URLhaus Database

You are currently viewing the URLhaus database entry for http://ayoobeducationaltrust.in/vzlv/OXQpFcz/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1967013
URL:	http://ayoobeducationaltrust.in/vzlv/OXQpFcz/?i=1
URL Status:	Offline
Host:	ayoobeducationaltrust.in
Date added:	2022-01-11 12:02:05 UTC
Last online:	2022-01-15 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-01-11 12:03:22 UTC to abuse{at}digitalocean[dot]com)
Takedown time:	4 days, 3 hours, 17 minutes (down since 2022-01-15 15:20:51 UTC)
Tags:	emotet epoch4 heodo SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-12	741_8.xlsm	xls	aa65a34067b0c50e89c1078d0c7ff08de43e5036241404574f846265de6ff6bd	28.33%	Heodo
2022-01-12	263_391104.xlsm	xls	66f5a05e98200743eb34cad5877b89dd359fbc2c8f4ced8da536851e0ac44689	28.33%	SilentBuilder
2022-01-12	G-766520.xlsm	xls	788c6ae40bf00e27769846c7ab03bfee240d5ee52f765f498918a0333498eb82	31.67%	SilentBuilder
2022-01-12	RP22.xlsm	xls	fea0e3dc5015a4f0d14555e51520aed1594e9b0a3310bac2598db38f11e311c7	30.51%	SilentBuilder
2022-01-12	272226_182567.xlsm	xls	aa0e36780912b94ce9abefe196de12d6f4097dbc7fa864d24778638043de4084	n/a	SilentBuilder
2022-01-12	57525433146194.xlsm	xls	046d125d4eaf4ae30ad4a794405fd7c905b58db18824dfbe24dff1cd4cfd13b6	30.51%	SilentBuilder
2022-01-12	C_5279420.xlsm	xls	796cb1dfe07dac51d9dd955ef372b6283adbfc38e34c92ee379fff29c89bacce	27.12%	SilentBuilder
2022-01-12	63574_780691.xlsm	xls	8642a84875b30eeae2bec0b16db37715f4a2ff15caf6e5185a4012107ec1e87b	26.67%	SilentBuilder
2022-01-12	5192_53299.xlsm	xls	926c822e2c4d78b252f788d3fa75a77bfed1380ad50cdacf21f3efddf15b0b26	n/a	SilentBuilder
2022-01-12	MJL-96109874.xlsm	xls	1b7581c8be4bf9197005067c42e581bcc1c41b10d6d9768daa8c4642f6e3ef7b	n/a	SilentBuilder
2022-01-12	72463066_2044.xlsm	xls	f7d338277f13461262faa21c960479146f4261acc6efe564964f5cd0370afd6e	n/a	SilentBuilder
2022-01-12	3665851199407.xlsm	xls	59f00806db4a68a10acb6aa0f9ea1d21c2e8527ff2b82d0ab36196ba0bda9183	n/a	SilentBuilder
2022-01-11	4418579603610.xlsm	xls	034eaef52f3dc5154e7a94121703ea759fd19784df604e48c8e73ff4fa06cfda	n/a	Heodo
2022-01-11	KLH-9.xlsm	xls	b5207887a27a42330a6b8e863e0550008a6375de1f4c9c6c0edcc7a9bb6d548f	n/a	SilentBuilder
2022-01-11	47_357.xlsm	xls	a7fe36211a0be63df4c3929830b8fc4e21fc0548b5446377ce9c83b3d1fd9339	20.00%	SilentBuilder
2022-01-11	NME81030083.xlsm	xls	0174c6534f42113ca8854a6ae91e267fb1915bb32b5760b52bbb551aa1580da2	n/a	Heodo
2022-01-11	DoZ_8.xlsm	xls	4732ca576ac4a1b57726b01684356326dabe72f56f1f90308801953e421ce1df	18.33%	Heodo
2022-01-11	648639963541121.xls	xls	a88137e6086255207269b721d3cdb9d6a67cbb8861ba98d4681f83945fa29299	n/a	SilentBuilder
2022-01-11	W2836936475665.xls	xls	dc1a568534305e8dd82443bd62f3fefe364de2073558c8237bbe099593714259	16.67%	SilentBuilder
2022-01-11	960687941259V.xls	xls	c7cc8c98988b0b5cdbd103db7c61f01a6e92f96f525c36f15bfaae039bb46cd7	16.95%	Heodo
2022-01-11	62561129978371.xls	xls	416e811b6839dbe39092f82dbb62064350da5400ce2e1fd94870f305f5b2b77d	16.95%	SilentBuilder
