URLhaus Database

You are currently viewing the URLhaus database entry for http://diezon.ir/wp-content/CNy2tEEA15QrlFxOZQJwZ2BHiNHcRjZtpBd9uks4GR4SsBcvFpy55XIGS9BlN/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:765365
URL: http://diezon.ir/wp-content/CNy2tEEA15QrlFxOZQJwZ2BHiNHcRjZtpBd9uks4GR4SsBcvFpy55XIGS9BlN/
URL Status:Offline
Host: diezon.ir
Date added:2020-10-29 13:34:15 UTC
Last online:2020-10-30 18:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-29 13:36:39 UTC to abuse{at}ovh[dot]net)
Takedown time:1 day, 4 hours, 46 minutes Poor (down since 2020-10-30 18:23:15 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-30FILE_FWE_100120_PTG_103020.docdoc 251276d83391acaa6629840a7607dd14966d1be54c7e8037b947e5875d412620Virustotal results 42.19%Heodo
2020-10-30list_RZP_100120_HFU_103020.docdoc 12b4329a9b823283ea081ce2769d7115a1f1922106019611973ea41b4dae5fbdVirustotal results 42.19%Heodo
2020-10-30Attachment_8FSFDOY2.docdoc 33478c951541dfc62cd1b974afa9e6be46b51b140a5228aa4f34f417a17b8a64Virustotal results 42.19%Heodo
2020-10-30NIZ_100120_GIB_103020.docdoc 7c159d17e809a78bad3e024cda533ebab493cc8519755e2946af59e11eac9ebeVirustotal results 42.19%Heodo
2020-10-30INF_BFQ18W2CFUF7JO.docdoc a3c09116b3564a812d894ab750990565e22b18b97a47c138b3b271f1e7e5f666Virustotal results 42.19%Heodo
2020-10-30mes_PO_10302020EX.docdoc d36fc443a8a4b5f37847f531ac138bfde6a960224bd3c0878d16ca60c2c02094Virustotal results 42.19%Heodo
2020-10-30arc_DIXBW514TA87T.docdoc 390be22b6546961bdf840560ab4b25598b3b46211ef3c9e4caffbcbce597fa4en/aHeodo
2020-10-30List_PO_10302020EX.docdoc fd63dec89395fb5024155fdfa24256fc31add9f974f2870e11fef458790d425fVirustotal results 40.62%Heodo
2020-10-30doc_UVT_100120_EHJ_103020.docdoc 1e363452c2a67d40f01390488a99f68ce6fab805b45eab93ee2db2469bf1b05fVirustotal results 22.22%Heodo
2020-10-30list_72377290.docdoc cdb79e413c85c2fa4724ac77b430ab5a6a0c770f7f6a640fec00d946a93f5e09Virustotal results 31.03%Heodo
2020-10-30mes_ZLR_100120_EXL_103020.docdoc f22c7ee8f3ce55dbab2a2636dc155d39ae98cb927962f0f88fe3f85bd28c44f6n/aHeodo
2020-10-30PO_10302020EX.docdoc 39991605b314bb39a573ea29a1b1cd2904615afe76292c0f3b6afac181a0d6d0n/aHeodo
2020-10-30arc_DB2294481391DD.docdoc 665ca5b6b8e24008d94bd73e8fc3862a558d2074f35ab952eb016e2ecfb2c125Virustotal results 26.56%Heodo
2020-10-30Inf_CLF_100120_YBU_103020.docdoc 9918cf9fc52a9d19fe483b17d847fc7fa23d4fe150c5df91abb94e61e932cf1cn/aHeodo
2020-10-30Attachment_RF48A8D945TH1P.docdoc 22a4eae8735782a3f12e3f7ee5b6d0839cd7c4a8b91dce6ce27e2414b2e5f817n/aHeodo
2020-10-30ARC_9NCXPLHCCOL59.docdoc e37545649e9e7c9250af64a93a2fa3e37fd90ab7f9c16e96b4469290f309b52bn/aHeodo
2020-10-30dat_XBM_100120_WPU_103020.docdoc 0f9fa4196a70c17aea46032195862b2f14826f4025f77a1de80a8cdb86673a17n/aHeodo
2020-10-30Attachment_PO_10302020EX.docdoc 6263b8ea9431ac48bf402098737c84a9cf49c01488319875132ef15ef7d5c6e7n/aHeodo
