URLhaus Database

You are currently viewing the URLhaus database entry for https://lavi.com.tw/lavi.com.tw/INC/1ZLzMXO1socxzP0/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:761703
URL: https://lavi.com.tw/lavi.com.tw/INC/1ZLzMXO1socxzP0/
URL Status:Offline
Host: lavi.com.tw
Date added:2020-10-28 17:00:07 UTC
Last online:2020-10-29 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-28 17:02:06 UTC to abuse{at}asmallorange[dot]com,eig-abuse{at}endurance[dot]com)
Takedown time:21 hours, 59 minutes Good (down since 2020-10-29 15:02:01 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-29Attachment-2020_10_29-4557159.docdoc 5ce496f13f2728db5457ef356b0cf73e9a390a8016dfb4df1b3d084ad7f0f991Virustotal results 26.98% Heodo
2020-10-29doc 15493.docdoc 2a117f803129615a11fb51b03aa78464658c82e754b6140a4a01b2ef3bc13a69n/aHeodo
2020-10-29Dat_20201029_411020.docdoc e84ed79c1be101e6bed71ff5e4af97ba2e2de483f32699bdd0932fd64f051434Virustotal results 25.42%Heodo
2020-10-29List_20201029_DB0879.docdoc c639ec18eb060e72b5377a99575d50eaf280703d4d8027c1e133c13aeb663507Virustotal results 25.40%Heodo
2020-10-29file 2020_10_29 22353.docdoc bd3531875b303e0395178fb8d3aa3dedabada2cb53d5b937c2d75d18aebd1ccdVirustotal results 20.31%Heodo
2020-10-29FILE-2020_10_29-PZP06671.docdoc 20557abb7e18f9b4d279a25980e9858441be3f6198b35eca3d9f537a706a9760Virustotal results 18.75%Heodo
2020-10-29Attachments-2020_10_29-3300842.docdoc 5c4dce3ebe2abed407cd3b5cf57bb8860cc3e9dc2b42780c8750687b1aba7e86Virustotal results 18.75%Heodo
2020-10-29MES-20201029-3678415.docdoc 996cb8d00c1ad4cf5762a186d0a02c2fac83304c878d34f1ab48fba223e2e941Virustotal results 17.74%Heodo
2020-10-29UNTITLED_2020_10_29_308201.docdoc 0e8b556a602f4d26532259ddd10eccca21792e58c74acf5a91c2835b53248f24n/aHeodo
2020-10-29UNTITLED 20201029 728190.docdoc 01ba58403e5e92440779e53390420eb7a6402a07bb531cb2b731401e06b617aan/aHeodo
2020-10-29Attachments_JHE4905.docdoc 984473c63ce979671f89a4cba67e41d45803aae51ecb5a47e54d83e62c6aa448Virustotal results 17.19%Heodo
2020-10-29Doc_2020_10_29_P9597.docdoc 96d4154d84eb54805cfe88cbd53d111df4b131022eee8e5886a6bb2aa5fb5bdcn/aHeodo
2020-10-29Inf-20201029-PSQ45241.docdoc 7c080a645590c6a8bb0ea9d80b0657077422fd81bff535bc801918d7a7b7c27cVirustotal results 16.39%Heodo
2020-10-29inf_7630221.docdoc cd55cbd09a501c04dfe038ec070658783208d27fe4bd1e31088f5d068d3b98f7n/aHeodo
2020-10-29Attachments-20201029-H629215.docdoc d1a832173493be0e748656923bbc70e8e262d161b7addc8794be7beabe43b050n/aHeodo
2020-10-29file 2020_10_29 043.docdoc 863c32fe0e6573bed3a0771579c821d9b162d93cc0226b7600af2c9b60b8e26cVirustotal results 15.87%Heodo
2020-10-29REP-244213.docdoc 00564cade18b45c0bd49c05edc14b0c9c3d364d8472773f4347bb117ffdd8196n/aHeodo
2020-10-29inf-20201029-083571.docdoc 2f56e4b4e006d4a8f041d35ff77d86361d87edd52527268d2923a4c45b359174n/aHeodo
2020-10-29Arc 2020_10_29.docdoc d4e04ed50bfc2cddce44f384479f323a74005ee830383b77f3a44c63e4e39dcen/aHeodo
2020-10-29ARC-20201029-68314.docdoc 94e08e3932fdbf68dce59492d22219b9afc8c0effe79517e9d9ea943a40b369an/aHeodo
2020-10-29Rep 20201029 5792804.docdoc 2459f003d4b784c960c6fbf68be74cdd02277d11ded9f0a6be0f969c3061d54dVirustotal results 39.34%Heodo
2020-10-29Rep.docdoc d06c24a09106daa1032a15c8cff9c4eb399881b463ccefee9a51744197fed53cn/aHeodo
2020-10-29Inf_20201029_F067048.docdoc bb9b42355cd9c3b2448099c344e24ceab8f54de4c5e7f3e68ee997dc8e1bc678n/aHeodo
2020-10-29File_20201029.docdoc e197171c4d9b129dce5753855173cdd09a6318e1c30f4e80a4a902183a9b4321n/aHeodo
2020-10-29rep 3805.docdoc 41ad376a9521ae341bd5a60e9084150f0745b92fb26a5b44001e11579d180316n/aHeodo
2020-10-29doc 2020_10_29 EU756512.docdoc f63abb92cdab9a6112967307f4ceafcdb39955c0ef4d4097054083b579f9e5ccn/aHeodo