2022-01-11	07949297739T.xls	xls	5f92249e79cd23d3c654651ded3d14a67529e851b3652e1f9c767ffb0c7127f0	n/a	SilentBuilder
2022-01-11	23020543156305468892.xls	xls	067076b82d8006677b674411e2ac9d00f6b68e93ff460cb2f113d9150e73a88c	n/a	SilentBuilder
2022-01-11	08949075530276465407F.xls	xls	3d2ad015f60956cee32029cb7d6fee846f34a91d0f6dae2b68cfde31c99b4a77	n/a	Heodo
2022-01-11	31668324147721Y.xls	xls	e9a7a09bdacc562bedc71638c17bacb72b445281366d192033d7c8c85f83ce7f	n/a	SilentBuilder
2022-01-11	K5553002251.xls	xls	fbc4a5db3ab48741c10a226dae4e2b64d924110962224bef57910478251cf3c7	n/a	SilentBuilder
2022-01-11	Y9973403267979511724Y.xls	xls	60fdf680c8e0272784588bf87ead2814df683a2fcb697522ddd4ef323166440a	n/a	SilentBuilder
2022-01-11	Z23256951.xls	xls	e540aa4c8a0a7eb9acf80aa3e76a804c5f492a69e052e33584c0ce432b33de75	n/a	SilentBuilder
2022-01-11	3764238777878873.xls	xls	1e4e0feb94cf74d61c7557fd8b7883f71b80547083bc339bc808b9703d4c03c1	n/a	SilentBuilder
2022-01-11	X5768106244427.xls	xls	14e585c42b502e7e5ba9cd07618751748e748fd0a938c114c51a379de2d1082b	n/a	SilentBuilder
2022-01-11	360876725057K.xls	xls	659c21119c192bd5c4c698d0e9c0ef6c5d0ed38bf40907318ccbc4dece45ec76	n/a	SilentBuilder
2022-01-11	028039969Y.xls	xls	1cdf6133fd1d4138849b8f2b29f199d90ccce54c369b74a88a14e8329e1051c3	n/a	Heodo
2022-01-11	A40888971176003484M.xls	xls	9e3e47f20134301b475d2d5477000f2ff061b7e2ccf7c02aa892d300c3da3b36	n/a	SilentBuilder
2022-01-11	747091019.xls	xls	d4ab41fa48cb03ac55da7c05e857ea1b5a88a2b31cde074f3036f6129662a10f	n/a	SilentBuilder
2022-01-11	74792502007269452.xls	xls	2b6937e90b3f57eb3f26b8a3f50b86def03b2d4b3bc30d93e1af1c96656bb4da	n/a	Heodo
2022-01-11	O0141844297525353X.xls	xls	17832170dc965d40f1a4b7b5abf6dd5f8d131468c82c281388bf6f6967b77490	18.33%	SilentBuilder
2022-01-11	620206916631903333669.xls	xls	b53a3f09073ba4c63f1634b32bc6328f22d9965ebc1384797a886d07959313fa	n/a	SilentBuilder
2022-01-11	299386251130.xls	xls	89224af568d4e29e7836c2961d33045490b337a9d5d40db852137e1f2dbbfbf9	12.50%	SilentBuilder
2022-01-11	N994610584016594357556S.xls	xls	645258c3eec8a24b056403664b65d66c43f78566a0f33270723a6edc4d0c7ed8	n/a	SilentBuilder
2022-01-11	203732938809095088C.xls	xls	06b383970ed4fab68a430bc021dd0744b77518ec82ef09f6d167c8edbf50fd53	15.00%	SilentBuilder
2022-01-11	54812456974656389.xls	xls	a672f734a98a5b287eb96d134893701f055f20573dd9f9d778b1e7953b00a944	16.67%	SilentBuilder
2022-01-11	0896196459489.xls	xls	c17cf152edefc6ce2ed0a5fa783f3bbfd6348b41a22f0da9cdd2722311ddfd62	n/a	Heodo
2022-01-11	7492704879331.xls	xls	54517f5914c526589a1b1ad61249c75209d239c1885cd72f638d9924d53983de	n/a	SilentBuilder
2022-01-11	Q1239500277280549J.xls	xls	f218c6867a0a060d313d1592c39f606f2193f4d587a404b4372971a6344d0f16	16.67%	SilentBuilder
2022-01-11	227180073134721O.xls	xls	2c100919fb5cad55230897d07dbce3bc2b04df71b4776e51ea5d68390e308b40	n/a	Heodo
2022-01-11	J79462304024015963.xls	xls	244e38598a1d03f533889b35b310f7e2a83cbf5b57b93c116b57a73482176a22	n/a	SilentBuilder