2020-10-30Doc_PO_10302020EX.docdoc b86e09a5bdebde57bd67e1fa11ddbd3381e5972d091fdc61b68e34226fabf084n/aHeodo
2020-10-30Untitled_UH4286397921ZH.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948Virustotal results 40.62%Heodo
2020-10-30file_PO_10302020EX.docdoc 9ae7942321b9360d2c19a2199e6f2e21a3436b97787133280c3d267a00bd6b6fn/aHeodo
2020-10-3081140975.docdoc a120ab7f12256c4b260034ecf26910f2eb405bb2c41ea9d1d78fcd2f529d2debn/aHeodo
2020-10-3024505265093742871.docdoc d81b2611e96c81a6be50bbbfbdc04309f10b987317f1bdbae24d2e90a216df11Virustotal results 41.94%Heodo
2020-10-30FILE_ALH_100120_UDB_103020.docdoc f16118ebe3dbd05212ed3e350e3d509e02c403cacf34497532c50e1be09b7e16n/aHeodo
2020-10-30File_74926616.docdoc 248dc97004f5088a900ec8be3559432f63cfe88eb7d2935c5161846dc778d1fan/aHeodo
2020-10-30mes_ODE_100120_TTM_103020.docdoc f39a18ddfada38fd5b1f2c0c242c50c50fc842b96af2c528b843c6e8a155379aVirustotal results 37.50%Heodo
2020-10-30mes_GKI_100120_QOB_103020.docdoc ceac47b63a26dc75f489b8882600b4a6ffee7b0c5b5dca3ef7732746cd3ec229Virustotal results 40.32%Heodo
2020-10-30Attachments_7W7MIKZW2OQ.docdoc d938809af2f315ccb3059ebdb60f135d1a78267221ebe954f6ece48ad1c4851an/aHeodo
2020-10-30DAT_PO_10302020EX.docdoc 4cd342f5baeddb3b9ce82b0f360ee43411ce30c8abede6b1f2a8181ed08da110Virustotal results 39.68%Heodo
2020-10-30Inf_DRI_100120_VVH_103020.docdoc 0b7f26dc76b83127cdf687f818e652f050a9b3726aa76bc30947f94e4e25ffd4Virustotal results 40.62%Heodo
2020-10-30List_BQT_100120_BXO_103020.docdoc b8e37cb47da5ecf96e85afba207c615504c6e0d63335b4d2b9304fda9543eeafVirustotal results 34.92%Heodo
2020-10-30mes_64616315.docdoc dadbc26e625015d8adce96198388664a77553836c9079db77d9084f5140a64e6Virustotal results 35.94%Heodo
2020-10-30Arc_91408766068251626275.docdoc 08ccf72998255b13e254a272fd34c02fa515b00674da72aa51f9409c529bd80cVirustotal results 29.69%Heodo
2020-10-30Attachment_7405188975493977359340.docdoc 2fe61550011a52e12cb324aa8cd06faeece3d1f05ae42f1c51bb7e055a647877Virustotal results 30.16%Heodo
2020-10-30Untitled_2722400725726702119.docdoc 7ae6e150fde20638c5cc89c0b4c088593eb3879f0f6567e9c4cc14069b9ae204n/aHeodo
2020-10-30Dat_LNZK37K75TV.docdoc 305ddf290299c5d44566fc1876fd2acdaf415734fbba7e020104a22498a725a0Virustotal results 29.69%Heodo
2020-10-30file_899388984126636661210.docdoc 785620ae5f3c011f3939803b6f7da0f097c81d008495ba545b805d7edf1fd707n/aHeodo
2020-10-29List_9937216211.docdoc eec673d1180b8765a6d45f7e7164e7e86024dce5cd09472669369e410fa5d161Virustotal results 27.42%Heodo
2020-10-29Dat_2WWH1RM9.docdoc 5eb2cd7fd89bc000cab80454ba0da8cb954a960d3b415bc26039832a7f6f7544n/aHeodo
2020-10-29Inf_PO_10302020EX.docdoc c8a48cd16e560bb22ad74fe50ff278db8d542241f7ee298dfb9a902614537a3cVirustotal results 26.56%Heodo
2020-10-29file_92905438.docdoc f69a365c0b551ac35010e98b64364feedecc32dae4284fb4afe62ced4b5d17ebn/aHeodo
