URLhaus Database

You are currently viewing the URLhaus database entry for http://alizarei.ir/test/gGJJc2/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:944530
URL: http://alizarei.ir/test/gGJJc2/
URL Status:Offline
Host: alizarei.ir
Date added:2020-12-29 12:29:04 UTC
Last online:2020-12-30 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-29 12:30:12 UTC to abuse{at}parsonline[dot]net)
Takedown time:20 hours, 24 minutes Good (down since 2020-12-30 08:54:24 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-30R03XWLIT2ESHDH9.docdoc b27f92fc7b7e54584e7fe736fcdb389855bf59b934d2fdd033d54e79c14d6c1dVirustotal results 23.81%Heodo
2020-12-301I37KTZEUPJ.docdoc 3f58aa984c9e26aa906d9f4371ea2d31b00ca6c6eecd9dac7fcf4dc2b19caae9n/aHeodo
2020-12-30UQ2WBHVP.docdoc 34d114c948d93bbce1a1b9ecc92c641ef3c8ca4ec755ce893e55f8b89f7c4c54n/aHeodo
2020-12-3070ME9ATFT5J.docdoc ee3c654155c2ad1cdedb1baa923add0335475dbd69432b7c9ce71e34d2f3c15bn/aHeodo
2020-12-30QBTV5XUMBC.docdoc 2ed291cc9976df382951483bb2c77fe908b724d01b6360d1e61ee698f052ab11n/aHeodo
2020-12-304G69WIDRGS3.docdoc 4b7778c74f084c7cbe57205e56c590730227816f7212231df1ac32dc21e18c71n/aHeodo
2020-12-30W7WK4ZM1G95.docdoc e799e58726ad5d72644487e2fc47f0ddd22bba379bd0552bbd015e94680c70b6n/aHeodo
2020-12-30DHYF4E5.docdoc abce05e21f89f137df460e5541600c3a71aec5ebf5c909a05edc6ad042ae2530Virustotal results 52.38%Heodo
2020-12-30OQPBXT1.docdoc fa5aa91755a36f8142bfa74818a3aa61264edc65cf4aa9fb8d4bec28f6faadb0n/aHeodo
2020-12-30J7CERVX1KD.docdoc 475aad7f21e14f905a091f4289932e4a8f2c9c518c3ded3fd3709632e8e75c91Virustotal results 52.38%Heodo
2020-12-30GMJD7PIZW.docdoc b5f5bab1debd9fd60535f3a992c4f90f462f3c42896c05138b18e67c36d111edn/aHeodo
2020-12-30F2J7BQLRY7.docdoc 9a9706902460c2e3ac9e44ed6aff62a001ce31641d96c49072c4750106c3de50Virustotal results 53.23%Heodo
2020-12-306MNOEYMSFKUOAS.docdoc a586bd9284e08911b3ba6a021732d976be512698b16238e9ada5a5d08b477fban/aHeodo
2020-12-302QVJFVI.docdoc e0ea0fe16907efa6fba0c7da966c01d5e9c2a7f4024db84c8113a51b22b3a110n/aHeodo
2020-12-305E1U96V4Z8QJB.docdoc 20abb952582445a850b56426e396a5d2d9dc988dc5487945e69b656dec9fd94dn/aHeodo
2020-12-30UCDCP371KSIV.docdoc 6b44f18c20a7bb829c5d1e02c4b77128f29a7407068126e8ccbeb63006b77b75Virustotal results 57.63%Heodo
2020-12-30YXAJRT3S.docdoc c0f2fe87220adb36dad5fca93cee589c0de457481655e1d64b220de2e89a11ben/aHeodo
2020-12-303RXVCI5PK6.docdoc 1f58ebb3c57f80d63f6039f66cf18dc1525f8bd71bcc78960456023520613e90Virustotal results 53.23%Heodo
2020-12-30N4ZN6RMYJLL6.docdoc 6516e329e7d2f720e9cd95f5f61a9ebd0af6b0cf0f35e31e872a9eef210a2ed0Virustotal results 50.82%Heodo
