URLhaus Database

You are currently viewing the URLhaus database entry for http://ucmasmauritius.com/admin/xdEKfyEVy1f3FFze8bz45Oxbhzxp61O6eiElyYYj5GJP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:972629
URL: http://ucmasmauritius.com/admin/xdEKfyEVy1f3FFze8bz45Oxbhzxp61O6eiElyYYj5GJP/
URL Status:Offline
Host: ucmasmauritius.com
Date added:2021-01-20 20:30:17 UTC
Last online:2021-01-23 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2021-01-20 20:32:05 UTC to abuse{at}ipserverone[dot]com)
Takedown time:2 days, 18 hours, 39 minutes Poor (down since 2021-01-23 15:11:24 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-22YVA5GM4J9VO9IA.docdoc 14eca9c21c1aa529f649cbdcf858782226708e138a6bb7af0d67c601a01e9e30n/aHeodo
2021-01-22RAL1SLG44TW.docdoc 4ffa47e0f118abfe29b729542aaa390586651144b3c79a2272f3808bc4f4310aVirustotal results 29.03%Heodo
2021-01-22U7MESWCX0BZYA.docdoc 6b2fbb5e14a3a1018e7cbf6b37d303d86504f0fc412e8d0f0db3100162bfdd0bVirustotal results 29.03%Heodo
2021-01-22RTXY2JB6SI.docdoc 46ecb2bd799ed8838178b39b07df00329f9348fd48545a9e6be9b76e5ea6de09n/aHeodo
2021-01-22WG42IYIF650YIQ9.docdoc d50ed8bf7cc3581a31201e5b72aa5ece499c46d36a837aef12ffc20bcd9214aen/aHeodo
2021-01-21TSC6Q0IM.docdoc 3a0235b5137c1d8dffa67e97c6dbe13cfc7117e3c62dfee05d8897acdea83b5cVirustotal results 40.32%Heodo
2021-01-21YO2MBX8ENOC.docdoc 51fae18ca6515a9154913bc82e245a72308b832eb47b5785a21beb0f0a34b07eVirustotal results 38.71%Heodo
2021-01-215PU73QONAAO89FFQ.docdoc 54385e84d22e522ecf660abd63e8cdc132b0ad766af8d7c589b13f7be5371c2dVirustotal results 39.34%Heodo
2021-01-21MF0YIAFMTBQJ7M0E.docdoc 4121d45c89baa331a26e0dd4c638c04a81fd89a98b09675d3e1cb3c0a57c80dfVirustotal results 38.71%Heodo
2021-01-21HGIWT7OFISBEJ1.docdoc c817fecaa0572cdffb222f4e40d2d2f64fed46d86c042e8cfd9cc3b597489912Virustotal results 38.71%Heodo
2021-01-216DN14T4HUZ8.docdoc 7b84f2501e9b8aaa56422e3bbd5742f0e1ef38d318c28d689ed5662e85a65cfdVirustotal results 36.67%Heodo
2021-01-21NCXVTBAFT7OKMMK3.docdoc f19f01987b42d9be03048f6897f0ae6dd4265c93cf2b1e055b28e5354113a2d2n/aHeodo
2021-01-2138WNDS.docdoc b77758a7936af2b7c6b3df9fc45475ca411a9cfaae447bd97a2ab3b8d60aa160Virustotal results 41.38%Heodo
2021-01-212KOUSU639.docdoc 8c51b7b434f7213aa019ae0600d85e225e98502f1971bda3990bbdd16e3b897cVirustotal results 38.71%Heodo
2021-01-21B0B5FIB1.docdoc 11e1780e215a952185315253632033b1e42e269f59252e80ccc002e7ed15c086n/aHeodo
2021-01-21RJZTYW404AR93Z.docdoc 1fa18e851ad74226caf71eaca19ccba3ba2b1457521c4a4fbe6ba07fb3008333Virustotal results 37.93%Heodo
2021-01-21Y8L8I29EI.docdoc 17420055c7c1b85137e8f5e78a7eab811ae1b4f00b33ce05590e19399286fe2fVirustotal results 37.70%Heodo
2021-01-21YEG3ZR53.docdoc 80f688c0b9fb7d3277bddc7d43c06d13ddb6a1658247870d0287de8c157e0becVirustotal results 37.70%Heodo
2021-01-212BM3SK.docdoc 8d7efeeb6526c1ce01dd7d5a75a5f9c22d9ef5dec9e19d6504cc1d073cf8c864Virustotal results 36.07%Heodo
2021-01-21RCOADJIRZ4ZQ7R.docdoc 66840e0ecc45de6d60dfd40a9a510bc1664f4121d4e66b498fa33e3b1cf2ae31Virustotal results 37.10%Heodo
2021-01-21FD699LPER0G.docdoc f1b16a95d60e942f2ca4724096a5a078f74d16d045da8ebf4cbd11d1fcb25322Virustotal results 36.07%Heodo
2021-01-21L2CR7E9TP7ED0.docdoc 34f009842068cfd83b7b0048deb0698f8647a41889d562c9314a7b4665c073beVirustotal results 35.48%Heodo
2021-01-212I74AQSO.docdoc 1ade51b62019cdf1df087f2ebf35d2d5fe4aa1bc5a03d76324ff346bfe5d7953Virustotal results 35.48%Heodo
2021-01-215ILTSY.docdoc 4fbc5117af26fd60f03e2660f74b6b18cfb88d2badad4394939838a779bec2d7n/aHeodo
2021-01-21MSF3DVZ4DP3A.docdoc 2d75bc655ee87200243a8c0f383323e49eb31a7b0cc6f86e4376c41f83e0f542n/aHeodo
