URLhaus Database

You are currently viewing the URLhaus database entry for https://dmalogin.com/tmp/oZCAyyzwQ3Wb/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:949473
URL: https://dmalogin.com/tmp/oZCAyyzwQ3Wb/
URL Status:Offline
Host: dmalogin.com
Date added:2021-01-05 12:52:04 UTC
Last online:2021-01-16 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2021-01-05 12:54:07 UTC to abuse{at}strato[dot]de)
Takedown time:11 days, 2 hours, 20 minutes Bad (down since 2021-01-16 15:14:47 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-15SHCKLFNG2VWCPAZJ.docunknown 188e534fd31161508a875bfc318752b820e21f23fa1a5eed0f95f3547685a6e1n/a 
2021-01-10SHCKLFNG2VWCPAZJ.docunknown 41322c4dd1621b081956885fd4b3075a0bb0d1c251d5f93f56194f9fe4cdcf1bn/a 
2021-01-06SHCKLFNG2VWCPAZJ.docdoc 3c0e7afadd6a40200977abf0c7e2f5cf594360ee0d6071e572493d7a175abbd8Virustotal results 50.79%Heodo
2021-01-068GYUIKZ6OFIL.docdoc 91301283dc9ff2a660bc059ae18fd6d89374f0ce7cdcf84629aa9c2846925022n/aHeodo
2021-01-05L10VQ4XFCOZ.docdoc 4a4dba86e713cf92f9e8e440b31d56e0682d4226deb7ddf638ae9489da1c7b3bVirustotal results 49.21%Heodo
2021-01-056YKW9QVXD8.docdoc e2a4e1b38da2c7b66dba005e8a788dfde3a5906f24dabd9d5ffd2568a5ba5953Virustotal results 42.86%Heodo
2021-01-05J437ANPXIMKY6.docdoc 0baffc20eaca4aeeb47c5c2ad8b6e1422d4407ebd13b501b7ebec60859dfe18dVirustotal results 46.77%Heodo
2021-01-05VE29TRB9.docdoc 43c7f051a51a97f73a0da6ab032c326aab4593dbe54c6666295898f1ce993fb9Virustotal results 50.79%Heodo
2021-01-05S7QZUYTP.docdoc 65eeebdecf737d2e67f9b8073fef6be3b6668f1541e8a19a12f869063b217ce9Virustotal results 49.21%Heodo
2021-01-05XCAWI44Z.docdoc 8b55e8ac93c6d98a00b5790b88263103586e05cb124ce6daac1b1061df4772abVirustotal results 48.39%Heodo
2021-01-05FOXGHRQ.docdoc cff0307e84e8f6c3c45d3ac88aee9f8761a6f7a271dc07e5c6b1a2b4012b654aVirustotal results 48.39%Heodo
2021-01-05JAOUYD9ORLVD2P.docdoc cdc5395931b2b7da44dbfe1d93bef7a982f103fafc2259f0d0b41025628b11b6n/aHeodo
2021-01-059WCKBAGYHD619WS.docdoc 89fd184735a65d10e9ab90734cd0459a4a3e1405064376794f61482b6d4a756fVirustotal results 50.82%Heodo
2021-01-05Y195WV8JOH5CG.docdoc 2668d532f53ad3bd92b9d0fb533d6feaf17a6a01a08ee85787667442e9c69e5bn/aHeodo
2021-01-05FOHKIEWKD8O4165.docdoc a03c9dc5727fee3968f4d2d8352258cfc56840dd972680704075d574c12dad5eVirustotal results 47.62%Heodo
2021-01-0532PTPBNXD.docdoc aba67782417917b3d22447be393035e2d71c1237c51459a580d444c228dda781Virustotal results 44.26%Heodo
