URLhaus Database

You are currently viewing the URLhaus database entry for http://airriteappliancerepairs.co.za/cgi-bin/rq0CFF7z0aynZ9vYaaZZCk696EYn0YF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:761571
URL: http://airriteappliancerepairs.co.za/cgi-bin/rq0CFF7z0aynZ9vYaaZZCk696EYn0YF/
URL Status:Offline
Host: airriteappliancerepairs.co.za
Date added:2020-10-28 16:16:13 UTC
Last online:2020-11-09 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 16:18:06 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:11 days, 22 hours, 19 minutes Bad (down since 2020-11-09 14:37:41 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30Arc_66823113.docdoc f22c7ee8f3ce55dbab2a2636dc155d39ae98cb927962f0f88fe3f85bd28c44f6n/aHeodo
2020-10-30MT3109831674KB.docdoc 12ef90a776bc1f4ae05962313e6b3711ec5211f8ba450527585d2da80c2d03b5Virustotal results 25.40%Heodo
2020-10-30Inf_14272816.docdoc 665ca5b6b8e24008d94bd73e8fc3862a558d2074f35ab952eb016e2ecfb2c125Virustotal results 26.56%Heodo
2020-10-30Attachment_973966822725150086.docdoc 07b3f8c72f07dca70496f6c792df7c12b6b782090056851ccfa67620fe7a27bbn/aHeodo
2020-10-30FILE_ULPLRA3.docdoc 49931e499615a1dc36cda98151d3c406413f1c47504b38f2bb658631313c273fn/aHeodo
2020-10-30inf_PO_10302020EX.docdoc 78bd1c6e03aab90ba0350183bb9aba52148938c5c4384fb2695473c6540e139aVirustotal results 23.44%Heodo
2020-10-30mes_EYK_100120_OWC_103020.docdoc f7cd964fb73ef51565181df0b0bdc561fe166542fc297684546797abcbc24000n/aHeodo
2020-10-30Inf_13078164.docdoc 721a801f52c7641ad68e3e7975b2dc98e5908a41803928d13434b180d6add068Virustotal results 23.44%Heodo
2020-10-30List_VABYPUNP4PE9LKU0.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948n/aHeodo
2020-10-30Arc_XJ0989458680UP.docdoc 97e94108bf1276b0d487fab5b0a98bb1c9784a99f6c7da0429adf12282cdd7abn/aHeodo
2020-10-30doc_XT0742243892NQ.docdoc a120ab7f12256c4b260034ecf26910f2eb405bb2c41ea9d1d78fcd2f529d2debn/aHeodo
2020-10-30Attachment_UA3789699210WO.docdoc d4acc3a64623dfa14067c44c95b64430f606feb0c118b278da5747c1b0e52da0n/aHeodo
2020-10-30dat_50406067860777231.docdoc f16118ebe3dbd05212ed3e350e3d509e02c403cacf34497532c50e1be09b7e16n/aHeodo
2020-10-30file_PO_10302020EX.docdoc 78896f92d061592d98c06fc87245d2cf4074475faf24d2470912e785760c29b3n/aHeodo
2020-10-30DOC_S7PUBZJP3GLMV3HS.docdoc aa8406666061a35462984a7c54b1a10151ec769f30040dc02931bb87fa2f1335Virustotal results 31.25%Heodo
2020-10-30Inf_QBP_100120_XJZ_103020.docdoc 8cb962ad1798941eefe7a5f826ea5bebc726304af0337e53e6e34d59a7715795n/aHeodo
2020-10-30Mes_PO_10302020EX.docdoc 4cd342f5baeddb3b9ce82b0f360ee43411ce30c8abede6b1f2a8181ed08da110Virustotal results 39.68%Heodo
2020-10-30Inf_PO_10302020EX.docdoc 8f1be5660e45786bb5caf0b15e6509cc86b6b5b099f40a0a4876d68816df2ec3Virustotal results 40.32%Heodo
2020-10-30arc_41427140.docdoc e4c4aa874feb371209199ddd6b159ed4a677b94568dfe6b09351807263dbef9bn/aHeodo
