URLhaus Database

You are currently viewing the URLhaus database entry for https://zzznan.com/wp-admin/NL9wu1TisXOy1RVpkCyGfvtoQe8r2Grvon8eggV0MNTeI7RUUBIi5ntluBkrAF/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	935859
URL:	https://zzznan.com/wp-admin/NL9wu1TisXOy1RVpkCyGfvtoQe8r2Grvon8eggV0MNTeI7RUUBIi5ntluBkrAF/
URL Status:	Offline
Host:	zzznan.com
Date added:	2020-12-21 17:13:10 UTC
Last online:	2021-01-04 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-12-21 17:14:07 UTC to abuse{at}tencent[dot]com,abuse{at}qq[dot]com,jsquare{at}tencent[dot]com,dreamsruan{at}tencent[dot]com)
Takedown time:	13 days, 14 hours, 29 minutes (down since 2021-01-04 07:43:12 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-12-23	S3RV9570XV.doc	doc	6a99fa281763f28746b1f915866c7f2897b69d09801f3b0ac0a61517f17d90e7	27.87%	Heodo
2020-12-23	IF4KXRSFZKPRJ.doc	doc	63725aa4926dac422d6710c815b80ad10e66b882656195a75ef13b9816cf7c53	26.98%	Heodo
2020-12-23	7O3ULY.doc	doc	9bba6813a6a0d038afc8a8bf8cd4e5beb879a954b0789d4d4e02cbd54d5c3795	25.81%	Heodo
2020-12-23	EXEKNKRT0P.doc	doc	8f1c045c52f380a3dee934291859c8a03f17ef3f96084c3819678fe14f22c0c1	n/a	Heodo
2020-12-23	QB654JVQNLFVKB.doc	doc	8538d00638c32a97eac2e8a9e1766a39268d8effa55c28026d3b75fe114dbc18	23.81%	Heodo
2020-12-23	ON4E2RB.doc	doc	afca4fb94300e4d7cd65cf15d802e9a4e1e6fe20051f8c2428b3a821bb3c8cbe	22.22%	Heodo
2020-12-23	TO3RY6JU4AY.doc	doc	15231bea81bede2d3149669c6501c6a8ee8338cdd374c53eb34c9737249b040f	22.58%	Heodo
2020-12-23	XXH940UVTT.doc	doc	1b7862cdd7e11129f0b2efba625efa4a4298cc9610881f0e2ecfef4299a10afa	22.22%	Heodo
2020-12-23	JXL1IHP.doc	doc	241c359520f4cef1af1de9d4789bf620f8086c7feb5aa2deba772b87aef3d514	22.22%	Heodo
2020-12-23	YJ3SVFTEJXMKKKUC.doc	doc	318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95	22.22%	Heodo
2020-12-23	FIQ5D5V.doc	doc	ebfadd85753d033e248aedd9f9c5772331aff8dc35049d0842e8c423d64ea08c	20.97%	Heodo
2020-12-23	5LW8P8UHYSQ5JX.doc	doc	f0a4ee510f94aaef257225740c62c4a65b2da3ced23ca6b1513b9fbe11fd3cd8	20.97%	Heodo
2020-12-23	PID960P9K.doc	doc	56355a08b488d103b9a4d6226e1cf2cac8bfdc7381febb47feec6b0eff3ac332	41.27%	Heodo
2020-12-23	65O5Z5X2A7M24PZH.doc	doc	b534c439ac7a89c6af82331ebd70e5b5ce5e13a2e871bb7ab122b00004605e97	37.70%	Heodo
2020-12-23	UN7PUFKV5.doc	doc	e1624ae5f5ab385ff8468ca483e628d08be7ee14d23f030d3682a3f97d360c5c	38.10%	Heodo
2020-12-23	MIBP0PT8RKHWI88.doc	doc	2cb1d46e5ca1af22841c4a613b16ee60be1c474065ae89053cc02c6d3740101b	32.26%	Heodo
2020-12-23	N1N8BWLHEQKFHZ.doc	doc	0351492c5d95a607178dc17826f59c46ee6ed33afaec7f54ad50d4e3935112cb	28.57%	Heodo
2020-12-23	QT2GGFZXLM5R.doc	doc	810ffc95c449b426c6bfc03c98c5e10cfbecbfff7858f10cd9c1c5ec29e2216e	30.16%	Heodo
