URLhaus Database

You are currently viewing the URLhaus database entry for http://payeer-ptc.ga/page/2k8QP5AsiZP69rBFmibDvuTP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:939573
URL: http://payeer-ptc.ga/page/2k8QP5AsiZP69rBFmibDvuTP/
URL Status:Offline
Host: payeer-ptc.ga
Date added:2020-12-22 20:57:04 UTC
Last online:2020-12-23 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-22 20:58:02 UTC to abuse{at}ovh[dot]net)
Takedown time:18 hours, 59 minutes Good (down since 2020-12-23 15:57:14 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-237SH771DTB.docdoc 53607b62fc227216a0de7e569922ef170b8d25443b8839f2a77717fddeb43e38n/aHeodo
2020-12-2316EAQ3.docdoc 94d804683ab1c9195ece193461e872d75b4835c2ee0fc73886dcca02a89463edn/aHeodo
2020-12-23NGEKJ57P46VL7E.docdoc 8aac323bb90b4aa43f663e31e58a2973cf36b32fc5acfeec8d40fca09a50a7b5n/aHeodo
2020-12-238HRD3OLJ2TA7CVF.docdoc e2f1be59a592252d8ca4e2fa82196b97ccb8967f41f6a7fed224944af38fae1an/aHeodo
2020-12-233SSHG9.docdoc 2edf013ada24ea7a142b0844b980169d465e7f5aefdaf645b44ece962d10d74an/aHeodo
2020-12-23MB56BP.docdoc a7b7abb4d144045e42bf5e55e294d5b67850d11ccaac312734570ccca072851fVirustotal results 26.98%Heodo
2020-12-23JXRBBDY.docdoc 093e325f8e17124f9f181fc838f22a865b3b150c5cde9e1254345ebd6fb189dbn/aHeodo
2020-12-238JPTROFNAGJ.docdoc 0149c806df64185dc66ee1fdc857e25ee93def1f7db847487674959d2b9306d1n/aHeodo
2020-12-233ZVQRUZJPCXL.docdoc 5b25524771021a17824fbafadf49aa6a7250c51c728c310b84ea19e0272b737bn/aHeodo
2020-12-23RB2ONS6DB.docdoc ef1fccd54eea48427d2f6011fe8786cd9ae4f0fc4966130f9f3a99877c49dd04n/aHeodo
2020-12-23HO5D606.docdoc f8d8367d54febac27068bc20e25b1c3260b9bdc78d4874c00368e65ec2e37ceen/aHeodo
2020-12-23ZU1FJ5NJ87BP7.docdoc 7e0f29831e6732a730d1b231a94cae3a27525976381cf6b97d15fe45c295f239Virustotal results 22.58%Heodo
2020-12-23Q823VJ3XJJMDDU.docdoc a73f829ec3af1cb01879498a3d3c485fc4af82f8214ac8a42e543f0e12fa3e45Virustotal results 22.22%Heodo
2020-12-237EEF3CV4XR0.docdoc 15231bea81bede2d3149669c6501c6a8ee8338cdd374c53eb34c9737249b040fn/aHeodo
2020-12-23AAIR0742M3.docdoc d03bdc5b9f72efd01d6cb79bfb3a1a2abb46914234af6d3439f4879a1af9d35bn/aHeodo
2020-12-23J6XDMMNQ0LRZEY4.docdoc f989bb90fd752549af52988b47a9cf55638f97c26ea723457efd21cdab409da5n/aHeodo
2020-12-230BHRPPK.docdoc 318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95n/aHeodo
2020-12-23635UEUT1KS58.docdoc a8a5d52ccfe6f7bcc1ef7c99087ec90083ea7e3851e760b0653bd4189d54bc9en/aHeodo
2020-12-23SP4GWD.docdoc 383bbcf6e40f5db6ccf0a07f33eb55614c381daaae647ebf0ed8db148d4ab7fbn/aHeodo
2020-12-230LSY1NXT.docdoc f0a4ee510f94aaef257225740c62c4a65b2da3ced23ca6b1513b9fbe11fd3cd8n/aHeodo
2020-12-23UTU2171F9H.docdoc f2c16e9517e4e5e59a8640d99cda01c3078c6e7720f68f7f47a8a4d7b422b72dn/aHeodo
2020-12-23E6PC6TG4ZZ0A.docdoc 56355a08b488d103b9a4d6226e1cf2cac8bfdc7381febb47feec6b0eff3ac332Virustotal results 41.27%Heodo
2020-12-23BLRAQESS.docdoc 47207dfadb642d35013dc02b38b9dbf49b10333f7447728b8471863fc9ca568fVirustotal results 39.68%Heodo
2020-12-23JP3APC.docdoc 098fd9226fa629b47b6a137b89e9f3f85f74266c494382a6678d910af2cf8130n/aHeodo
