URLhaus Database

You are currently viewing the URLhaus database entry for http://agentsambal.com/wp-admin/re2uGmuFzSMStzTiivGffiPkwulC22u0Xs36dl9Ahap9w7nVZC9EC3z/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:943809
URL: http://agentsambal.com/wp-admin/re2uGmuFzSMStzTiivGffiPkwulC22u0Xs36dl9Ahap9w7nVZC9EC3z/
URL Status:Offline
Host: agentsambal.com
Date added:2020-12-28 17:49:09 UTC
Last online:2020-12-29 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-28 17:50:03 UTC to abuse{at}web-hosting[dot]net[dot]my)
Takedown time:11 hours, 23 minutes Good (down since 2020-12-29 05:13:07 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-29IYZ2IABE5G86.docdoc ea5c3416f93427caf66867d56ac8a3737daaedd21d90a06dd2fd06d8f570624eVirustotal results 19.05%Heodo
2020-12-29CRJIAJN.docdoc b81270f7ad2363a6256130a5415ca27fa98a1bca66f0870983b8077af932fb29Virustotal results 30.16%Heodo
2020-12-296K0S5V.docdoc 7641d6743d579f32ddff8e04a25ae7501bbebfc373885449b862cf0972c46899Virustotal results 30.16%Heodo
2020-12-29LHPP4B7EM.docdoc cebbcd00eca12847a36571a9d527efc2e2c2a2f00e994ab7c6057de2f82c5cadVirustotal results 18.00%Heodo
2020-12-29SPDBJVU.docdoc defb779ab487b270c7249db116af590a9221a18bd7d0c9ca9695a4fc60f57e24n/aHeodo
2020-12-29L51EEDTMFQ.docdoc 04bf812417d992c76ac28f24f029de65f9cf227b3d836032afc6472ceeb84e10Virustotal results 30.65%Heodo
2020-12-29KXYZ4XMK05.docdoc 930871f377fbaee2eff89aeecea8296684e99ffa702f67bc0420e6af6a553802Virustotal results 34.43%Heodo
2020-12-298COCIP2V6UES5Z.docdoc 2d777c1a44e76b74a64151445b1c29022458a0fc7c47d6515990de7dcdf91aabVirustotal results 26.98%Heodo
2020-12-29OOGEWA.docdoc 89ce07abb5363601631f2875dfa84e1589ef67f12fef2f298f3a9855bfe6b5adVirustotal results 24.19%Heodo
2020-12-298DS140NA46G2UV.docdoc 61448f3704633ca0124dc77499079853503b7d9a14f0025066d715ae80e8e8b1Virustotal results 29.03%Heodo
2020-12-298VG16OXWU.docdoc 84008c13a44430bcf1f708a152bd99b047e38e4f66c500d5e6c9fbe3c9fac84dVirustotal results 25.81%Heodo
2020-12-29PNCOJQDKRJ.docdoc 9ee1088bf930cbfa09f67536b5766c7f8244b634dbb2d97c8bd5acb1e0e819e5n/aHeodo
2020-12-29TLT60HJI6UIGOE.docdoc dad1ac448db2f4de85a54fef16d3bf90b1c8537c7ac935d0f0e2b5534a7cc668Virustotal results 24.19%Heodo
2020-12-29ODCWL044QVHCP.docdoc fcc61c1b3639ee120a6b1e8e9709614682434b8a6017bea91fef29a063f0d3b9Virustotal results 20.97%Heodo
2020-12-29486D01Y97H.docdoc 6648b51c5a828a4b145d0292f72e3333278e3c97b08ce2faa174a6513b4964e7Virustotal results 20.63%Heodo
2020-12-28SLAJN9A5X.docdoc 20648a91667ad6547f61ad92bf6b7bfcccb4c3ecbafd54fae8cbcabf75cad1e0Virustotal results 20.63%Heodo
2020-12-28BHSO19A14L.docdoc 0b30502c830f8cc7c87978637d0e47918353373f4b11cc38c90853f3c1aee639Virustotal results 20.63%Heodo
2020-12-28PI51UYH8A.docdoc 281e565526c40ea1c189b9d9b1a15cf32a519c051d313246010ce9d83a51a400Virustotal results 20.63%Heodo
2020-12-28VEHX8A.docdoc f5d654880fe627b0dd0c3eca20335c09ad18cc35f0bbe03f5e835de806030c27Virustotal results 19.67%Heodo
2020-12-28IG1FGAKNKE1H50Q.docdoc 6e89e614b08b28c95ee56efc9086c1d5677b78fae8a8e48036f3d467f936f2baVirustotal results 20.63%Heodo
