URLhaus Database

You are currently viewing the URLhaus database entry for https://dentalinstruments.webarrive.com/cgi-bin/AtIPjgqGBr9ueSL2k1/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1915439
URL:	https://dentalinstruments.webarrive.com/cgi-bin/AtIPjgqGBr9ueSL2k1/
URL Status:	Offline
Host:	dentalinstruments.webarrive.com
Date added:	2021-12-23 23:34:09 UTC
Last online:	2021-12-24 05:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	sugimu_sec
Abuse complaint sent (?):	Yes (2021-12-24 03:57:57 UTC to abuse{at}1and1[dot]com)
Takedown time:	17 days, 10 hours, 1 minutes (down since 2022-01-10 09:22:09 UTC)
Tags:	emotet epoch4 heodo SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-03	N39146115572239784991.xls	xls	7021bf769c34b61609893087696b1b3cee41e5408c601f997434868ea6b79b18	48.28%	Heodo
2021-12-24	N136255107.xls	xls	06dc6b5144f2cef6252ac56e82e3e9ca5ffc30d613192797754afc34f9a6f064	n/a	Heodo
2021-12-24	I1102805.xls	xls	28c3e4ea4a9a851789cc708abc3603a5bf9918d6e2f9c09c07c265616c615122	n/a	Heodo
2021-12-24	B44976629987.xls	xls	00a0231a0404a3d34c4e1ac3b596de550e696cccae94c7d26fcb9b997eedfe6d	n/a	Heodo
2021-12-24	Z825931073235177413276.xls	xls	4bc6426e9b3e82b0f2a8472b28dd62d91af6800f6bf24bfa295d2ed71085514f	n/a	Heodo
2021-12-24	J7490517989883260616.xls	xls	88c5d701915407e6b24d8e53e41b428e1bbb0aa2d884fcf827ae1cac5e5a5754	n/a	Heodo
2021-12-24	X0999098474751162248.xls	xls	3f57072db1305df792976a963481eb602e50d59352e7f047036f52f8fbe2c0dc	n/a	Heodo
2021-12-24	N612162411641.xls	xls	5c4bed08cf0d978f804e68979b291f17925d691b3c355a44fb69994b49f82a63	n/a	Heodo
2021-12-24	D942653655818.xls	xls	b1d873c780abcbba6b60f6bf4cd133b87f96d114e234e10d459916fa56dbbeda	n/a	Heodo
2021-12-24	R55094680673.xls	xls	44f64a39ae4ada2c738b6193b6d59084a99e57475e0c6902ff370f21b4cbc984	n/a	Heodo
2021-12-24	M304695702238057079.xls	xls	1877211be5c8aab1a2548c48de3e59ae0c82e2519d6cf0e867b1c96ae170dea7	n/a	Heodo
2021-12-24	C903129515410109.xls	xls	0413d6940fddbdff88dba28ef5dc49dfac3e6cdad305279dbb33b0c21346f692	18.33%	Heodo
2021-12-24	C40361284217551396746.xls	xls	a84e754252e4a6e668881039eecad1adcb502f398d91a36ed0c2eaa6ba808a3f	23.73%	Heodo
2021-12-24	V75879462666735.xls	xls	4dc9d24fff7faa3e0e09d10a9dbdbc88a9899281fc1aca774fb83cae789b3636	n/a	Heodo
2021-12-24	R53975845419526149319.xls	xls	b162f10f8147c6dfe4d058b3b753572f71897b6df59a67216468d0754e54891d	n/a	Heodo
2021-12-24	V1260605895381.xls	xls	c3098005faa23973cedc16ee25aaff04634d6b211d93c4e21c56103be71bf63e	n/a	SilentBuilder
2021-12-24	B6300555273100356.xls	xls	dca58e5ce77ad26c0176379b00930639237457987584d5a3fb4a55c282a887a4	n/a	Heodo
2021-12-24	F3794462188236293.xls	xls	3fcc643de96cc8f42515929e84f68cfb36f28537b37a1fa152bab2898d161a0f	n/a	Heodo
2021-12-24	V384354193217094341335.xls	xls	7bce37caacbfe25d1ba03da401bd65e492e9768ff8fc861a397a39559f358562	n/a	Heodo
2021-12-24	L415943892303.xls	xls	bb274620d0053935159c24bf4b4a2e4a9b951f88ef5d373fe6b19871ac86221c	n/a	Heodo
2021-12-24	W093330239655938.xls	xls	e478bf06425093646e5874168e6225479faf3454f86c6a498417d35a72a32369	n/a	Heodo
2021-12-24	I329907782830080840.xls	xls	33a09ba2d556496351897d49c9be8fa91fd79633b3f97d7ba3fa28e6b616cd82	n/a	Heodo
2021-12-24	Z7223138696401.xls	xls	07391062a0f4ebb801cfe12d5200067df6734aa5aa811d1eda66209522c1cb29	n/a	Heodo
2021-12-24	Q90207420808301829.xls	xls	caacd61c13d59a29eaafe6c68a3cb369cf1d56956b654b7d8750395dfc21e5a9	n/a	SilentBuilder
2021-12-24	E05696046465026081846.xls	xls	1021e737ea0b00ec78ed49efc4e8b58fbbd66a68d67c889f0992c4b13250ae0a	n/a	Heodo
2021-12-24	D087288352928667013.xls	xls	7859496c99048f59656e296bed199b8e52ff3d9d5cee44a2794e52858caf19d4	n/a	Heodo
2021-12-24	L804786362282739588891.xls	xls	287a7ef27eed8371f56478d165928ae0ea26a650a32d3d461220b20dc696a43f	n/a	Heodo
2021-12-23	T5449989453.xls	xls	b2af5bbfd6076126cdf53ebd3d6a7f2ab27479ff5157a841a6a41bda99aec50f	n/a	Heodo
2021-12-23	L3912846994545.xls	xls	d5331f0c434a89782a897b2bd88b87f3dfa377564cd387bd5d5afe0cbea9831d	n/a	Heodo
2021-12-23	E1659756255859350.xls	xls	628a776b5829225e5319136b0e13ea89227f738a2380117ad1a2dc58657d168a	n/a	Heodo
2021-12-23	S34918410191518029.xls	xls	5bb626d65f16f3befd6929af097b9f8513a435662959c67645414a795777208a	n/a	SilentBuilder