URLhaus Database

You are currently viewing the URLhaus database entry for https://iconga.co.za/wp-admin/ahgMTyiMuFwBuOA9ILOOSk7pvbuls4vBwSeg0azh8kCIS/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:761556
URL: https://iconga.co.za/wp-admin/ahgMTyiMuFwBuOA9ILOOSk7pvbuls4vBwSeg0azh8kCIS/
URL Status:Offline
Host: iconga.co.za
Date added:2020-10-28 16:16:07 UTC
Last online:2021-01-20 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 16:16:10 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:2 months, 23 days, 15 hours, 6 minutes Bad (down since 2021-01-20 07:22:43 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-16Rep_25039213.docdoc e134359bfa4a04bffabf20a6522d2a4c8d807619578853ba0387aa395b6495c9Virustotal results 68.25%Heodo
2020-10-29IMF_100120_VTX_102920.docdoc fa68a64196793116b8b029723e9a7fd7d6a7e5c8bbcc752be10b93c5575ebb03Virustotal results 20.31%Heodo
2020-10-29FILE_IN9519321282FW.docdoc 8b4afb8076a68f93b44032c82700252f8971b853903b31fd0eaf50671f7c3cd7Virustotal results 20.31%Heodo
2020-10-29file_6434654181397176086.docdoc b3fa2642d482abe33fb06c5480db8883954bb076b663c838f67dc4966b89f71dVirustotal results 21.67%Heodo
2020-10-29MES_1TQM4MF.docdoc b0144d3b84fcb16e6d521e31100944499659d0ed9065e7295eb557d60254be7bVirustotal results 20.31%Heodo
2020-10-29Arc_4BK9L9SHGZX82SP7.docdoc 35855c53e4677ef830f4c2a2ca571f759e82982ec0314fc0640953857938f216n/aHeodo
2020-10-29Inf_E953J535JU.docdoc 1e63648100763f7fe5822fa5fedd5b5b9c87d1bca425b6745c236e3bff92bd0cn/aHeodo
2020-10-29Rep_LSBG7U7K0.docdoc 1ecf50c67d4c4bf7eba5ed050c6500f7ab6a2b63b66f12dd23748e22e9a34ce7n/aHeodo
2020-10-29Arc_DYL_100120_EQF_102920.docdoc a68e38ba80539aaa99e4624f37df31a53410de47b3a76df0fbced21744a74d0bn/aHeodo
2020-10-29Attachment_HS2997590886AO.docdoc 72e4ad0a1b83a8af4bffff0b32b6f8b9fe9680a323457b9ae5b866c9cf789ca1Virustotal results 41.27%Heodo
2020-10-29REP_15616156.docdoc 1187f4742f61d0c2db716f1b3322181923c861a7588497af125af7753f409b3fn/aHeodo
2020-10-29mes_CLZ_100120_UMX_102920.docdoc 63df7914667bd2adc0b6e4b2db5b67f07a6154956568765321641b6dc1469cf5n/aHeodo
2020-10-29ARC_MXO_100120_LUQ_102920.docdoc 316d4d608dd006d9abc0d3530dd84b38bf4b22bec80a8f5821f795c9b52f2cadn/aHeodo
2020-10-29FILE_LW8923334534NC.docdoc 6df480c2f89e67bd88a1ef3142106f925a45830756da26077582ef439dd4c5b8n/aHeodo
2020-10-29file_YO9010877817CT.docdoc 4a64cdcef15cb3314d81486a5c6c1fc590e6579da756365b73c08c8adae77b95n/aHeodo
2020-10-29REP_QVCCVHAXLP.docdoc 1baeed811a902b926b7e18dca28f8eb0f73a98a4b06b396119ac5532f0a6d9edVirustotal results 38.10%Heodo
2020-10-29INF_Y90EPWMSBJ.docdoc d82100bdd4168d98cf565f1b0d002d3c2c480cc6e350b09dd8484507384aef75Virustotal results 38.10%Heodo
2020-10-29arc_OV2106561601ZG.docdoc 1053508dba9607d8d25a553d3059249c8ff3fc0f143ea47103c1842a20098c2cn/aHeodo
2020-10-29DOC_YVA_100120_NWH_102920.docdoc b89f3ae4badac97fc44a153bfb215de77641bff4cbcbe7ddc321af38e097f2beVirustotal results 38.10%Heodo
2020-10-29Attachment_ZNL_100120_YPR_102920.docdoc 22f759f5ae2843757236454a0578edfd716dcc446d3b1db698bb404fc0277fa5Virustotal results 39.34%Heodo
2020-10-29inf_ZO5453806959QB.docdoc 33922102764c4b2609240638de815d4e2ebbc1334d9cf6b1b9609c89bb8a9c0aVirustotal results 36.51%Heodo
2020-10-29MES_5676938586892294602.docdoc 17d6d17702d158eda616b2096600e47fe0808914ae353ec5009763a5de5fffe7Virustotal results 35.48%Heodo
2020-10-28Arc_CBC_100120_OYF_102820.docdoc 0a8f0b82ac6ca359057a79405255027ce1c2e1de5493d655a55b0374727e32baVirustotal results 25.40%Heodo
2020-10-28UNTITLED_83370180898706.docdoc aa5e7414db596bbbac651408e85b19557a2415a2e42a4a2689cf37c1f3dc1c10n/aHeodo
2020-10-28I_PPI_100120_BCI_102820.docdoc eae43aeb02650178d0fd02ed1c824f36d89c2a2950399621c4a7c29ecb8d7e73Virustotal results 19.05%Heodo
2020-10-28PO_10282020EX.docdoc 688e87c580badf94b1e0ce02b5b6bd709d6e779abdf22e193209fc7f45946e30n/aHeodo
2020-10-28ARC_91613828133438132909.docdoc 290d99668c637b392210c43c77b9672357db0df908a2cee8c6c84399c0f3dc55n/aHeodo
2020-10-28dat_EO7667085617JQ.docdoc 6f587af9bf1d3fd4e20091fbeeff179d6280cc928c2e02857eb954aa37c7de98Virustotal results 17.74%Heodo
2020-10-28File_JUK_100120_EHO_102820.docdoc 93d882200983e8ea91da547916ade52e52c5f684c19434eb8e3312b4d4251bb1n/aHeodo
2020-10-28Attachments_QX5M23ZH2ZO.docdoc 8abc1a41fddc4a3a107138900b0401334fddf0298fa9fe0ec4e7e1f4fede979an/aHeodo
2020-10-28Dat_4AB9779.docdoc a3f1465cf2e8a92e8d9f932ab8d561cd6a02e5f832b42bfa856a5cac7fb96566n/aHeodo
2020-10-28FILE_0QR4LYGAA27OHA.docdoc f60c05abd97590b8b38e8fdebfbd9f6dc73dfef0a767d075be889c4646ad19d4n/aHeodo
2020-10-28inf_TAY92UR2CO40.docdoc 5fcda50da77323acc30f1b703c2504b8b3ac07997068672294ea312703ef0ea2n/aHeodo