URLhaus Database

You are currently viewing the URLhaus database entry for https://bazarsanj.com/wp-content/bAC/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:770237
URL: https://bazarsanj.com/wp-content/bAC/
URL Status:Offline
Host: bazarsanj.com
Date added:2020-10-30 17:34:06 UTC
Last online:2020-11-02 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-30 17:36:25 UTC to whoisdb2005{at}gmail[dot]com)
Takedown time:2 days, 16 hours, 1 minutes Poor (down since 2020-11-02 09:37:45 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-31Mes_AP9650426416JC.docdoc 858159295a83a85ce85a8e18a4398873eb02dfa32012325f963ab2de57c8c0aaVirustotal results 56.25%Heodo
2020-10-31dat_953185294939037283258.docdoc 4bab596233b6ee4131996d95b9d863e6833d285d6f87dd2bd841f2682b6146a3n/aHeodo
2020-10-31REP_63897631.docdoc 369deae0aea3bfa6e8367f494d149dffe4c9a5f821bd8270c06016f0e6923227Virustotal results 52.38%Heodo
2020-10-31Untitled_PO_10312020EX.docdoc cdb79e413c85c2fa4724ac77b430ab5a6a0c770f7f6a640fec00d946a93f5e09Virustotal results 53.12%Heodo
2020-10-31NDA_100120_KIS_103120.docdoc 780ffddf2dd1fac9d6fc091c707c84751ea2180a253431c3b4700989bd3fc21cVirustotal results 54.84%Heodo
2020-10-31Attachment_TL2339657808HG.docdoc 0ab261e8e21a48f3423dbe6d18512f5e2afbd09fd31af5d5c45d2814c2c709afVirustotal results 53.12%Heodo
2020-10-31Attachment_79549275.docdoc 289f8b4babc8f697bcbc3125ded9cfddefa96b986243538034beda8361d69a26n/aHeodo
2020-10-31FILE_8VRGHRUE.docdoc c586bc35250934f22523a7bee6291bb320a8c31a1c2cda2689c51a9a65796524Virustotal results 52.38%Heodo
2020-10-31WRX_100120_GGY_103120.docdoc b104e5360f8f17268449e97ba36749b921cf7cdd797fdb8a28ffe20d8d9c59e4Virustotal results 54.69%Heodo
2020-10-31FILE_01546534.docdoc b6fe7dca5aa33eedca9590aacbb7a67d89dc6c1a98cee170aca2c47518e01ea1Virustotal results 54.69%Heodo
2020-10-31arc_241842876689.docdoc 12ef90a776bc1f4ae05962313e6b3711ec5211f8ba450527585d2da80c2d03b5Virustotal results 51.61%Heodo
2020-10-31J_VE4952004414TF.docdoc 41c1aacf38f4e4b127131377357db324852107ff972122bb57ec3ba8f894a7bdVirustotal results 53.12%Heodo
2020-10-31ARC_78701102.docdoc 9c96edb7b23fe316d7ea6705b137c283da2aba4f7dab4537a681e7e5d031b0eeVirustotal results 25.40%Heodo
2020-10-31DAT_UQ0929183329BC.docdoc 665ca5b6b8e24008d94bd73e8fc3862a558d2074f35ab952eb016e2ecfb2c125Virustotal results 26.56%Heodo
2020-10-31Q99A8II7P0.docdoc 4946591b7b99f626dafd98d333aa5c669ce9d3772e5ff1dc85e5d1cec281db99Virustotal results 26.98%Heodo
2020-10-31RX5229346869LB.docdoc e5cd96964e28663db382662eddfbd4bcd53693acaa9f14bf3c7382c61a16aff5Virustotal results 26.23%Heodo
2020-10-30ARC_XRV0CS85U8VE7X2.docdoc 9918cf9fc52a9d19fe483b17d847fc7fa23d4fe150c5df91abb94e61e932cf1cVirustotal results 53.12%Heodo
2020-10-30Attachments_KNJ_100120_VFX_103120.docdoc 621f149c8fdf5abbc449baa3bc86423a799301ca3017950f0b173a6977033e88Virustotal results 54.69%Heodo
2020-10-30Arc_16657953971618.docdoc 49931e499615a1dc36cda98151d3c406413f1c47504b38f2bb658631313c273fVirustotal results 54.69%Heodo
2020-10-30Rep_DC4627138712JQ.docdoc 5041a2eae4b04f23df9804031b3a30e815e0c2310bf42d82176cb89618617933Virustotal results 55.56%Heodo
2020-10-30Inf_RQO_100120_BFE_103120.docdoc 4a1ebe8938ac9ac6ae7b502c4561bf514bc47ccdb87abae9777a5ac526d6540cVirustotal results 54.69%Heodo
2020-10-30REP_VX8313759802WE.docdoc d577446435b94d0af2a829f1160b594e95c8051f6b069400ff61fa38d151ba54Virustotal results 51.56%Heodo
2020-10-30PJQE_PLMFV96SDHK.docdoc e37545649e9e7c9250af64a93a2fa3e37fd90ab7f9c16e96b4469290f309b52bVirustotal results 23.81%Heodo
2020-10-30MES_65478029172855718.docdoc 0df4e83145becd16b2074bb93563596b613e43856bbd653b98a316f5d92ab817Virustotal results 23.44%Heodo
2020-10-30UO_0216437395264090720390.docdoc 75ca20340c21dbd94ba3ec4c8eeb14f3a78e68a955701cbdc754c29163674a3aVirustotal results 33.87%Heodo
2020-10-30Attachments_PLHZHR7E58ORSZO.docdoc 894961b5cd902ae1bd280ad4d906f510e47f2d02fba5fc278823a37eabedcc7fVirustotal results 33.33%Heodo
2020-10-30List_EH4091633281KM.docdoc 1e363452c2a67d40f01390488a99f68ce6fab805b45eab93ee2db2469bf1b05fVirustotal results 42.19%Heodo
2020-10-30PO_10302020EX.docdoc 5fc665986d6e0e5763554e4d9f9db9ccc61b2c20fc408e955d286a458f622f48Virustotal results 47.62%Heodo
2020-10-30FILE_KYX_100120_VPE_103020.docdoc fd3709987d90ec9e862505d3a6f65e06a16420f87fa87b9ee4d40edb9dd8f5e0n/aHeodo
2020-10-30file_A4PNVEA4HC.docdoc eb5d0c08628c3ec2c081dc472157b78cff5ee705d96de5cd061c582c575bb7e9Virustotal results 44.44%Heodo
2020-10-30Dat_AKCOGA46HUT.docdoc 95f86b4f2c917f1be1fe02e3566a23e45621c342db18356aa485387fe799b06cn/aHeodo
2020-10-30FILE_00C43RAYVH4N.docdoc 5aeb983f62e296373a25bdde163ab799f0bd688f40567310960f16b815921687n/aHeodo
2020-10-30File_GZ7646589266DK.docdoc 12b4329a9b823283ea081ce2769d7115a1f1922106019611973ea41b4dae5fbdVirustotal results 42.19%Heodo