URLhaus Database

You are currently viewing the URLhaus database entry for https://pghrc-career.bangkokair.com/aspnet_client/hU/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:757950
URL: https://pghrc-career.bangkokair.com/aspnet_client/hU/
URL Status:Offline
Host: pghrc-career.bangkokair.com
Date added:2020-10-27 20:37:05 UTC
Last online:2021-03-08 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-27 20:38:09 UTC to noc{at}cat[dot]net[dot]th)
Takedown time:4 months, 11 days, 4 hours, 24 minutes Bad (down since 2021-03-08 01:02:45 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-28Doc_KQTF7VLUP4.docdoc 2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7Virustotal results 25.81%Heodo
2020-10-28list_74003378.docdoc ff451db73672e713a3b5a30084d42b5d09a39ca3651cbb1b3c15ce4b18234592Virustotal results 26.98%Heodo
2020-10-28INF_24369334.docdoc f22f6b796d73cadef21281fb4120d425395b7c6457e38524dde128830ccfc02dVirustotal results 25.40%Heodo
2020-10-28Doc_PO_10292020EX.docdoc 8adec8b07c6dffa1c8019b0076e0ae870dbfa2a40941b64f4bdb96adff5e0b30Virustotal results 26.23%Heodo
2020-10-28Mes_991874313600136694915373.docdoc 07709fe759a399f11394a5d17a98a42431d9ba07f16544b507d28e3d39141643Virustotal results 23.81%Heodo
2020-10-28ARC_RU0570418154VF.docdoc 304314cb220d129f1eb18cc72da395146c2515aacaf0b81353667ddbf78413bcVirustotal results 22.22%Heodo
2020-10-28Mes_PO_10282020EX.docdoc 11974ec5ce543646a57980f46943cb2a955f3d5a1e4732f3afdfd141df1cb76fVirustotal results 22.58%Heodo
2020-10-28LIST_3354081827562.docdoc aa4fa922d7e80e83494ebc5639c0549754860e3de9ffd6b8f4f455a8ef6f8a2fVirustotal results 19.35%Heodo
2020-10-28Dat_LW6135378421PN.docdoc ad112b9ed4b1078a7142b24121c402ec49a036e33bf0e514f8bdc5b720c216deVirustotal results 17.74%Heodo
2020-10-28Attachments_YHE_100120_BUS_102820.docdoc 87591b36ad962f6009043a5af2f6ab3d515e7fd18b199f2da448d2eeabe8e83cVirustotal results 17.46%Heodo
2020-10-28Dat_NW30E8BROE9KTTS.docdoc 3bd7bff850a4570a7bb97f9e98579d7a02f229ccbec50ec955257f9963ca0b5cVirustotal results 17.74%Heodo
2020-10-28C_7IE0CSCAS0ETQ0T0.docdoc 93d882200983e8ea91da547916ade52e52c5f684c19434eb8e3312b4d4251bb1Virustotal results 17.46%Heodo
2020-10-28PO_10282020EX.docdoc 028f51dbdfd44aa2c12928be40c8b34c1178a7b36c3aa2556596393a09409083Virustotal results 18.64%Heodo
2020-10-28inf_CGP_100120_ONU_102820.docdoc 21509e892c4ef6e47bd2fe0d2290b20e48e4680f2f3537f12a061cd5912b1cacVirustotal results 17.74%Heodo
2020-10-28Inf_ABG_100120_WOZ_102820.docdoc a3f1465cf2e8a92e8d9f932ab8d561cd6a02e5f832b42bfa856a5cac7fb96566Virustotal results 16.67%Heodo
2020-10-285GN9VLVN82BLV.docdoc c3f9c25daaea07684a67a58d2ec8115321b592a8b0edc6eaafd2e8844f22c10bVirustotal results 16.39%Heodo
2020-10-28DAT_0510041199719918005.docdoc 7eeb30a34016ac7c6d48178f44b12c48df17acb131f0a96847d1cd67c464ce30Virustotal results 25.81%Heodo
2020-10-28Rep_FJY_100120_NPB_102820.docdoc 7d1c30660aa059eeca56d1c898483074e1bcaf59f922458e37e7155380a5d9b3Virustotal results 27.87%Heodo
2020-10-28Doc_LGC_100120_EDB_102820.docdoc abb10d6a4ffa25a8f41ba0adf71c4afb7cb81cc2f6e0f603ca29da9ba9dbcc95Virustotal results 22.03%Heodo
2020-10-28G_ITG_100120_CDO_102820.docdoc 245da199877ac955b9c2640666afb19d13d640da90766a000f6fc8b2c909582eVirustotal results 19.35%Heodo
