URLhaus Database

You are currently viewing the URLhaus database entry for http://siketma.upr.ac.id/files/yH6nwm4v8FvCvDaIEiFL6gYPlYPRZeGjd35Voz4Mt4w6oQASNxHYjFFU227e/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:974246
URL: http://siketma.upr.ac.id/files/yH6nwm4v8FvCvDaIEiFL6gYPlYPRZeGjd35Voz4Mt4w6oQASNxHYjFFU227e/
URL Status:Offline
Host: siketma.upr.ac.id
Date added:2021-01-22 16:28:06 UTC
Last online:2021-01-23 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2021-01-22 16:30:05 UTC to noc{at}agti[dot]co[dot]id)
Takedown time:1 day, 2 hours, 57 minutes Poor (down since 2021-01-23 19:27:09 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-23J1GHUPQZFRGIKEN.docdoc 526866190c8081698169b4be19a6b987d494604343fe874475126527841c83a7Virustotal results 52.38%Heodo
2021-01-236GUDT3.docdoc 33c3b2856eefdb51dd0d8798ddaeac57d3a1b63fe1cf86732f08d2cc5b1b851fVirustotal results 52.38%Heodo
2021-01-237TKE5EQPX2UM.docdoc 57d7ff4664c6bffcb350211f1d9cbc272747c201c3c784fcfbab0f49c986f53en/aHeodo
2021-01-2323RJTXOF1F0Q.docdoc 3f67cebcc062ff44206ad6b1c356021133426bcb3a4070824b03036e36ba17caVirustotal results 53.23%Heodo
2021-01-23YRDXJQYB7VYP6.docdoc e7ee687cd06e406cad317080de4ba7a41dc9bc8ee8f8a35c76003488b502dc5dVirustotal results 50.82%Heodo
2021-01-236KR2WI7KXCC0K.docdoc 156db699149efcab714cb9f97ccef3b2179e9a3c53d20e6e0ad7e318e17ac1bcn/aHeodo
2021-01-23I1OOE2J8ZLEQS.docdoc f967919221798935016821892199d1eaf45960045a79bf0ecb89297edf4d4cfcVirustotal results 53.97%Heodo
2021-01-23PV5ZBWZV5.docdoc 6733462a7b5f699b61d26d88edae4feb26115c8c76e0ab92f21e4605136e621eVirustotal results 52.38%Heodo
2021-01-230QAU0S3DT2X.docdoc 343a9444d82311b35e225e7f819846eb81890d285f051585d33692e2d78fb73an/aHeodo
2021-01-22Q41OK06U38N0.docdoc e86d93199f2f416bf5dca9a736c5bdbac4ee3989ab0f04baad2c7e0066316e72Virustotal results 38.10%Heodo
2021-01-22QKOIE99QBGXZQ8.docdoc d369edd4ee295fafd1231bb5d370fff75a48505360a64708bce6418c7f2974a1Virustotal results 38.71%Heodo
2021-01-22UDRFYGYBJEKR9.docdoc 5baed32dcd265a53a8f5f4182bfa79336ffa1acc17f1ab71e8387529a82b10cdn/aHeodo
2021-01-22MK035447.docdoc 9849abef3e272dea13e211d946b289bc80ab32efd5e83178ca17a6bb094be274Virustotal results 35.48%Heodo
2021-01-225GM242JPKIN0KG.docdoc ab6d3be4c24da3e9c1df9e970119843a19dd372e08d3be797ce636117a71cb15Virustotal results 36.51%Heodo
2021-01-22ZG9EP7B.docdoc d25d5d359b01bb46095375c553f2b4ea91e2e4abee77df10d21d6ab08740dc97Virustotal results 35.48%Heodo
2021-01-22MCJHK6MOYU6MS.docdoc 1cc3ce82c3d5c07a7ad73b7890969696e032964b0773b29a1f21a68dc55e23d6Virustotal results 33.87%Heodo
2021-01-225398OB0D.docdoc fd740860d3a13f655a4dbba01a3721f0a412082b7ba59f4b04650493fe6a3e53n/aHeodo
2021-01-22QHDPESUUFI.docdoc 5b8a09ecc983f2bfa3c172b58755d141faaaa80c8016de77c9cbcdd83805d5abn/aHeodo
2021-01-22XSF86P.docdoc 37866f94856a5faf43b8d90001a46a03ed9a8c10d666298bcc0341d28842a1a6Virustotal results 34.55%Heodo
2021-01-22ULCREF3IJSXCJ0Y.docdoc 18eeb3c4acd968e5fb4a847ef4eb4953690be2b5a9ad36d6f82a9cbc7caa7a53Virustotal results 33.33%Heodo
2021-01-2234RSELJ.docdoc c7f261f11d0e317860ef68857f8457e85439e702a7c90170b9b74b1508656b99n/aHeodo
2021-01-22YNABG8KHOQ.docdoc 18a322bc3bc173a8128d00e372d608c3251f083c2587e69c79ec037933928d39n/aHeodo
2021-01-22CI2N2IRSHSXT.docdoc df5ff0dd34808825942b6b896c5129f63bc36f8fbbba7f3ce145cced467c662an/aHeodo
2021-01-22ZHWZLRBJP2YA.docdoc 1d2d80a3a1d3ba28ca88d827cc5fb6b166f7d41b3f91065e8448f691275bcd3cVirustotal results 31.75%Heodo
2021-01-227SDNI41TF.docdoc a9cd44d0dd7d458a7b1e6368dbd0f0d2693a1da40c46561532d097f7f79300a6Virustotal results 31.75%Heodo
2021-01-22UWTTGGQJO.docdoc 19eabf766e8a1eab6d6736638f9331a3ed1606b329cf336e4a564c8b0ab220f4Virustotal results 31.75%Heodo
2021-01-22BNIVPU77JB9EFAF.docdoc f94ce1999b36908400824395310936dbfc1edabe26e46e99f4ef39285c443552n/aHeodo
2021-01-22HOQWNNKKFJ.docdoc 4645da6dadb364b09a0a89f510be736a7bf0d088e5b79a002bdd4bf430ff9fa0Virustotal results 32.26%Heodo
2021-01-224CQGOM4G.docdoc 077fd7de4590c86cef6c92180c5d65a613bc17a38f749b04ac9ec8d2bee2ecafn/aHeodo
2021-01-2249IA8F9X9NDP.docdoc 0dc0f00a3ed385b6bff2f9188766ae977a173405c9bfed86474e9f7fccfde9c1n/aHeodo
2021-01-22NVNJEVE93FNAOT4.docdoc 5c7bb8c2bd7a115517be5d5b370391154304ddb68b3d29a464c4cb93521e1bf6n/aHeodo
2021-01-224KBHYPFKXBYU9.docdoc ae7cee3d5ec74802896c4cb8fb6008beaa8803ce3450361f3dcf516db44c4e0en/aHeodo
2021-01-22S8BGK9RH.docdoc 40f9c8ba4d00e622042542829a5ed33c0eb34a2fc28920090deea3debe967a60Virustotal results 31.75%Heodo
2021-01-22RG94I2.docdoc 0939fe6d39e0d83811a9940d4648fe84ca63fb970749743bdbb779be2a07c683n/aHeodo