URLhaus Database

You are currently viewing the URLhaus database entry for https://khbd.41319.top/e/RgG5EIbM/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1850569
URL:	https://khbd.41319.top/e/RgG5EIbM/
URL Status:	Offline
Host:	khbd.41319.top
Date added:	2021-12-04 03:46:10 UTC
Last online:	2022-01-22 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2021-12-24 14:22:00 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:	4 months, 16 days, 12 hours, 21 minutes (down since 2022-04-19 16:10:09 UTC)
Tags:	doc emotet epoch4 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-12-05	D4AGA7R0J5.xlsm	xlsm	33dc0546d60f496508e95293772364bf7e913d52ec3d606b326adff6cbfe7fd7	35.59%	Heodo
2021-12-05	CRVZ5ATPDHUYYG.xlsm	xlsm	1a84ca3811bae8edf1c212f12ef262f19c6a6fecdc674d60d94ee96ad2db74b0	n/a	Heodo
2021-12-05	78UDJ7ND82.xlsm	xlsm	4638a2b64d4aee45443128e796c88a6be1f202c1df5f1a41ef13e1ff56cb94ff	n/a	Heodo
2021-12-05	70M2WBG5SCDS5E3T.xlsm	xlsm	c46e755e6a8e6956f52788e7ae163030608a852dc8769fe772dfb77b7bafc5d9	n/a	Heodo
2021-12-05	U7W0BFK04M.xlsm	xlsm	52ad735a805a790e77433759257f1f3c72d202bf18d56d83d0a39843d1d46b6f	n/a	Heodo
2021-12-05	EWUVD3XSYJVNJ0.xlsm	xlsm	f593ace7ebff5eddb048fc07d39c4c1117715f3cf69bf6dc860177b4715dceec	n/a	Heodo
2021-12-05	MWQFOOZ5R4H13FSE.xlsm	xlsm	4873a9eb55181915e691e123e116798b367a7ec5c68d2759290bea9385ff2b56	n/a	Heodo
2021-12-05	LUE3Z88CQ86MTCUN.xlsm	xlsm	c50d6249686ce59a825199049db4d2bc5d7ad611c1029d4e5ecca615877e8d63	n/a	Heodo
2021-12-05	0AFDI80JI.xlsm	xlsm	ac2de8ef726500ae270f587aff768d969c1c95b21e407bba49ef598ab60ea9e5	n/a	Heodo
2021-12-04	5RDJ39W9.xlsm	xlsm	302ef213ab61b467abd082b4fc2aaab74092e468f3844ecb7804b8be88e01f75	n/a	Heodo
2021-12-04	YSBSKSLCK.xlsm	xlsm	28f2433f1444eb6e9f61d9dbad0f192dde883be209b175a4fc185bd13a2d1163	n/a	Heodo
2021-12-04	U5MNJMOB.xlsm	xlsm	c538307a14f55d21ff46077411598baa5c27a6e7c442b690b436687d56fa4cd5	29.51%	Heodo
2021-12-04	405IHWK03UO7KPP.xlsm	xlsm	3a91cea43f5b84c9d7b405b34ead59e7182a35c98622d7441733eaf20b23ad13	n/a	Heodo
2021-12-04	1WAQ8S1KP0GDS.xlsm	xlsm	4250fdc2cd3f68d5f71d41b533940e6f8082344e34e0b94cd0861aaa0eb49309	33.87%	Heodo
2021-12-04	AW47MSJT.xlsm	xlsm	3426dffd386c5ce5a28bd888e073a7b1bf9fefe0e702357089aece4840fa9449	29.03%	Heodo
2021-12-04	OVNPSTI9CD.xlsm	xlsm	a2188e329da2699db6ace92829b385063eea0c8ac5f90ca5535a5a0eb74b956f	n/a	Heodo
