URLhaus Database

You are currently viewing the URLhaus database entry for https://foryou22.xyz/wp-includes/css/dist/77755819959/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1970570
URL:	https://foryou22.xyz/wp-includes/css/dist/77755819959/?i=1
URL Status:	Offline
Host:	foryou22.xyz
Date added:	2022-01-12 11:52:04 UTC
Last online:	2022-01-13 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-12 11:53:07 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	1 day, 5 hours, 28 minutes (down since 2022-01-13 17:21:43 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-13	48_6.xlsm	xlsm	b162080b1a9cf6b9208bb7dc46d33193e3314f9fb02235f6d5b792f430c4f0fb	26.98%	Heodo
2022-01-13	6837_00724649.xlsm	xlsm	2428a6248b7bcc60abaa1acbbe53598eb6787bca46c66775fe9e34257c73c01f	n/a	Heodo
2022-01-13	69442126643093.xlsm	xlsm	915354db100b6c7c744bede05828fd397ef2ab000bced2ac46e799b5d5a8e9d5	n/a	Heodo
2022-01-13	6518915_29113.xlsm	xlsm	9be7257858cb4a52549d8339ff573f9a1a8e1aaf43bfa52506caf9ae6993252a	n/a	Heodo
2022-01-13	16553363_4364766.xlsm	xlsm	d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dc	n/a	Heodo
2022-01-13	jfS_5.xlsm	xlsm	a66e83486f88332a7ba17fd3016818963ea4b45c47f1f19b4b01a099add5e3a3	n/a	Heodo
2022-01-13	358251FPJW041695.xlsm	xlsm	7868deb5db79806b2f44fe8be58524a914c2817d975f7acd996694dc218b70eb	n/a	Heodo
2022-01-13	RWH_9721941.xlsm	xlsm	333b10335a845fe3fe0445baa8b1074298419a02c030c8c32b69652f1745ba88	n/a	Heodo
2022-01-13	508711552-45821128.xlsm	xlsm	5565b21769b33d137d9835ab02eb09c93f36f8627ebce91b5b81d1a9d4107312	n/a	Heodo
2022-01-13	0899-587686285.xlsm	xlsm	22ed1803ea7fa2aa21adb614d88627eaf141fb5663bac536d56f3db835dd0811	n/a	Heodo
2022-01-13	3023937-64.xlsm	xlsm	27142990970a1968021bca00b4005ef206e3a553179b2e717e82ebfe8a8af1b9	n/a	Heodo
2022-01-13	XX600767.xlsm	xlsm	8e8824a855908e301cb873fe67e37eb4af99b32f75fb1ea8997af913540ece02	19.35%	Heodo
2022-01-13	3437_84180.xlsm	xlsm	7116287ff5fc3e837e06fb2ea4d6a131127ceecf8ef165f088114fdc8aa9e17b	n/a	Heodo
2022-01-13	61803-8241.xlsm	xlsm	5ecaca761cd39de3bd3acc762b09edb997c02a40e3a20e53e466c70524bd639f	n/a	Heodo
2022-01-13	huiburm_13.xlsm	xlsm	20d7c4f7e882c414b403403773c244fa421744c48bb9e52a2f9236825be9a76f	11.11%	Heodo
2022-01-13	361QFFLTA_0.xlsm	xlsm	40c1afd52c86bae8bfb0c51cace1a0eb0e0ba0c12003ff8685f47df8cd3f9348	n/a	Heodo
2022-01-13	V-385.xlsm	xlsm	ff782330fa53c402a91c06a1199ccdc467f8470af11fb786ee746df1ab19f594	11.11%	Heodo
2022-01-13	550448_8720816.xlsm	xlsm	32d200a99b9495fe0dfcab75190eb5fcb348e6fa879763d132c924fe25bfc799	17.46%	Heodo
