URLhaus Database

You are currently viewing the URLhaus database entry for https://gshock-vietnam.vn/wp-content/TMKjXwQ7LIRrDbpBxRph0q1j9r7LSGt1sO4ETNNcH4Vvq7dk/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:767641
URL: https://gshock-vietnam.vn/wp-content/TMKjXwQ7LIRrDbpBxRph0q1j9r7LSGt1sO4ETNNcH4Vvq7dk/
URL Status:Offline
Host: gshock-vietnam.vn
Date added:2020-10-30 02:59:06 UTC
Last online:2020-11-11 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-30 03:00:04 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:12 days, 2 hours, 57 minutes Bad (down since 2020-11-11 05:57:44 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-31mes_PO_10312020EX.docdoc 858159295a83a85ce85a8e18a4398873eb02dfa32012325f963ab2de57c8c0aaVirustotal results 56.25%Heodo
2020-10-31Rep_PO_10312020EX.docdoc 4bab596233b6ee4131996d95b9d863e6833d285d6f87dd2bd841f2682b6146a3n/aHeodo
2020-10-31FILE_11418333.docdoc 396b664fbdde301d1ebedd54f4beacf4726ef9fe1d0807a86fe0b00e0a71772dn/aHeodo
2020-10-31mes_31050912.docdoc c0e896c6e7521d6431ca692ef69c30c605ab7e599336d9c027721e573d1b2161Virustotal results 58.73%Heodo
2020-10-31List_50531697.docdoc 780ffddf2dd1fac9d6fc091c707c84751ea2180a253431c3b4700989bd3fc21cVirustotal results 54.84%Heodo
2020-10-31dat_18674299.docdoc ad6530753d959ec1d3305730db8985d3f0fdf9e9ce893c2f8bd8873ab51f8fdcVirustotal results 52.46%Heodo
2020-10-31list_XJV_100120_OZW_103120.docdoc 96636e8803958a85be6974b0fc6c91e24526ae529a00c31dcfdbf3ed761c5304Virustotal results 53.12%Heodo
2020-10-31FILE_5788381403.docdoc 5f41c6d26db569d644da86fdc71dd2448e2850998f476944b09e1338411210f8Virustotal results 53.12%Heodo
2020-10-31REP_CS9483919268IL.docdoc fd8f13344d26c5d17c5e011b675168036c5f7265b73c84afecc0f34f5adaabeeVirustotal results 53.33%Heodo
2020-10-31arc_QWUM6G5YS58Z.docdoc 0406910d3c48dbd18d57086dcab9b4f73a8081dae9fac3010f0ae90b73c7c34fVirustotal results 54.69%Heodo
2020-10-31REP_C4W9T5I.docdoc d0173484a8073ed5336acc965770f3875b704785bf08f59a929f20c65512e1fbVirustotal results 54.69%Heodo
2020-10-31List_WUB_100120_LTS_103120.docdoc ffc63081ade619c07061526c15e53d5dd012da2e842f479fefc0c27f46ce2bebVirustotal results 55.56%Heodo
2020-10-31FILE_NCE6PS0EHE.docdoc 665ca5b6b8e24008d94bd73e8fc3862a558d2074f35ab952eb016e2ecfb2c125Virustotal results 26.56%Heodo
2020-10-31Inf_PO_10312020EX.docdoc 4946591b7b99f626dafd98d333aa5c669ce9d3772e5ff1dc85e5d1cec281db99Virustotal results 26.98%Heodo
2020-10-31file_USA_100120_NFC_103120.docdoc d1d8c0384f3780dd6287efc3e864f9fe60b6efe14f613f0cc2ec0efb0aa97dd6Virustotal results 28.12%Heodo
2020-10-30Untitled_PO_10312020EX.docdoc 84f8bd87a1f8207da3a4722b9eee322be498919fed6323fe33c0ce60ef7aadcfVirustotal results 53.97%Heodo
2020-10-30file_DU0313207489TY.docdoc 07b3f8c72f07dca70496f6c792df7c12b6b782090056851ccfa67620fe7a27bbVirustotal results 56.67%Heodo