2020-12-23	AJOXDKD31ED40Q.doc	doc	57f57ee9a02ff9b2983b7b3110a0269f0ac9cf44c8163805edac226aa6a5cc01	30.65%	Heodo
2020-12-23	XODKQMF.doc	doc	6983d0de072547b29fe27502cd474096e7831a387d6980280fd1519c1cd86025	30.65%	Heodo
2020-12-23	6EU8DUJ9IXUR5H4L.doc	doc	4640454cfd6ef0ed4ed3784c186840f5eae9bb870b37064a6f5ee53f245c325a	30.65%	Heodo
2020-12-23	D5Z8C8J9M.doc	doc	1f0dd0263393040d067ed555d604d764634263e4eb014755feb5d319af9db68d	n/a	Heodo
2020-12-23	A2IYM0I.doc	doc	80eec607b84d6c759ebbb5743e91d1ce1581bb83128c11b70467d1dd2e4beff0	27.87%	Heodo
2020-12-23	LJ7BVPW7WAF69B1N.doc	doc	158e3c1a9e0f1942aec57f44ff4569d2a576bad56846a77053f5b4f726c14258	26.98%	Heodo
2020-12-23	XNV4RZK7TO.doc	doc	9a8b914d6bb8ae09a04b32fc897fdb9a9ffc073975b436b031ac837b7eeefb0b	26.98%	Heodo
2020-12-23	4RC9GJF5N0SHEGXW.doc	doc	c693baac5d3227d362a0fe99ad187c18cde1f45a404c94c881d424023303a744	27.42%	Heodo
2020-12-23	TKROJZJN.doc	doc	9d2ad424f8d1a39e1cf83b8d64131bc94d8b8ecf787b626e1118e348fc967f10	25.40%	Heodo
2020-12-23	A6IL25KEQFNYE11.doc	doc	64e04bddf27b3d535ea895f4dc08267a98a4c401edadc68e3caf7f6f850c4f64	25.40%	Heodo
2020-12-22	MB6GZ2IO5.doc	doc	80565ed0ada236540991976a90ebc0b137d35995ba34993db276fd2808832950	24.07%	Heodo
2020-12-22	1FKYUSM8PXLA.doc	doc	893d0822b033e0d5ea0484d9a61ce0354833603684cfb54e8e493f2740641784	22.58%	Heodo
2020-12-22	ZFHH71AJIFLJ9NS.doc	doc	bdfab9675a34c6da34487f2c70f297960002e6c3c2a8e6fdc60ae7edbe67101e	n/a	Heodo
2020-12-22	C4IUYCUF.doc	doc	d4f5f3aaeeddc099dd63c275bdb2ae1bfcb6c3232c75e93fa0f670eecb36e518	22.22%	Heodo
2020-12-22	JOVLMP4H.doc	doc	f03c5a8d271acc63d9646bb77c30ddbb5fae5ad755449342e6c34b5ca71a6980	20.63%	Heodo
2020-12-22	X3AV1WEV7T1Z3.doc	doc	09539a4c4da9f2859e64cc2653090ed420b3788068156a3dd76a38c60dea7f35	20.97%	Heodo
2020-12-22	GYV1MYWT.doc	doc	44b69ab822ea1d2cea11bde2cbf85cb033e753dcc8b5e30dc49cb042d3310aad	20.63%	Heodo
2020-12-22	6B2YT5T0PX.doc	doc	7202951f9a61583025149c17fbbfd11c028ddf3fb0c080886b3022f117c9b0e7	19.05%	Heodo
2020-12-22	WEPIPXFZOE4T3V57.doc	doc	e50ca86a89c2be0f4e271feba71c17c73e846bfdfc1f3ebd69d442f098acc0a0	20.00%	Heodo
2020-12-22	Q7Y23PRM.doc	doc	b5cabad4213a8d3f738e1ad1145a3130b3f5fe2739bcb8e5aa1f1ac3fa3fcd7c	20.63%	Heodo
2020-12-22	AG53HUI47JH31A.doc	doc	a5bdf83f7a7007f23b721bd73c5219830d2685673835bcb9a2af37e47ad2603d	19.35%	Heodo
2020-12-22	L91L8G5UDHGOW.doc	doc	e5614cfb775d155e08d37cb94f971696d9f60791a83ac671d7e6929438337933	n/a	Heodo
2020-12-22	EQ8GPWUOE5PT.doc	doc	fabd2798310f1b90dc1321bffbfa1ee8c41695839459d40fd6e32618d3df7ccb	45.16%	Heodo
2020-12-22	53MGKL6I86DPNRYB.doc	doc	4665b18e5944f23543e9221d4726aac54759376ebfec0ef20574655e71d77076	45.90%	Heodo
2020-12-22	3O9QJCDJPLW0Y5.doc	doc	488f8395eba5921015765418ae513c78b43c6d199637c8f1df754431da65cb91	42.86%	Heodo
2020-12-22	SVFQ4E.doc	doc	5b4a0dc192486378dcf0eea12dc55425b6166fb54866abce0b8a339b36d2fa26	42.86%	Heodo