2020-10-29PO_10302020EX.docdoc aa9631cdb98dbe55b81b029660a0589039561664b34f249207dc0d83e273a030n/aHeodo
2020-10-29doc_6FCX7F7HB.docdoc c685520233b6d670ab20445051b6688bac6affb5c8b99a71213937d99ac9e380Virustotal results 25.40%Heodo
2020-10-29249852798812042.docdoc 9f944d45d5e7d40e9f1fce8f48c7fae48a14b56666b6c149b9a2f028567d2019n/aHeodo
2020-10-29Mes_7S9TKBA386BQ15D.docdoc 30afb0ba6cad7d0adca2d6200ecc891e79a8901808aa35a78dc2e03b6b1b3fean/aHeodo
2020-10-29FILE_SR4002218789TC.docdoc eb4e38eca100cc2ec56b63dcb64261e5267212ee4d3009b7a9bce98cd60bb50cVirustotal results 34.38%Heodo
2020-10-29INF_8106057520480.docdoc c864f510cfcaca5ca5acb2a8ef66706e173195d47f0bc0956f1757e9f74325d1Virustotal results 32.26%Heodo
2020-10-2958287259007.docdoc 0b74633d036ac8233bded3d64b518761e82b826a5fc4ed0e71485fd5d8560f25n/aHeodo
2020-10-29FILE_UHK_100120_JJL_102920.docdoc 51657b8a72e7e81349ee2744529184125522759769f93b02aebc3a2d33fddc2bVirustotal results 27.87%Heodo
2020-10-29Inf_57326020.docdoc 060a5c65a7cc6ecfa1290f84d608e94a147a447e1dd75ceedd3490ab079b6e74Virustotal results 31.25%Heodo
2020-10-29INF_FT1161416544FV.docdoc 2d94f5620906f353b2bda6b6eb984695737cdecd6ddc88ca747fad5bc457d090Virustotal results 31.25% Heodo
2020-10-29E94E2D0XC534PS5C.docdoc 542607ccac2f39cec525786fc1e27c06359a30669af200f8cd1974e15680fa73n/aHeodo
2020-10-29dat_73453878.docdoc 32eb83b21811e1d39d4c68e15a5ff6a2b640161c0960cdfd4dea92a72f368a2en/aHeodo
2020-10-29dat_PO_10292020EX.docdoc 837f8783d77afcf060f98f1a7e0b2ad270f9b42780812799d499b0d8c9af1f37Virustotal results 31.25%Heodo
2020-10-29list_GI3213500693XG.docdoc 3af2330541725b01e66ab71bd1ebd82228c7332702710047e77658bcec52c8f3Virustotal results 30.65%Heodo
2020-10-29VP_KDE_100120_YNG_102920.docdoc c0ed3a0650c71fa45b196ae3af361c4b91d38f00db69b912eaf14f2aeb543affVirustotal results 26.56%Heodo
2020-10-29Dat_86541439.docdoc ccc94ba056101ead7adab466b9b4780b16a85dff204b246ae7094f9bbe79fdacVirustotal results 25.40%Heodo
2020-10-29Attachment_809RIPK68V6SF73.docdoc 99857fbf70a8f28cea7e04d87e230a5ac8003391f929a597df5f173b6aba145bVirustotal results 26.56%Heodo
2020-10-29File_VT3511753391PU.docdoc 75df04fe2bbfe95af6c2ff3ad6beb372645597b0350f6cc16f995a09e27da829Virustotal results 26.98%Heodo
2020-10-29list_XZ2539104415EN.docdoc 4d79f7b9c974fdf5e44ca20f71261e3064ea8bae3f64370f06b74c2bce894b67Virustotal results 28.12%Heodo
2020-10-29Inf_VSV_100120_SCG_102920.docdoc 2d52e6dff2839f2f2b4c4e01290c96b9b924d0e8f276847481da31dfea122414Virustotal results 28.12%Heodo
2020-10-29arc_58179962.docdoc dd1f36356c3a35bd4fa5c58dbc9798b01714e04d123539649c3932a8164288b8n/aHeodo
2020-10-29dat_91375950.docdoc 5db58ed4308eeb76f9c66c885d4f1b53530d6c42eac9d755e67bf41989094087n/a Heodo
2020-10-29DAT_QC7390080270AX.docdoc 6b1f7e5a0f6190b5197e49dc08a98a69963e68443f96780368895b0bffb30cb0Virustotal results 26.98%Heodo