URLhaus Database

You are currently viewing the URLhaus database entry for https://sheen-vietnam.vn/wp-content/TGEZ22Bo35GBTu9z8cANdQVDFFx/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:758842
URL: https://sheen-vietnam.vn/wp-content/TGEZ22Bo35GBTu9z8cANdQVDFFx/
URL Status:Offline
Host: sheen-vietnam.vn
Date added:2020-10-28 01:35:06 UTC
Last online:2020-11-18 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 01:36:11 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:21 days, 17 hours, 1 minutes Bad (down since 2020-11-18 18:37:45 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-29TL3343455140YG.docdoc bb6a910117fc42075d0f29a1d7f63f94814e7f787223e3af617ca5018180a77eVirustotal results 38.10%Heodo
2020-10-29Arc_44846169420437947814.docdoc 4a64cdcef15cb3314d81486a5c6c1fc590e6579da756365b73c08c8adae77b95Virustotal results 37.10%Heodo
2020-10-29file_02573563385820630745.docdoc 8be1ce2792894a1410d83e38b8d690b428dbd1286ee8f6d559f3eaff4ae818a6Virustotal results 38.10%Heodo
2020-10-29rep_ZNN_100120_JFQ_102920.docdoc 4c8eeccd2a16f80874acd0057d5ec622d3701e32a3198bdb763f39e39ea28982Virustotal results 38.10%Heodo
2020-10-29MES_PO_10292020EX.docdoc 40e1e0d4ba67280ae17c0050feb66bf13f27e271efd4fc91413f8553dcf12a09Virustotal results 39.34%Heodo
2020-10-29UNTITLED_BIT_100120_QVT_102920.docdoc b97d2b5410d55c774746d336facb4fac9b81552a5f84073496d20901af3c5f71Virustotal results 38.71%Heodo
2020-10-29Dat_PO_10292020EX.docdoc 25a294d2a5bec3d86be884423b3f823440bbde5d7b1d88ace81c3059b454ead5Virustotal results 38.10%Heodo
2020-10-29Dat_Y860HZE9OBGE.docdoc 648262e8476fb8b619abd0b6929748ed5354de0997068e2d2c349a3c15d8f1d6Virustotal results 37.10%Heodo
2020-10-29ARC_PO_10292020EX.docdoc 46e6c0f62d299a4510ce400f90d5f8e2280b0ffa5e465ce7433624327bc07c0bVirustotal results 36.51%Heodo
2020-10-28list_LDZ08WZF.docdoc 2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7Virustotal results 25.81%Heodo
2020-10-28UNTITLED_PO_10292020EX.docdoc b004139f56a3790ffec0ba6852e8ead3947b000f2cbc61be1754b91a69633354Virustotal results 25.40%Heodo
2020-10-28MES_41PVJDL.docdoc f13e48098e4dc4a27534f29ee41bafc7943a5a1c14ad493e2a5e955e6c2c1148Virustotal results 25.40%Heodo
2020-10-28file_RBGFYP4UB81.docdoc 92bad3b1416d1b7f759e20c2214cbfe1f31b2f334d818e67dd917cde8a72befcVirustotal results 24.19%Heodo
2020-10-28Attachments_JVF_100120_OTF_102820.docdoc f815ff2593f2884fd76295ed3a93276677b2356b345da04efef56f244a8ea35bVirustotal results 22.58%Heodo
2020-10-28D_14923452.docdoc f25bd084ce8d81cd2533601965f19c49105798af5fa7465757626b6cd057dd61Virustotal results 17.46%Heodo
2020-10-287359871312291234059.docdoc b3668093571980e6141e4c77f24f479a07c6fb18caae250a7de4c697deb2fc03n/aHeodo
2020-10-28MES_OWRRHZ6JT.docdoc e5efd5e64316b51e501368020870705546ec2e8de04a25f5905192984126e747Virustotal results 17.46%Heodo
2020-10-28INF_EO6597023746FT.docdoc 290d99668c637b392210c43c77b9672357db0df908a2cee8c6c84399c0f3dc55Virustotal results 16.13%Heodo
2020-10-28MES_80769033.docdoc d91ac6b289bd863b217db0a852a8283c9964ffe543f3cfccd63951b76e7761cdVirustotal results 17.46%Heodo
