URLhaus Database

You are currently viewing the URLhaus database entry for http://cl2.platsandgo.com/assets/7VoE/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1967346
URL:	http://cl2.platsandgo.com/assets/7VoE/?i=1
URL Status:	Offline
Host:	cl2.platsandgo.com
Date added:	2022-01-11 13:53:04 UTC
Last online:	2022-01-12 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-01-11 13:54:08 UTC to abuse{at}ovh[dot]net)
Takedown time:	17 hours, 50 minutes (down since 2022-01-12 07:44:45 UTC)
Tags:	emotet epoch4 heodo SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-12	202121_0025.xlsm	xls	8642a84875b30eeae2bec0b16db37715f4a2ff15caf6e5185a4012107ec1e87b	26.67%	SilentBuilder
2022-01-12	CH_67390516.xlsm	xls	926c822e2c4d78b252f788d3fa75a77bfed1380ad50cdacf21f3efddf15b0b26	n/a	SilentBuilder
2022-01-12	EAQ389286182.xlsm	xls	1b7581c8be4bf9197005067c42e581bcc1c41b10d6d9768daa8c4642f6e3ef7b	n/a	SilentBuilder
2022-01-12	49202_296.xlsm	xls	f7d338277f13461262faa21c960479146f4261acc6efe564964f5cd0370afd6e	n/a	SilentBuilder
2022-01-12	99762123_0261312.xlsm	xls	05dc48ca9e5d5feb04a32c1ef3a8d18453a2a679e7257ce24856895a5dea268b	25.42%	SilentBuilder
2022-01-11	D-420931446.xlsm	xls	66f5d61a2c4246c3bc39141c46e41bdc84c3f12a7db0b2ec3090eace070392d6	n/a	SilentBuilder
2022-01-11	45706608FJRZYXOWXA-67.xlsm	xls	44c675302c6fd62e15e5c9ae9bb98325870093ceed92a30601a13ad1dc2bd4f2	16.67%	SilentBuilder
2022-01-11	AQ-41.xlsm	xls	d616af039b685a1e393e85dfd6d3558a0a062fc2cd776bfdbfd55dd1cca9e55e	n/a	SilentBuilder
2022-01-11	6850_493190.xlsm	xls	f326b9b9af87bd43878455ac75b4e61fadd71bdfcebf5b4508525cbbb4e8038b	16.95%	Heodo
2022-01-11	qoqjeei_86.xlsm	xls	a3977aa3c358df0d9777be64e5c10b4a874fd0eac63183e92837d58038e5c4c1	n/a	Heodo
2022-01-11	367727225.xlsm	xls	45c442f6c146351872c97982c2c6a60eb9bdea660e39f2ead262e6bca62abae1	n/a	Heodo
2022-01-11	E346862793209643867710N.xls	xls	0bce8c631bc35e734c8be9fefb75ea3ce0e66a22e217c7ff6385afb1df2d0878	n/a	SilentBuilder
2022-01-11	26445804250729916518K.xls	xls	1db259b0063d26f9af684e7246d336250e289514a4e900eab1337ee9981a866b	n/a	Heodo
2022-01-11	S64806684966326O.xls	xls	b5d8116e0b4f01eb2affa09d857d1be4df2e18dd793e4ab0b6ad28e0d5eadc15	13.33%	Heodo
2022-01-11	G5291952794U.xls	xls	b3a64afe3a1360279c7354909eb0733a15870549ca068a851cb8dc7b672ee168	23.33%	SilentBuilder
2022-01-11	5237396877708274.xls	xls	426fda840765e44250686f1102e902242babe0cea36a756beac6c0757a73c28a	n/a	SilentBuilder
2022-01-11	79524578430.xls	xls	e8ada03261f05e1c91d784bf58d10322d3765c686bb4a52278362e0e62288d1b	n/a	SilentBuilder
2022-01-11	S2920870977.xls	xls	7b273da870150fa002d6651be951c45565ecfb209c9516b78a60d5e6274d4f9c	23.73%	SilentBuilder
2022-01-11	921205531748756386488G.xls	xls	18e24e9b03fde05fa41b9d86aa612dbbd5deabcebbe97ee5b3a3b7fa8fb43f51	n/a	SilentBuilder
2022-01-11	O4652028522129I.xls	xls	60fdf680c8e0272784588bf87ead2814df683a2fcb697522ddd4ef323166440a	15.52%	SilentBuilder
2022-01-11	F419702585729673.xls	xls	b8600d1365521e1a2f83ae356900d38cf8c44b60594bbe30df2ac04418cd823e	n/a	SilentBuilder
2022-01-11	O28694761I.xls	xls	1e4e0feb94cf74d61c7557fd8b7883f71b80547083bc339bc808b9703d4c03c1	n/a	SilentBuilder
2022-01-11	0102458272708F.xls	xls	0c9de24621d73ddfb33b0d2607b84d523a103ff59e318980f134dac1726e11a6	n/a	SilentBuilder
2022-01-11	B103482748D.xls	xls	37e872cc3b4e9e0f9e1472f6865ac985496582ef138fd1646fe13bd14bb92c0f	n/a	Heodo
2022-01-11	479070024S.xls	xls	b326b87763654f966a5ebf61052d38487bb8b36b173e3db613ffe8329256a044	n/a	SilentBuilder
2022-01-11	13575028.xls	xls	7955874a069fbde3eb5144ea8420f8b9e80d0c8ccd822c21b54150e53608116c	n/a	SilentBuilder
2022-01-11	533395731875684218164K.xls	xls	2f80ecbe8f3eb45c354fb36640dc4be6b13064be8550f2d49e41090e5c113b72	n/a	Heodo
2022-01-11	87614411011149Z.xls	xls	445e137304a2c43b06f0c98f4655f6fc4d69db7ae73ddf9094295c48f0701047	n/a	SilentBuilder
2022-01-11	U25992643693.xls	xls	0a0fe064ed83d5fb4be5577a78d4659be6d7fec5ee345f01edda10c2e6221868	n/a	Heodo
2022-01-11	H2774350643391555.xls	xls	bcd9548679c87026f7119b2a46f731fa2d1c20fdd1ba546f5e20281b30ade8e9	16.67%	Heodo
2022-01-11	1876969389265Q.xls	xls	2b3edf1dce5ad17220c402308e28a5f2ca0032703557b04aa816d53bb30bb97c	n/a	SilentBuilder
2022-01-11	E314331811.xls	xls	361e7457bfd87680419fd11b82e2c11ba668205e8421b38cfcb7e879e5267dda	n/a	SilentBuilder
2022-01-11	U386318292575568982Y.xls	xls	cab722a553d0e662a2c4e18e2300d30338fa957f7b0ade2c8f4450bd375bb8f9	n/a	SilentBuilder