2020-10-30REP_71100642.docdoc 3f80d6a9b857cead0fb4b3e62572865a798d440a23fab61898596828031204f1Virustotal results 38.10%Heodo
2020-10-30Doc_KL5909464227ZG.docdoc a51d194ff7cccab7defe2f64127934a4ff3699de37c60019b40dd62d631baf04n/aHeodo
2020-10-30list_YZY_100120_BWW_103020.docdoc 2fe61550011a52e12cb324aa8cd06faeece3d1f05ae42f1c51bb7e055a647877Virustotal results 30.16%Heodo
2020-10-30FILE_8135903142399.docdoc 87582434c0b62f10bd24d5f8fe2636dcef3e0046373b8e05dadb27942be901f0n/aHeodo
2020-10-30inf_PO_10302020EX.docdoc b3f4e1b87633e71363d9e97c4f845e09d36e833b8d170f184946c8764cfc8f12Virustotal results 30.16%Heodo
2020-10-30JO1TGNIMJZ3.docdoc eec673d1180b8765a6d45f7e7164e7e86024dce5cd09472669369e410fa5d161Virustotal results 28.12%Heodo
2020-10-29REP_42393609.docdoc 5eb2cd7fd89bc000cab80454ba0da8cb954a960d3b415bc26039832a7f6f7544Virustotal results 25.81%Heodo
2020-10-29LIST_63795520.docdoc b716fa67c934451161c1be78e1587b3c68a53b5e219dc5452e9ea883d32a274cVirustotal results 27.42%Heodo
2020-10-29Attachments_83185262781025765352285.docdoc f4d2f6dbbb53d79cccef95feda58515350e863a1f1522bf60c830c0230754866n/aHeodo
2020-10-29list_YA9744027146CW.docdoc 1fa65cbd054792ed8ce72d5729cb95a5810f1371e5b096b2f1a099416c193420Virustotal results 26.56%Heodo
2020-10-29UNTITLED_IQ0776150987WF.docdoc 785ca4b8a3e573d7bb977a2f180d8c717b9867bbf38583aa08b4a96fa4803c8dn/aHeodo
2020-10-29mes_PO_10302020EX.docdoc 00f960f2c4dc8abaf471b3c55c877aad66b636338bd2d67a565393058b78c125Virustotal results 35.48%Heodo
2020-10-29PO_10292020EX.docdoc e100b5d71867c3b5968c32b026533a0ff7cb8ece201cced23b63fc7c65bb2cb5Virustotal results 34.38%Heodo
2020-10-29doc_97437632.docdoc 8427c429a000ef90470422cdc8d29bce81566f87f24f9ae2df228dbee3ffe5ceVirustotal results 34.38%Heodo
2020-10-29dat_PO_10292020EX.docdoc 4c38ead6f597c1bccaf5148980c46599eedc2615ee7f3378247b8333718a0afdVirustotal results 31.67%Heodo
2020-10-29File_67497932.docdoc b2d41822b2d89807592fd225c8450a8005e877760a656a6477ac0a28e3aa0250Virustotal results 31.25%Heodo
2020-10-29UNTITLED_2YA2J2EV70SMU2YR.docdoc 060a5c65a7cc6ecfa1290f84d608e94a147a447e1dd75ceedd3490ab079b6e74Virustotal results 31.25%Heodo
2020-10-29arc_PO_10292020EX.docdoc 8767bc3debff2695a4cb7dbd39f82b3c021888d7e244ffdc79af9883ce6f3449Virustotal results 31.25%Heodo
2020-10-29DAT_PO_10292020EX.docdoc 72795d86c0dff6adb123dad6b3a9b9c23d725d275a28e5fc69d10b701169ce29n/aHeodo
2020-10-29DAT_PO_10292020EX.docdoc af09d9b10580277dc290b458dfb6b85501ce39d6e430f87ee3fd349c3f672860Virustotal results 31.25%Heodo
2020-10-29Doc_SKVGFKF3XDMCP.docdoc d1bdf6bef20bd15e60ba06f47202d3acf38a54acfc6962578993d6ca7437a95dn/aHeodo
2020-10-29WVCJ_PO_10292020EX.docdoc 66f21ad9f94f3926c870736b3a33af58b00eea538ae8da9b7cd71ad1eb5614d6n/aHeodo
2020-10-29List_VQ9IY0U61WNLP.docdoc e6a7e6b13c6bf9156c51ce46213a68a27ed5da4c01903cc86465ac63c073fd7dVirustotal results 26.98%Heodo