2020-12-305U79MQIW2QI4P3.docdoc bf0427321d4aa0c51a23e5ce90c1565b8701260d54170233811f2629de50af99Virustotal results 47.62%Heodo
2020-12-30O64JGVE9N6LEOO.docdoc b418b8729a429df3b5029222db61b762411c34971aa6c76b3fed3d12146a984dVirustotal results 47.62%Heodo
2020-12-30427HYGK6E2GD8K.docdoc 9f343da9a2ef57f1ea4109e7e45944ada3a23457de02511ef088806da7686d4an/aHeodo
2020-12-30MKVPB22GWKD.docdoc ee94018b625d16f7aa8fd8542511da49e0e15f19cf1ed9e231b85fc64985aaceVirustotal results 49.21%Heodo
2020-12-305DHBBW5H.docdoc f370e183c671a04e456590269adc4f69a59350308909cc63683d705bc0213b96n/aHeodo
2020-12-30ADWLFE94SD6.docdoc c1c222eea5baec06081295edddf806c2bbd101f35d5c554d3f3b63aabe8fb576n/aHeodo
2020-12-30XOA2Y8P.docdoc 4a5958fc2b8d147d9713f4c9ec880045218ae9c1e8251eac8a645e48545e2d11Virustotal results 47.62%Heodo
2020-12-30ZUMIUQZ6KX.docdoc 968063350b11ebbfd467a30c92b38980fa20b0e4f588f89daa9687981e01f8c3Virustotal results 47.62%Heodo
2020-12-30CZ7HTXCOS882.docdoc 59e6703b24b53065555efb55e63e6f368ebd67451d4ae4aeed9b1a59f04a9947Virustotal results 47.62%Heodo
2020-12-30SVCEL9XIO3N.docdoc 1af286a5a937026e62b7a7b6b972f03109862f815f785d9d9d3ba20346da0eeen/aHeodo
2020-12-30YDSXY6U.docdoc 4cd720bc09e82d9d0e35a60cd643c1242a42f6b2ed3c5d393001e402536ed90eVirustotal results 48.39%Heodo
2020-12-2961SUQS.docdoc 3a005656eb3cb664023108b84291b3de03e68da06530c0c12118195a2a443e6eVirustotal results 47.62%Heodo
2020-12-299FTW8M04ZDFS8JYL.docdoc 96c2898e9dc74450ad82ad5d3a1b117fddca0bfd3013948c376191536d5fb360n/aHeodo
2020-12-293HHKX55UXP.docdoc 66a2b350efaf60cc7b59b9de600b6a8183d3a8393688914c52ab4bf9d1e84ac9Virustotal results 47.62%Heodo
2020-12-292XF4Z8ZMKKY4H7A.docdoc 0eadb33ff312f9a52da6f3c043f2e183147ab94efbbfdc06bf2951c12d03aa5bVirustotal results 47.62%Heodo
2020-12-29DJ05NY25GUXSU.docdoc 004ffe5fdd488817ced5a47937acb4d2e3130187329de56fdb5920a56d3118a2Virustotal results 47.62%Heodo
2020-12-29Z0JRZJ00Y6Q.docdoc d6480e873d81be6637d3ba474138b40d9773c0d9294fc530019ed6f3d1fcb1d5Virustotal results 47.62%Heodo
2020-12-291C5VMPH1L7F7IU3.docdoc 59aad32717a18d6e1b19cc6e0d4db78f962799b91b0a7773875964f47ef0fd6eVirustotal results 46.77%Heodo
2020-12-29WR5QX1U.docdoc dcdd4ef88b4d1d40464460f45144aa39d09537da5757842e1efe75a46c6c69fdVirustotal results 47.62%Heodo
2020-12-29VZFY3KA4TJOB0T6.docdoc 13d0f6d6781f118733432842c8144f7e2470b4afdb146cb9312dabf5a2b797feVirustotal results 46.77%Heodo
2020-12-299FGAT8O22HUDK.docdoc c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafcVirustotal results 47.62%Heodo
2020-12-29LJ2X3UYAVTPV5X5.docdoc eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691Virustotal results 44.44%Heodo