2020-10-28INF_4314907579264643369.docdoc 558c61e9709e06aa045d7ba7933b35b9fb9c125734e3c4e8955a573a31cba52en/aHeodo
2020-10-28FILE_IDH_100120_BSC_102820.docdoc f976e3edc1892c2009a8000edb80c5329f8ca920af116372b2a274488ddba5e8Virustotal results 17.74%Heodo
2020-10-28inf_99061555.docdoc c7a9fcbd5e7cf2f7c00c2ce737e5f37d79fca2af4840700fbec2812fe888df80n/aHeodo
2020-10-2823514236.docdoc 64635c63d42669d79de593fb4c9276d3d1a246fc8a715ca5debe629e202a8018Virustotal results 18.03%Heodo
2020-10-28DOC_HQL_100120_SDT_102820.docdoc 4760301c9f69ac873695b32575bfb814706e3f43c55aec6c05de900156550254Virustotal results 18.03%Heodo
2020-10-28REP_QKB_100120_DMK_102820.docdoc 7c5cba3f361edbd305005728464aa36e44d98db05cc52860a979780b6036fac6n/aHeodo
2020-10-28File_PS2825995470WE.docdoc f182b904afbc1ef53c949d93d3826ccca716a9f32529f6df10ca170703089e7cVirustotal results 17.46%Heodo
2020-10-28Attachment_JL9486402089RD.docdoc b3c3d3e30ae7b4c92c9f8ebf90b783a3219fed0e1d204c2f91e23ca759865315Virustotal results 17.46%Heodo
2020-10-28REP_CA13J2DJD5X.docdoc 320e1d251976122a8a99eb8cea6215aff119aaa931d99ff58c30e220a062044fn/aHeodo
2020-10-28YF_67UYR5I89CIH7Z.docdoc 8f81d3bfaa85d06f828287a8c5f575fae618f017c0dd9be15f4544d086ce38c3n/aHeodo
2020-10-28MES_35413945.docdoc f557390768f97bbb354c11917ec9e1ae3447832fbc09b34625656d8cb3db0931Virustotal results 14.75%Heodo
2020-10-28mes_TVB_100120_XLL_102820.docdoc ada1b895d8a1af1461e0b32f2366bef386fa6b6d3235cf99f9838896ba16d2b5Virustotal results 29.51%Heodo
2020-10-28inf_70363915.docdoc 2ed9663048bfe1c969ee302588f17bbee321277d16204ebc6fcc3a626d03addbn/aHeodo
2020-10-28VW_574046AADCPDW9.docdoc 33c735ac2d43594d1fb25ef35adae90aef216e70c30065596ad24ffb5299de94Virustotal results 28.57%Heodo
2020-10-28QIWW_HBV_100120_CFE_102820.docdoc a8d759c3b4c570d5c7d196edd616d1816f0bf51f7d858bbbdcf8bb41f85242e9n/aHeodo
2020-10-28Arc_54853337416146926047865.docdoc 0fdb302c3db79d7ed89244d7adf4c56d5cc9e4643c3e5bac39c3e82cff3834e7n/aHeodo
2020-10-28FILE_296659456298127538546.docdoc 7b343ed21ad3bb90d645e681807a420dfe3d74c032752a75cdaa9aa8cd934663Virustotal results 32.08%Heodo
2020-10-28F_PO_10282020EX.docdoc 520ca27ad3a13618d306b397f83a91daf238997358520459895991c6285328e5Virustotal results 29.03%Heodo
2020-10-28arc_81421790.docdoc b5967d8f6f4eff72fd314911e828c2376081aa4d190afacbbbfa0fb390f13e4aVirustotal results 31.48%Heodo
2020-10-28file_312635758.docdoc a67871eaa10790dfc0459026fe390127f88e0e7ef794ca29ca3ef501bf0bbc98Virustotal results 29.03%Heodo
2020-10-28REP_UP9923536406VD.docdoc 4da551741b2fdd1985b8f8dd865cbc2ee100a8d82d80a39e33f56dbda25b4f1en/aHeodo
2020-10-2887588525467.docdoc 499af6e46284239845d6e547823d8f197a8c92a084b2aecf1123e44d44a764e6n/aHeodo
2020-10-28NKERSEECL85G23.docdoc 68cb170125b6d8fe85e4573f3324f27ca595e8a2a2f0d624742c817590b42765Virustotal results 27.42%Heodo
2020-10-28Untitled_TP4516327546DU.docdoc 5dae469fdf99625a0b53d223a55b04fc4e77d3e660e1ab904e79071d5dc13c9bVirustotal results 28.57%Heodo
2020-10-28Inf_24504475.docdoc ed432b4a387becc419df96f24140626602c26a169999780c2309f0f5190a1321n/aHeodo
2020-10-28Dat_JYY_100120_VNC_102820.docdoc 1d6286cbe99db0f75e74a7ce7e77a50699b075af54aca64f8d2fb9c235f5d094n/aHeodo
