URLhaus Database

You are currently viewing the URLhaus database entry for https://ronitgoldfrid.com/hign/ld4xGA3OOLKDkW3VqLUudK/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1913560
URL:	https://ronitgoldfrid.com/hign/ld4xGA3OOLKDkW3VqLUudK/
URL Status:	Offline
Host:	ronitgoldfrid.com
Date added:	2021-12-23 09:01:10 UTC
Last online:	2021-12-25 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	waga_tw
Abuse complaint sent (?):	Yes (2021-12-24 17:41:12 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	3 months, 11 days, 21 hours, 46 minutes (down since 2022-04-04 06:50:04 UTC)
Tags:	emotet epoch4 heodo SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-28	108891128702213537.xls	doc	c87fcb5db37ac136a87a15413142b6b7eb27f2f7eb3add7c8bfbbe6d847715e5	n/a	SilentBuilder
2021-12-24	108891128702213537.xls	xls	7a1108c5d9c895654aaec57e2d820d848b928f2ee8140a87f67dc877cc186738	n/a	Heodo
2021-12-24	119089045136473035683.xls	xls	0f306a6675c81c3dcd55ae5043b2009a0f633f4791110be4078d2b6e1c1bc188	n/a	Heodo
2021-12-24	P73527434741051.xls	xls	75723df59362d020051f526db842dd7b0d429e0638d7d6ed42a17416f4959c24	13.56%	Heodo
2021-12-24	G6856855997812V.xls	xls	3fdfa8fca0397d424779a3ce7f0e46682e6fea8603c388108a5f5d09800310f4	n/a	Heodo
2021-12-24	Z9686752W.xls	xls	2cf8e31889bc2fc3411cd90cd393663c25286cb24d94b2fd009cc5936d7bf8fc	n/a	Heodo
2021-12-24	O02290047065618744294Z.xls	xls	40325be64d0277f1d44bc5fa218ea5a5acf338b5daf6b5ccad3e39d4dfa3a5a8	n/a	Heodo
2021-12-24	W7460219V.xls	xls	3317a4e30189b050f520cbd8b91a5b1d205b0ee92b7f9249fa05283c1833dab7	n/a	Heodo
2021-12-24	Y4478476.xls	xls	3483499d1f80b53585b3b3bafbbf132e7802c59e92f2a2ff12e68a23d50c4328	n/a	Heodo
2021-12-24	026527475969144736M.xls	xls	629c4e0966b76e86f5643a733985ff0028397f1dde48769134c1d7af5f657539	n/a	Heodo
2021-12-24	71596284.xls	xls	38ea48ad231946e97bc9308af1b5654c60b1a83d82eacbd5329574b07704c59b	n/a	SilentBuilder
2021-12-24	800813274906D.xls	xls	76f683a31126eb28ca638470852ff61540f14bfb64aa0b96e988b33135914e71	n/a	SilentBuilder
2021-12-24	94479499572127.xls	xls	dc3214caf76f5d2d5b032f41a5b0f401938b57c94f545e9e1e351a48aafb9da3	n/a	Heodo
2021-12-24	081054181C.xls	xls	04f0feee85a82b648c5bf25c4028a9eadacdb9094a05434f4fb657a7bc42d84d	n/a	Heodo
2021-12-24	1863304.xls	xls	32060f0aa907e94e4d08f879ab3c441423c351139e155422ca032ca9b0a3b24b	n/a	SilentBuilder
2021-12-24	17136844440138S.xls	xls	29cc22e3c99b72f2cb3bdb8f69c7b52e8770536c0f5da195b95309a0f377a035	n/a	Heodo
2021-12-24	923395808850010657491C.xls	xls	590367f0d58e9e3272331506e6c9afb43a6e4369fa0ea49b10dcc8d3be56f9dc	n/a	Heodo
2021-12-24	068751575519486402.xls	xls	a37165fc7df951d2da0e2d66df62a086d60fbfa1576543f1fe4a230064b77718	n/a	Heodo
2021-12-24	T739307710327939097980Q.xls	xls	55d194da9400ee786977136035b4a189d564d5ad59edf4e87b791acbc60f184f	n/a	Heodo
2021-12-24	21628669812080646.xls	xls	864e888739c1db69ca9571e14d935805ea8699b691845000ba85c5f1311eb2e2	n/a	Heodo
2021-12-24	R3520748116043121560Y.xls	xls	5a069746996891792a8dca2d0d1296ed8153a6500cbde1f145924eb4ea3de3b1	n/a	Heodo