2021-12-04	IBFJ3W8S4GZUG95Y.xlsm	xlsm	c8ba0a2f5ee17b56f19fa64fff0eb2387fb8469115d5e28bd015c721fc82956d	n/a	Heodo
2021-12-04	QUANF1DERSF.xlsm	xlsm	018d7e41ac4c9f6a79553ba7d10226ff53c8593411d4d1fddcc217a778dff767	n/a	Heodo
2021-12-04	0BPIKJGD1OLKJ0.xlsm	xlsm	b0ff7027912afe61de31535509ec2e4c649c26edc027f80fe86c7fa6074435be	n/a	Heodo
2021-12-04	PXQ0RBOA.xlsm	xlsm	94f5b2a459e0bacf75ed26a6c1395d75a1536d5ae50bb989f860d8822c314ba9	n/a	Heodo
2021-12-04	JOGTAACB.xlsm	xlsm	dad38981d36bed5bbb3a61a657e7511d4f6d1810e7c7be23a6561c7c652383f6	n/a	Heodo
2021-12-04	ARVFF4LVO.xlsm	xlsm	be00eab0d3b4e7371a82c8dc8bd31c7c77453fa5098781d98dae96fa19786545	n/a	Heodo
2021-12-04	JK52X9D.xlsm	xlsm	caff998cb1c01034f139c2b57f6e69c7b0c8338d2b25d2722a85ec807e20b248	24.19%	Heodo
2021-12-04	33NY4A2GRE84B.xlsm	xlsm	a7bac70acfedfb6afe0885e35afde40b08ef1acd404bffc1c9b5707db5ac81f3	n/a	Heodo
2021-12-04	0F2ALYPZ.xlsm	xlsm	878ad9d05e6601d7ff9061d178312f0a55cca2c77b4be8f13f0a726ae6f65b5a	n/a	Heodo
2021-12-04	W85QJPAQ0FDP.xlsm	xlsm	eda42816182306a1cf78a7c3f3f0dd5cf01814e245e9cde27a2f8a6ec3445448	n/a	Heodo
2021-12-04	HGMMINH0HCL2Z1.xlsm	xlsm	57e7b9e9e0649b39613558375db1ea28c08319461d2ec830a4f2797101a34dcd	n/a	Heodo
2021-12-04	IWYRNKXSXAI0069.xlsm	xlsm	3160379600fc275946fec07b9e675d2c331ee3fb1e4cd94f55a216830dc16961	n/a	Heodo
2021-12-04	C8A7CBSBF0G7WU.xlsm	xlsm	6b498f043b778f784b9a69b52a403f9e3abc9ecf1cfcd3e583f552def83c15d3	n/a	Heodo
2021-12-04	HW63LYK.xlsm	xlsm	ed513723f774c81e67b5e8fc909d0759f801062fc6035645344cfde6b6e797f1	n/a	Heodo
2021-12-04	0JNH8FUXF0J0K.xlsm	xlsm	8278a178f270ce4784bd12ac08853a5468944c4a0834fb70ea0ed5ff4a6aeff2	n/a	Heodo
2021-12-04	TM1KA23R11M.xlsm	xlsm	cf3b0d8b0a9153046d00599fd5f6a14af017d2b22f5d4c8d795b655427e05832	n/a	Heodo
2021-12-04	EPN729YXS.xlsm	xlsm	f2f3696c4d3cf53f64e97bf3642a0b7503d79adf6294a3c38fbf64026fd3b38c	n/a	Heodo
2021-12-04	BV6KA565IM9.xlsm	xlsm	e1a6f47b1ecbf55e4afe332321ab9491aa25fb34eb5572900c93026eb49ae318	n/a	Heodo
2021-12-04	O0PLUCLT2R0.xlsm	xlsm	1e1dea65751a79a33ca3f65a199a4b11f4b538c4580900e134a9c7acd69b7303	n/a	Heodo
2021-12-04	3NCO816KV7Y8.xlsm	xlsm	8f210404a6cd830bec97832401b9049186183ddace345fabaf8310a07904ec7a	n/a	Heodo
2021-12-04	XSJ5UKFV7H.xlsm	xlsm	f46601ba2a64f9de9f4f50f42c35bde8565ad5f28045976b012f2ee3108cf80a	n/a	Heodo
2021-12-04	WWAJTC3N.xlsm	xlsm	4e954f2f70144153b842eb7cc68ec16e61d9a047c87c0580803a859a074440f2	n/a	Heodo
2021-12-04	OG3AOBN0CBOFD4.xlsm	xlsm	2d3fc2a151c8cf3230ebbf202fcc5210e14bebd19b918cc44012ac4c5c9c1ec7	26.67%	Heodo
