URLhaus Database

You are currently viewing the URLhaus database entry for https://kitabemas.or.id/wp-content/5uVbgC8vCCQpaDGhh0ezTHUk7ZaIYrq8JF1RdNTT/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:939955
URL: https://kitabemas.or.id/wp-content/5uVbgC8vCCQpaDGhh0ezTHUk7ZaIYrq8JF1RdNTT/
URL Status:Offline
Host: kitabemas.or.id
Date added:2020-12-23 00:26:09 UTC
Last online:2021-01-15 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-23 00:28:22 UTC to abuse{at}upcloud[dot]com)
Takedown time:23 days, 1 hours, 25 minutes Bad (down since 2021-01-15 01:53:51 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-242AN4YZ0NY.docdoc 768f3c029cc79ae21d7c732487da93f0e8c7d19a83737f9ce7e107e3adc9054cVirustotal results 65.57%Heodo
2020-12-23ORQJX4U4NL.docdoc 0694e34c9b65631f74351ab2bb680c7d1ac6726bc4948a8897bc8bd62fd073a9Virustotal results 41.94%Heodo
2020-12-230YDA30QP6I5.docdoc 0339f21444ef1ad35fc320d6879ea93b08d3aea53e25aaf3c5b841a2cdad855cn/aHeodo
2020-12-23RFPAVWA02A.docdoc 883f2d94856edd7ee7d9ddefb4cb9c49b0300ad23fad3aa88f3c020d166b771en/aHeodo
2020-12-23Q1OERKRSPH.docdoc 53607b62fc227216a0de7e569922ef170b8d25443b8839f2a77717fddeb43e38n/aHeodo
2020-12-23IU1FWKYA.docdoc 94d804683ab1c9195ece193461e872d75b4835c2ee0fc73886dcca02a89463edn/aHeodo
2020-12-23FF3OUV1189TSU.docdoc 381a05910438bfbe38d8cde701cbbf020f0e303a1be1a9825df6087a8071b37cn/aHeodo
2020-12-23HMSZRC.docdoc 08907511869c01824c3fa593161c3d71a507c9a403faefdb197811e3adaa4f8dn/aHeodo
2020-12-232YWMQLRH.docdoc 2edf013ada24ea7a142b0844b980169d465e7f5aefdaf645b44ece962d10d74an/aHeodo
2020-12-23TXAOFI2KHK1DHP9.docdoc 649918360167560700dc33d77632806bcc52576e640559297ce216691ea5dfd1Virustotal results 26.98%Heodo
2020-12-2370XXWF.docdoc 63725aa4926dac422d6710c815b80ad10e66b882656195a75ef13b9816cf7c53n/aHeodo
2020-12-23FSDINZMK1K5F.docdoc 093e325f8e17124f9f181fc838f22a865b3b150c5cde9e1254345ebd6fb189dbn/aHeodo
2020-12-23KWLBWA.docdoc 0149c806df64185dc66ee1fdc857e25ee93def1f7db847487674959d2b9306d1n/aHeodo
2020-12-23KZ7RSG6Y.docdoc 10e82c9cb8fab1398ba9caf9a04b863ad24859a41262cbc36ae16bed8c2f9cfaVirustotal results 25.40%Heodo
2020-12-23OUJL5K.docdoc cb4f991bd4228ec60ab6af1bab6193e68f4fadf3a30b226e7ee9cdfe893113a0Virustotal results 23.81%Heodo
2020-12-23AMHEENA0QKS.docdoc 49f4475b4c4b63927d612bfcfc707d4a25237813c727333fbcb42fec441757dcVirustotal results 23.81%Heodo
2020-12-23L971X75Y.docdoc 8538d00638c32a97eac2e8a9e1766a39268d8effa55c28026d3b75fe114dbc18Virustotal results 23.81%Heodo
2020-12-2332IWXFD9.docdoc 8e6a0c5576e309e8d8bc23d6103bc9d355ac27c354d69992c7fe8650d39e10b2Virustotal results 22.95%Heodo
2020-12-23EAG7XY2O.docdoc a73f829ec3af1cb01879498a3d3c485fc4af82f8214ac8a42e543f0e12fa3e45Virustotal results 22.22%Heodo
2020-12-236B8WYNAGW.docdoc 15231bea81bede2d3149669c6501c6a8ee8338cdd374c53eb34c9737249b040fn/aHeodo
2020-12-23PT1LQ0UISLR.docdoc 055f997b54c9f0fe5ab2c07849d8e88daae0adb0ff26458d823b6f7413f3ac72Virustotal results 22.58%Heodo
2020-12-23ED2Y39KE0UV8J1.docdoc 241c359520f4cef1af1de9d4789bf620f8086c7feb5aa2deba772b87aef3d514Virustotal results 22.22%Heodo
2020-12-23UE1ZRSEMQVAHZ0R.docdoc 318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95n/aHeodo