2021-01-05HGYHG4544QNYVQO.docdoc db13b0bb816476742e2920b6a33274082f378ab0538824d8027c8a2b9947d102Virustotal results 42.86%Heodo
2021-01-05M0HM7973ZVA6JMJ.docdoc 8c829198897d8ba3dd5a5b1f86741c5e5295a0eafb900bfa440802d1c622c469Virustotal results 42.86%Heodo
2021-01-05M2A4SUY.docdoc 122c549f9e875116b46ecdbce80ee12845bb24c40a4c703be57b4270731f7f28Virustotal results 44.44%Heodo
2021-01-055IZXDT2Q7I34HFTI.docdoc 4e30a0c0d464a13919be9367c51ec2d36f2972e27861997410add5b113bceaban/aHeodo
2021-01-05XQ215P2.docdoc 7f9e6b9183a6a254ffcd68100012d645a5fb91caaf3b727bbbd76f4262595bb7n/aHeodo
2021-01-05WGFOCJ6E63.docdoc 6792a8737e9fa557cdbfc232021a5c2efb01b55d3bf1d560e9ca9671f8af9fbeVirustotal results 42.86%Heodo
2021-01-051R5HR6Q2T.docdoc 6527a3d2271262cfd7437e54a8f738dd3902cf973c372933ce6b8303f9dd6ee4n/aHeodo
2021-01-05YDKKZMGQSP9.docdoc 80454b5f97454034a460b2976c3161f4efcf1131cb3ba594669114a46e069c98Virustotal results 42.86%Heodo
2021-01-05JZNIJEN.docdoc 628462affd2e722a5b52ab468ef3bf9ce645c9cb8758205805d36d24e1de9a65n/aHeodo
2021-01-054BYBSH1CUK6BTYMP.docdoc fd6f8497c7f1598a8b9b1efce5d180e4c935b6eb142460506657136415c9aeecn/aHeodo
2021-01-05S57X3BBTU15AX.docdoc a605e101efde84eeecd77fee621baa25add64f5a5dd6152930eb37b51acb362cn/aHeodo
2021-01-05EBGKDCTUFRN.docdoc 8fd9cb62864fba4744ed8c84378c4fbe014c5b9f08d61c6a84d8816c2e6e4d9cVirustotal results 41.27%Heodo
2021-01-05ZKZAWCNG2YE3OFJ.docdoc 1773a8c5d6382649ab2e7e2112e57bdda624b24119e1ada51954b38032a25554Virustotal results 41.27%Heodo
2021-01-05ZIQ42P2QD.docdoc 3139013c53da9f4c7c2fed417c91a6c3575034b75234dba4d13e5a9c0a5cead8Virustotal results 41.94%Heodo
2021-01-05V6GDPM4NVR.docdoc e675703883baaba25a66c582f234d4afc20d4c8222845afb799f48323b535d74Virustotal results 41.27%Heodo
2021-01-0549NWAWJW0.docdoc 6eeffb79f8c4aa26fe40db3e13ce97d3fc0401bb06b16362301bde1524534f16n/aHeodo
2021-01-056PU9PLNJN4VIJ.docdoc 4e3a0ad4ce849705cfb0b25ceb1b9447b104129bf30552f0fe1591fac04a39a5Virustotal results 41.94%Heodo
2021-01-05CF234OFJT1F.docdoc a89f92e072c12d6c72da546bc3e7510080fbc6e3fa0e9d58d2301183e57df833n/aHeodo
2021-01-05DA48B7SCG91.docdoc 4ec6bb0b2ce1529a04163cb7987c3a252b4b942cf820aa976d0e2ffe95e84344Virustotal results 41.27%Heodo
2021-01-05DCDMOMCM.docdoc fa90e0414292c307ae04890084372a4b38edd0edaf017d4482f5b621c2ce8952n/aHeodo
2021-01-05036KWGN.docdoc d46ba86119e2dd83214de690677f6a6804a514580f74a8b698bd9feba2c914a1Virustotal results 40.98%Heodo