2021-12-04	FJ4MH8NYFA5ULW6U.xlsm	xlsm	5eb9b480728451d121fee644c23c0cc041a415e21b1e52b78d7deb8efe89d38a	n/a	Heodo
2021-12-04	ARBP2I8OW6IDAZ.xlsm	xlsm	4655b38eabeb0cf3dbfb6f333381ec452cbd5f8d8b6fc1309a5facfcec60e458	n/a	Heodo
2021-12-04	638YBIIRD7GLM.xlsm	xlsm	3053cb71462e267e451e0b87a6001516c3a6306a6abf373047d97d3cacdb2259	n/a	Heodo
2021-12-04	6I7F52C37P7.xlsm	xlsm	b517414e2fb1f2664f8081471141aa8568b887c4c0716d542b7d0d404f0701ef	n/a	Heodo
2021-12-04	7H1OJNCPB6IO7.xlsm	xlsm	8c498bcfffe2c82446098709da1cd01ce9bf2a06b46a120eacf4cc1ef0e7d7d6	n/a	Heodo
2021-12-04	WPJM0QK3R.xlsm	xlsm	4bfe5d7fbebe3855b2c12f5ebd95284ac3718b7bb3186a6c175443b1a8172c2c	27.42%	Heodo
2021-12-04	6YEKX5VD.xlsm	xlsm	40bd9ae407bf8b62f92901148bf42489ffbfb929071249a1dd7e728c1abff95e	25.81%	Heodo
2021-12-04	EK46BAVKY6OWVWSZ.xlsm	xlsm	a3667621248761c725b23dfe4017bbc7bc32f796d6977e3d1575977dbe526454	n/a	Heodo
2021-12-04	RS2RGFFL6080.xlsm	xlsm	7a94acc37af1cbbf01a63bf473afcb27e826976d4da2a0dde1d33d5f01f5436a	n/a	Heodo
2021-12-04	Z43FCQ90OWS28S.xlsm	xlsm	3ed28dff417c00a1d4ae697a49a8e6053cef6566a91086d7c56fda8fde5e55c5	n/a	Heodo
2021-12-04	RAUX6I1HWZV.xlsm	xlsm	67559dd1796ca245a36c3fd80e063f1f8d778f57bb6183c30344f18527062307	n/a	Heodo
2021-12-04	27D0PTI.xlsm	xlsm	e6a05dbc614aa16b8f8a09de2414a8179485d09914672393e74ca1af21229243	27.42%	Heodo
2021-12-04	GP2A5H8OVOCS3Q.xlsm	xlsm	578ece55282eb8f61aa9d634c5aa7fee1c72d820c7d5fb097421a2e4c2d571bf	26.23%	Heodo
2021-12-04	VOBBGNTDLNBA.xlsm	xlsm	9dc8af2d8c4b3ac3236bf6854526079d258f981fd720152a6a71de7158aca5f9	n/a	Heodo
2021-12-04	3P4I684XWB0Z.xlsm	xlsm	14a0b86454758defcabc6c6422ecfd500acb82a4b41894a543ada0b82562ecfe	n/a	Heodo
2021-12-04	XH1FK707LYSZVS.xlsm	xlsm	73be6049fbcca280469b245631b4095369d7513ffb2e15ea6327fd8f685bc3e6	n/a
2021-12-04	QWK8UOYM5215LC2T.xlsm	xlsm	58d24310e03ca087b71f52861b4e8bd89790b2b0d8ec2722176dfeccba7d8f4b	n/a	Heodo
2021-12-04	HL2AYEWJD1.xlsm	xlsm	9db7c7e66ca40cd906169bc4391110c188925dd9a50800ffe95e707258d855f1	26.23%	Heodo
2021-12-04	3HPLHWFXKKEKR.xlsm	xlsm	fe6edb9fd62baef115f8bfa653e6e8d94aa4f2f6aa31da89708f064fd3c88d96	n/a	Heodo
2021-12-04	14TP7Q9I066.xlsm	xlsm	59a49f5a64f4866ddbfeea01aa053e48087cae1dd27944a8b7da6335879f5d96	n/a	Heodo
2021-12-04	XATCTTW18BZ.xlsm	xlsm	ee4365337fbc7dff140f457e8ce2d9c1674f2cf6e67b75d8447437f02389f032	n/a	Heodo