2020-12-23UISW0ACGCW2ZHOXA.docdoc 6083b405a5bfb099398dc2417486e1c2913bba82b96baff811a71ee6feb0884dn/aHeodo
2020-12-23JGDVGRMGVJ.docdoc 383bbcf6e40f5db6ccf0a07f33eb55614c381daaae647ebf0ed8db148d4ab7fbn/aHeodo
2020-12-23GJWC2VJGH7A9V45.docdoc 87de984c9ce216b3c4c6ca196e51a042d9a5cd438c4968e8ae070b6053106556Virustotal results 20.63%Heodo
2020-12-23Q2FYMXZJO3LE066.docdoc 60029fa95c17ba479a9ed424abc3a3f684111997424360741b67de478d0bcd4dVirustotal results 20.63%Heodo
2020-12-23QGZ4GEYC5XODM.docdoc cf2febee508b7992d107d1a46b3deb724fff5b3905e1b7208ed0b5106c2b63ban/aHeodo
2020-12-23M32KPJISW4R.docdoc ba9ea1c4a35b426bb909eae9b8b40a6acdd5a80c1cea10d8a336338a7b282522n/aHeodo
2020-12-23MQWPRZ0K54Z54A.docdoc 4a6d02a3adc59903ee067a5abc702d78fb31c61deb56b7360fade2ec85195569n/aHeodo
2020-12-23QG2IV8QR.docdoc dad7761c55d0c4eb6fbd18182bab52f99242f7107fdf629b056cb6965ba073ceVirustotal results 39.68%Heodo
2020-12-2354B8DCLH38.docdoc e269c87f3edd655d2fa4f379bac4ddee2c652386ccd598daf260157b1b9c033cVirustotal results 41.27%Heodo
2020-12-23I6U45KE.docdoc 2bed788f0ae4910b2b76b0d6a72af5f76811598705f59de52684ab9f99ca1fa3Virustotal results 41.27%Heodo
2020-12-23ACYNJ8W2Q.docdoc cf2b33d88046f8e39c8299718c9132fc22247ef02bfe6ae6d404b0ca1c7c6119n/aHeodo
2020-12-23NPL7QD2P.docdoc 9e353b38f1dd65bbd6f1e50dc63ddc1350f17b8e382a9fe24328cf1f1609b181n/aHeodo
2020-12-237QLY03LYLIT.docdoc f5e18d77f12c97a41d3afb41a6e69789d19fde04ffdf39ab1f53acd22185b83dn/aHeodo
2020-12-237RJ6LDBQ2.docdoc 74ca579457b696e80799f7acb8b3caa43a1a05be7c10a42fdfa94b1013490c07n/aHeodo
2020-12-2361FTL5G8HN4.docdoc 68e9fac6a7996f04c150777aec9f02864a62b4c0d59675625c1801a231461a0bVirustotal results 25.40%Heodo
2020-12-23CWJSXE6M6677Q1DN.docdoc 525689f16129765cbfcab859edd5d99fbbec461ea04160605819b2f4b6150042Virustotal results 27.87%Heodo
2020-12-234AQSOIRE365RD.docdoc cd26f4220386d91ffb1a0233ece99c207f4335aab6a4c6227d64756f16500ef7n/aHeodo
2020-12-23I8XH81.docdoc e9c79c389f9e0132834f2da34cf19158e44330446302146e5636b0516d65ed51n/aHeodo
2020-12-2319PU3RJB276S.docdoc 32485683a42778008538745c1475cd3abc5d9ec4f8cbb3210100d448b9eec74en/aHeodo
2020-12-23CPKKZ9SK3GCS4S4.docdoc 4640454cfd6ef0ed4ed3784c186840f5eae9bb870b37064a6f5ee53f245c325an/aHeodo
2020-12-239857UXSE3Y19I8H.docdoc 58d4bd6bd7acaf8809df8354441ca6b7b0045d93c96f73c90736c23bd06f2563Virustotal results 28.57%Heodo
2020-12-23X1L53U58JIX7AY2.docdoc 64df2f4241becefb0876d62be5908b4d62620e2aeb97828cb2819d952d106f11n/aHeodo
2020-12-23ND2FCRLUJRGW.docdoc e56e47b889fb43e8b9f183ee7abca3a349cede2826008e189de20df4b7bb481cn/aHeodo
2020-12-23V5HS65.docdoc 9a8b914d6bb8ae09a04b32fc897fdb9a9ffc073975b436b031ac837b7eeefb0bn/aHeodo
2020-12-237R5RODJBDAZ17.docdoc 34754f71c9d37d965839231746871e3afcd7cc6d4a4515dffcf6fff4c8e7b739Virustotal results 26.23%Heodo
2020-12-23ZWEWOB7Q9DK0.docdoc 1f5a0f7a62383b576ac6f661f97a2c035e72d6f054e5b63ea53123ed9081dae6n/aHeodo
2020-12-23G9BNTCD24ONQ6.docdoc 47a492a3a0bfd3d8e0e6c5b72d0594fc8f387d657c457da34d5b7c097f8ab9deVirustotal results 26.98%Heodo
2020-12-23UC0P3VYZ6.docdoc c693baac5d3227d362a0fe99ad187c18cde1f45a404c94c881d424023303a744n/aHeodo
2020-12-23TX168ZPP921LKT.docdoc b6a4c5fd2aa2119a83b7372ac02aa65feae5a7d083a93656c4a437dd865a447fVirustotal results 22.22%Heodo