2020-10-30FILE_JM3672074562UF.docdoc 14a8572928770f8d61fa05890c3e0a5cd4396bfde2ce2763d533e89d05120d34Virustotal results 25.00%Heodo
2020-10-30rep_TB8814300991EE.docdoc 917a6b067e825cb71b0d60b4e428f283cdbf100bcec01e467503d18077125c4cVirustotal results 51.56%Heodo
2020-10-30PO_10312020EX.docdoc 20a348277c58a86bab1a218fd2dc97ea61811eeca81bbab000bf5f0afa562b36Virustotal results 51.61%Heodo
2020-10-30MES_PO_10312020EX.docdoc 4a1ebe8938ac9ac6ae7b502c4561bf514bc47ccdb87abae9777a5ac526d6540cVirustotal results 54.69%Heodo
2020-10-30Untitled_PO_10312020EX.docdoc f2413a07e3362999d85fbab3f6c2fe8f228e4567eac899cd565ad65a2d0eede9Virustotal results 53.12%Heodo
2020-10-30595361507305586322.docdoc fee7c3d92d847b227a0310837bdd5bd774db43c7793d9e83c31405a79a35b9cbVirustotal results 33.33%Heodo
2020-10-30PIP_100120_MWR_103120.docdoc 8cfdaf7b364045782c53fe4094501d577114deba01267ff8e074d14d7d27833bVirustotal results 23.44%Heodo
2020-10-30rep_NYO_100120_STP_103020.docdoc 75ca20340c21dbd94ba3ec4c8eeb14f3a78e68a955701cbdc754c29163674a3aVirustotal results 33.87%Heodo
2020-10-30FILE_PO_10302020EX.docdoc 6263b8ea9431ac48bf402098737c84a9cf49c01488319875132ef15ef7d5c6e7Virustotal results 34.38%Heodo
2020-10-3002536480.docdoc 6270902fc810af901f9685bb0b3251f8cf96445514e9bd288b51d51156701665Virustotal results 25.40%Heodo
2020-10-30AV1817481649SY.docdoc 5fc665986d6e0e5763554e4d9f9db9ccc61b2c20fc408e955d286a458f622f48Virustotal results 47.62%Heodo
2020-10-30Untitled_CUI_100120_SNI_103020.docdoc 1b230d33228fd383eaf4cc6faa376c0173fb8ff8d70c42dc9ab1ee5eacb411deVirustotal results 46.88%Heodo
2020-10-30PO_10302020EX.docdoc b0f3557b0ac948f3137f3cc926504dbe28038ea00d282c81a33fd46b93af1c25n/aHeodo
2020-10-30list_MZ4448182067AQ.docdoc 023fdae311195c64889d2c87831a470d7c4826a755cd385729dc6bb02281c4e5n/aHeodo
2020-10-30DAT_PO_10302020EX.docdoc f49b970c0f5c5e742a76964f8ac3473e2b6a8558589d75cb54c5f7978178af16Virustotal results 42.19%Heodo
2020-10-30ARC_07826486193.docdoc 5aeb983f62e296373a25bdde163ab799f0bd688f40567310960f16b815921687n/aHeodo
2020-10-30list_13087575285170011.docdoc c3a3c4b5fe05e1cabea15022173fa5a6f9fb05c83f0cb2d70441f0d415fb9405n/aHeodo
2020-10-30UNTITLED_SIB0GFT9.docdoc 13d14b40f01d08656e74e969635a6cc3da85d7e7561d122d76d2e7f6a7b8960en/aHeodo
2020-10-30ARC_FG6LKTKPO.docdoc be0b7b1655cf76359f685b7367592ccbacace133e9a4b1180b5dd7c364d6be29Virustotal results 42.19%Heodo
2020-10-30Attachment_FX2395803945RB.docdoc ee781329e536d1270bc3e7ad2496b545535f3ceba3db2743fa213b6405d011a7Virustotal results 42.19%Heodo
2020-10-304089116591252715871529.docdoc f47484c61c7b2b0541690f5cfb219d2efe962b5204064435481f99e8ba92f95en/aHeodo
2020-10-30LIST_JA2503201596KW.docdoc 327e30c02dc57bd8f9793000a44e75fb252b493b8d289d2d96d9e6e167f1626aVirustotal results 42.19%Heodo
