URLhaus Database

You are currently viewing the URLhaus database entry for https://swipermachinereview.xyz/wp-includes/Vgtf0VEr4mf5grWelm/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1965080
URL:	https://swipermachinereview.xyz/wp-includes/Vgtf0VEr4mf5grWelm/?i=1
URL Status:	Offline
Host:	swipermachinereview.xyz
Date added:	2022-01-11 11:06:07 UTC
Last online:	2022-01-13 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-11 11:07:09 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	2 days, 6 hours, 22 minutes (down since 2022-01-13 17:30:05 UTC)
Tags:	emotet epoch4 heodo redir-doc SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-12	GHJM_3267.xlsm	xls	aa65a34067b0c50e89c1078d0c7ff08de43e5036241404574f846265de6ff6bd	28.33%	Heodo
2022-01-12	033405738649.xlsm	xls	9960d32985df1b5cfa49908148f8ca999ff3b82aff1645280ff9f71ca61f2805	28.33%	Heodo
2022-01-12	34_8303795.xlsm	xls	228b8793653662088991f7cfa3b368bce32931a7516a2f8c7188a437eb03a856	29.31%	SilentBuilder
2022-01-12	P-2.xlsm	xls	f73b8e79809cb64463d53b4ecd9dd6b93721ce156d434bebcdc63bebb23eff07	n/a	SilentBuilder
2022-01-12	4118516461.xlsm	xls	3f4b1c98cb91608ce0ef51a77efb1ba624e38ff17e01567f9d61747a5e49421d	26.67%	Heodo
2022-01-12	XCQR862.xlsm	xls	046d125d4eaf4ae30ad4a794405fd7c905b58db18824dfbe24dff1cd4cfd13b6	n/a	SilentBuilder
2022-01-12	855059033-15912.xlsm	xls	796cb1dfe07dac51d9dd955ef372b6283adbfc38e34c92ee379fff29c89bacce	27.12%	SilentBuilder
2022-01-12	GBG_64563664.xlsm	xls	8642a84875b30eeae2bec0b16db37715f4a2ff15caf6e5185a4012107ec1e87b	n/a	SilentBuilder
2022-01-12	4666BWE_002994.xlsm	xls	926c822e2c4d78b252f788d3fa75a77bfed1380ad50cdacf21f3efddf15b0b26	n/a	SilentBuilder
2022-01-12	892561-05367578.xlsm	xls	1b7581c8be4bf9197005067c42e581bcc1c41b10d6d9768daa8c4642f6e3ef7b	n/a	SilentBuilder
2022-01-12	zVAYZs409.xlsm	xls	9e0c891bd4b687d10b5c7d8082a2d4c7d24a0c9ea90b1d0aa09dafa6dee22047	23.33%	SilentBuilder
2022-01-12	762799659203.xlsm	xls	59f00806db4a68a10acb6aa0f9ea1d21c2e8527ff2b82d0ab36196ba0bda9183	n/a	SilentBuilder
2022-01-11	998_48965519.xlsm	xls	66f5d61a2c4246c3bc39141c46e41bdc84c3f12a7db0b2ec3090eace070392d6	22.03%	SilentBuilder
2022-01-11	vAakHW_958.xlsm	xls	bfe1c65501eb9a22ea914fe380d24127cdf99ce17fc20683f99a7b1e0ccc06f8	18.33%	SilentBuilder
2022-01-11	D_8923365.xlsm	xls	207177c3c5eb0fe56e8614f9107063106f39167ae239ada435312ba0455fe349	n/a	SilentBuilder
2022-01-11	IS_480.xlsm	xls	0174c6534f42113ca8854a6ae91e267fb1915bb32b5760b52bbb551aa1580da2	16.67%	Heodo
2022-01-11	114358185246374.xlsm	xls	4732ca576ac4a1b57726b01684356326dabe72f56f1f90308801953e421ce1df	18.33%	Heodo
2022-01-11	0686592738U.xlsm	xls	22a6627b4fdbfe7fd3bf73f4dbed682b4b450d18908aea0b23642c11996e75cc	n/a	Heodo
2022-01-11	A042341237379848C.xls	xls	73a93604b31a5b4b301dad4849b63d5e6e48ef8d946f6fbff48b485b1bce7a37	16.67%	Heodo
2022-01-11	40743949052666245.xls	xls	47d359db574e7e651cbf4e0b4d24fe1a2eb3f7b0e3170dbd84c2caae8c0d0a2a	n/a	SilentBuilder
2022-01-11	0009713639309L.xls	xls	2057afa974ff72e5f28439f4cdef17396772fe0edde04405fbcf8c5cb5a47888	n/a	Heodo
2022-01-11	134959675308.xls	xls	5f92249e79cd23d3c654651ded3d14a67529e851b3652e1f9c767ffb0c7127f0	n/a	SilentBuilder