2020-10-29Attachment-2020_10_29-044108.docdoc 4651a840ce23c966bafea880bb08b5293365ec6eea71de68cff57961d6aea421n/aHeodo
2020-10-29Mes_20201029_MF2681.docdoc abf06b263f226bb15cb35ce193033b9e18ca2bdebc573b14310278dd0f019bc6n/aHeodo
2020-10-2903709389-2020_10_29-115.docdoc 192e7f20388641538ab4e7e243d6c81dfd520107bc8854005b2096b31981a624n/aHeodo
2020-10-29arc-2020_10_29-H9210.docdoc 5b3acebc6baeb90c5d7a614bce180548fc26753571e87577df3d4a42529bde4eVirustotal results 36.07%Heodo
2020-10-29DQA44956 20201029 SHJ6047.docdoc f93b2244f0e3fc1dd8ad428bea4ce02820a32d5a444eb2d4848f150252dc7daan/aHeodo
2020-10-29REP AO059335.docdoc 99db7a0e3b100982f31ffee540f8fd2418200a74e24ae05dcbbd1974be87525en/aHeodo
2020-10-29arc 8525235.docdoc 131c6bd5dfe6fa22b22ee9a089ef38bcbf255dfd62f14fd565acc4c2c65f5b85n/aHeodo
2020-10-29INF 20201029 WD464529.docdoc 0d72680f8031149a17316677a0247a82b13666f06e2508f5350bae8be8b8f85en/aHeodo
2020-10-29Mes_91079.docdoc 947359baeda91df2475d551cd36248ccbc371bfab378fba634176d4fe1bc46c6n/aHeodo
2020-10-29file 20201029 5683034.docdoc 1057624fd741f170fc4a05bb538ab9a3d863abf1ca31d713b1d13cd57a03e8c4Virustotal results 26.98%Heodo
2020-10-29Arc-2020_10_29-086.docdoc 697d945ff47046f421017a4ececab19494f8ec8b9d59abc54fd159fdaf1bfcafVirustotal results 25.40%Heodo
2020-10-29rep-NKB071722.docdoc 9f69df62156f924a3ebb07f523ae55f5b4df5682fbb6a211b5b71efa94a8766an/aHeodo
2020-10-29MES-2020_10_29-6106461.docdoc c59b1b726a72aa7b4df2f72a8eb97bca6345ce1d1400b6cbb7896bd8bf41a27cVirustotal results 26.67%Heodo
2020-10-28FILE_20201029.docdoc 04b243a2efe01d1aa2571e0e152e721d4bced5a7f0f115c64b84ed77f2c27be8n/aHeodo
2020-10-28Untitled_420.docdoc c05fb70a40c0550356929b11d569b80527b930845a011f0e564e9b3f6bb03ffdn/aHeodo
2020-10-28INF-9869248.docdoc 79144d6d13b065f90df03aa72c81e9b96492fb861b5e5a46228133dd3994d35bVirustotal results 25.40%Heodo
2020-10-28Dat_2020_10_29.docdoc c47e2824a0c7956c6d3e86bc3b599b19f2eb9c2136949bda71de8e4a5009b49dn/aHeodo
2020-10-28ARC 2020_10_29 9390157.docdoc a0ed553b5f31a05b21e762a33f83951aa1260501b876dc77310c8612e3c1c788Virustotal results 23.81%Heodo
2020-10-28Attachment OEH700993.docdoc d5108309f2b1190ee402af5de7539ff4bd27c98c5171cbcb83a30547e5ae6b5bVirustotal results 25.40%Heodo
2020-10-28doc 20201029 DVB000.docdoc 4edab4495971019955bc08cb8821a40e100a9023fd5cb8d977aebabbffe4ba14n/aHeodo
2020-10-289884000_39668.docdoc deca82582311d3d0f6c7bedcd61f0156c5c9243afcec413f2a3df3d7695cdce2Virustotal results 23.81%Heodo
2020-10-28Attachments-20201028-PAA979.docdoc 85679073310e9e6b9f5e274084e661d4947f4c5ab7042d40b9a204ba09447799n/aHeodo
2020-10-28MES 2020_10_28 5738405.docdoc f8737856e31ea2ffdca500aac02bbc42ddfaa94bc5f2e1676be6dfb42092413fn/aHeodo
2020-10-28MES 20201028 E309217.docdoc 8ec484a33a9d6faa812349834788233eb6831589c4190ec8431302da9c9e0757n/aHeodo
2020-10-28FILE-20201028-DQJ9584.docdoc 716c112ebcee979e93345ccc79914c4b31d6067f2473cfddda1f8d265d479065n/aHeodo
2020-10-28rep G468.docdoc 5e86107439d266970019aa47fddd58d56bad8115dc9f0741ffa779dc96f6721aVirustotal results 17.46%Heodo
2020-10-28File_20201028_939257.docdoc 1beec5bb24132a128d8578e0a58f3f03deebe026ca66c2066aa03d598ce48959n/a Heodo
2020-10-28rep 20201028 UM0920.docdoc 4099625585c58edcd07383d898ca0e64e51e6a7751c4b45cf9a52c02cf51c1a9Virustotal results 16.13%Heodo
2020-10-285040-IC977.docdoc fc1b6ab8e7c3ccf173d0bc6d16116aac495b7f348ce2744164028f6dbb76576dn/aHeodo
2020-10-28Attachments-NTV0328.docdoc 1029a93c4312651001128b1973e428ac1a6de1dd4b3ed70391fa7f308743abbbn/aHeodo
2020-10-28list-517735.docdoc 03616286275b9a1fc46caf41606be27bef1624414a0af8cafa54567658230dc3n/aHeodo
2020-10-28Arc-2020_10_28-32077.docdoc 55a002d459154621f83057c35c95dde251cd904417d9f2e6f3d7f89b96de5acen/a Heodo