2021-12-24	A44185139M.xls	xls	414c888e481987455baadf1773d1b8c6c7414088146c7ac6fbf112473ffdae53	n/a	Heodo
2021-12-24	Q325978391310.xls	xls	62ad1a5b37f3214fdc0f53728e419bc917b25887aa8606f8e7fc0a0d67b405c3	n/a	SilentBuilder
2021-12-24	T37301856.xls	xls	06dc6b5144f2cef6252ac56e82e3e9ca5ffc30d613192797754afc34f9a6f064	n/a	Heodo
2021-12-24	V987404211362.xls	xls	349bd68ea474d9abe460bd431d540bcaf1251c2f5ee4b4306c14472230363405	n/a	Heodo
2021-12-24	J77363282752.xls	xls	e754117820a70be1a00013810fa78c756fe289c50291ff1458133281383174a6	n/a	Heodo
2021-12-24	H392387538987201636295.xls	xls	4bc6426e9b3e82b0f2a8472b28dd62d91af6800f6bf24bfa295d2ed71085514f	n/a	Heodo
2021-12-24	A604184759.xls	xls	cb163af8a4b679f43610be9e47c30db98ff76ec426aee435f5b4b474f2bb4b4b	27.12%	Heodo
2021-12-24	P7922744.xls	xls	0025281e2d7b2e9dcae35af0057d43c7df04c734f2c3dcb25d9ea15702ec89f2	n/a	SilentBuilder
2021-12-24	G5317872.xls	xls	5c4bed08cf0d978f804e68979b291f17925d691b3c355a44fb69994b49f82a63	n/a	Heodo
2021-12-24	J7409487274265308.xls	xls	404c96923f447ce62ab09b74ce38c15d6e88543e62a4091b6201394ad210120d	n/a	Heodo
2021-12-24	Z32523555087394746160.xls	xls	ae71f182ac34e4de12439cae4f47a0c5769d7c5c250e6f0e5cb8b008ce844056	n/a	Heodo
2021-12-24	I075350436614270.xls	xls	40312f1abdb015946505d6e1e979cd664541d0f80dd892247bdbe578a47343f2	n/a	SilentBuilder
2021-12-24	G5313212497234775.xls	xls	1877211be5c8aab1a2548c48de3e59ae0c82e2519d6cf0e867b1c96ae170dea7	28.33%	Heodo
2021-12-24	H8099527196604777548.xls	xls	561847579c37e27beebaca3d4cd8ac3082a5ad5c2cd0a896c3cd8118e44cd3aa	n/a	Heodo
2021-12-24	G420531948440692.xls	xls	e5d54c7b48b69567be57903ee78decb03f41ef42725eb8143f386a6873e1d13e	n/a	SilentBuilder
2021-12-24	V930210233983769841.xls	xls	0f63fa215e0daf9a6687c1c8d931a8df65676eed789509c3de205e0303359333	n/a	Heodo
2021-12-24	P67497653.xls	xls	b0ea1da03b58cae83d3992e53634762bc36314d8fea1a5113005c818ea260384	n/a	Heodo
2021-12-24	N2732196.xls	xls	954b6d66e38fa57ba1899919adf37a030cc4acf3879c300ba5309fc20edd6e25	26.67%	Heodo
2021-12-24	L3612505461319877.xls	xls	7f89973ff66a02e23ad8dc27d1d5121f612e5af925e86f60cda671434c9e164a	n/a	SilentBuilder
2021-12-24	L2690540497237.xls	xls	989761fa0d490c736b7991b5d81906236aa176cdb5e1d9462a6982d29751e335	n/a	Heodo
2021-12-24	K835447696509217996545.xls	xls	7bce37caacbfe25d1ba03da401bd65e492e9768ff8fc861a397a39559f358562	n/a	Heodo
2021-12-24	M354868348104110089767.xls	xls	bb274620d0053935159c24bf4b4a2e4a9b951f88ef5d373fe6b19871ac86221c	n/a	Heodo
2021-12-24	G913641660654377206.xls	xls	d29ee0ce46f18a4a8161d23eea18feeede7b685b8f339bd51ab7d3750e8cf174	n/a	Heodo
2021-12-24	M4031851682.xls	xls	33a09ba2d556496351897d49c9be8fa91fd79633b3f97d7ba3fa28e6b616cd82	n/a	Heodo
2021-12-24	O144518768726289.xls	xls	07391062a0f4ebb801cfe12d5200067df6734aa5aa811d1eda66209522c1cb29	n/a	Heodo
2021-12-24	V9168374733.xls	xls	cc99b256f4bd99f566c2e661dad0467b3be777012a49e0d95cbc80c80a8cd491	n/a	Heodo