2020-12-28RO2ZWGT31XSM4.docdoc cffc2b87dffdf1681957a997fa8ed1dde5774a918ebd6ec090c0b6a1d1bb54f1Virustotal results 19.35%Heodo
2020-12-288ULCDJ02HU1.docdoc d6e12b7a07cb86c0a9b5c841a738829e0a5159e745d93f3e0955e0e46754f774Virustotal results 19.05%Heodo
2020-12-281DCQSH9N38JW.docdoc cae404af78e1ccf5ea32dbb545812c3f072d88a53b7489af336ef649539ea4c0Virustotal results 22.22%Heodo
2020-12-28JGI7HBN.docdoc 06c17a84e252084dc4be3ec0d9b50f7228317ff081c51337189d826bf14a2582n/aHeodo
2020-12-28F1X7BUG1HUY3T.docdoc 63c5ef92de165fee3fdadc69c7839596c003e35069610a74e30ce579b2a44f51Virustotal results 19.35%Heodo
2020-12-28QMS1YX2EMQOS06.docdoc 0076b09fa3bd78a783322fdc829adc2d930df48745449ffc558de899bef4788aVirustotal results 19.05%Heodo
2020-12-2876A6PITH.docdoc 6e73321a103ea8cacea01253ea6503e8b582d3258244094177e830298fa61ed2Virustotal results 19.05%Heodo
2020-12-285BWLG32GCLXIR04U.docdoc 558849f8dd6936aca6528131b44a16f4524af9791276fde1e0ef0b18d27075d2Virustotal results 20.63%Heodo
2020-12-28HFR4BPGU351.docdoc f78314091a20056df73a815ab4ef8ce5d0d01f521e6ef784ab5d5dd27fce3f05Virustotal results 19.05%Heodo
2020-12-281AIBIAPAN.docdoc 38a5291cf712cefa80d5ccded18aa5ca30ddc450cf4ba73814757d3d02bef997n/aHeodo
2020-12-280WJXZDE.docdoc 6215c56a46e5a737e08111bf9ebd4c451234bf7a86ae72ea7f7739858fa2fc4dVirustotal results 19.35%Heodo
2020-12-28OZ6QJKD.docdoc f0b835f8c18f1482a54f130f579c384a9240fe518eb141590f7c571b6135d9c7n/aHeodo
2020-12-28BN17PZ.docdoc 3a093470ce09cafa0f7d71149c9044dbb8a180a06b9ce621ecd1f271784435c8n/aHeodo
2020-12-28FAJH9FCE9HLV.docdoc d875966242735f94e280b981a5e9aad5b7be6b63f75916466ddcbe7a53a6e344Virustotal results 20.63%Heodo
2020-12-28P0P7JK.docdoc f73ea311ee9dc0a33206c2f0173da177244ccb218754c612a2f9c5d39c14c7beVirustotal results 17.74%Heodo
2020-12-28AWWTNQIZ3OT.docdoc 91c5fe46b632170186cf706ee1dff31a8b7843207b4ab6fe0ae0a959441df5ebVirustotal results 20.63%Heodo
2020-12-280PKWP6X8HXKA3.docdoc 52fa4e552508e1420589ef28527d347655203cc4d939d29f3012773b9258f92fVirustotal results 19.67%Heodo
2020-12-28JXZ1ATMB7H.docdoc 5bfcada166ef8a8695dad23fa27cebb3bba2f4d355eea5591118d028e6272df0n/aHeodo
2020-12-28Q8IOQRQFI.docdoc f7da42aa50eaa6a1a1419b21cf703935ad48df94feaf32aa674fee1ae45d5455Virustotal results 20.63%Heodo
2020-12-28NJGQY2.docdoc c1202d2d0215e1c5e1a7aa325772ab69e69c3bf5a1ae26436bbca955c4694aaen/a Heodo
2020-12-2839D54QGM1X4OELYF.docdoc 8384bfd505f2c85b0b26ef4775836b4c80213f1e68c828fbb63ed1d5be77b45en/aHeodo
2020-12-28IW1R3XN.docdoc 0bab9fb9e14670f77fd55cd3f4a016726d5d78132d75b4fe0b59cafa2848ab0dVirustotal results 17.46% Heodo
2020-12-28UN9BJAEK0EHD.docdoc 0653dcacbae70464ff78702ae9bb9d4bcbfcd98c3f2bf8b962f9d965826964a8Virustotal results 20.63% Heodo
2020-12-28NPRQ5MR8O.docdoc 07247f1d48b087d76cc51c4efec8f2108fd00699fe28a6f9aed3264fca0f6df6Virustotal results 20.63% Heodo
2020-12-28P7RZZR.docdoc 8e8e75d201dde13c621fe58a0b205495a276df8799fb694cddf7a6bca60ebe36Virustotal results 19.35% Heodo
2020-12-28FRZ277.docdoc a9a0189e8d66238a7e104d0c19d1f1bf810cc67bea6b0e6b95a6a014832becd0Virustotal results 19.05% Heodo