URLhaus Database

You are currently viewing the URLhaus database entry for http://bocnemdanang.com/alfacgiapi/olnMao0HGVTkRYOSSKlIa0ON2G3priKh0GZSfwkFqddkyJ9kyDINr80Aps0e/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:944673
URL: http://bocnemdanang.com/alfacgiapi/olnMao0HGVTkRYOSSKlIa0ON2G3priKh0GZSfwkFqddkyJ9kyDINr80Aps0e/
URL Status:Offline
Host: bocnemdanang.com
Date added:2020-12-29 15:47:06 UTC
Last online:2020-12-29 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-29 15:48:08 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:7 hours, 57 minutes Good (down since 2020-12-29 23:45:14 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-299DNPAYS1FL9DZ2T.docdoc 2ac4c55baa15d3719031c845766adf59717598fe67e7434f595f28120c916528n/aHeodo
2020-12-29SYRBZO4MWZ8W.docdoc 2527707f508b47e4031c1bf43ad94b728ab6a4847c208dd3f7e592ed49d36f6eVirustotal results 47.62%Heodo
2020-12-299929OJG.docdoc cb5d63f90240367ececfe0c32a70c72082527a0040fe434a6f463bd4574d4157Virustotal results 47.62%Heodo
2020-12-29269L9FUUROV.docdoc cf47feaaa13dd8578065c7ff33e3b1f716e4b71f679b8fe7d10fd33cf1ca8b70Virustotal results 48.39%Heodo
2020-12-29LZ6VM3YSLFW4XL3.docdoc 5ede6ac6d693be37c6eccad46485cb39e33d1cd99649329d0424215f3d404cc6Virustotal results 46.77%Heodo
2020-12-2968PMXRJZ6D76.docdoc d6480e873d81be6637d3ba474138b40d9773c0d9294fc530019ed6f3d1fcb1d5n/aHeodo
2020-12-294ENUIY.docdoc e7fe9ca43e289dc2bd9bf4266a4626a9383a283009072a247ecc6c1f84c45e0dVirustotal results 48.39%Heodo
2020-12-2991L6DIAPCYBRTV8V.docdoc 13d0f6d6781f118733432842c8144f7e2470b4afdb146cb9312dabf5a2b797feVirustotal results 46.77%Heodo
2020-12-29PC98UO.docdoc d61737a9f3206f943c7569e31f9ce318fc7f361f86b01309bc476a1e2c7571a0Virustotal results 50.00%Heodo
2020-12-29X1BBUB8.docdoc c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafcVirustotal results 47.62%Heodo
2020-12-29IP1XA9VG9TD95.docdoc eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691Virustotal results 44.44%Heodo
2020-12-294ZIGWI2.docdoc a4054bbf81bc4f704dc9ee14d6f2e5df7b22f91edcd2fb569c14c1fc82064bdaVirustotal results 42.86%Heodo
2020-12-29IR7EDVIRM4EC.docdoc 7d77b9454a806c93be95b1d074c15973e31b0b0c91b3c708d4202c88b9e09dacVirustotal results 43.55%Heodo
2020-12-29XQXEKQA97QL2.docdoc 4ce448dc3c0b2a786f0f0de325a7955364c6b13783c5dd27f2f721496bc783ccVirustotal results 41.27%Heodo
2020-12-29JVLO4NUU9YIKU.docdoc bebd8b69fdc463522ae3279b65b75959d443315eb96d862429b1aee2c217c8c0Virustotal results 41.27%Heodo
2020-12-29CYXP6TXI.docdoc abff62bfa148c0606f2b0f545934c0ddaf4b00cc13c5f3c051a22f8d53b089een/aHeodo
2020-12-29LQPR8YS47.docdoc d1b055f730d56fef75cd826b96c669e9aa16832079dfa132b8a1e4ef76e2351fn/aHeodo
2020-12-296GOPTJ9OT3K1A2JB.docdoc 9fa52c70fcab1c705956b5dce3f72bf83251745b40bfee40f746d15ba50f1f74Virustotal results 41.27%Heodo
2020-12-29VE70KD5MAXVATEHV.docdoc 494a26f5709a52d89db5822a1418d544fd4aa3f9e2e051ee517f2ad32432592dVirustotal results 41.27%Heodo
2020-12-29XMO26FT.docdoc 7e3a0828f54f87c238b13d6aa6de650da7e32e1309211ff09fd9113646454428Virustotal results 41.27%Heodo
2020-12-29OYICV5DKIAE.docdoc 2b998037b5b5525e6d7db5d1ee65710a4d25ffdb4a0082b76c2a58a58ed70b74Virustotal results 41.27%Heodo
2020-12-29V059YE.docdoc 976cbb476135bec88e0c027ca567bece0feb9f03a777d1ff0d0be97288df5068Virustotal results 41.27%Heodo
2020-12-293LJ0UC9IJ99C0.docdoc 5e4eae5b36795c653f766853756f64d8b52ae90fb156eff926aa40f2540239a6Virustotal results 39.34%Heodo
2020-12-29F47M29AAU65LS.docdoc e1b4b9220e75c5eeb36a17070699eff10144d4def48bfbed1c5698447740ea48Virustotal results 39.68%Heodo
2020-12-291FS70445X.docdoc 9e8e9da79ceb229ae85c9db0b90211541c80c35d6b07b45031fbbed646bff3b0n/aHeodo
2020-12-29SH0S93N3.docdoc 124887797dca2ad4d4a16a53439033033cdbec96a28b5ee788dcef410b4a42bcVirustotal results 39.68%Heodo
2020-12-29IOC7NJUNSZSEC.docdoc f6b6fffe0fe89481910e5173abb556c5fbd9e6e8f9006bc12e27fe996c9358ccVirustotal results 38.10%Heodo