URLhaus Database

You are currently viewing the URLhaus database entry for http://juhongge.com/wp-includes/rfCCZhxTGZiYX0ykOwJTpB5AnwK0opppMEIdd3F22QMeRoJHzDdR2kAxq4TySRdH73n3N/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:944610
URL: http://juhongge.com/wp-includes/rfCCZhxTGZiYX0ykOwJTpB5AnwK0opppMEIdd3F22QMeRoJHzDdR2kAxq4TySRdH73n3N/
URL Status:Offline
Host: juhongge.com
Date added:2020-12-29 15:03:07 UTC
Last online:2020-12-30 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-29 15:04:13 UTC to ipas{at}cnnic[dot]cn)
Takedown time:9 hours, 59 minutes Good (down since 2020-12-30 01:04:02 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-30RK7PPHMWX2F3E0YH.docdoc 8034186046c4b68f988ed2c9589699ffd59443ce8573ebc96551cccc435a6723Virustotal results 47.62%Heodo
2020-12-305FVM75UWJYNGI2D.docdoc 59e6703b24b53065555efb55e63e6f368ebd67451d4ae4aeed9b1a59f04a9947Virustotal results 47.62%Heodo
2020-12-30ODFA43C20.docdoc 1af286a5a937026e62b7a7b6b972f03109862f815f785d9d9d3ba20346da0eeeVirustotal results 47.62%Heodo
2020-12-30M0ZDJKZRU5OLLVZ.docdoc 4cd720bc09e82d9d0e35a60cd643c1242a42f6b2ed3c5d393001e402536ed90en/aHeodo
2020-12-305H7CVI5.docdoc a332b1b8c14d38acb7299d21e92bf7985317a49b621f340f9886ff2d01ca1d6aVirustotal results 47.62%Heodo
2020-12-29GITSCJDXFV.docdoc 3a005656eb3cb664023108b84291b3de03e68da06530c0c12118195a2a443e6eVirustotal results 47.62%Heodo
2020-12-29HBT64EVC.docdoc 2527707f508b47e4031c1bf43ad94b728ab6a4847c208dd3f7e592ed49d36f6eVirustotal results 47.62%Heodo
2020-12-29NMHF7UJERNPTV.docdoc 487b15fce52676130b3320631eed9f16eeeffc6e11fff1aa6b6a4aa4f694315fn/aHeodo
2020-12-29A7FX65TLXIQ90.docdoc 812a1640b65eee9ca03e9030b3fb05e9ce0f467e022839fa3959cd2e4f0e7194Virustotal results 47.62%Heodo
2020-12-29AI20EJOF5.docdoc cf47feaaa13dd8578065c7ff33e3b1f716e4b71f679b8fe7d10fd33cf1ca8b70Virustotal results 48.39%Heodo
2020-12-29FLO6AKNWIULBQR39.docdoc 0e6bf2536adbd39d77a2239b62625e722197073713172655477b6aaa9cd3cbd5Virustotal results 48.39%Heodo
2020-12-29G6PYAJ2T711K.docdoc 5ede6ac6d693be37c6eccad46485cb39e33d1cd99649329d0424215f3d404cc6n/aHeodo
2020-12-29WNSZ3KX0JGFS2W.docdoc 59aad32717a18d6e1b19cc6e0d4db78f962799b91b0a7773875964f47ef0fd6eVirustotal results 46.77%Heodo
2020-12-29YGVVAHRHZ6MZJ48J.docdoc e7fe9ca43e289dc2bd9bf4266a4626a9383a283009072a247ecc6c1f84c45e0dn/aHeodo
2020-12-29L36YEOFS.docdoc d61737a9f3206f943c7569e31f9ce318fc7f361f86b01309bc476a1e2c7571a0n/aHeodo
2020-12-29QAWAVAS41KHONC5W.docdoc c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafcVirustotal results 47.62%Heodo
2020-12-29EHACG2V.docdoc 59d3ff3d4c70d115ce2c6d6ee0b71174c04ffc9a3f483fe2590b91d2eaca4518n/aHeodo
2020-12-29KHG4PM7W5I8HQDTG.docdoc eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691Virustotal results 44.44%Heodo
2020-12-29Q5JM37KIQ4HFBTAF.docdoc 4b4b26aeed40ceb7e56e6e67e73f85bb0bbc00b2a911ef3a11bedd4a5798c462Virustotal results 41.27%Heodo
2020-12-29JJJF9ZR4FR.docdoc bebd8b69fdc463522ae3279b65b75959d443315eb96d862429b1aee2c217c8c0Virustotal results 41.27%Heodo
2020-12-29AGQ5MOD.docdoc 12ffb5bd82775981b49a9ce2e948034050dd49e75c856c7abacb1c229be41904n/aHeodo
2020-12-29Z3TOP0HPR.docdoc 81ab0c47b7374fa7265c4f2692d61c586ea313fa09d8806b9209074591efda43Virustotal results 41.27%Heodo
2020-12-297TPRMR1ND.docdoc 24fbe4a98d9b7608b66dfcf3a696adb297db85d475cdb0a3c8f9f4e4cc005a55n/a Heodo
2020-12-29KUCIOE.docdoc 2b998037b5b5525e6d7db5d1ee65710a4d25ffdb4a0082b76c2a58a58ed70b74n/aHeodo
2020-12-29VP26KLPP3G4DDY.docdoc 725c503eb1f683b0402c27ee1c4efefd3f360fca37ff060795eed21575247f91Virustotal results 39.68%Heodo
2020-12-29KFNC5FCBU8HTD5.docdoc 9c664d5072dd450e110f36bbd5fe6cd4d600de7104677fbc31378905c832e953n/aHeodo
2020-12-29VD0Z7M7X.docdoc e1b4b9220e75c5eeb36a17070699eff10144d4def48bfbed1c5698447740ea48Virustotal results 39.68%Heodo
2020-12-29JO81CDZDF9GSM.docdoc 9e8e9da79ceb229ae85c9db0b90211541c80c35d6b07b45031fbbed646bff3b0Virustotal results 40.32%Heodo
2020-12-29L3HO1SAEM8YFL.docdoc a1d520c434f3b4b8113d30e94a118ba445f78b6056b5ff73d59ce6c17e62c3a4Virustotal results 39.68%Heodo
2020-12-29L4PSBKHXDTT.docdoc 66dee1c531293e20e26da0ffd7b7d4825876218dc4a90d537af904966fbb7db5Virustotal results 39.68%Heodo
2020-12-29RV45JQYH35F3RWUA.docdoc 6b2addd77d4961da71636553bd57f3b73bf65aebc867a3a3f0508dd58d89174eVirustotal results 38.10%Heodo
2020-12-2950WTI3X.docdoc ddb2445ed0fa49da082dee6f849280daf2b57f08e33e11fa16b76e1edbd49c81Virustotal results 33.87%Heodo
2020-12-29GUH2VZT19FP9X.docdoc 4914d5ec596d63b903a454fc2de8b2dc17037d3f2bbcdc9fd69e4e930f31de68n/aHeodo
2020-12-29L902Q4JBBAIWK69.docdoc 666c31bbcc1c32d8bee256a5be4de2e0edbc8504c27a725336a10862ead269d6Virustotal results 30.65%Heodo