2020-12-238RV0Z1W5.docdoc 69c857ec1c8b113638e61d8da49ffbda13878a0785aab5d567bdc3fe251fd3eeVirustotal results 36.07%Heodo
2020-12-23C27N4GITHRX.docdoc f5e18d77f12c97a41d3afb41a6e69789d19fde04ffdf39ab1f53acd22185b83dn/aHeodo
2020-12-23WR84ZNYH0MH.docdoc 2cb1d46e5ca1af22841c4a613b16ee60be1c474065ae89053cc02c6d3740101bVirustotal results 32.26%Heodo
2020-12-23ZC4FL1LXALZHAGL.docdoc 0351492c5d95a607178dc17826f59c46ee6ed33afaec7f54ad50d4e3935112cbVirustotal results 28.57%Heodo
2020-12-2334L7LLK3LM57F.docdoc cd26f4220386d91ffb1a0233ece99c207f4335aab6a4c6227d64756f16500ef7Virustotal results 31.75%Heodo
2020-12-23SJ7LVV9D7.docdoc 57f57ee9a02ff9b2983b7b3110a0269f0ac9cf44c8163805edac226aa6a5cc01Virustotal results 30.65%Heodo
2020-12-23GYGD83DD.docdoc 7d6eb358ac00135b897eab00b943cd207655aa43d509355de0969a65d0408a3cn/aHeodo
2020-12-23T8WTXQGQS6E8V2C.docdoc 168fe6ffe9e78f01a7f784833ba9306ef1edad3ccea334df35937424ef0220bcn/aHeodo
2020-12-23QMOAEY.docdoc 1f0dd0263393040d067ed555d604d764634263e4eb014755feb5d319af9db68dn/aHeodo
2020-12-23P6BIE4QAZU.docdoc 64df2f4241becefb0876d62be5908b4d62620e2aeb97828cb2819d952d106f11Virustotal results 28.57%Heodo
2020-12-23A198LQEZ68V226.docdoc 158e3c1a9e0f1942aec57f44ff4569d2a576bad56846a77053f5b4f726c14258n/a Heodo
2020-12-23XYVYNEXB.docdoc 9a8b914d6bb8ae09a04b32fc897fdb9a9ffc073975b436b031ac837b7eeefb0bVirustotal results 26.98%Heodo
2020-12-23FNFIIQAZFN38.docdoc eeeac0e4068f95a8d51d268eb14efdb0158a4a538bd414fde6f64911091f8211Virustotal results 25.81%Heodo
2020-12-23UWYMDA8A03O417.docdoc 31f327ab8307786ee50af20aaf5c4c2b6ecc974b69a584c78a2dce04fe5d327en/aHeodo
2020-12-23SZZ08SIGJK7NS.docdoc c693baac5d3227d362a0fe99ad187c18cde1f45a404c94c881d424023303a744Virustotal results 27.42%Heodo
2020-12-23SE3HLPOVZG9MRQP.docdoc 9d2ad424f8d1a39e1cf83b8d64131bc94d8b8ecf787b626e1118e348fc967f10Virustotal results 25.40%Heodo
2020-12-22UUPXOWH8.docdoc 815857993a030da4586f91406591e013e670d9a286faac31e529668bb9a169c8n/aHeodo
2020-12-22GKXP4A9IV1XO.docdoc 000b049debe1595e96d46d2cb910795e269d9d3f1b3210bfa45901356b3b3b3an/aHeodo
2020-12-220O03LI0SQC0V697.docdoc 54a40564f1605df3d177f233fb61ed59c38f1c8adea1284aab637fed81289a4dn/aHeodo
2020-12-22UCCKTQ.docdoc b88940065daeda56e1e49c0db60c1e275b39e435f83b785742242104d173a57an/aHeodo
2020-12-22UJY9YHHXLJG9CY.docdoc 6db84ec96bdba956f2a1aaf37771903b47d79d69fc01b53e33ba039b8e7669adVirustotal results 21.31%Heodo
2020-12-22CDI6OF71D315.docdoc bdfab9675a34c6da34487f2c70f297960002e6c3c2a8e6fdc60ae7edbe67101en/aHeodo
2020-12-22EWJPQU7.docdoc 2d523850bbd1d5abcaf76fcaceba272f038d954a97263941a3375c3301a1e2een/aHeodo
2020-12-22Z8FVVBLRC5PU8YK.docdoc f03c5a8d271acc63d9646bb77c30ddbb5fae5ad755449342e6c34b5ca71a6980n/aHeodo
2020-12-22LCBOZS184Z.docdoc 3a7e77468332deeec16a5228c4b955efb118e0b0d576e638a7a71ac7be04a5fcVirustotal results 20.97%Heodo
2020-12-22GSDN7NGZC.docdoc ea9e0d2591e09cdea3ac66cbd5410ca96f9bbb033f240fd580c71854292003b9n/aHeodo
2020-12-227NEE9Z0363ZFP.docdoc 77b8248db026c5f3e993c6791b25c26813cacf0f6d1f9daa56d1f570b324bdcfn/aHeodo
2020-12-2201QWS9EF8.docdoc 71e63f415d972d70d04517fe8933ea88c7727004cc732b7cee5b223dc0ac4a62n/aHeodo