2021-12-24	I400676060160306.xls	xls	627514179c485caf59499a86f96a39eff2b3c8b9592354d9044e8ced8a89af23	n/a	SilentBuilder
2021-12-24	I36399161856.xls	xls	fb82843f10db494932a1319ebd8ee58ac58c0a06f3fd0ab9aa07e4c8670681a6	n/a	Heodo
2021-12-24	S1889967993685053.xls	xls	3064533d58f5b3f56799be408da6987c8612f9a0f5225a3f13ceb7bcbd27b285	n/a	SilentBuilder
2021-12-24	B76012252649612254.xls	xls	ce41b55d753ea32625cc635dd310589a68b7d908e6ff8f3ddfdade1180d0e7ee	n/a	SilentBuilder
2021-12-23	Q55740873.xls	xls	d8e09fe6955be6e279a60486bc21ce72b612a86c22bb8561e1b21089d06127ba	n/a	Heodo
2021-12-23	Z56470795.xls	xls	ce28ecbfd8a8724558da23cd158a16ff47e369e2696af7b5b978cdf99790fc4f	n/a	Heodo
2021-12-23	Y209356384526666096437.xls	xls	3ffc99df53a3b880e8d8c2c02b12149efdb5d005de047e167c0dbc01cfd6fdbe	n/a	Heodo
2021-12-23	S0077074.xls	xls	945deb86efd203ed3d615fce5604a879cafb463bd1a754d2eaf4b369961dee84	n/a	Heodo
2021-12-23	U872855516152600042.xls	xls	f5636a67c71d59ffa42ac87611bfe0c7161dec9d5004d04377528d41ae630e1f	20.00%	Heodo
2021-12-23	Y38697969239267909.xls	xls	cdbb955f375a588fa658c5e4b65fecca4256c01531aeaca4dc573ae0f22aa96b	n/a	Heodo
2021-12-23	U57853256254609876084.xls	xls	df08c503a0517c2704b3e7e02a950fac3e583cb61f27884ba0ec95d1c95d69c5	n/a	Heodo
2021-12-23	S026279140401599925707.xls	xls	65d219b297e96b026b875c52560360f48d01fe25ccc78f5fe739804a4b4f05c6	n/a	Heodo
2021-12-23	K8289371.xls	xls	aa64beebc522dbbe289a6079db2bba77eebd7ec04ecae92c168b69a997433a8f	n/a	Heodo
2021-12-23	G774760018625962356680.xls	xls	5ed58ddab29c6f791015f938f0cb4adf6a6acaf01713621dda6c989d282935ae	n/a	Heodo
2021-12-23	3785471272357601.xls	xls	90115998772138bffb8e1316af9f9b63cda8d85f8f3aaca09ee5e79153831822	n/a	Heodo
2021-12-23	896740522553.xls	xls	95972f16bcf8cd10561dc8b65c0d73c85be8fb37d98dfd14ce088d7d6f2ad53f	n/a	Heodo
2021-12-23	6243246.xls	xls	fc134107531931366b821108fa492cfcfb58700c154d47a7b8060ef2d9b621d9	n/a	Heodo
2021-12-23	659385552593.xls	xls	8f2ecade87753dc17df99b433f6310bdc529be6f55d53ff885d66882cb5a8139	n/a	Heodo
2021-12-23	93334980.xls	xls	c57b5b0f907c2913aa78ca6b68ceef15dfb50e8a109427f3554d203d65932182	n/a	Heodo
2021-12-23	089716597.xls	xls	616cb2ca5b16c9b9565b24d20d16c26f1cf93ef786f62bac5547700917c186fe	n/a	Heodo
2021-12-23	5309731347.xls	xls	9cdb71565f15093e46fd01526da314c00fdd0be7050e0061ad51d7d7d3f12a9c	n/a	Heodo
2021-12-23	490591934159.xls	xls	88c5c9ef188378cdb6109939fe56c2f80e9f8957ef4e024909b03cf61402e9ce	n/a	Heodo
2021-12-23	329868692378.xls	xls	a20505cf4c6999f9c0bb78686dfbdaa911598b279cca235b23b7a582bba69a5c	n/a	Heodo
2021-12-23	9772961709156.xls	xls	957e2e936bd6ccfe9ef8d01273e933fee42bbfa89142d57f2e4aa35c9f7c701e	n/a	Heodo
2021-12-23	17105241864.xls	xls	0a1a9eb7e560b07a4193785740228d849600670776c5c9046279adb52c35bcd2	n/a	Heodo
2021-12-23	5236585998.xls	xls	87af7c74668902901b5326b56c9f4cb8ac4e8b399d7c8ca6ebe8fc3fe09f64cd	n/a	Heodo
2021-12-23	938633935903.xls	xls	2a170f15029d9d55b7dad42d14f58e962f45df96879073456075ca40bcbdcb68	25.00%	Heodo
