URLhaus Database

You are currently viewing the URLhaus database entry for http://www.samasamak.ir/sys-cache/esp/99IN9eeiIacIAhpkX9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:755068
URL: http://www.samasamak.ir/sys-cache/esp/99IN9eeiIacIAhpkX9/
URL Status:Offline
Host: www.samasamak.ir
Date added:2020-10-27 06:59:04 UTC
Last online:2020-10-29 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-27 07:00:04 UTC to abuse{at}netmihan[dot]com)
Takedown time:2 days, 5 hours, 48 minutes Poor (down since 2020-10-29 12:48:55 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-27inf 2020_10_28 883281.docdoc 2c0e571af9551f882e0f962c19799154fd0e9d82e9c8876d726a11f50cbc9676n/aHeodo
2020-10-27Doc 2020_10_28.docdoc 4a85964172bb7b3971c47929b9bdb5e54b312ddcf539fa7036e5cf18db89e07en/aHeodo
2020-10-27Attachment 2020_10_27 ELW8885.docdoc 2601d9525dd1d87f14ecb71e836de82f20354f4dde1251e0847e313c57d8ff7fn/aHeodo
2020-10-27List VOI725254.docdoc 2520d211b53e772f7a11ae07b43267f359a5a48ceac370084cbc4fa1197a268dn/aHeodo
2020-10-27DAT EOI776.docdoc 65ca688afc9a4a3542b3f24aec0d15a23d4ff309adc0aec528c289ed1630fee2Virustotal results 20.37%Heodo
2020-10-27List_0231.docdoc 882bcc061c75ffecf676b125f0a6b158e37c86cad7fe3de21013be35af4caf3eVirustotal results 19.35%Heodo
2020-10-27Mes-2020_10_27.docdoc 84350d794ab71f13e5b73fa0731a06fa097fd3c727040e023d946f348b66a73fVirustotal results 22.22%Heodo
2020-10-27UNTITLED 20201027 2909273.docdoc 9a665625762701ef94a2ebac83e7afc5fe24eeb05095df8655a980ba20f75343Virustotal results 19.35%Heodo
2020-10-27Attachments_UX01107.docdoc 7e9f5e00bf21d53e1d15077b74a7b3c6f66fb42d7803ff45a9769eb0f0781555Virustotal results 21.31% Heodo
2020-10-27Doc-20201027-BV9993.docdoc edfb677e0654249df35a0a414629e5adfea9df8bdf6970d67ad7cd91cbac5257n/aHeodo
2020-10-27Untitled 2020_10_27 IKB8022.docdoc 8a1b55c98e4946eec03ce1b525e3051f05f02a515b87b9c2b53888e52f8bb13an/a Heodo
2020-10-27Arc_2020_10_27_LKK498.docdoc c1e24feca84854f6deb4d0da18652fc39583554654bf3396d07a86353676695dVirustotal results 33.33%Heodo
2020-10-27OP362_2020_10_27_5244.docdoc 9addd2e4077d5a7c24bccc8a9108404f079a61f851615ab2e65deeeece42e424n/aHeodo
2020-10-27rep 2020_10_27 WKO08098.docdoc 06d0d9aa64d7b5c8ddda1388dbe3ffb081bf875ea2f961142dfe1dd3027e6e59n/aHeodo
2020-10-27MES_8884.docdoc 41fb558dbc7e100a8f612047f4942171b1daab30b7ebd7ef071b3a99d87df5fan/aHeodo
2020-10-2724950075-UDA6803.docdoc 56ea3d5db4eb0c842f6ffd51d225f3b420ba1187a6b8f7bc15bf333953b750e0n/aHeodo
2020-10-27list-267305.docdoc 82fc467e0dcc6a3628b4a48086c21624b27440398332e02b56bca355d9445859n/aHeodo
