URLhaus Database

You are currently viewing the URLhaus database entry for http://ramyplast.ro/IRS/IRS/Verification-of-Non-filing-Letter/12062018/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:91465
URL: http://ramyplast.ro/IRS/IRS/Verification-of-Non-filing-Letter/12062018/
URL Status:Offline
Host: ramyplast.ro
Date added:2018-12-07 23:09:57 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Status unknown
AdGuard :Not blocked
Reporter:@Cryptolaemus1
Abuse complaint sent (?): Yes (2018-12-07 23:10:43 UTC to abuse{at}simpliq[dot]com)
Takedown time:2 days, 13 hours, 26 minutes Poor (down since 2018-12-10 12:37:27 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-08Tax Return Transcript.docdoc c756afbd3876586b79f4d54ff38e623414f3809bff42d0f93df1cc1cb1908057Virustotal results 31.67%Heodo
2018-12-08IRS Record of Account Transcript - 12 08 2018.docdoc 8b073357cebf5cb507cf0cb9ff403897c37a1ca8198b3b1b3914fe6912cf3393Virustotal results 32.20%
2018-12-08Wage and Income Transcript - December 08 2018.docdoc ef5945dd2a8e6bc06da0ae94bb2eb29ecbab51787656c51ddb37b503fb5a1abbVirustotal results 31.67%Heodo
2018-12-08Record of Account Transcript.docdoc 89e03966089741a0d480974c6aca70f55b70894403b79a2b0d875c257d6c1f91Virustotal results 33.90%Heodo
2018-12-08IRS Record of Account Transcript.docdoc 05344cb3bd789c3f0a9631ec7fde840dff51da5080d7eb4dccd0af0b5e130c01Virustotal results 32.20%Heodo
2018-12-08Tax Return Transcript - 12 08 2018.docdoc 754c5ad69cf061f0a47fada60c8d078751fff34db40d1b8d933956ef21a97305Virustotal results 30.00%Heodo
2018-12-08Record of Account Transcript - 12 08 2018.docdoc 5e119d878717e28eb77dd19ac43f15975451bba4b342a6bcaefced27362419b1Virustotal results 28.33%Heodo
2018-12-08Record of Account Transcript - 12 08 2018.docdoc d993444d5aea1ba0d232856d5e601d96a91955f4303b3bf0e5671c8b8f12c660Virustotal results 28.33%Heodo
2018-12-08IRS Tax Return Transcript.docdoc 41dace64fe38f8d52fc1badc418a93b5cdf2d3b3369447bc1cc614f306a6a8d4Virustotal results 26.67%Heodo
2018-12-08Record of Account Transcript.docdoc 470c069a01b379d4f30180bbc16f1ee98b65835098e25efb3963c14d1d840846Virustotal results 27.59%Heodo
2018-12-08IRS Tax Account Transcript - December 08 2018.docdoc 20f97c018dfe769d330ca4cba363b59217b2760962f5b0f757dd0289807a9320Virustotal results 28.81%Heodo
2018-12-08Record of Account Transcript - December 08 2018.docdoc 826811441d977b0382804446e85a4f7b699b722ab10af8e51d55dcbcb533143fVirustotal results 27.12%Heodo
2018-12-08IRS Tax Account Transcript.docdoc 66bd32f7038de80236af8561bc6fb817aa74428b7bce1293b08cf7a0846ef8caVirustotal results 26.67%Heodo
2018-12-08IRS Wage and Income Transcript - December 08 2018.docdoc 6d8521c2625572ff99f4f070ebf55c5506d33d985e9a911b85050879caf6446bVirustotal results 30.51%Heodo
2018-12-08IRS Record of Account Transcript.docdoc 4f71793d4554bc23f92732c8af59d198442cdde1ec13020626b40292c8625a79Virustotal results 27.12%Heodo
2018-12-08Wage and Income Transcript.docdoc cf88e56a49dfedd35d6f17bb23549f69eab86fc825c73a6ef4d1881458e072b9Virustotal results 27.59%Heodo
2018-12-08IRS Tax Account Transcript - December 08 2018.docdoc cfdfc3a8ae2a6f34547511e3dbbbcc5f3b8bdaa3f37d6e724026de86b16bb6aaVirustotal results 25.42%
2018-12-08Verification of Non-filing Letter.docdoc 0f5433ab920108d28f85dd26b966eea92d5b6b4139b25d3c0e3d5633d49264c8Virustotal results 31.67%Heodo
2018-12-08Tax Account Transcript.docdoc c8ab717c4553172911faafc6c020f43c3f0b85baec666bd59b2f3b1c8aed72c3n/aHeodo
2018-12-08Tax Account Transcript.docdoc 7a2bda6df939e340e57b5ee7c1b37487d188d279dc924d38137cb4825b506393n/aHeodo
2018-12-08Wage and Income Transcript.docdoc bf7e43985f10c4b4fea122355b61329fadd293385c9abc981fe663ac531509d2n/aHeodo
2018-12-08Wage and Income Transcript.docdoc bf3be68b7c4213331aa70774dac0b6b40e39fe2855a0720581a6d961cdbb1ed1Virustotal results 27.12%Heodo
2018-12-08IRS Tax Account Transcript - December 07 2018.docdoc 8abe7f7f8b1048b82938b7e695e1e03ef33e5410b3a89339c8424edf30e89225Virustotal results 32.20%Heodo
2018-12-08IRS Tax Return Transcript.docdoc 89d8c90d091111f17323aae268bc8732132c82b6507a6e4773378a2e288e1fbcVirustotal results 31.03%Heodo
2018-12-08IRS Tax Return Transcript - 12 07 2018.docdoc 14f4ca94903e0d46fe1a24bc6b0468ec0166c2cd244fd5774d209b39600d1f90Virustotal results 24.59%Heodo
2018-12-08IRS Tax Account Transcript.docdoc f6ca28dcc49788bdfdbfa43a75b0c429a52529e03e962e6bc8da456dafde5fd1Virustotal results 31.15%Heodo
2018-12-08IRS Wage and Income Transcript - 12 07 2018.docdoc 0c12a101913d4ff5a1613c5ca147235010635efb9d85d6925fbdc979fa56182fVirustotal results 30.51%Heodo
2018-12-07Record of Account Transcript.docdoc 80faa5c5d5b3706f86bea365615516ce17e326fb60920dd4ab5324ae10b0502bVirustotal results 31.67%
2018-12-07Record of Account Transcript - December 07 2018.docdoc 72bb1315002e0b741a29fd87bceb1e548bac6207d0548f44ad87ac13c2462fe5n/aHeodo
2018-12-07IRS Record of Account Transcript.docdoc 7033d30521f5317ca3cb9cb901a7ed4f70e3081072502239ae5b6364819907b0Virustotal results 32.20%Heodo