2020-10-3046582533.docdoc 62e102b2ca91bf58fe507a7ef4318f7cdc68777ffb02ff3698b2d79c1729c807Virustotal results 41.27%Heodo
2020-10-30REP_PO_10302020EX.docdoc f2ce2b3d2bf2f5d0f22eabb44f0b7c9183e0fea547e90ab926beae89d85cdf0eVirustotal results 34.92%Heodo
2020-10-30mes_56951816627839707.docdoc 369deae0aea3bfa6e8367f494d149dffe4c9a5f821bd8270c06016f0e6923227n/aHeodo
2020-10-30PAX_100120_YRM_103020.docdoc 72cbfce2d1bb68f6583a651975d64056490779254d19bbf18636a754d88688c3n/aHeodo
2020-10-30FILE_711985064210920.docdoc 12ef90a776bc1f4ae05962313e6b3711ec5211f8ba450527585d2da80c2d03b5Virustotal results 25.40%Heodo
2020-10-30Mes_WA6097697758HL.docdoc 9210f9032280641d080e5abde6a49a3032839cec91f757f2469a4eeeb4080afcVirustotal results 26.56%Heodo
2020-10-30DOC_821756260608408.docdoc 6a8e52f8792ecae215c55e1f73b2895cc0b304ee39db3908356b71ac38722b0cn/aHeodo
2020-10-30I_OV5948097868NT.docdoc 22a4eae8735782a3f12e3f7ee5b6d0839cd7c4a8b91dce6ce27e2414b2e5f817n/aHeodo
2020-10-30PO_10302020EX.docdoc 49931e499615a1dc36cda98151d3c406413f1c47504b38f2bb658631313c273fn/aHeodo
2020-10-30FILE_2659650493218475169.docdoc d577446435b94d0af2a829f1160b594e95c8051f6b069400ff61fa38d151ba54n/aHeodo
2020-10-30UNTITLED_76834629907287.docdoc 0df4e83145becd16b2074bb93563596b613e43856bbd653b98a316f5d92ab817n/aHeodo
2020-10-30arc_74TZRY06FE200KS.docdoc 1e363452c2a67d40f01390488a99f68ce6fab805b45eab93ee2db2469bf1b05fn/aHeodo
2020-10-30UNTITLED_07406741.docdoc f4983c5881da987bb4dcca9069e0134657dbd559cf50165c0f35c3f1c4595948n/aHeodo
2020-10-30Rep_682954654.docdoc 81f0a17e652679d94849f61bfd6679f35308909ce08fcbcfdfbf2d6c59d62ae0Virustotal results 40.98%Heodo
2020-10-30QQ_XTE_100120_NCR_103020.docdoc 3619ca27723e87006b7061bd608e1e02d5087392ec513cfe82ecec069074fbd7Virustotal results 41.27%Heodo
2020-10-30file_PO_10302020EX.docdoc f16118ebe3dbd05212ed3e350e3d509e02c403cacf34497532c50e1be09b7e16Virustotal results 39.68%Heodo
2020-10-30V91R1S5M3.docdoc a9e9b3f8a28330089d36e3ace6c5aa5ce2a38204767293a05e9c407ad2c4da4en/aHeodo
2020-10-30list_OPM_100120_NYX_103020.docdoc 7bfa1640c072951be3fb17704054b151541525eaa8a22606d94fc2d037a6a663n/aHeodo
2020-10-30UNTITLED_HNQ_100120_FQP_103020.docdoc aa221230a7342817478b117f2ed838ceb8290bb367bea08770c362b14c2fdcbbVirustotal results 39.68%Heodo
2020-10-30REP_60822805.docdoc d938809af2f315ccb3059ebdb60f135d1a78267221ebe954f6ece48ad1c4851an/aHeodo
2020-10-30arc_PO_10302020EX.docdoc fa59cf4c1af3d49c804914946132b59157e3d2f1eaf2d2d11a2ac0d5f2f3f2a9Virustotal results 33.33%Heodo
2020-10-30Untitled_5807794049745011885529.docdoc b8e37cb47da5ecf96e85afba207c615504c6e0d63335b4d2b9304fda9543eeafVirustotal results 34.92%Heodo
2020-10-30660742596.docdoc b2f80aa2efc9abdf137f78f830f2366b29e5bba74409138f8db1ed6163e25819n/aHeodo