2020-10-2728865_20201027_620.docdoc 5dfde1a26bee1f06cede9b5e92f80467a275a636f505461236ca6c8f27134d63n/aHeodo
2020-10-27Dat.docdoc e414610dde87e571acf9516c9c93935c24ad647be951c6de6b456b6e9b3b8a66n/a Heodo
2020-10-27list.docdoc 8ec2421fcede86da656d51271e5e5987a485c0ae19bbd7e385bf7029947da4dan/a Heodo
2020-10-27MXF5543-2020_10_27-EN19682.docdoc 3a2b11cdee109e4d4be0909c51b07fa709838e0f4da50429b79bea4af3f30b6en/aHeodo
2020-10-27inf-20201027-968256.docdoc bfed81c8498333359a72fd9e2f2b1caf7b4e83c2088131ff84b67dca661e11b0n/aHeodo
2020-10-27UNTITLED-2020_10_27.docdoc 53178d852c4dd09083ca2da7336fc4067a32dacbb529f76b05d4b127a287c01cn/aHeodo
2020-10-27Untitled 2020_10_27.docdoc 13b9184ef8f2037da6a5cdeb427e5b18a101b5a35782eed96dbcd56a774f9446n/aHeodo
2020-10-27330OEO 20201027 K3253.docdoc d37e36ccf1d1d6305c792cf1fa6646b2ea51b0caab3d7c9c5b26e852d14c0b89Virustotal results 34.43%Heodo
2020-10-27CB45093 20201027 30288.docdoc f612801db656f25281d54994a6c06e69b16e74f17f8d1b7db534adae339e2910n/a Heodo
2020-10-27inf_20201027_R3278.docdoc cddae4cd8b8c7abc1819ded260b8860c7c1eb39c1cdb57421b29f1b28d190104Virustotal results 33.87%Heodo
2020-10-27Dat-20201027.docdoc e6c8a1d2eba8e4d282d75e299163844b8e5fa665800b8b09f1c500f108447fd8n/aHeodo
2020-10-27mes-C970.docdoc 82fe24e2c3dbfcec3274b1db80244e9372a3631fb2bdaada8f106c37cfb6c9e2n/aHeodo
2020-10-27file_20201027_MV5171.docdoc ba0b3891ec4099f638fa5108b39f9c656729e11caa30df82fb274d2522bcc612n/aHeodo
2020-10-27MES_V120764.docdoc 1cfc379f0c9dd87380582da32ee0ec57b7b1ff1c2540354b4e26981c01cb2d99Virustotal results 33.33%Heodo
2020-10-27MES-10803.docdoc 834abd7ba97667a37660ac433cc4866f030599a968d219ca9ab739eb933d11ban/aHeodo
2020-10-27INF RHG4020.docdoc 8cc9cc4828957cafc6dea6a8b41228beb8fbf09079daab0a9bdb2b7b7e1f1988n/a Heodo
2020-10-27arc 2020_10_27 19622.docdoc 613835c721dd3c08cdfd8351af6898020af8eeab52448666f8af503efcb80862n/aHeodo
2020-10-27UNTITLED-2020_10_27.docdoc 999c516888e9708dae1ac0f2b833a3549ae4272cdcaa246b5d72a1aca3ee7f6dn/aHeodo
2020-10-27Doc-FS8563.docdoc 190161de29e8e68b24297a710a2479f5889a03ee0195e6b4a08bfed4c454b634n/aHeodo
2020-10-27LIST_20201027_7399.docdoc 2468a938042a99f8883e39a543781d1f027c70c18710dbf9e6c0b6028ef4486dn/aHeodo
2020-10-27358_2020_10_27_0847.docdoc b59f341f63605a6e64ca3d40c60905a63c3817bdf781206c2f7d4eb0303bc860n/aHeodo
2020-10-27Attachment-QK7214.docdoc ded9f3fb1ba5dc5dcf544c907adbfb4ad4afbb6023945a227698b015bd6c8470n/aHeodo
2020-10-272377-BYY140174.docdoc 4de37315f635976ec7ec8c8e695462384cd62a3bd2c2d44a222e9ccf5b0ac6d4n/aHeodo