2020-10-28FILE_KQH_100120_NVK_102820.docdoc 78e751cac2d36740d34f5137f239e1966d34a62e63cb14bf6d6fb1ad7fe5deecVirustotal results 17.74%Heodo
2020-10-28INF_FC5649629138TM.docdoc 4e256fda887b295d063575d800b9635067589e649f555a0ebdd65ae8841fe9a2Virustotal results 17.46%Heodo
2020-10-28List_PO_10282020EX.docdoc 21509e892c4ef6e47bd2fe0d2290b20e48e4680f2f3537f12a061cd5912b1cacVirustotal results 17.74%Heodo
2020-10-28HR6276651638CE.docdoc 670d89e5fcdc28a3e39901eaa4e232b7ad534728dea0607e198d767393e23de8Virustotal results 17.46%Heodo
2020-10-28inf_49330293.docdoc f60c05abd97590b8b38e8fdebfbd9f6dc73dfef0a767d075be889c4646ad19d4Virustotal results 16.39%Heodo
2020-10-28arc_578289018597478.docdoc 6c318a9098138d3197e96b6f8b19f0e341154549e78ea5e0671f54f96328d340n/aHeodo
2020-10-28Y_UQ9762859103KN.docdoc a7c464eeb2745a70c0108df133c47695689e8205a9b36343bf6652b953700739Virustotal results 24.59%Heodo
2020-10-28Untitled_VSI_100120_OZT_102820.docdoc 00880c9aa541d5176cfa0d8e2306b649327af55ef539e6018af094288e581baaVirustotal results 21.67%Heodo
2020-10-28arc_PO_10282020EX.docdoc dac1189124e8ab688ce2381053958114e981ce05558b088fdb5ee651e107ecf3Virustotal results 22.58%Heodo
2020-10-28Mes_675263201116099105115045.docdoc 67f89ed6526c25c2f57566767057b1cc2be2463adc0002791a3bfcdb25158029Virustotal results 17.46%Heodo
2020-10-28UNTITLED_KZ9749936093VW.docdoc dcbe02f1aa0077b9eb58a4e8a30c9c220fc240162ffcb1bb73376e967d6e7b62Virustotal results 17.74%Heodo
2020-10-28DOC_TI4503857416HR.docdoc acec2b7cea57b2f5faa43b49be25b8f40c05ac23ef99e308463d9c8a13d1221bn/aHeodo
2020-10-28dat_BK0114346101HW.docdoc 9148521d1b0af5640383d1905b6cae8657ee59b51e04dc0d18624a10234ad20cVirustotal results 17.74%Heodo
2020-10-28rep_84870377.docdoc 19c244f40868914450fb2bccb57e67ab4fb5679b222017b8c0dfd53dc1980334Virustotal results 17.46%Heodo
2020-10-28Attachments_4960146403145081.docdoc 0843e95e73e1d9c719d84439a7243f080d431179cc900f1d3744cadcb2d19d38Virustotal results 17.46%Heodo
2020-10-28FILE_PKT_100120_XRF_102820.docdoc 6f09e12af88b8c2ae45c021409c707ca0afc0b65be38c119d8a7ecaa72355ac7Virustotal results 17.74%Heodo
2020-10-28File_JIX_100120_NQY_102820.docdoc 778c2b97449426c3f3827a8041a05fcbb0e648267612cde21370c9f152bcf255Virustotal results 16.39%Heodo
2020-10-28JEEGXJ3.docdoc 0baa66a446892d388453495c26ee71f8be5dadb844ad77c000f2c4de90976b7cVirustotal results 15.25%Heodo
2020-10-28file_EL7699139806MD.docdoc 7b3bfb65935562f61ab84cd23b6c70e3d369e3478815bfdf6dc47740e25f7556Virustotal results 14.75%Heodo
2020-10-28arc_PO_10282020EX.docdoc 586ff0aded5422c4339495e0480f86f8454c8a813252983954522edc060f6e0en/aHeodo
2020-10-28List_PO_10282020EX.docdoc 2871ff5b986f5c582a3468cf2a6210dad8216a164b0affd7c6b11e8ef69761ecVirustotal results 29.51%Heodo
2020-10-28ARC_OF3794612031XY.docdoc c88a8bfd26b88fe11810b85a6ced566f6ecd9c06b535f98d8c7451c66c1716d2Virustotal results 28.57%Heodo
2020-10-28Dat_BDSB2Q5XOYVCD9.docdoc ce14f27765b4ed177ea779ef8f7eb00b4e09b985d0969e6a139c40a58133956fVirustotal results 28.33%Heodo
