URLhaus Database

You are currently viewing the URLhaus database entry for http://www.semra.com/LLC/US_us/Sales-Invoice which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:79481
URL:http://www.semra.com/LLC/US_us/Sales-Invoice
URL Status:Offline
Host:www.semra.com
Date added:2018-11-13 18:31:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@JRoosen
Abuse complaint sent (?): Yes (2018-11-13 18:32:03 UTC to abuse{at}online[dot]net)
Takedown time:9 days, 17 hours, 9 minutes Bad
Tags:doc emotet epoch2 heodo

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-11-15Invoice as at 15/11/2018.docdoc4d83ae97a2a4519611f5fb336a0edc2d2f146804d1cb7cfeccf5426c486217b5Virustotal results 11 / 56 (19.64)Heodo
2018-11-15Latest invoice - 580084.docdoce1355ffa14487ad7ad1c128fee80d069df9a759306e27af13d4432982bf81774Virustotal results 25 / 59 (42.37)Heodo
2018-11-15Invoice as at 15/11/2018.docdoc0026577339371a20ddcf20105b1d4a03481a0a8a16744ebb352f493cf18e2c99Virustotal results 18 / 58 (31.03)Heodo
2018-11-15Month notice.docdoc06fbb7a53a9a333713ceb60a3028b185c5c56390a59b856645e5de56673093a3Virustotal results 15 / 59 (25.42)Heodo
2018-11-15Invoice as at 15/11/2018.docdocaca1da7bd9ff4a712c5d1fa9ba7e31f0542d9900f2ba63b8b79ca9cdf2ec3b37Virustotal results 13 / 58 (22.41)Heodo
2018-11-15Review invoice required.docdoca68fa9f8ed8c7bc3a0b663478711188779da53030d526c6b61fcc5599caf53d9Virustotal results 13 / 57 (22.81)
2018-11-15Invoice.docdoc83dee1f1990891ea38420eec26c693d0d03ac4ce81a0f55961f873f24453db1fVirustotal results 12 / 57 (21.05)Heodo
2018-11-15Billing Invoice - Job # 5902640.docdoca4f49195578ffa5a9e0bee84d7a0564a1decf33c26f36a3318e2d555a0af6cceVirustotal results 21 / 59 (35.59)Heodo
2018-11-14Invoice as at 15/11/2018.docdoca33f028da4fff60c187e544697e5a0650a161870c1d2a3557228f4a3639a2d6dn/a
2018-11-14Invoice Query.docdoc459d9369d690f03e50a894f833ee4b9d2afb2dbf5715571f22f569ba81ef10feVirustotal results 11 / 59 (18.64)Heodo
2018-11-14Billing Invoice - Job # 9581044.docdoc2d660365b1357481c997aa4f1e47f6a4582449a093d818f7bbef855f8ec5a07bVirustotal results 11 / 57 (19.30)Heodo
2018-11-14Accounts - Invoice.docdoc39e842f9ec3af2e69a85758d8b9ff76db2e80a06feb212bac859635ff440390bVirustotal results 13 / 58 (22.41)
2018-11-14Invoice Query.docdoc0596aed5666ba8978f764e9b05e267d7fdc2d5542e6e6bc655f86e92f60e15c1Virustotal results 12 / 57 (21.05)Heodo
2018-11-14Customer No 5107147.docdocd38fa2555674a5382ef61e0e70aea16ef60458db45874c6194af846ba211fa07Virustotal results 15 / 59 (25.42)Heodo
2018-11-14Final notice.docdoce0cf3f7c97fa78a43bd0eafe498fbb4e3cd6e984ce3404818c74efb3a00bfbc2Virustotal results 13 / 58 (22.41)Heodo
2018-11-14Billing Invoice - Job # 620153.docdoc1a439c742f94f9d26249d179e00e31a9b47ad433c759b6f29b2c9a132a8b5441Virustotal results 12 / 58 (20.69)Heodo
2018-11-14Final notice.docdocbc58c43093f08e6714e0ffc32478b5ea717871b229e8604a64e006428421ea65Virustotal results 13 / 56 (23.21)Heodo
2018-11-13Accounts - Invoice.docdoce1b7154fad1606f317e61db6607e4e6b3d0c5467f905bc5ea50a988131a52a58n/aHeodo
2018-11-13Month notice.docdoc9ec61df541e65018dc5a83dd9a9c6cf5e83ede128daf86c66a7e89d66a1d393bVirustotal results 12 / 57 (21.05)Heodo
2018-11-13Invoice Query.docdoc58486ea97355ef0a0c02b35fee7a8bde449f393057e46301f8b400a2a943e0e3Virustotal results 12 / 58 (20.69)Heodo