2020-10-29DOC_PO_10292020EX.docdoc cc18834ee43070da990675aa77ca54b1f00e3af5bb607464447c3ebdcd2cb356n/aHeodo
2020-10-29UNTITLED_58881610.docdoc e71176f87f966b10a6770fcfffe18e9e8ffd08139967c62d7ff50e63ece6b72fVirustotal results 22.81%Heodo
2020-10-2904478544.docdoc 75df04fe2bbfe95af6c2ff3ad6beb372645597b0350f6cc16f995a09e27da829Virustotal results 26.98%Heodo
2020-10-29File_81849651.docdoc a8fcf49df55c689c0773566f845a024a59c623ca54feadcee56f76ee362ddb53Virustotal results 26.79%Heodo
2020-10-29INF_ORWNI65JN2MFBYN.docdoc 62a00d40cc12aa508ac276663bcf8a77077e394977dd3682be09139582ac29c2Virustotal results 28.12%Heodo
2020-10-29FILE_26230585364698.docdoc a3aba18f164b5c210ef16ea9fb2afaa20707a268cb84c43518dae121b7518614Virustotal results 28.12%Heodo
2020-10-29Doc_76409267272.docdoc 9fe969fee626debd81e116bda0f8fba99a6adf05e1a8265e3e9d93df703da84bVirustotal results 26.56%Heodo
2020-10-29File_PO_10292020EX.docdoc 5db58ed4308eeb76f9c66c885d4f1b53530d6c42eac9d755e67bf41989094087n/a Heodo
2020-10-29E_406362159.docdoc b770e53d7a44c680b7ce2fc81e13b5de570dce0b57c587442874b3c5f6f94d83n/aHeodo
2020-10-29doc_36409433.docdoc d7edab7749baa696b995be184437050a249c40992deb7cbd3472cf93fd8a154fVirustotal results 21.88%Heodo
2020-10-29Rep_PO_10292020EX.docdoc b4385458d18c38d7a4c53acd5475696ce3d61e0f6a991ed35824173ed85842ceVirustotal results 20.63%Heodo
2020-10-29Untitled_XA4049148344MQ.docdoc af8373a05bb4ac069cb45da6f676db803e252cb4c3e378c3fe25375323c74db8Virustotal results 20.31%Heodo
2020-10-29REP_PO_10292020EX.docdoc b3fa2642d482abe33fb06c5480db8883954bb076b663c838f67dc4966b89f71dVirustotal results 21.67%Heodo
2020-10-29Mes_YGO_100120_IDQ_102920.docdoc df879036bfd4136c1f14cabcb7bc54e077f8b9e09a67404bc366777cf3d38d43Virustotal results 20.31%Heodo
2020-10-29List_KQ1626264345HN.docdoc 3a1dd7ec119b96ea68facb223082a398ff4c038e58e7d166c80d7a7d4a3758abVirustotal results 20.31%Heodo
2020-10-29FILE_OI0614070474PP.docdoc 2427ee3cc0798fcee02c718a1fb58d735d9cf3b0ebd9bb10c14cb9326bb5e489Virustotal results 20.31%Heodo
2020-10-29HFZHVJD3CJU.docdoc a943a1b78c2ddb8ea536ad08b2eaaec624c324079322f272f1e1a319b5603a28Virustotal results 20.63%Heodo
2020-10-29Mes_19881106.docdoc 5a00d4a9d8e50c06f30007460af1dc4f73950dff8ef4d1966ec4098c16712bf0Virustotal results 42.86%Heodo
2020-10-29doc_32750356.docdoc 92b5a1128e03487da18589470f8c7fdaeb929ce4b5cdbdafef40a4060035c8abVirustotal results 41.94%Heodo
2020-10-29List_VHF_100120_CBF_102920.docdoc 6cff316da0b26621e5b1fc3d5a85c6931a68a90fde20acf702195a175fb4ce44n/aHeodo
2020-10-29LIST_60045091736468361.docdoc 1187f4742f61d0c2db716f1b3322181923c861a7588497af125af7753f409b3fn/aHeodo
2020-10-29File_WV9368868417BK.docdoc 42a5e4e595594e5e71e067312918e7858011f85588cc04720f4752f883f45b20n/aHeodo
2020-10-29Mes_WQ6165643911GH.docdoc 4b6b29d5c14a6ed0524d46202796bf0f9bd18650fa3f44dc5d01e1ab93652600n/aHeodo