2021-12-23	8205778.xls	xls	1d6c20367113fb5d6bf64f92433ca37a876a8d5293cca3b61da1a94c8f47b4d0	n/a	Heodo
2021-12-23	4741001465553.xls	xls	bca31231a09e66cab5f314321bd53869d1feb18a91f83906d05104fb462fd463	n/a	Heodo
2021-12-23	9030044238932134.xls	xls	b3bbd660206d87ef6cf64020a6650bbd0d79991538ee3c6bf96c36ddd4e4ad0d	n/a	Heodo
2021-12-23	9274968277.xls	xls	38990b98bcbe75f670a50ad5bc99c0f1e88834d51c84e93f221b88b4472c1a04	n/a	Heodo
2021-12-23	923104503963.xls	xls	c5fd019779cc6783b69380bea009ff36fa27277f941ba40a6652a838abd5eba4	n/a	Heodo
2021-12-23	2181585537821.xls	xls	180264d53532243c05c249958ccd328feeb47ebd7dc9cc816cced55fd22c288f	n/a	Heodo
2021-12-23	2133087850725196.xls	xls	223f2e2cbafb09af38cf7af09e2ea6af470aefe111e14d2a21ad2066c728c7a8	n/a	Heodo
2021-12-23	1931468.xls	xls	5d1f5d444aa2f95ecc107aeda2aab52be49b64103bc947cca075ef765e8deaca	n/a	Heodo
2021-12-23	246417027.xls	xls	a504a11a8d99739c2e8c7f3a5801b2697d2003db15d14e9b4a5ec57ae4e15a42	n/a	Heodo
2021-12-23	0202952.xls	xls	5a6d06e92c19933e0a33160621bac3589f3515a5b10a086a9777f6487558ab61	n/a	Heodo
2021-12-23	1552010.xls	xls	216fa1b1519c963efbe24fd1334d0f367eee2418b8af407da62d6a1132e035d2	n/a	Heodo
2021-12-23	4203838.xls	xls	48fd4140e9773bfc0c3c2699d273e88be581c6d4933ec1966756ada7016d33e8	22.03%	Heodo
2021-12-23	38774603494017.xls	xls	e54a42adf2bd8382a494683e1608f6f51b5b6c4f933d5067b506b8c568f9131c	n/a	Heodo
2021-12-23	072362158.xls	xls	b332f811bbd708b5f415c650da7ed0dc66483c140ae16e2fc8879d77be0be661	23.33%	SilentBuilder
2021-12-23	70942987419827.xls	xls	06a7f7a6296b774253c7bc810254dac777e521daaef2ee031849b9194c635529	25.00%	Heodo
2021-12-23	2544324885.xls	xls	296e3773821633c66d27b4c4438ec9ae76ee2cad7fc00a9f6b852394ca2b1a41	22.41%	Heodo
2021-12-23	99611724.xls	xls	99ed0d39c05e7f5c0495b4112cdf0cbc2fe07e88066b644524f134b0450a87cb	n/a	Heodo
2021-12-23	33293503.xls	xls	61130a5847b536ab3ea8864f5117bb92b3408849d4cc5a8ab3443f7c20872ff2	n/a	Heodo
2021-12-23	9505782872235.xls	xls	6f83a6ead72ff0d14bb2a3d7b8eb3db5f845be37678dc1577f8aa199b4aeab22	n/a	Heodo
2021-12-23	8627869658562376.xls	xls	a2930c425172e491112c3240dc1b5112a659050d0aab05594c04b30248232808	n/a	Heodo
2021-12-23	19038548418.xls	xls	3f281c52f76f37ec6c7af45149aa8ee290cc1a5c57589290447e8cb2a4bdce9d	n/a	Heodo
2021-12-23	57807050578544.xls	xls	6d076a0d09a400f6eb5296a78f5cf87f65f12796479513180f680cf1d94639a2	n/a	Heodo
2021-12-23	9974140215721956.xls	xls	a03c451ea28bd499adaa3c394f8704439dc17fc7cdbb24d2ad2665b05d12769d	n/a	Heodo
2021-12-23	8558394477.xls	xls	435a3b34c0bd974f368bce0cc95457050f3e727c580c104534377c66edfc8ec2	n/a	Heodo
2021-12-23	068854399660.xls	xls	2cac0d0653467c80cb207bfb43d8d6f57e7473aeddf92a47e10c2ae62556f3bd	n/a	Heodo
2021-12-23	8435571593362.xls	xls	f9d1b2ac0446fed5d00c61bf9767fba85018d86908c3a74398d4f2c30f3d080f	27.12%	Heodo
2021-12-23	0248773963837.xls	xls	38b0a1134b4dbc0535e2af788c285b2a9a920118a4c467b12de6841242437041	n/a	Heodo
2021-12-23	336432219.xls	xls	c3382078051e880a209c31fefb1229e151594eb614b4eb6ada220d671ee7162e	n/a	Heodo