2020-12-22	G1YX3XFJGFD1.doc	doc	14bd83ddc0151fe3a56edd4209b619cd49a7ec1d198bb98d31972295a7b0375a	38.10%	Heodo
2020-12-22	M77TQG0.doc	doc	b6f5d596ae94d5a89345ffcca756a1f396c38980ff0403a0991f8f36a38533f5	34.92%	Heodo
2020-12-22	JZM968LP.doc	doc	ff2954eadcc20b415743bd17518e46bff0bd81c42bafb57b28eba3bed664b041	35.48%	Heodo
2020-12-22	TPPMAL09Y.doc	doc	da6ae027905e668507b86b9b9b4dd2dc2585d7ac3cb4800e01b88c63796e89ec	35.48%	Heodo
2020-12-22	R30BAJXEKCC.doc	doc	d1f80b7c07e821a23ed98aea9fea39b3cb0c0e9dd65fee3291a32c01a8086659	36.51%	Heodo
2020-12-22	5QF0PX.doc	doc	5d45aae2fb42f515daf99e0df859fe8fb728ded811e109bb5221a8b34bcaaed4	36.51%	Heodo
2020-12-22	H55BIXGUBMI9.doc	doc	bcd43a28292c3b23ddb842d173e09e82095f9de58af9eb9feec0035c916e8156	36.51%	Heodo
2020-12-22	6VMTX01.doc	doc	7292c516ac9113d592f6b1c71e307b9f68ae9ffd6b43230a57356f3ebdc776e5	34.92%	Heodo
2020-12-22	IASAZ0ZG.doc	doc	c36ccb44ed8e4738a008a47a2f239b959c43bccf182812765cb32671cbf943bf	33.33%	Heodo
2020-12-22	S1DVHQPZQN38Y6.doc	doc	f632c7ea1c66bf64c0739bf9fed1f3b60fb630f7cc9bcc6bf05dd0ee9bc26ccc	n/a	Heodo
2020-12-22	O9JJIYX7DN5.doc	doc	9720a3e0e322e5daf89a2d48916ae17a8d58eadcf34fdbddd7955ecf2d7007e8	n/a	Heodo
2020-12-22	P8FQMNV2T5X26MAM.doc	doc	bafc5c7e5ab808736b9a5cf9e676927645b1c02cf9834bf1feb49eb5c5954d24	32.26%	Heodo
2020-12-22	5DPZWPY71QSD.doc	doc	7b84062b282e976585eba365223c01dff9e42cf3351fe5c6e5df65cf22a2932e	n/a	Heodo
2020-12-22	AO6ASUN8L2JE9TZ.doc	doc	02170586397abeca0120b55a547fd80c877eb800f02d55c6aad2473b369f0a3d	31.75%	Heodo
2020-12-22	G6KEMPYIL52.doc	doc	01b23b3d610f9308bbf2c4e27581457a719ef6a98e8eb217241da2059b6df644	31.75%	Heodo
2020-12-22	ZINYQFMK9.doc	doc	5149cb89cfadd9c7f7be6ff7dcd70eecba452c53d75bd5622bbb334b4ae587df	32.79%	Heodo
2020-12-22	YTN9GP3TNABBJJN.doc	doc	9601f016a1235d605d270ec6de961991f18f2a75688f9c0b6d2cee36271c2143	n/a	Heodo
2020-12-22	9AZ6UV1VBFVP09.doc	doc	e832702bcd4a1bc593af89baf3e22083205d412a049797b164db2d6177678325	48.28%	Heodo
2020-12-22	2AB89ED.doc	doc	330855c6fb6887b109239e67fc7ddf99aa7173ca57731eea0aa95aa901dc099c	47.62%	Heodo
2020-12-22	II666MH.doc	doc	419de57605bb9474687edcff1207a053c0da9c08c58d7ad4671981603cc08743	n/a	Heodo
2020-12-22	9ZE0KMD0HQ.doc	doc	2e2845f894af1842a98bb01b55cf68757e6c573d1d97c11cf41818de4a70f82b	46.77%	Heodo
2020-12-22	LSA73YIFDKS8D.doc	doc	ba2bc32f4daa30fda2e05c5960a6a160167101889384e98690e6abbeff973434	46.03%	Heodo
2020-12-22	XPJARL8FQU7B8GC.doc	doc	6adf12a084ccf2eb6dd19a35742a35f03bcba878416ef83b9c520e17d55ac329	50.00%	Heodo
2020-12-22	Z2YX0YBP0ELMARFM.doc	doc	173291cf73cc4f82f9a217cbdcc192f4e0b7557e7068133ce2231a023a47ad28	47.54%	Heodo
2020-12-22	QVLZFBUZ5ZAD8.doc	doc	6c26774c4763bbbc05c970dbe0b96045fefbdffc80c2d7878e8ca8089f0215c9	n/a	Heodo
