URLhaus Database

You are currently viewing the URLhaus database entry for http://regenerationcongo.com/CyKI-GzsIS9Wg_ZfH-7h/PaymentStatus/DOC/EN_en/Document-needed/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:97371
URL: http://regenerationcongo.com/CyKI-GzsIS9Wg_ZfH-7h/PaymentStatus/DOC/EN_en/Document-needed/
URL Status:Offline
Host: regenerationcongo.com
Date added:2018-12-18 21:51:03 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Blocked
AdGuard :Blocked link
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2018-12-19 05:48:06 UTC to abuse{at}inmotionhosting[dot]com)
Takedown time:6 hours, 21 minutes Good (down since 2018-12-19 12:09:15 UTC)
Tags:doc heodo link

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-19US6866778108956593957.docdoc c2245d89df0a0f4fdd164a942fcc25c93de8b71e0bedbe3ad75d80fa43b85c69Virustotal results 28.33%Heodo
2018-12-19PAY10353292111047362.docdoc 55dc3904dd389970bb84c2a83ca781b036a170319a111c010ef22d8322323f39n/aHeodo
2018-12-19PAY52858634603963716.docdoc 8e0237b45c3642ba9e5a6ebd6ec3e98d28bf2e247b652289e617c0eeac1c70b7Virustotal results 25.42%Heodo
2018-12-19ATT188579362137215.docdoc 7b2fc161d785a30c22f537fc9f08a7cd3af7b852e8e67864252122631be2522cVirustotal results 25.00%Heodo
2018-12-19US725804727008.docdoc 5b8246000d7f87b4e1623ca23cc9825755873bb3b04737bc3c3fe70bdab597aaVirustotal results 25.42%Heodo
2018-12-19ATT9884320573278423039.docdoc d7757f8fdc6f0bf688b94389053d1cb5bf04eb0f29216b7a92f7365e35545616Virustotal results 23.73%Heodo
2018-12-19PAY3400527277120.docdoc f7e47025a754e21ce1327a92011ce944bf63ddc12e0b36105b5b3cd9f190a0c2n/aHeodo
2018-12-19US477781517.docdoc aceaca2a5b483f991c93162935025122fc98d3063e213cf95d8d218f4d8c273eVirustotal results 24.14%Heodo
2018-12-19PAY744605621477.docdoc 7157db494c843e62935afdde0486c81d0b55f828f512a4d805e9bc4172d46e65Virustotal results 23.33%Heodo
2018-12-19ATT5493743235460.docdoc 6eeebfd2c3e7cebfb0ef3cd6c9bd6515e945949d60834ce9db5359d1b2cbd154Virustotal results 32.20%Heodo