URLhaus Database

You are currently viewing the URLhaus database entry for http://layunomore.com/wp-admin/lm/upAf7OlIhVyAd/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	757607
URL:	http://layunomore.com/wp-admin/lm/upAf7OlIhVyAd/
URL Status:	Offline
Host:	layunomore.com
Date added:	2020-10-27 18:48:06 UTC
Last online:	2020-10-28 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-27 18:50:48 UTC to abuse{at}upcloud[dot]com)
Takedown time:	17 hours, 4 minutes (down since 2020-10-28 11:55:00 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-28	inf-2020_10_28.doc	doc	5cf54e1bb1d28b6fe18106c2ab05c35a90362e5eebdfea67e4f42f3f9f6f3e3b	n/a	Heodo
2020-10-28	arc 20201028.doc	doc	8b9fac63d3833d86de7736d588f7430f57c887e9c17752bc24682da2153113de	n/a	Heodo
2020-10-28	arc 128.doc	doc	f7924c0145c0ff8ac501947adf36affbca4f0718dc964ef681ab241d0e390c74	n/a	Heodo
2020-10-28	ARC 71582.doc	doc	6cfa4bc9d98411218a03a8a0227df17da83335f49beab3784ef3ccbfe0f2e0dc	n/a	Heodo
2020-10-28	UNTITLED-2020_10_28-3058.doc	doc	fbb671ae1f53d8726d9bf7afbec7fce69952163f4ffbe17de732c67b2cc2a527	n/a	Heodo
2020-10-28	INF 993184.doc	doc	3f613f9a6463317b5a575c8829a4e8c8f04a69a3206d14ed89f9c76dba29d162	n/a	Heodo
2020-10-28	Rep 2914.doc	doc	2efc5b4bae391cc5eefd5b06ac3b3e4e4a321d8350ccd641403be754f64f019e	n/a	Heodo
2020-10-28	REP G925.doc	doc	0d2cf62672624cc37b321be32008ed5ac906a33a9492a327631b8886ac918b40	n/a	Heodo
2020-10-28	DAT_2020_10_28_755.doc	doc	5ba6a0db5fe221f32f4a9cd85cf69ab066cc4f6186d6e93b5669571a32a35d7a	n/a	Heodo
2020-10-28	Attachment-20201028-636.doc	doc	6caf7862cf4be1450e259ce7dc287f887103e42b874b426123ba7a5219444b26	28.57%	Heodo
2020-10-28	94079FR 2020_10_28 6070.doc	doc	bab7e3469ca42e62451b6a11a29c4410f143ed4907193e6091f3ff0fe486cb05	28.57%	Heodo
2020-10-28	Untitled-I609017.doc	doc	e549afaef9205d532d55d91cec38651852e85a6cb0bfbfc07904a59f1a6b211c	n/a	Heodo
2020-10-28	FILE 2020_10_28 42458.doc	doc	37b3eea45fea263bb43106564a82d2750f430bad89f1b14f7fac32fed149e8e5	n/a	Heodo
2020-10-28	File-2020_10_28-Z9598.doc	doc	6bf49682da7e06dc378e14693f4dcb29147a7f29c73fe4b3206b979058af6b2b	n/a	Heodo
2020-10-28	Dat_2020_10_28_7207.doc	doc	f4d738149ed04a904e53e846a49b9996cb7ed6f4cfe4f3071150e581ed3a4609	n/a	Heodo
2020-10-28	Mes-MJD82477.doc	doc	a003060572cdb9836b81c7e55a99cb99107bbaf0b15183ce3f823b5c32690392	n/a	Heodo
2020-10-28	dat RF3790.doc	doc	cdba75792bcf44a350ab83ecd05679196648d93ea60f426ff3e28d4239bf1826	n/a	Heodo
2020-10-28	list-2020_10_28-URW199982.doc	doc	a3d3cf6713d70294e39dbcf0379e082d6a257adccbdf41d1fdba62df8aef883f	n/a	Heodo
2020-10-28	Attachment-2020_10_28-S2833.doc	doc	785d6c0b148d8dddf3cbb492f290386eed4b1e54c7960b26263014af5b68b783	n/a	Heodo
2020-10-28	inf_F249.doc	doc	6702852d6449cc2549b7987cc2fa0583a15fa2f831dc77cf8c8d428605912203	n/a	Heodo
2020-10-28	ARC.doc	doc	6c17bfdc1c41fd0b9618f61b8789ef61ad808a81048b22038c3ac8a7f6ba686c	n/a	Heodo
2020-10-28	arc_TZE224.doc	doc	8480e663d0a058194b6a6eb9701872e426d2039988a82de35c226dd13cf012fc	n/a	Heodo
2020-10-28	Mes_2020_10_28_H231.doc	doc	64b7e5242a5c60c2b2031129ad5ff53540b70c43ac2530d09a627c3f8d4f4c43	n/a	Heodo
2020-10-28	Untitled_20201028_266.doc	doc	13578189ba67b1b728017c0e96a3708199a8c879f2be7531e35e6570b09f31ba	n/a	Heodo