2020-10-29List_DAO_100120_HIY_102920.docdoc bb6a910117fc42075d0f29a1d7f63f94814e7f787223e3af617ca5018180a77eVirustotal results 38.10%Heodo
2020-10-29list_CJP_100120_TUC_102920.docdoc 79518084f871542ac83178e1a8d96966d1ac6936c666a19b221c83e25d7c9f89Virustotal results 38.10%Heodo
2020-10-29Untitled_46956197.docdoc 4c8eeccd2a16f80874acd0057d5ec622d3701e32a3198bdb763f39e39ea28982Virustotal results 38.10%Heodo
2020-10-29Untitled_PO_10292020EX.docdoc c848e58e6eda265a519b7b901623769948e5bba84d9d240638af3bb235587028n/aHeodo
2020-10-29mes_77010815.docdoc ed5a9cf9f1dc54e472bd41658cb3f19ec7eafcb34da7257c6407697b879a0535n/aHeodo
2020-10-29FILE_WYZEO1C34J.docdoc f54166916a8e40e0d024df928029c9f35e013fb4b7a39eeb0554e8dc2820dc9cn/aHeodo
2020-10-29rep_PO_10292020EX.docdoc 16593eef39e8c04fdbb6390954522fcbb430e3d131921c0b5f4e9477ebd794f9n/aHeodo
2020-10-29INF_RWG_100120_XCT_102920.docdoc 46e6c0f62d299a4510ce400f90d5f8e2280b0ffa5e465ce7433624327bc07c0bn/aHeodo
2020-10-28doc_21559539090101239717.docdoc 2a7fa7333c9651955476107db7c4fabaa333b34c5c6938bfad143ae443d94dd7Virustotal results 25.81%Heodo
2020-10-28rep_PO_10292020EX.docdoc 558f9ea460d8f9e9babcc477c01c40ba377d80607e6dec6640f78b0f12794bd1n/aHeodo
2020-10-28Inf_WXU_100120_OWI_102920.docdoc a3fc674142c99cf43ec65daf8d31036f96aac0f9ef66988b6b3d80ac73f60bfbn/aHeodo
2020-10-28INF_PO_10282020EX.docdoc fc6ba0089f3355775a62f986bcdebe3bf7d58d1934d524e952f9279bb82cce68n/aHeodo
2020-10-28arc_17383377.docdoc 304314cb220d129f1eb18cc72da395146c2515aacaf0b81353667ddbf78413bcVirustotal results 22.22%Heodo
2020-10-28arc_VH67OYZ1.docdoc 11974ec5ce543646a57980f46943cb2a955f3d5a1e4732f3afdfd141df1cb76fn/aHeodo
2020-10-28FILE_49041914.docdoc 15646ceff08e62da68192730a8cf18e0bcf03b873bb4670cba533c04e9f6adfdVirustotal results 19.67%Heodo
2020-10-28KNC5FWHH.docdoc 74bb58aee05391c699fefedb79da019fc9e7b0d6d81d068d0ce1d192cc9e4556Virustotal results 16.13%Heodo
2020-10-28arc_LWY_100120_XSQ_102820.docdoc 290d99668c637b392210c43c77b9672357db0df908a2cee8c6c84399c0f3dc55Virustotal results 19.05%Heodo
2020-10-28Arc_RVVZG0P3LOWA.docdoc 3bd7bff850a4570a7bb97f9e98579d7a02f229ccbec50ec955257f9963ca0b5cVirustotal results 17.74%Heodo
2020-10-28MES_45338256.docdoc 11dd803e4e682105076fd2c1d86f54e36702074879acdd270b796dc604de12c3n/aHeodo
2020-10-28F_VJY_100120_KLX_102820.docdoc 7d38c4d98d05cd3a7a0fc6898c9d86ef1c29cd8dcfa3403d0222ff508843a325n/aHeodo
2020-10-2888756235.docdoc 028f51dbdfd44aa2c12928be40c8b34c1178a7b36c3aa2556596393a09409083n/aHeodo
2020-10-28FILE_43290000.docdoc ddcf5630aefa8de831c95d68479b3d2b92bae966f6e994b16ff7c9821a227c21n/aHeodo
2020-10-28list_KW0749625006RY.docdoc 197d87f03bcdbf7dd17dbc19a0cd3122c8ff36863e17c098765f491cab39a353n/aHeodo
2020-10-28MES_90976927.docdoc 5fcda50da77323acc30f1b703c2504b8b3ac07997068672294ea312703ef0ea2n/aHeodo