2021-12-04	P9AR5BSYKJH3.xlsm	xlsm	c1464a90a58f17c06f2ccd02243da8d6457dd01d5cc39136b34ea33eb458a64b	n/a	Heodo
2021-12-04	04IDVZPCG0D.xlsm	xlsm	9482e25f0e15d370493d1b0dbccef274bb8eef769bd89460559c7e58a7be2991	n/a	Heodo
2021-12-04	LDZRM8U3EPUSQCT4.xlsm	xlsm	5a85afa15ecad04923539508d102d845ebab5ed3342ef96dbff301f4b312a113	n/a	Heodo
2021-12-04	BM9TZ6GQHO1M.xlsm	xlsm	dfa8c65cd40039394538dda9d3f7bc71701cc7507b5dd1f7f8053a5fddd540ed	24.14%	Heodo
2021-12-04	VWAI2WUVFLXDWS.xlsm	xlsm	7ff5d1d7db27ec611d2c20d2e49cda085a7e5befbabad0b7fa1735f863e9343e	22.95%
2021-12-04	BNSEHHLC2KFBA4V.xlsm	xlsm	2ab7370ab8ac365b48a0837fbc88b83a37ff1da98d2af5f295fd578f5a6d0acb	n/a	Heodo
2021-12-04	QMBOFYUYI.xlsm	xlsm	987b04cc3050bb943484673f1e1942730b40988a72fe36500ee383008177c6d1	22.95%	Heodo
2021-12-04	7599P70E84X6CSJ5.xlsm	xlsm	02b22c30e1d82022b865ad2774c483ff395d3f0a7f21032babdbd073c8a5650f	n/a	Heodo
2021-12-04	CPZYWM4S.xlsm	xlsm	81b55c303cea92cfb2cef52cd7028d2b93bea856e4dbe5d3532f15dc9e9f16da	n/a	Heodo
2021-12-04	KZZCUZPCBJJU16.xlsm	xlsm	82625bb927f2a9f0bc7f7765ffd867116e0a1950f2582ecdf24c8833fb7747dc	21.67%	Heodo
2021-12-04	IGY35C478121Y23A.xlsm	xlsm	aa57a381a01187264ddb62cf376a38826812caf6fe7d568319a6b9775d245bf3	23.73%	Heodo
2021-12-04	NQLROPE1JH.xlsm	xlsm	4fa28e1d22d28b1cd95e382fdbdcccedd5491789252b3631440eab0fe9567cad	25.00%	Heodo
2021-12-04	RFPVWDUIN.xlsm	xlsm	314e3d1e7346c183ea8fc1d5e99dac95786c5e7fc9bf415af7ac35882715ca69	n/a	Heodo
2021-12-04	ZIM3TIFRVTUYFNS.xlsm	xlsm	8adc6751f1b1a317ccccb210e02fbc5d1436c5e4d73005d4c95fbe0e13686286	20.00%	Heodo
2021-12-04	TFBTCAD9II8FH5G.xlsm	xlsm	3a0a22030acfd67b59f0c90741d3a63e786a9a9643878045ab9c22c368bf09b0	n/a	Heodo
2021-12-04	HGR0AOWCTHDVWK.xlsm	xlsm	2c7d3257879a2e69e5c869ea9ce1dcabac9e27d92225b6ed4c6a9c214d2b4871	n/a	Heodo
2021-12-04	KLMW3F54M9KQ.xlsm	xlsm	7eb5f1e0c302ea29c26d70bb868f373eaff06b7b82922a391a68b6e748437cca	n/a	Heodo
2021-12-04	FDFOXN5PYT.xlsm	xlsm	c58040daa1306ba678529c75a0e43ea0f80d7072a49bfb7e935a489cd9aa630a	18.03%	Heodo
2021-12-04	BU6VBULQH.xlsm	xlsm	05764872764266ba76328699e110519eea6d317df30aa9f42337cabdfc0518c7	n/a	Heodo
2021-12-04	3TNEKZSDV3.xlsm	xlsm	ebe3424670b3c82054330f3f7dae2173634c70d1ebc14f336b2cf852a8244f47	n/a	Heodo
2021-12-04	BP1RFR2T9YKJ.xlsm	xlsm	d48cf0af7d3709b68afd7493329e2f1161803b5ca3e4be6651dbce001491e014	n/a	Heodo
2021-12-04	1TEZ5AB.xlsm	xlsm	1d82c0876d48a1d3b8b7d0cf658042b8c7bc4e0e609eb880e495f7024c3ab334	n/a	Heodo