2022-01-13	GXZHB_446.xlsm	xlsm	89136b644b6aa4c447540dd585039676d3308c0a434bc3f72322a45bc35df7ac	11.29%	Heodo
2022-01-13	vlnionu_953719.xlsm	xlsm	e1de888c89a83b9cc12fc5432961766a1de1ad53ebd4aa7f3cda06d9c8cce841	22.95%	Heodo
2022-01-13	82073508GEQVNA-1.xlsm	xlsm	876844b7e19d8b57429b07b92fd1092f3847f3e2521cb00e52b9a418fab8b6a1	n/a	Heodo
2022-01-13	L8219.xlsm	xlsm	d9d0e65da97a353a9cc189af41082ae0bf1dff0acb39bb620a34ddb0c642ac79	n/a	Heodo
2022-01-13	147TSKLLXVQ_750.xlsm	xlsm	5e9b0c9265b7d3fc1ff598bf2c6da327b90d200944fc0462f1079231b5403185	n/a	Heodo
2022-01-13	6784487.xlsm	xlsm	4e334f1e7d8c85ec0ef565959898a1ddbe225377df8590e806143832bc768320	n/a	Heodo
2022-01-13	AI990499.xlsm	xlsm	ad80a159607095ce60f84198a537f9ed0bc3b5205b2a84a49c8173d53d942e60	n/a	Heodo
2022-01-13	09637-5892014.xlsm	xlsm	bda64d87a6c5a5cd6926f31ff7be5bbe30123e2285e026e4d00028eb2e3221d5	n/a	Heodo
2022-01-13	I5514.xlsm	xlsm	bfc5772205c81262f1c0e3bd7742f6aa7d2f41e03cbdd43729f2376a9b96ea16	8.06%	Heodo
2022-01-13	88477-3795.xlsm	xlsm	ed02cf2428790fc05964cbe66c268a67503551249437381125a51401de15e753	14.52%	Heodo
2022-01-13	WAESF377.xlsm	xlsm	07efdf65fbb6c43bdc3ac46453701f3d1bb0f284bad5865fb4f4cf54c127708e	n/a	Heodo
2022-01-13	282714560-3500.xlsm	xlsm	00714061c46c2698b29d0f88c92096cc433a3b26acac70825717dde40e0ff407	n/a	Heodo
2022-01-13	39912770_750896.xlsm	xlsm	ae3ac0659210f9f66b73bb14858d53a215ed91ef3c5b812c671fd4e824ee150a	n/a	Heodo
2022-01-13	9461271YNDMZGUACB_32198.xlsm	xlsm	1463c17a7f06236bf5e8cf4ce7964cc17b2eabaedf00822387824b45f83021b5	n/a	Heodo
2022-01-12	ckvxf-440.xlsm	xlsm	2ece719378f63a328fbf4fcb4a059dea6cbb9a7d2be5481ec168f1e681fc7c56	8.06%	Heodo
2022-01-12	47_7.xlsm	xlsm	c2ddab3e04d60aef6cc2b227982e2701eeb4fb51f6a76c1f3047dffe536fccaa	8.47%	Heodo
2022-01-12	kyiq-81835463.xlsm	xlsm	2b7d52fdf5cf60cf008016216c752a2fc6d74308772073a7157f9cd29cfd0d1e	14.52%
2022-01-12	18928101.xlsm	xlsm	45a53e72db4a9d55d161277cf30ab36f2bdb6881937d80538c8468630a59b392	n/a	Heodo
2022-01-12	51981975_90.xlsm	xlsm	135ace077486200deffc6797336cc464b62f91268eef6e6cee687a8c6d792053	8.06%	Heodo
2022-01-12	FBAU_84.xlsm	xlsm	292826fa66737d718d0d23f5842dc88e05c8ba5ade7e51212dded85137631b31	n/a	Heodo
2022-01-12	KU-658.xlsm	xlsm	33c82b63397536a8a585f5d1987fe791d2f3c7f7a59c28e18d261d95cf574da5	n/a	Heodo
2022-01-12	9199YHO_06.xlsm	xlsm	94e647e716236a47da9833f6f96af2d79266610de675e984b8d1fa92c6b66d12	n/a	Heodo
2022-01-12	I_9039496.xlsm	xlsm	8f99cab09eb9674d602d903701978b39bbe6bf9eb123a358837b44e4076a5e86	17.46%	Heodo
2022-01-12	3699369XHRBQEXXN_29112.xlsm	xlsm	1bda0395914226e0e8595d97bf7970dbd6f029b30d8abf2d887cec6ed7084cf8	n/a	Heodo
