URLhaus Database

You are currently viewing the URLhaus database entry for http://kaayniujang.com/cgi-bin/VVsyJxSYcdI5VNP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:757713
URL: http://kaayniujang.com/cgi-bin/VVsyJxSYcdI5VNP/
URL Status:Offline
Host: kaayniujang.com
Date added:2020-10-27 19:17:05 UTC
Last online:2020-11-06 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-27 19:18:03 UTC to abuse{at}hivelocity[dot]net)
Takedown time:9 days, 16 hours, 57 minutes Bad (down since 2020-11-06 12:15:48 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-28450230042271989489133464.docdoc af7a1932766cf0a2a6bc07298751e49a47f81b2b7f255579bcc6d1a93f335af4Virustotal results 32.08%Heodo
2020-10-28list_PO_10282020EX.docdoc 95d0a6acc83d661cf2f495f1e9b4c465b64f5fcfdfa6a75c0ad72beac8e31b19Virustotal results 28.57%Heodo
2020-10-28File_PO_10282020EX.docdoc a67871eaa10790dfc0459026fe390127f88e0e7ef794ca29ca3ef501bf0bbc98Virustotal results 28.57%Heodo
2020-10-28Dat_6529589139622352414.docdoc e2f58ed91009de4f156ecdfb6fb04401ce82b2281242941e3a80fa9fe451cfcdn/aHeodo
2020-10-28file_PO_10282020EX.docdoc 34eea5e4f2e92b636f9fcade14a7aec223d0ef960f9c0f6c749b2b806096aeb5n/aHeodo
2020-10-28Rep_73315502.docdoc 5dae469fdf99625a0b53d223a55b04fc4e77d3e660e1ab904e79071d5dc13c9bn/aHeodo
2020-10-28File_GE7849191990FD.docdoc 261e6c84ce868f22052861a43fcad286e7287b5be573074c5f3ced42e465d4ccn/aHeodo
2020-10-28N97QF6O2QBFB2CHT.docdoc 9c509bf6c3b7824436cb299b2efffd013f3b0b156e9398a6975b71b50152cac3n/aHeodo
2020-10-28Attachments_95001625.docdoc a74bd9bb59caf16dcb34bc909644f9b39712ff04e230af2fd8f4838af00e85f8n/aHeodo
2020-10-28Rep_WT3413139864QC.docdoc 2a46f3f595f2eea533b556a67f2558d85d955f1784d1d48cbe78b2e5fae35f34n/aHeodo
2020-10-28inf_QEDTOAR0IM5EI8N.docdoc fe13971c49c4731ae4fdc32c49bbb6796383a27db3ca2340642ed9d0c1753880Virustotal results 31.48%Heodo
2020-10-2801969357.docdoc 3120df1e06f01820a9e9aaf64e33f5ff4b4e39647ef7552f6f98535a9c17e68dn/aHeodo
2020-10-28mes_PO_10282020EX.docdoc d3e4041b0325e0794fe6a1b0a78783b8c05b595f0631c24d7d8e11c53fa5e8e4n/aHeodo
2020-10-28C_GQKPCGNPN.docdoc f3caca68ae462481d5bac777996fa838a0dce95c7eb782713404fa5e3712a2abn/aHeodo
2020-10-28Doc_06108506.docdoc c3e8b7bf6e9c96cf2335ab8c491d537cf81a2c322e9b305fd0545d051c613a83n/aHeodo
2020-10-28FILE_03482348141.docdoc e774de558ab588e2aefc6661f8ddf20b6a02ef8a6e2c4504a0b03e27d9c19df3n/aHeodo
2020-10-28F_PO_10282020EX.docdoc 384f0ac6af41ed895424d29854b510286d7b1c075150dbd313f8682f26eb4249n/aHeodo
