URLhaus Database

You are currently viewing the URLhaus database entry for http://veletrgovina.net/assets/h7KfFRnD3DV/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1850405
URL: http://veletrgovina.net/assets/h7KfFRnD3DV/
URL Status:Offline
Host: veletrgovina.net
Date added:2021-12-04 02:30:05 UTC
Last online:2021-12-04 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2021-12-04 02:32:15 UTC to abuse{at}oriontelekom[dot]rs)
Takedown time:8 hours, 38 minutes Good (down since 2021-12-04 11:10:22 UTC)
Tags:doc emotet link epoch4 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-12-04Z5PEHSCJNFL.xlsmxlsm 08049d7a7bf044cc00d2c0797d622a12da70451c5b7e5f0c8651f41902ef35c0n/a Heodo
2021-12-046U5DHG7FXDL.xlsmxlsm 45aa726b2ca6a38d0419f3d4995b9d49511378a95a1be683595faa492bf75dedn/a Heodo
2021-12-044CBXEH4MJCDEKW6.xlsmxlsm 105b85239b53170fd9b3f6acc444344a468a319cb90c5c9293ce59f00076c4a3n/a Heodo
2021-12-04FUQOG6OA7FX6.xlsmxlsm acbb50b97f68282a91ae0fd63b0ab72e5add03e77a9fe88b63b7eda484fe1a38n/a Heodo
2021-12-0420773L90LAK.xlsmxlsm 30441b2ccc0b47916ba14bf7a3a1fb262934110cb3f095daf6d007544885339cn/a Heodo
2021-12-04R1V2W5DJX.xlsmxlsm ae4e1c5c885adefcbb3507d22784c33f2e3a933ae8b71465010c71c41d7935a6n/a Heodo
2021-12-04X89Q1KTF45EDPF.xlsmxlsm 27398a3f2736fae1f040f051ab7ea4b36bf4a0949565531d64370f70558f1edan/a Heodo
2021-12-045VKILTO8P4RXA.xlsmxlsm acba145aa4d5a0c45b38bae2dc8806a22722b22b5b5e4658792cbe24d7f4bc25n/a Heodo
2021-12-04AU8CIKYH2IK6.xlsmxlsm df548ffbe364bfcab388240bb79b0e022793e69993359ad2814bf4dcdd8e8c43n/a Heodo
2021-12-04MFD06FYDKGHOU.xlsmxlsm d6f9c9727dd0438fd15ffe3b61f7fea64b2799dcf291b82cb91c4e615b876f77n/a Heodo
2021-12-04SDHT5ULX1DYCTP2.xlsmxlsm 27b04e376ddc63be6e7d02e5dd253037286c74a079657d6d10efff3a57b9fc51n/a Heodo
2021-12-04B5X93HVQDQY.xlsmxlsm 65a55060750632754a1eefff566ba39740151576e8560d0a1b55c2a939251b51n/a Heodo
2021-12-04ZWLM0VQ8YO4.xlsmxlsm dc2b1c634d6ee39bf0d319051b3769a4850bda9ccbf272f31063c2153953cb24n/a Heodo
2021-12-04TYBBIPC45BEX.xlsmxlsm 987b04cc3050bb943484673f1e1942730b40988a72fe36500ee383008177c6d1Virustotal results 22.95% Heodo
2021-12-04LFB1D548W5SO8.xlsmxlsm 02b22c30e1d82022b865ad2774c483ff395d3f0a7f21032babdbd073c8a5650fn/a Heodo
2021-12-04Y427W0DUVR.xlsmxlsm db74c9cba78c8fc29bf8e7e480c608fc01cd978334ef0a6d2886252db0493c94n/a Heodo
2021-12-04ESXSHNHRO.xlsmxlsm 23e12e540150b25409043fdbf20f9229d716c0a5890dbc866c773317b7ba0e25Virustotal results 23.73% Heodo
2021-12-04T7IN1YU8V3NNPNY.xlsmxlsm fd781e4756361680738cb46dbb0255da011155a9b2dd00b5413e7bcc6e67c6c7Virustotal results 21.43% Heodo
2021-12-044XA394VGSSE.xlsmxlsm 83fb6377e3deb8155d8d1ea2470c1ce9565bef5746a698b9f769d5f7852de049n/a Heodo
2021-12-04U7MF80MIP.xlsmxlsm 314e3d1e7346c183ea8fc1d5e99dac95786c5e7fc9bf415af7ac35882715ca69n/a Heodo
2021-12-04WHG43T6P6.xlsmxlsm 9cfe07eec025fccecf7dd8d2ea076b95f82f9a467f37ccc43fc6194358e67204n/a Heodo
2021-12-04GCBUF5RA4XBU.xlsmxlsm 3a0a22030acfd67b59f0c90741d3a63e786a9a9643878045ab9c22c368bf09b0n/a Heodo
2021-12-04ACD18A2SSKJFI4.xlsmxlsm 2c7d3257879a2e69e5c869ea9ce1dcabac9e27d92225b6ed4c6a9c214d2b4871n/a Heodo
2021-12-04ARSYRADP0J0.xlsmxlsm 129abfe1daac979f2a6ac53e587087920fff466cf94900127c69289ab787777cn/a Heodo
2021-12-04S6OY2S0W.xlsmxlsm 05764872764266ba76328699e110519eea6d317df30aa9f42337cabdfc0518c7n/a Heodo
2021-12-04X1TQEIGM.xlsmxlsm 19940a1e1820b4aa1e0bc8ae018bd31dc2d870fd9970ffbb3a25a25676c60936n/a Heodo
2021-12-04KJDHFTYK05V.xlsmxlsm f7cd0e7b41837269b956f4229a78d6249d8a64a152716dd31191605f56340a34n/a Heodo
2021-12-04O2QE9RWLBYDUDH1.xlsmxlsm 1087bcfdbc7ff0b14a84ca0806fb3f64a6dd54125ca96b690c9fda04948b43e0Virustotal results 21.31% Heodo
2021-12-04PVT9M2HZ1.xlsmxlsm a778d86f9ea4be3e04e9c9b2653a0c273c229d3ebd1b98e2024b3eb15700f83fVirustotal results 16.95% Heodo
2021-12-04PKMIDHMI0HDOJ6.xlsmxlsm 3deca071fef4995683e7971915e8db86dee177c3332743c0b110abefdc49e909Virustotal results 23.73% Heodo
2021-12-048118ACLYYJYGF0.xlsmxlsm 92a7a4587292cc65a222396e039e4862c08d78a196a58658409e09445760d626Virustotal results 16.67% Heodo
2021-12-04OM9AIPF7M6T.xlsmxlsm 0963f816992514f8ce8220d695ba987e69e71913321312f3bc790829b0df4cf2n/a Heodo
2021-12-040QAQ75HYDG1T.xlsmxlsm 640cb770dd4906e04ab1bf31b293f900e2dfcba94e6316378398136a7dd3e644Virustotal results 23.73% Heodo
2021-12-04JM79D2Y6VP2.xlsmxlsm 6edadc67bee674d89534896d0e335720b2627bdbb533b69328fce5d605390352n/a Heodo