2020-12-22	WU6KAY77.doc	doc	2e9ec962d345ba4cd081dc1bd3c89f72f8e52fa86cc06152f1cab0ead72042b7	43.55%	Heodo
2020-12-22	3PE6GS1KV7QUV50Q.doc	doc	0c2c97f9c94b970cc23cc8f11be9fcbaf1630395d13060ca289eb0d9284b4a7d	50.85%	Heodo
2020-12-22	RGR62ZYPOHY.doc	doc	45defa35954d6268fe26f6ffec131a6de427af2f682079ef11852a33ff1db07d	46.03%	Heodo
2020-12-22	5EEZ3BPF4ME1.doc	doc	ba1218e38d9223acf507cfc1a458681e54567ca72f03040901578a63ffc0ba06	42.86%	Heodo
2020-12-22	P2C4BG1WQ31HLM0.doc	doc	47d01951e8e4d0425373658359ab6e4e764c29adf9f0a674dc51fc859ee31719	38.10%	Heodo
2020-12-22	1CQSYM.doc	doc	4be32fc9457cb3575d9f59665e4d11c4625dd3bff4cc13ff2f25aa739753173b	45.16%	Heodo
2020-12-22	CVEB4GKXC4PZDDT.doc	doc	36e30272eaee03a311d4a319756851478a523b1f106e67cde2cef69490fe3dc0	n/a	Heodo
2020-12-21	KZQW932YATP3S1.doc	doc	474bdf90e53ddd00548e4df1cb15832ba181a53459588ce07109ac9d69f7ae4d	39.68%	Heodo
2020-12-21	WWWPPRG5GZNWTVW.doc	doc	1b6b2ecc603828983b205c802ab3f8d0dda28658c0a31afc6aaff4024f2c161b	38.10%	Heodo
2020-12-21	15WG0Q4BP965.doc	doc	b0e697eb8ea66997602b281b7a989cdac530defaceadc9fba378fe5f7035bfd8	38.10%	Heodo
2020-12-21	SAWQUNRQO.doc	doc	199329cd5b35fa9650fa7ddb3597cc3c1c1e88242b94558bda89b7aa7bd6c463	37.10%	Heodo
2020-12-21	2HZ7PK0LRNIG.doc	doc	38a05045c1e8dd70252d43a09d6aaf12e75e21ee3f9a7153ad1c99101f28d933	38.10%	Heodo
2020-12-21	VWK8ISGOHELHW.doc	doc	fa13f739d7daab6441023db9bc57ce4f7a72a4ceb953df2927293d1155187b7b	n/a	Heodo
2020-12-21	KMGRRSSU.doc	doc	2719607de7f3a89aa9f7f9d319f4fa0047663655a7787d1dc640dbb0eccf0f0a	38.71%	Heodo
2020-12-21	9AO40YXLIJBA0EEI.doc	doc	95a4d2480290315c02470416ede2042f9a39ce8c447cacd3e4fa514460ddb9b8	37.10%	Heodo
2020-12-21	C079XIJR7S3HGHP4.doc	doc	a9f0983929e4cd87eda566f59d2b64fda06bddf030ea2d91dd3c244d558bfb7a	n/a	Heodo
2020-12-21	V6TY8I.doc	doc	54138600d3fb1cdeabb57a8d00b7d8a67f80c43c5b95cfe91b904c0bb1008dbe	n/a	Heodo
2020-12-21	IZCSDNNTDN1Y5.doc	doc	90e1495a2c7344bdf9fb28bad26f421f3a6354df2677d46bc90c664002fd7d84	32.26%	Heodo
2020-12-21	CR4CZC.doc	doc	a6aaee1740696f4bc42d2007fddb6e34843804bdea734b6cff3ba82fdbf1245f	31.75%	Heodo
2020-12-21	ZE1G4BOU6Z.doc	doc	9491499f9854851a7f0966b78a7dca7e7c6be55712f14698e2e8c99b68604869	32.26%	Heodo
2020-12-21	0DVRKZ2F.doc	doc	54e22af8fbd6868adc09b32bb9cfdfd5ce1160c986e240d098de778e83c49392	n/a	Heodo
2020-12-21	Q86S9S9JX.doc	doc	7aa33052cd3c35a7bdc92eea4e0a679460e45b389719af8fc1673ba2ae070fd9	30.65%	Heodo
2020-12-21	X5E00FE.doc	doc	f11d9a9bfece263b7dacf9ca88574da61d4eded4e7dbb86ec54938e8ea4d9fe0	25.81%	Heodo
2020-12-21	C9KQ86363F1ZZ.doc	doc	28bce7e35bae6f9a6fc481f6228be51ef61d0e9af380c3301f0020ae42b2553c	25.81%	Heodo
2020-12-21	3P0ITJFM2Y2R.doc	doc	fcf459586d11a7317af00079ac0b7aebb66474ca03130e11c65da6e11b20a12f	26.98%	Heodo