2021-01-21DK3Q9ZRVK.docdoc a1adbad4bcb1cff2e45b7b7e7be4838dbf2133df86b768c9a1d9fa056b5b5d39Virustotal results 34.43%Heodo
2021-01-216VRG3HPLHWFXKK.docdoc 5f73dcc09f5d4ac5219b105e1083dda4baca6637aaaaee7ffb27691684f4968eVirustotal results 35.48%Heodo
2021-01-21LEW17ZW0C1C68S.docdoc a58be0e3ba5abd6441bef2a7efcdffa251f5f396685642160a2508363b75395fVirustotal results 35.48%Heodo
2021-01-2199WSG6XTX.docdoc 6696dcee2f90b0c3f0614d8197a15ce194e31f0940e923dd5f9bb95fb42fa479Virustotal results 34.43%Heodo
2021-01-215Z1CETN4V6FN.docdoc 8529a3bea5066aa6c825c3e7f27e7c014eccc2f265ac844787e13aa77048fc38Virustotal results 35.48%Heodo
2021-01-21R79O7N700KPA1W.docdoc 46512d0921fb5626d9080c7f3930e3b4ffb9cd15bf20c8554f150e7ff47b951en/aHeodo
2021-01-21QQLS1BXNS.docdoc 38dd4edef2de2088eb63ab88c4213512a1b0bc748d115d2ed16ac1c5c2cf27b7Virustotal results 31.67%Heodo
2021-01-211FCZXNKE4GZTD489.docdoc 7a20adc14eedee96591f3f10da2623860f3adfb5c70d6603bad7802045e11c81Virustotal results 33.87%Heodo
2021-01-21KMB1V4.docdoc ba3aa81154976cc9bdd719ecce4a925b513892f51cf40a1f511d77d1c180f1den/aHeodo
2021-01-21U76V8U9387N1D4N.docdoc 75d4b326ca471055fba9d3e4dfbb994e191135130d15f7f1e75fa6a8346bf89dVirustotal results 29.03%Heodo
2021-01-21D9YK0WH7VQ9FZ.docdoc 4ba19977d7051012b6f22a72868e1c909438f6eca3e725dde0816c11f5d7f262Virustotal results 35.48%Heodo
2021-01-21CQOTZICEVG.docdoc c81d0f1555b356115f9478fb3e1a082fe834f56fa4361077081cc7c399d5bdeaVirustotal results 37.10%Heodo
2021-01-214866L9O3Z093.docdoc 1df953e34823f8351e1702bcda5b4b75887620f2ce403968f4cb0524e89bfa65Virustotal results 29.03%Heodo
2021-01-20JL39OD.docdoc 141fff422c09e0667d14fb353c2b716e5942f8e592bf7e4c8627c33cca4deac9Virustotal results 37.29%Heodo
2021-01-20ZP4V1PS.docdoc 4cadad6fe9f001e7d45a39b6a54af137aa2cc08f465010ecb7539156ed88d384Virustotal results 36.07%Heodo
2021-01-20DNJRCSN.docdoc 45c2215141817c9d7e320947f1f94ef7ec92d3351de8ac3798a7e306b34f5de5Virustotal results 35.48%Heodo
2021-01-2094VIYTSX.docdoc 1c781faa1f4f2e3a4757766943a18d7b1c16ce4e695382b723a36dc9a52d8331Virustotal results 33.87%Heodo
2021-01-203GM5OW9FV.docdoc 5a43f6cf21f15f541f3c485ea237f724e3c72ea59d91e44092103cae63a01bf6Virustotal results 32.79%Heodo
2021-01-20ZO75NK.docdoc cfeb8617b6934ecd6b5a4bbdfa12bb62a323bedd9f43b8e11352618ecfa75b43n/aHeodo
2021-01-20GC9Q5272V0SDYXMJ.docdoc 96c0946b5c6a8d77fa253d70c944ac5e78a5a0cfc0e22ebbc27b44a8550cec6dVirustotal results 30.65%Heodo
2021-01-20MK6Z8YXR8.docdoc e020a38883c31af6494ccd2106bfb598dff9865f94994ae3bc9a3e40d1aea2bdVirustotal results 29.09%Heodo
2021-01-203BUZ6I3.docdoc 462f5d61dfa9c9938d8d78f06e90df29e4037d7a20edbb20da7d9ed0d69a4b02Virustotal results 26.67%Heodo
2021-01-205X3QZGZ.docdoc 885bec24ff3ff31176e787f7b53f03563bd32498a8dbe78cf0f8c7e933abe619n/aHeodo
2021-01-20GR22LLTLSO1.docdoc c01ace5e5093f9c57d7a89fecdcec19a4c90762c99e748b4956b17a8e8f272ccVirustotal results 29.03%Heodo
2021-01-20N0XNZKUDLL.docdoc c84de615620cd1a69411f262b2f431ac07909b7705e43c1a97d80f5bfdc3ea33Virustotal results 27.87%Heodo
2021-01-20X98TN4RL37US.docdoc 57c0a7e0c8c758419617cbb0493789572ffd9bad491e5e98ecb0754de052efe3Virustotal results 29.03%Heodo
2021-01-20F1SVAU1KBZ.docdoc aa07564ad9fe421b07c24a624f3fbf68f5f4080fd16a61bbbdccef53d89e138eVirustotal results 29.03%Heodo
2021-01-20I4IZQEJ6VL3OGSNV.docdoc e4cb0eb0b65af11f26a5b0a66600e1ea942175dbac4014967d689880158e2a0bVirustotal results 29.51%Heodo
2021-01-20DTCXKC2SAY7GVRE.docdoc 020bceec2fdbd029d767e4d2714cdf30546debb93652c93fa9983cdbb2403cd0Virustotal results 24.59%Heodo