2022-01-11	2953434486241578301.xls	xls	dd5655dd2bb0e1d2dec7b8b92b7795dd64bae918b46c32fa5144129822729d56	n/a	SilentBuilder
2022-01-11	07256021093935355090.xls	xls	3f4ddde39dc20ae5a2558fe48b7341187c1bba0dbd1c95a32644b14592a38653	n/a	SilentBuilder
2022-01-11	N69903639.xls	xls	3d2ad015f60956cee32029cb7d6fee846f34a91d0f6dae2b68cfde31c99b4a77	n/a	Heodo
2022-01-11	435114198870E.xls	xls	e9a7a09bdacc562bedc71638c17bacb72b445281366d192033d7c8c85f83ce7f	20.00%	SilentBuilder
2022-01-11	2284074754.xls	xls	18e24e9b03fde05fa41b9d86aa612dbbd5deabcebbe97ee5b3a3b7fa8fb43f51	n/a	SilentBuilder
2022-01-11	S2119900144.xls	xls	a5a1c304ab3b2351a82da736cf9c022ea2ad1cbff6321b64b0a741b575c8a6c4	n/a	SilentBuilder
2022-01-11	A05691208765489.xls	xls	6808535f95480e34f3c2c575420e072a74fa57f20d5c69a99b7bc614f19d7b1a	n/a	SilentBuilder
2022-01-11	B107248877968912865656.xls	xls	ac54419fabe46284edceb8053b9d82d570dc0bdf6c0f0302122329da99c28a12	n/a	SilentBuilder
2022-01-11	D77695387952D.xls	xls	a88483cdfd340711d7a65d74a5646e6bc7159a4af250074e0fea6db954177753	n/a	SilentBuilder
2022-01-11	L18592831519876379L.xls	xls	659c21119c192bd5c4c698d0e9c0ef6c5d0ed38bf40907318ccbc4dece45ec76	n/a	SilentBuilder
2022-01-11	S802189164526.xls	xls	1cdf6133fd1d4138849b8f2b29f199d90ccce54c369b74a88a14e8329e1051c3	n/a	Heodo
2022-01-11	Z3682538X.xls	xls	2709ea59d34478c496b08e82eb77182fba9c9af001b75cfab5aaa44621d359bd	n/a	Heodo
2022-01-11	X61624735I.xls	xls	d4ab41fa48cb03ac55da7c05e857ea1b5a88a2b31cde074f3036f6129662a10f	16.98%	SilentBuilder
2022-01-11	T5142806933370753499Q.xls	xls	2b6937e90b3f57eb3f26b8a3f50b86def03b2d4b3bc30d93e1af1c96656bb4da	n/a	Heodo
2022-01-11	5633824147901.xls	xls	bdb3e9a556bc850867023c8e1c5ea1e20cda48c72bd0396ef667d3352b14d65f	14.04%	SilentBuilder
2022-01-11	T47765419137370149670.xls	xls	3dbfb9a583de71af6ce19cbfb294476ab7d6fcfd2fe42c9bf38886ace35c58fb	n/a	SilentBuilder
2022-01-11	M4139090N.xls	xls	12db004e136ba9f8fd95d9d6e3a08d5b3cfde159c0ca3f99a75df8922fbdcd85	n/a	SilentBuilder
2022-01-11	V9064055162Q.xls	xls	bd70c3c5fc66e6e16f357179f6a76273bfd128d8f203716b035864ca4a4806ee	n/a	SilentBuilder
2022-01-11	558412764V.xls	xls	cab722a553d0e662a2c4e18e2300d30338fa957f7b0ade2c8f4450bd375bb8f9	16.67%	SilentBuilder
2022-01-11	K77046832060465476799.xls	xls	b6695d0c24ee697dc9605c2f66c2f6c0688b9546bb2957505b238040001a1acb	13.33%	SilentBuilder
2022-01-11	L7730733542575913C.xls	xls	f0ca4bbe2594076644e5f27040111f3f422d61a3268078140077095c40d8dd6b	n/a	Heodo
2022-01-11	B377340960411072C.xls	xls	be0b11916ecb4101f05770478b70375165650d7ea4330c4e9c98c407058de722	n/a	SilentBuilder
2022-01-11	28211789324108835791I.xls	xls	a1713a6e838656d686b56ed5f3822eac423bddd1637b56f9e24b3245ed798d99	n/a	SilentBuilder
2022-01-11	68684771645.xls	xls	14242004bc97b6ca2b2b40e09b270a056e3d87aa4b37251f79709b26eeec3a5c	n/a	SilentBuilder
2022-01-11	R62285397099Y.xls	xls	fe4727cac94d6f363bace24a0f8a94e5fd4c766c05468a98aec87b4dbce2a2fa	n/a	SilentBuilder
2022-01-11	Z285687324.xls	xls	93f2d3c86229e3bcb68a7d438023c3d13faab8d441501184deae4191276d2901	n/a	SilentBuilder
2022-01-11	631365833906090.xls	xls	ea6124225b5b6730fe6559a491eea029863a3b092d174a3aea9010e8b213f32c	n/a	SilentBuilder