2020-12-29NASHQWL9OF3T.docdoc e96e98276e75a582f1e8d7624c1ba2bf9de1ca4b28ba1f7483a2c6a1114c2aacVirustotal results 41.27%Heodo
2020-12-29VC30VGIAHNA2QEW4.docdoc 4b4b26aeed40ceb7e56e6e67e73f85bb0bbc00b2a911ef3a11bedd4a5798c462Virustotal results 41.27%Heodo
2020-12-29U77EQY1QW2YB.docdoc 5274d3939ba8eeead72b38ac7fc4308be7b3db616801d845d304469c9cf395a0Virustotal results 40.32%Heodo
2020-12-2993WXNNQBC.docdoc abff62bfa148c0606f2b0f545934c0ddaf4b00cc13c5f3c051a22f8d53b089een/aHeodo
2020-12-29PBC5RP980QGXHQA.docdoc 1e4c5b5a91bea84b88ae1b8bbff23fd1ac5fe3c85cccd4959ab117614f8f34c1Virustotal results 41.27%Heodo
2020-12-29BOEJLIOGKXOW.docdoc 9fa52c70fcab1c705956b5dce3f72bf83251745b40bfee40f746d15ba50f1f74n/aHeodo
2020-12-29NTK2IRJKN0DC.docdoc 8f10d60b80d0b00b1b41bf52766651f77547c5489f8a6fa946e3fe8a25a28185n/aHeodo
2020-12-29WCK6X5RAQE03T.docdoc 87fde4723bbbdcde8c933fca20f34a74b2d6ca37d6c015a228e5e33c86ce7eddVirustotal results 40.98%Heodo
2020-12-299YF8EV4PSZG.docdoc 9e8e9da79ceb229ae85c9db0b90211541c80c35d6b07b45031fbbed646bff3b0n/aHeodo
2020-12-29CFQGHDKH5.docdoc 124887797dca2ad4d4a16a53439033033cdbec96a28b5ee788dcef410b4a42bcn/aHeodo
2020-12-290YH03X.docdoc 66dee1c531293e20e26da0ffd7b7d4825876218dc4a90d537af904966fbb7db5Virustotal results 39.68%Heodo
2020-12-29T6R8MVRFBLNU.docdoc c7991171d6070c5dbd364aac10be197a02acc9582d85ae29ecd5fd45ddc7da23Virustotal results 38.10%Heodo
2020-12-29L5R0BGK3EQ.docdoc ddb2445ed0fa49da082dee6f849280daf2b57f08e33e11fa16b76e1edbd49c81Virustotal results 33.87%Heodo
2020-12-29GVWLOEGK.docdoc 45d8bc6c35fbbb07e2a164434082d5659b1a53769f01d35cbae03741ddf981caVirustotal results 32.26%Heodo
2020-12-290JDJX3D.docdoc 666c31bbcc1c32d8bee256a5be4de2e0edbc8504c27a725336a10862ead269d6n/aHeodo
2020-12-2979JMTJUTGATMZV.docdoc 5c5623a3694e5942daf33e64f295aebc685866606505c838c66bb9e054943e70Virustotal results 30.16%Heodo
2020-12-29OPIZRP2DM.docdoc 9c10b1c0e38f9aac0ba5d7cc5d62c5c078280b5db86f4b78fd6bb70620c0ba28Virustotal results 30.16%Heodo
2020-12-29F7XRV3A9UPSVQ.docdoc 2e5599c71028de6a5c1202946484ff5020f38bb282b78e69aade9c840c3e2f24n/aHeodo
2020-12-29QCNKD5DGY9.docdoc f33b20e1400427532444109d42136f647ba8105f48eaff34aff2ae464ded129dn/aHeodo
2020-12-29N83J2J.docdoc 8bea8b92c1848323b875db63e41054c7f9c48e6af5a287a56b014f321822e717Virustotal results 25.40%Heodo
2020-12-29U6V5YQZV1.docdoc e5652806295144d167327a61f5d1e023bba895fe5e1212861acf8fd6e7736866Virustotal results 22.58%Heodo
2020-12-29QRHG7TJ6LKBNH.docdoc 4977173aed4452a0e0439de276d7912c6b6b2dca887504b0f251ab83c38aaa9cVirustotal results 23.81%Heodo