URLhaus Database

You are currently viewing the URLhaus database entry for http://o2omart.co.in/infructuose/vlkIcu2LQ0/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1964641
URL: http://o2omart.co.in/infructuose/vlkIcu2LQ0/?i=1
URL Status:Offline
Host: o2omart.co.in
Date added:2022-01-11 09:49:07 UTC
Last online:2022-03-04 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-11 09:50:06 UTC to netops{at}webwerks[dot]com)
Takedown time:1 month, 22 days, 2 hours, 48 minutes Bad (down since 2022-03-04 12:38:31 UTC)
Tags:emotet link epoch4 heodo link redir-doc SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-1299111-03.xlsmxls aa65a34067b0c50e89c1078d0c7ff08de43e5036241404574f846265de6ff6bdVirustotal results 28.33%Heodo
2022-01-12220-2481805.xlsmxls ab506a8e25b64558a0069af7f78035c4ae3848d8873a5ddd3542d01d2e195565n/aHeodo
2022-01-12JHGDL_58.xlsmxls d57efe94adedaeac797cbb79d71e10325536f42c27c9cf5154fddaeb7bc797ben/a Heodo
2022-01-12trmlsk_437871.xlsmxls 48d83d3b6c7ddfcbf30ed8ebe2feb9bc8b5c97dbec16fdbbec64d120181f94a3n/a SilentBuilder
2022-01-122898_328532.xlsmxls aa0e36780912b94ce9abefe196de12d6f4097dbc7fa864d24778638043de4084n/a SilentBuilder
2022-01-12QYY-620937852.xlsmxls 046d125d4eaf4ae30ad4a794405fd7c905b58db18824dfbe24dff1cd4cfd13b6n/a SilentBuilder
2022-01-123337YIPDNOCQGL621214.xlsmxls 796cb1dfe07dac51d9dd955ef372b6283adbfc38e34c92ee379fff29c89bacceVirustotal results 27.12%SilentBuilder
2022-01-1227372920BTWJ466053.xlsmxls 8642a84875b30eeae2bec0b16db37715f4a2ff15caf6e5185a4012107ec1e87bVirustotal results 26.67%SilentBuilder
2022-01-12YNQNY_247139.xlsmxls 532105c51f0f4b68350191b68f17d6226112e97f273af215511a517604a1770eVirustotal results 25.42%SilentBuilder
2022-01-12737242_357959947.xlsmxls ee39e88c3c79292adf03f167d3b538ed98543b64a867264a09a9d19b0ac28645n/a Heodo
2022-01-1230367593-145691.xlsmxls 9e0c891bd4b687d10b5c7d8082a2d4c7d24a0c9ea90b1d0aa09dafa6dee22047Virustotal results 23.33%SilentBuilder
2022-01-12NC-0289.xlsmxls 05dc48ca9e5d5feb04a32c1ef3a8d18453a2a679e7257ce24856895a5dea268bVirustotal results 25.42%SilentBuilder
2022-01-11HLC_8855681.xlsmxls 66f5d61a2c4246c3bc39141c46e41bdc84c3f12a7db0b2ec3090eace070392d6n/a SilentBuilder
2022-01-11335250767499.xlsmxls b5207887a27a42330a6b8e863e0550008a6375de1f4c9c6c0edcc7a9bb6d548fn/aSilentBuilder
2022-01-116419_0017.xlsmxls 7578863c04aeeee51e599947a22a00715746bdeb5919ce1cf57cb164bb0832d0n/a SilentBuilder
2022-01-111174AYOJOZRIUG_772.xlsmxls 9b3fb2f88edc75661d9aba9ccac4bd15607dbf2fa7542c47be3d533c0db5cbe5n/aSilentBuilder
2022-01-110561374_4819.xlsmxls 4732ca576ac4a1b57726b01684356326dabe72f56f1f90308801953e421ce1dfVirustotal results 18.64% Heodo
2022-01-1110404878749544604269F.xlsxls e7065618e785e98792d570656fd412ecf695c45ec5a8123d04cf4ee302d225bfn/aSilentBuilder
2022-01-11I1340326351U.xlsxls 73a93604b31a5b4b301dad4849b63d5e6e48ef8d946f6fbff48b485b1bce7a37n/a Heodo
2022-01-11350708095Y.xlsxls 62ec5aff1c6c20ac27c09077ff459dbe375a4d8841b6b47f85c7e51b7d26fd9bn/a SilentBuilder
2022-01-112898162T.xlsxls 2057afa974ff72e5f28439f4cdef17396772fe0edde04405fbcf8c5cb5a47888n/a Heodo
2022-01-11S9811727X.xlsxls 5f92249e79cd23d3c654651ded3d14a67529e851b3652e1f9c767ffb0c7127f0n/a SilentBuilder
2022-01-1133275953343984012464.xlsxls 3f4ddde39dc20ae5a2558fe48b7341187c1bba0dbd1c95a32644b14592a38653n/a SilentBuilder