2021-01-057VTAB3FPRAIL.docdoc b7ab6e42f85864cffbabbd1238bb6ec2054478a1b89e8cf59d519bc07f6ac543n/aHeodo
2021-01-05CS38R3PNAXK96.docdoc a2790bfeafea9f12eea6a40da413d84e2517341f83f83c18ef5dc7f8fb9e4722Virustotal results 38.10%Heodo
2021-01-05183W7HGCW.docdoc ef0037fa26300ec817e5799313c3209de84c5b9e0a4758cd2bd970d19d4b56bdVirustotal results 38.71%Heodo
2021-01-053D3CP23CEMAN.docdoc d3d9fc2d3491815fa83fabc32f536dccf14350291f93f8291f6b86274f49755cVirustotal results 34.69%Heodo
2021-01-05ZXTJ2F1I.docdoc fa67e7f709be28273b80782e6576f2e93ec9a1018626c3907d55e005fe12cf0dVirustotal results 36.51%Heodo
2021-01-05NPNRM7CT3QZR87J.docdoc b4bd8fab454cf0dddc90851acf8b559e6822c542df346fec38f6b1ae129087bbn/aHeodo
2021-01-05Y86FBA7.docdoc 5a4272405ec5815ec5ce110738678a0209b357093fdcfb9eb643570cd07cb7b9Virustotal results 35.48%Heodo
2021-01-0575DBQ2E.docdoc a56a1800d7e4025777037ca7710c9d3371e740bed22da122514b4926f7be79f9n/aHeodo
2021-01-05NT90A7HM.docdoc 7a3b0250eb31576ec30cb36ba111082fdb6d95f294a58c412327caf1bd885310Virustotal results 34.92%Heodo
2021-01-05D3WOI4U4.docdoc bbe6cd3d148a4f8079df0b0edd4c64642fa3a8bde29976abba31bd23dccdeba5Virustotal results 34.92%Heodo
2021-01-05Y9YJ8S4.docdoc 68b0a5d69d06acfc3fb06c2d353f13aaf622fb06c01618c3f319e799fc54cf94Virustotal results 35.48%Heodo
2021-01-05TE3S99.docdoc 62eb0fec7cbd5f5678dbf2c5760339f886634b8eb21cb6280e81ed8ba852eecfn/aHeodo
2021-01-052O7RY9AFHGF.docdoc 3a6c0312e735a06c37589a86a75939fd3fa9fe9ab71deda4a1c23c9fda307e7dVirustotal results 34.92%Heodo
2021-01-05L7OLWQUFKA.docdoc 74cc67c1d7468460ff1f1fa0123fc12507010fe38a0931d6aae10ff539e0b63dVirustotal results 34.92%Heodo
2021-01-05EYF6ZCR3ZTNK.docdoc 56107ecbd594f1c684f729d239e501bb2d1561d6a584d7ba0a0d69ded2bbbb18n/aHeodo
2021-01-056RMTV48.docdoc 001e1ea7ab07c91d781f5c51cd2039efc3acaf9f3a7b4bad38979ad48ad2119cVirustotal results 35.48%Heodo
2021-01-05DJT78FHM.docdoc 6024a679aeee42f84c13bef61fccce9ccc55c784dfceb2794c6e4771b18d9b79Virustotal results 34.92%Heodo
2021-01-05B0F094BFWLDA.docdoc ef6c966c74e229e34f880f5df67c40fc69a57caf55d1b033527dd9c5be04516bVirustotal results 33.33%Heodo
2021-01-05QJU7DS01JRP.docdoc 2325bb3d4ffb081d6234ed1bca74f8662b1f85c6d27d6dec106e376590b7263fVirustotal results 33.87%Heodo
2021-01-0558A29X4.docdoc 15f23a4d0c6a15044c688746279a0a6afbc82b15d5c5bf6752ccffa01e9921f4Virustotal results 33.33%Heodo
2021-01-05R7NE25VWMG275T.docdoc 01bce41750258f3d232b9eb7fe7901a88167254f0fe956f557bb33aced7cfec5n/aHeodo