95106254edf148f6ba068130f2e1944n/aHeodo
2020-10-27file-20201027-7288.docdoc 00f72355a3c3e661dba869458da2c7ca2a377fb9027c3963e263e425a068a9edVirustotal results 29.51%Heodo
2020-10-27FILE-20201027-325.docdoc 4de37315f635976ec7ec8c8e695462384cd62a3bd2c2d44a222e9ccf5b0ac6d4n/aHeodo
2020-10-27REP_20201027_3018016.docdoc ef68154504f649e9f1af366c857406d10dfb183db2445198ed5339f9db435b32n/aHeodo