2020-10-28	list 2020_10_28 017.doc	doc	c09da99f44d060cc07412d7cd8f81d184f0530fe7a5b2e0e4e32e5e1be74fb5d	n/a	Heodo
2020-10-28	dat_2020_10_28_9712.doc	doc	50f1ef11f8245c538d7f44158d5666f2036513ee4d95e1699313c903e0574a9c	n/a	Heodo
2020-10-28	arc_2086606.doc	doc	9ca8226ef71916dee3526b14cb6e112f6d9c12c2365d5bf4ef43eabfa3c844d3	31.75%	Heodo
2020-10-28	dat_2020_10_28_326.doc	doc	6d31a92d5a682c250c92f5f41cbacd685697e662f5ced5145c76a0cc0044eb56	n/a	Heodo
2020-10-28	dat-20201028-1960400.doc	doc	88a224c66bc34bf992821c58b6790906b8048d27fb20dd123ea5379ede510dac	n/a	Heodo
2020-10-28	inf_2020_10_28_NOB911085.doc	doc	bb767a987c3bb38d105c55a5e17fe4bec3ce116f87235dce04be1f03c3ba6fcc	n/a	Heodo
2020-10-28	list-20201028-Z741740.doc	doc	7862369f401d84f41b94003a00d8fe6b36e51c435f35a8e996138a0f52fa1893	n/a	Heodo
2020-10-28	rep.doc	doc	c430d5a21c9bd894ee7f7adad674ea7a0ec0520df916938568284c655ecb2c8a	n/a	Heodo
2020-10-28	LIST 2020_10_28.doc	doc	937caf4bff20604ce065b1e9c219c1af06ad065dd2522bf6256e0b06c40b9844	29.82%	Heodo
2020-10-28	rep_2020_10_28_327363.doc	doc	5bafcb869ad1c89b92e8d0cf06c05c51bbc54f713743a5e7e4638fd6153b5d03	n/a	Heodo
2020-10-28	Dat-908685.doc	doc	9bd0e68a4d1b0b3fa07441324dbc77574a04628efd26d801f15105057255e5fc	n/a	Heodo
2020-10-27	Attachment_20201028_662.doc	doc	13dc41a09ac500a00ec0a4a9843017260672fdaaed428508c6307ff3341c3e95	n/a	Heodo
2020-10-27	list 2020_10_28 SN295870.doc	doc	7f4e135c6557e09fbf0db84e8fd9ca4bd69547747c806a09e8b4ff6651109c0a	26.98%	Heodo
2020-10-27	Untitled 2020_10_28 04863.doc	doc	c651101c619e07bbec5cf5a52967126141ba3782bdf7c3af4b53903d30704096	n/a	Heodo
2020-10-27	Untitled 0211.doc	doc	0de43abd8d4f8877ff865f52486cf10fdc2c9c8c627562969e32f6b00ebb36f5	n/a	Heodo
2020-10-27	Rep_2020_10_28_FYI9734.doc	doc	a97d0d9b4dc3721d627ef5df398f56c03281aacd47b15299f409a1f2a3c70fb1	n/a	Heodo
2020-10-27	DAT_L0216.doc	doc	dc195bb810b63c35c74cc0cdd8690cff533be0b29da2a5e568c8a03d6b3bc05e	n/a	Heodo
2020-10-27	ARC_2020_10_28.doc	doc	53f11a87c5eb09d98d2ad6807bf4a19a1844cd1c984dcb9365e45650ee7374b0	n/a	Heodo
2020-10-27	dat_20201028_0180559.doc	doc	aeccec42934a9750b091d5e65045ea9666b71067261ed4c53919afaf00ae7cda	19.35%	Heodo
2020-10-27	mes_20201028_5960303.doc	doc	2c0e571af9551f882e0f962c19799154fd0e9d82e9c8876d726a11f50cbc9676	n/a	Heodo
2020-10-27	ARC 2020_10_28 PXP57022.doc	doc	63fc16f5e75a6bf8e072742070a020c44ecbf4f3b462c6480046003b2e4e8eb7	n/a	Heodo
2020-10-27	Attachments-15281.doc	doc	2601d9525dd1d87f14ecb71e836de82f20354f4dde1251e0847e313c57d8ff7f	19.05%	Heodo
2020-10-27	doc_20201027_H991.doc	doc	138f306945c20e8dd813e43d036300dded2bdf97a71b4fc586989871a11a4fbd	n/a	Heodo
2020-10-27	mes 63392.doc	doc	62bcc19331151319c7f92f51fc561380900d5c6f4b128b0df63db3ac0c442afc	n/a	Heodo
2020-10-27	ARC-20201027-NGS97939.doc	doc	e8b19723225167f1b831cdfd075a80a02537306d5d73af68da53d7dd4fd27229	n/a	Heodo
2020-10-27	DAT_FLD8859.doc	doc	7361bce55fc9bf2abccce87123c812bf499278023d0b206d6ea656a87bf3d592	n/a	Heodo
2020-10-27	arc-B22900.doc	doc	9a665625762701ef94a2ebac83e7afc5fe24eeb05095df8655a980ba20f75343	19.35%	Heodo
2020-10-27	76051646 2020_10_27 B79393.doc	doc	db2eb128cacb5bd4b950a7cb261d660b45eae83b44d19ff364b9d4d1eccaf6d1	n/a	Heodo