2022-01-11964596734103N.xlsxls 3d2ad015f60956cee32029cb7d6fee846f34a91d0f6dae2b68cfde31c99b4a77n/aHeodo
2022-01-11A2340582700721362D.xlsxls afe04f54612c86612a56bf8a3a228a2aeae275f4730552228f8a4bb6f71c292eVirustotal results 20.69%SilentBuilder
2022-01-11Z17720043296865049447.xlsxls b1f305f02b8cf58ae2906c7eed8287d62d121b30f99795c803a124d69b54d363n/a SilentBuilder
2022-01-112253549565.xlsxls 5567612a01ddde62a81334d73dc09a4e0f78d8e552d2686d44eb3e3910ecf13dVirustotal results 18.33%SilentBuilder
2022-01-116613379K.xlsxls f9dc6d359581da286cc014340d248cea2acedf09a9dc0cf9280641f3393fba35n/aSilentBuilder
2022-01-11501569406319015T.xlsxls 14e585c42b502e7e5ba9cd07618751748e748fd0a938c114c51a379de2d1082bVirustotal results 20.00%SilentBuilder
2022-01-11620264679932751B.xlsxls 9edea135d82e05685789a9e62945e3b7fbb0c7726ec43959a598a61947d2fec6Virustotal results 13.33% SilentBuilder
2022-01-11W0796951127230032S.xlsxls 5b8d0b12d4a393432ef70e1832915b20c0a39b948c524ac301e3ae5f9794b84dVirustotal results 13.33%SilentBuilder
2022-01-11644325261573.xlsxls 17832170dc965d40f1a4b7b5abf6dd5f8d131468c82c281388bf6f6967b77490n/aSilentBuilder
2022-01-11788536498O.xlsxls d2c48bc93b2b0711be6bafd81a7eeddc944514e110ef2e1014151dac42e8ab62n/a SilentBuilder
2022-01-1115919236446939499.xlsxls 045946e253af3bae2e2ae5be021b6a2032c8fd4df027ced949a3a9a09310928fVirustotal results 13.33% Heodo
2022-01-11S19755124.xlsxls 645258c3eec8a24b056403664b65d66c43f78566a0f33270723a6edc4d0c7ed8n/a SilentBuilder
2022-01-11Q375147863145875.xlsxls 85b88ed279f103f41ae22a4adc9e432be6770a9d241fa124e7a62bf857995c8bVirustotal results 16.67%SilentBuilder
2022-01-11M574664856515O.xlsxls 7550a2a99fe2768446351c653515cda693fc4978cdb437177efcc2133117efbcVirustotal results 16.67%SilentBuilder
2022-01-11J6949264067978.xlsxls c17cf152edefc6ce2ed0a5fa783f3bbfd6348b41a22f0da9cdd2722311ddfd62Virustotal results 13.33% Heodo
2022-01-11K588389519670060565.xlsxls 6b28b200163448c423b79b68a70f8d07d925445d48edb48526d9dfdbf68d47c1n/aSilentBuilder
2022-01-11C3114103102115487I.xlsxls f218c6867a0a060d313d1592c39f606f2193f4d587a404b4372971a6344d0f16Virustotal results 16.67% SilentBuilder
2022-01-111743479763392530717F.xlsxls 25a3e55a8c505687b78fb62ff041db36ed577b17dbd1b9ebf4e8628b9cf7b18en/a SilentBuilder
2022-01-114162326801568369490X.xlsxls 5d5960ceec11681300fcf26d61f3e8c614aa21a0eeec555c70a63c4049587756Virustotal results 11.86% Heodo
2022-01-11U21534158597R.xlsxls e16adb6f1a775a983cf7e36a35ac0200ae5fa21bbb48325bf9af0e86d7b96be9n/a Heodo
2022-01-115860338717822326.xlsxls 803ba1efe4554351d3b7b7768773cdc8c3e3fd66286c993520c86cea7a4fe01en/a SilentBuilder
2022-01-11O2547596357396389035H.xlsxls fc53b9dd37388b4869d1405aabf048daff959a1b37f15dd6919e8f513591d922n/a Heodo
2022-01-1187188976940.xlsxls d1175f0088fff3cd8598f86d7a97c0c9d347f53cd7542f2d944408fdde68e27dn/a Heodo
2022-01-11O326515443480272225.xlsxls fd9f32d79ea98273f97ea6c36042a4f43ee66720751a3e650eaa6f3f5e2dcbd1Virustotal results 13.33%SilentBuilder
2022-01-11A8158059449177953.xlsxls 714f03c98588c2ec3be675a1e24a3a357602e590c2b6c7d6781b0312ac8b1f83n/aSilentBuilder
2022-01-11G00775388521917420.xlsxls 416e811b6839dbe39092f82dbb62064350da5400ce2e1fd94870f305f5b2b77dn/aSilentBuilder