2020-10-28Doc_YGD_100120_FPW_102820.docdoc e809029e144d585294881c1cc21836d527c1547b45b9f97446ca6bc9987c3ee8Virustotal results 25.00%Heodo
2020-10-28SMX_WO1954912083JE.docdoc 5e692d0f6341638d540a0dd0458062a4852cdc65dd6551956aaa28c4d417416an/aHeodo
2020-10-28file_PO_10282020EX.docdoc 1fb4278069691dd947dc414fae8cd33f4b9309293ff8919ab9fdf39e30cda63an/aHeodo
2020-10-28Rep_PO_10282020EX.docdoc 42437dded751c17d78164701713e5a181726b5fa47472556a1eaede5aac86c17n/aHeodo
2020-10-28rep_CJ6141454972XB.docdoc b1667802a4201e50d756b921bd73789dabdc6e0ead93ccde248f9634cef63d6aVirustotal results 22.22%Heodo
2020-10-28file_78537382883694668.docdoc a30d2b343e3646a2a05e98c5b7f976a1f67e12574ecb880a2a460bec35735f6fn/aHeodo
2020-10-28Arc_VH9255690025FS.docdoc 4e5d8413edd514941f72294d90df25c1f1ea77bc15de00e104dd0a9242c1085bn/aHeodo
2020-10-28Attachment_PO_10282020EX.docdoc 5b5139dd7a1ffc7d31ef829c6f23afb23a459dc8aa0a8f900970875ecd254e39n/aHeodo
2020-10-27ZL_T03ICD5JUWS.docdoc e6e605ad811f416df52bdd27b76218c84b0f27c3ce272e28b373c86440fb089dVirustotal results 22.95%Heodo
2020-10-27list_OF3480225219WI.docdoc 47a36aa6f44f68488681fb4c7eef56b83e5003f35562442d29e744354581e8f0n/aHeodo
2020-10-27INF_91435289.docdoc bfc255c1fae47d22c3a502329ae24b49b0fc4169c49c13a4b1091cb686e3ccedn/aHeodo
2020-10-27AUL_100120_SDM_102820.docdoc 9e67927cc9cf11b38167386aa1974faf5516155e23095cb9b5a2daf9686957e6n/aHeodo
2020-10-27DAT_PP0859813935FU.docdoc e2509856fa3825262f7b8d15270d09143fe04141cf779efade220b800dfcb8cfVirustotal results 20.63%Heodo
2020-10-27INF_56294479.docdoc 8f81d3faa4e108405a4e9833d08d42d8a84bbc940356bcf4a9337afd4f7a3468n/aHeodo
2020-10-27inf_PO_10282020EX.docdoc 3235d187d8b3671d5765bc99030e722035c237639e52b0c481b121187c56e317n/aHeodo
2020-10-27Doc_0882800900113.docdoc b01b01566c73b1c2ecfd4f04bda6c7cc3c1c12646562ae1f615733fb1cc89b37n/aHeodo
2020-10-27Untitled_PO_10282020EX.docdoc c321e5d2dd294190dcdc02438a5db924cad6a12d6727644bc3c04c00e0b029d9n/aHeodo
2020-10-27DAT_959828037409732.docdoc 0b8ac5c9dc030e537de800452a108f34d872311dbe2d68949a7230e90cc2ca63n/aHeodo
2020-10-27REP_79733522.docdoc cc6e22fb47f246a8619f5e98b3078e0e9d99026df12daa5dbe90bf64e9e3694fVirustotal results 19.05%Heodo
2020-10-2794512160.docdoc 762bcc2c5112e9883cfccc6525ddfe0c7839a65c34bff3f40cc0cfa69d9384d2n/aHeodo
2020-10-27LIST_28081757.docdoc b84e06b48e0596e8ea863ad6d7b92c046211642e81b197bf8d21bc9812a6cd21Virustotal results 44.44%Heodo
2020-10-27Doc_44075547.docdoc c6d17f85207d441365be4fd77b351f537d80b2d37b6c7ff76d49765182161f65n/aHeodo
2020-10-27file_59939605.docdoc f7496ff4899b8d1febae957c9f03aaaf262609fb62b4588471fd7b15dc107d1en/aHeodo