URLhaus Database

You are currently viewing the URLhaus database entry for https://earnmarts.com/Files/IopnLuGOCPKU5ZE/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1967126
URL:	https://earnmarts.com/Files/IopnLuGOCPKU5ZE/?i=1
URL Status:	Offline
Host:	earnmarts.com
Date added:	2022-01-11 12:45:06 UTC
Last online:	2022-01-11 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-01-11 12:46:23 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	3 days, 5 hours, 4 minutes (down since 2022-01-14 17:51:18 UTC)
Tags:	emotet epoch4 heodo SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-12	U_746334557.xlsm	xls	1c5ad6e4718ec14f2180c8f047a7867ba5ce9f4498024dd2a4f66974ca1cdfce	23.33%	SilentBuilder
2022-01-12	ycnv_521.xlsm	xls	05dc48ca9e5d5feb04a32c1ef3a8d18453a2a679e7257ce24856895a5dea268b	n/a	SilentBuilder
2022-01-11	0000_4224932.xlsm	xls	034eaef52f3dc5154e7a94121703ea759fd19784df604e48c8e73ff4fa06cfda	n/a	Heodo
2022-01-11	worbwju_34.xlsm	xls	b5207887a27a42330a6b8e863e0550008a6375de1f4c9c6c0edcc7a9bb6d548f	16.67%	SilentBuilder
2022-01-11	z_56481203.xlsm	xls	1dd1ac79293bf11e4adbb3cce1c9760b154fa558bceb95a5a85d73e753c3c603	n/a	SilentBuilder
2022-01-11	4315-7035.xlsm	xls	1b07cb00b2a9790fd3d3dbc858112dc7308a0fa920fbc8a8ba019af5ea216752	18.33%	Heodo
2022-01-11	S3125290030721.xlsm	xls	755b4ee15682c5a1e3567c5d710b241e03a8b6ce7080dc3ef0816be9ed6e06f7	15.25%	SilentBuilder
2022-01-11	Q27589145.xls	xls	e7065618e785e98792d570656fd412ecf695c45ec5a8123d04cf4ee302d225bf	n/a	SilentBuilder
2022-01-11	33061613758347184305M.xls	xls	73a93604b31a5b4b301dad4849b63d5e6e48ef8d946f6fbff48b485b1bce7a37	16.67%	Heodo
2022-01-11	4652486067500717360.xls	xls	62ec5aff1c6c20ac27c09077ff459dbe375a4d8841b6b47f85c7e51b7d26fd9b	n/a	SilentBuilder
2022-01-11	Z8235687248439192756.xls	xls	2057afa974ff72e5f28439f4cdef17396772fe0edde04405fbcf8c5cb5a47888	n/a	Heodo
2022-01-11	R50474087U.xls	xls	b3a64afe3a1360279c7354909eb0733a15870549ca068a851cb8dc7b672ee168	23.33%	SilentBuilder
2022-01-11	B9025329623372142.xls	xls	067076b82d8006677b674411e2ac9d00f6b68e93ff460cb2f113d9150e73a88c	n/a	SilentBuilder
2022-01-11	Y3158894808964090.xls	xls	24160ff88a8c4ee8d12c4cad09dbd7e744c2bf1bfd24b636cb436cb047d3324d	n/a	SilentBuilder
2022-01-11	9899361V.xls	xls	afe04f54612c86612a56bf8a3a228a2aeae275f4730552228f8a4bb6f71c292e	20.69%	SilentBuilder
2022-01-11	M993375794.xls	xls	a5a1c304ab3b2351a82da736cf9c022ea2ad1cbff6321b64b0a741b575c8a6c4	18.64%	SilentBuilder
2022-01-11	O242879654230187413.xls	xls	5567612a01ddde62a81334d73dc09a4e0f78d8e552d2686d44eb3e3910ecf13d	18.64%	SilentBuilder
2022-01-11	C82263355283H.xls	xls	b8600d1365521e1a2f83ae356900d38cf8c44b60594bbe30df2ac04418cd823e	n/a	SilentBuilder
2022-01-11	U37590595682998090G.xls	xls	1e4e0feb94cf74d61c7557fd8b7883f71b80547083bc339bc808b9703d4c03c1	n/a	SilentBuilder
2022-01-11	P835544629G.xls	xls	0c9de24621d73ddfb33b0d2607b84d523a103ff59e318980f134dac1726e11a6	n/a	SilentBuilder
2022-01-11	G827961059055631988L.xls	xls	0237b96acc934eba1b920d0b6fa654c22128101417298a9f940ca2e53c85dab9	n/a	Heodo
2022-01-11	94509797463746B.xls	xls	1289c645dc8d8ff1a81ca74c01191f7f2deaa2b0b5337e534dc094a4510fd865	n/a	SilentBuilder
2022-01-11	2952384430.xls	xls	7955874a069fbde3eb5144ea8420f8b9e80d0c8ccd822c21b54150e53608116c	n/a	SilentBuilder
2022-01-11	L291866879560.xls	xls	7dcde20dd26c5388d734d658830ebb48bf5c1170cf9ec39a3e084d8e728715e8	16.67%	Heodo
2022-01-11	770702508199293834642W.xls	xls	0b52372793be51e4313df2cb64a2b43650e47eb55920506fa6ac3f0726da0a89	12.07%	SilentBuilder
2022-01-11	H45694388757.xls	xls	0a0fe064ed83d5fb4be5577a78d4659be6d7fec5ee345f01edda10c2e6221868	n/a	Heodo
2022-01-11	G7218687996999476.xls	xls	3dbfb9a583de71af6ce19cbfb294476ab7d6fcfd2fe42c9bf38886ace35c58fb	n/a	SilentBuilder
2022-01-11	D49500139148S.xls	xls	12db004e136ba9f8fd95d9d6e3a08d5b3cfde159c0ca3f99a75df8922fbdcd85	n/a	SilentBuilder
2022-01-11	N1299574546D.xls	xls	a7635ff25c0d0846f9f7aeadba12afdfae8f6efcec04fdfe2b7fecf6610dcbe3	n/a	SilentBuilder
2022-01-11	T9339780057265.xls	xls	474cb0554cd5fb8976244c74a115a07164b25952cbbe6e7868a99045b435f535	n/a	SilentBuilder
2022-01-11	Q3370120734843I.xls	xls	b6695d0c24ee697dc9605c2f66c2f6c0688b9546bb2957505b238040001a1acb	13.33%	SilentBuilder
2022-01-11	649971121Z.xls	xls	f0ca4bbe2594076644e5f27040111f3f422d61a3268078140077095c40d8dd6b	n/a	Heodo
2022-01-11	808795821306732050751S.xls	xls	619a36bb106284a941479a0f0c4ec11dded72ed93a1e9c0909eaf2ebc84a69d4	n/a	SilentBuilder
2022-01-11	P869248399800467K.xls	xls	a1713a6e838656d686b56ed5f3822eac423bddd1637b56f9e24b3245ed798d99	n/a	SilentBuilder