2020-10-28file_15510083.docdoc a2b3de3e6d67d8b984e20da13e2338fb10bb97088378f08537ed93228f6850e1Virustotal results 28.57%Heodo
2020-10-28Arc_1796861675846.docdoc 971349194e2895c67d792f09a40990e6754e2ce4fa00b738c17c34cbb88cc6e2Virustotal results 30.16%Heodo
2020-10-28file_54304429.docdoc 16b04fec1fdcdf3e7cd7b256ab6d5eb83277fc58d66fbea24c54202ce5fcd96dVirustotal results 28.57%Heodo
2020-10-28Arc_8YPDSR1TS13N.docdoc 9ef4f6f51b375bbf59cc1d992a0be8455a3a9c3a026b28c4abe77a4f16805c50Virustotal results 28.57%Heodo
2020-10-28mes_OZXE8B6QB896BY.docdoc 7b343ed21ad3bb90d645e681807a420dfe3d74c032752a75cdaa9aa8cd934663n/aHeodo
2020-10-28FILE_4838K3ZN51G7.docdoc 969f5e0df23f888aebe6c8cd981961e3bb23f514d3d55148d8c56d0309a7532dVirustotal results 29.51%Heodo
2020-10-28MES_YHK_100120_JNY_102820.docdoc ed9cfc1c33944c034d599ffe6b86bbb5629c22af3213560f5782e96dbc3d5fd5Virustotal results 28.57%Heodo
2020-10-28FO1224470203DR.docdoc 4da551741b2fdd1985b8f8dd865cbc2ee100a8d82d80a39e33f56dbda25b4f1en/aHeodo
2020-10-28LIST_C26FUYW.docdoc 69d342710f557d68f3efba1b4e44414efb43af9868dd7953f88bf8b49522456fn/aHeodo
2020-10-28FILE_YQ3661994769SG.docdoc 34eea5e4f2e92b636f9fcade14a7aec223d0ef960f9c0f6c749b2b806096aeb5n/aHeodo
2020-10-28Attachments_KML_100120_RJO_102820.docdoc ae95832fb60bc0562205f82b20e87746681b63fd589abc9312ca650f0cde8507Virustotal results 39.22%Heodo
2020-10-28mes_PO_10282020EX.docdoc 101fcc93c33f4a28332bd09291db3501b3d13ef433719cbf7750e9f6a73b88f2n/aHeodo
2020-10-28Dat_BZ3495674376IK.docdoc 1d6286cbe99db0f75e74a7ce7e77a50699b075af54aca64f8d2fb9c235f5d094n/aHeodo
2020-10-28FILE_JJZEQBEQ2J484.docdoc 0b62b154422aa927a6906a75fdc8edfd4c143365e4b5e4a8ffd58badd6fdb0d4Virustotal results 38.89%Heodo
2020-10-2870281412.docdoc 2a46f3f595f2eea533b556a67f2558d85d955f1784d1d48cbe78b2e5fae35f34n/aHeodo
2020-10-28DOC_FZY_100120_UGQ_102820.docdoc f43cc95ed3a2f8900938c6a240d69a2de909494821ee8308e740e2cda2fd31d7Virustotal results 32.08%Heodo
2020-10-28list_BCG_100120_KQG_102820.docdoc 2ff2d2fe253a47fbc4e9580ec37c3989ea365bf7b0475b19e6cb580942dd1630Virustotal results 33.33%Heodo
2020-10-28FILE_GZ6739609623WV.docdoc d3e4041b0325e0794fe6a1b0a78783b8c05b595f0631c24d7d8e11c53fa5e8e4n/aHeodo
2020-10-28REP_11671943795656161.docdoc f3caca68ae462481d5bac777996fa838a0dce95c7eb782713404fa5e3712a2abn/aHeodo
2020-10-28FILE_NDUZF3CRJP1VEL.docdoc c3e8b7bf6e9c96cf2335ab8c491d537cf81a2c322e9b305fd0545d051c613a83n/aHeodo
2020-10-28inf_5122936374672766383319.docdoc cf6945d684eb6962274cca88159c3f88a0a5291a81ac0d8831d9f6496b005c33Virustotal results 27.78%Heodo
2020-10-28REP_PO_10282020EX.docdoc 384f0ac6af41ed895424d29854b510286d7b1c075150dbd313f8682f26eb4249Virustotal results 27.27%Heodo
2020-10-28REP_GNE_100120_XPZ_102820.docdoc bc8c74e5b69ba384b49d43f30b6707c6982c97d843cbc3771fe0027cc844869fVirustotal results 25.00%Heodo
2020-10-28Inf_WP7647705895LM.docdoc 5e692d0f6341638d540a0dd0458062a4852cdc65dd6551956aaa28c4d417416aVirustotal results 27.78%Heodo
2020-10-28arc_5GKP1K5C9BN4LNQ.docdoc 42437dded751c17d78164701713e5a181726b5fa47472556a1eaede5aac86c17n/aHeodo