2020-10-28INF_REH_100120_BLN_102820.docdoc 0c7d3ec331ef86b021bbe0e3892bf17424bd028421e6f164f683a969e38c44d9n/aHeodo
2020-10-28arc_NPP_100120_VPY_102820.docdoc 2a46f3f595f2eea533b556a67f2558d85d955f1784d1d48cbe78b2e5fae35f34Virustotal results 28.57%Heodo
2020-10-28File_PO_10282020EX.docdoc fe13971c49c4731ae4fdc32c49bbb6796383a27db3ca2340642ed9d0c1753880Virustotal results 28.81%Heodo
2020-10-28Arc_13086241.docdoc 2ff2d2fe253a47fbc4e9580ec37c3989ea365bf7b0475b19e6cb580942dd1630Virustotal results 33.33%Heodo
2020-10-28doc_02302264.docdoc d3e4041b0325e0794fe6a1b0a78783b8c05b595f0631c24d7d8e11c53fa5e8e4n/aHeodo
2020-10-28rep_PO_10282020EX.docdoc cc31dd589d5c0b1c8efa5a1f6ec8d20e749c31240bc64c7410b581780ca028a7n/aHeodo
2020-10-28XSL_100120_FOK_102820.docdoc e774de558ab588e2aefc6661f8ddf20b6a02ef8a6e2c4504a0b03e27d9c19df3n/aHeodo
2020-10-28DG3695852586AT.docdoc 25578de149cb4dddcde0db6ab49f1ef760faf659fee06a0b86d0fe095cc438e6Virustotal results 24.14%Heodo
2020-10-28EQ8EB9ZP9N.docdoc 384f0ac6af41ed895424d29854b510286d7b1c075150dbd313f8682f26eb4249n/aHeodo
2020-10-28Mes_084477801.docdoc aeb7e85b2cafde9f05807a7b77f48f79c431e3c6cdaaaea539d2fb42a7ed47c4Virustotal results 26.42%Heodo
2020-10-28Inf_KVD_100120_ELK_102820.docdoc bc8c74e5b69ba384b49d43f30b6707c6982c97d843cbc3771fe0027cc844869fn/aHeodo
2020-10-28Attachments_471688278972005.docdoc 42437dded751c17d78164701713e5a181726b5fa47472556a1eaede5aac86c17n/aHeodo
2020-10-28Arc_57279760088.docdoc b1667802a4201e50d756b921bd73789dabdc6e0ead93ccde248f9634cef63d6an/aHeodo
2020-10-28Mes_20200327.docdoc a30d2b343e3646a2a05e98c5b7f976a1f67e12574ecb880a2a460bec35735f6fn/aHeodo
2020-10-28Doc_LDA_100120_DLI_102820.docdoc 555c444da12ef92c155597ec6fb707163898e7bc70247e493e627c319f122a36Virustotal results 23.33%Heodo
2020-10-28PO_10282020EX.docdoc 6310463115ebc704a66281738da24d3ddc5e2b7142db330ffc61d25899c74869n/aHeodo
2020-10-28FILE_71242964.docdoc 7eb74017c164dd7972d8d6fc795baaf0f0bc4593227af0752e986dc52bcbfdcbn/aHeodo
2020-10-27M_PH9529250106PQ.docdoc 47a36aa6f44f68488681fb4c7eef56b83e5003f35562442d29e744354581e8f0n/aHeodo
2020-10-27INF_363683741864915843.docdoc 51dc9e5a948487f714ef9600e3188b99aaebca09db45c0cd628d561945767476n/aHeodo
2020-10-27FILE_775465123248.docdoc 58c6d43427679cdcaa82662a3a2421ce675d528b81de08448e7c904c9afcb992Virustotal results 23.08%Heodo
2020-10-27file_PGM_100120_RQJ_102820.docdoc 4791b5ee50085457d0dce59a52da9717357b5112a9138b69ff60bc3003f32e25Virustotal results 22.22%Heodo
2020-10-27ARC_01639623.docdoc 786139fdf387d3068d18ba7eb1f55806ca956cd8834e1bbc350196ede6433fddn/aHeodo
2020-10-27Doc_M97M2W2.docdoc fc7ce8ff56832fc6cd1bdb013de966cae38ff1e593a06e22f0e9764e09528a01n/aHeodo
2020-10-27rep_PO_10282020EX.docdoc 5f76a85c0b6eea68add2f86acd654470127f46e25d29adbe90f4a2f1216816f6Virustotal results 19.30%Heodo
2020-10-27Dat_PO_10282020EX.docdoc adaa6cfe6f38da277ca461fdc4d6c81d643d1c91babe46515180b90cd041fc15Virustotal results 19.67%Heodo
2020-10-27FILE_GIH_100120_NRV_102720.docdoc c0b7364bc8b2a4ef21f805fa2085e3ad41e5ea6206b0274d6300d64305d4ec0fn/aHeodo
2020-10-2767114011713438261.docdoc eff4ff103b1930c43c7f0ae267a43b853c4cc734db4c80473d028efff6e8f7f2n/aHeodo