2022-01-12	z_09237.xlsm	xlsm	9b6c2d3a2e0010b47a9e3f6a391bb288234c1edad441716ec99b1188a5ae2915	17.46%	Heodo
2022-01-12	44275111_1667473.xlsm	xlsm	f92091f4bf9b99100b516a015bbcee3bb1107b3f1084307aefb368863e3ef9cd	17.74%
2022-01-12	COZ2826700.xlsm	xlsm	a1d6ccc8d4baeb930c4466081955434ffc07b1ad4105058d4b3cafefe0d50098	n/a
2022-01-12	8271_781.xlsm	xlsm	d2081a087e12bbda13228bf6473570e76d0776157f719f7814f825018db9ea7c	n/a	Heodo
2022-01-12	251838990_839287538.xlsm	xlsm	d396dc8d4f96a0295c0f5db969ab4116c03ab365e2c28400807c613656e87cd3	n/a	Heodo
2022-01-12	044589017-83552433.xlsm	xlsm	d71345f2aba73f7209585626467e21128fb342e43c8a64c475e1c9d8a052527f	17.46%
2022-01-12	10732043_454.xlsm	xlsm	ac1a9c4299618d4a3024d88f644e7ff3813627c6b91a5be1b6ea64c037ec7c99	n/a	Heodo
2022-01-12	BiT_148.xlsm	xlsm	d0976d7cff6c14e5e16cde79aaa1d61b3ac4d1bbdb2fa04543064548bb9a4016	n/a	Heodo
2022-01-12	3047_35737.xlsm	xlsm	bc346c8af9a4c313ecdce8c2ce4027bb2f3fff1889df84c0f2dd80f38f8be94b	n/a	Heodo
2022-01-12	83114510-8269478.xlsm	xlsm	e64991c009715f3cd077bfef9f339f8b58c16ac9d35300e911fce66b692b4f3c	n/a	Heodo
2022-01-12	KXETC9774.xlsm	xlsm	aa0e7e06ef6a8326e0d55630872406ec5a56ab4677760157c5b8cf9c7bc49623	n/a	Heodo
2022-01-12	V-0.xlsm	xlsm	cc9a3186ed59f67e245a6076b2f2bd30650692259e6665b4c3a46aa9d044f814	n/a	Heodo
2022-01-12	69CGWCBPZW_817.xlsm	xlsm	79daeb5bf882947dee2541dcc653db008700b0f5b528335398d1ee9d934e3e7a	17.46%	Heodo
2022-01-12	51465_1260037.xlsm	xlsm	ff0dd0d6c82eabd6f0c69da4f366755d7e300e845e1eb68342107fa69d83b53e	n/a	Heodo
2022-01-12	5126127_89.xlsm	xlsm	1ac9eded30edbaf2faea6046d10ae01b4198654689f23a87627ad11d3c73e274	17.46%	Heodo
2022-01-12	LIG-44451303.xlsm	xlsm	0bafd60ddca971a6e30bc4b88c757eb075c063b03d728b237331e60e83e33f63	n/a	Heodo
2022-01-12	dYdHmy-2575753.xlsm	xlsm	37716efca84be104afed69676c133a7710e46c5242ba0f4b97e008b8c46da7d0	n/a	Heodo
2022-01-12	xnkqfvk_173101.xlsm	xlsm	5b8c11198dceda8da8407fe0e68a5a0053b213f03e157317f0e9961f818fb5e7	n/a	Heodo
2022-01-12	6634977221676.xlsm	xlsm	5ecda7dff2d530c8ae471e0f5f0e8716d6930dfce93f4e7c7ac8f6249250d6fa	n/a	Heodo
2022-01-12	54553377254.xlsm	xlsm	9e910d12471987837a058b121eaf6b83b73675a82eafc3f6ac1710da61dcf16f	n/a	Heodo
2022-01-12	1009216254135.xlsm	xlsm	c9c2bdbfd9418db13bdf5b96a5d8003f7b924235629db4766ad743a09f30163b	n/a	Heodo
2022-01-12	UDFC-45300400.xlsm	xlsm	92713b457c90861b16201ffa88fe2c16b77c58265d9a4c249d683fe899fe4af1	n/a	Heodo
2022-01-12	14HUXCXCQUEF_03.xlsm	xlsm	99704dcf815cd49262652add049aa8b90b0549e6c769adce9de208f71bf5d7cd	n/a	Heodo
2022-01-12	1209556-757198.xlsm	xlsm	2eabc11ba3c54f106383d98026c60f909cf6393af67fac13a59796b91390bebd	n/a	Heodo