URLhaus Database

You are currently viewing the URLhaus database entry for http://batamproperty.bbtbatam.com/AXyNV4FuCQavLYJj3h5EopG3TRqKW3bPJp6FyRxAgl3RWUKq9afsiFQd7XirIHincSLRea/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:944485
URL: http://batamproperty.bbtbatam.com/AXyNV4FuCQavLYJj3h5EopG3TRqKW3bPJp6FyRxAgl3RWUKq9afsiFQd7XirIHincSLRea/
URL Status:Offline
Host: batamproperty.bbtbatam.com
Date added:2020-12-29 11:31:06 UTC
Last online:2020-12-29 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-29 11:32:02 UTC to abuse{at}jagoanhosting[dot]com)
Takedown time:3 hours, 26 minutes Good (down since 2020-12-29 14:58:58 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-29EA34Q0.docdoc f1c95141d5cd0abe14c4c597570627edb40359fe6b0de6ba78a1cd654473babaVirustotal results 29.03%Heodo
2020-12-29Q9P0W6P.docdoc 9b2378158c03d2f3f066362e9348d3ee8431593fb903272a8958988b7207eefdVirustotal results 30.16%Heodo
2020-12-29X2U7DL9ESLXIIMV.docdoc 45fddeea6b53faa7488cf999a241a8bbf6f78a0a0db25a948d827090fa8054d5Virustotal results 26.98%Heodo
2020-12-293N7ZW7V2XUYSOGY.docdoc 768cac32a7e61598368fa17fcb6792ca6d504cfab9cdcd29cb406ced3a9675c2Virustotal results 26.23%Heodo
2020-12-29TOEJ0LG.docdoc 66f81b626c6aa30847496544362040dc372b403ef6f0f66b0adc343843ec4a6bVirustotal results 25.86%Heodo
2020-12-291VQM8U.docdoc 64391214b0c653eee052ee6002b08285719f04d563e2000dc6f82579923c3867Virustotal results 24.19%Heodo
2020-12-29BTUFOE3TWCL3.docdoc e5652806295144d167327a61f5d1e023bba895fe5e1212861acf8fd6e7736866n/aHeodo
2020-12-29NZNOW4O.docdoc 93b5810b60939fdc63bc152dabb0723fd8505ca85acea04f6891fbed64a8e6d4Virustotal results 23.81%Heodo
2020-12-29KGTZ9XES.docdoc 4977173aed4452a0e0439de276d7912c6b6b2dca887504b0f251ab83c38aaa9cVirustotal results 24.19%Heodo
2020-12-2986SG71TSXM19377.docdoc 93fee7b09eb3c039bbb5fb0ed9e346d9e0381785d188671d01a19db8fb3ce769n/aHeodo
2020-12-29WFKRED6.docdoc d5b069e007e66dbd2f2b5cf6187b7ebf398688bbd211319585b733a22281b19dn/aHeodo
2020-12-29L0ZA5XJTX.docdoc eb6cf1d0f88f259cf78bc59ecf6406cba826f0e83a21f384f73495f41a06523cn/aHeodo
2020-12-29WAYMB9J1K7J5J.docdoc d178d1afaa2640706dfb3240c0144e2f2f4ac427f1958223b9521e9581104df6n/aHeodo