URLhaus Database

You are currently viewing the URLhaus database entry for http://vesicafirearms.com/default_page_static_resources/276430515036976/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1970856
URL: http://vesicafirearms.com/default_page_static_resources/276430515036976/?i=1
URL Status:Offline
Host: vesicafirearms.com
Date added:2022-01-12 13:56:04 UTC
Last online:2022-01-13 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-12 13:57:07 UTC to netops{at}singlehop[dot]com)
Takedown time:1 day, 1 hours, 39 minutes Poor (down since 2022-01-13 15:36:15 UTC)
Tags:doc emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-13GHB-8380007.xlsmxlsm 8e2ad324b281a26bb3467bc8d61e8df40ffbfb7aad2049f59fb6ff79fcb7d086Virustotal results 31.15% Heodo
2022-01-13UZE-104.xlsmxlsm df5ad9633a767fe4cd01656bd094a53ce1ee7e2ba409eeb7852cc36bc8adcb58n/a Heodo
2022-01-13MQ_9790353.xlsmxlsm 108af965a5786b36edd5ec9d0e920c8d98b75f69cb4c120fb10a2e6033f74c60n/a Heodo
2022-01-1387168771OCEPFLPNES-86.xlsmxlsm 55ed7ea24286b4c638a1a08455c076c50650edda10b94c6ddccb6839cd24c176n/a Heodo
2022-01-13DLBPcO_232346.xlsmxlsm eb9fbf10b29d11bb18b47f49d8ba8ff07ffe92024f4daeee6d420c96bba7e8fdn/a Heodo
2022-01-139705-8.xlsmxlsm 2428a6248b7bcc60abaa1acbbe53598eb6787bca46c66775fe9e34257c73c01fn/a Heodo
2022-01-13uekfk838320.xlsmxlsm 915354db100b6c7c744bede05828fd397ef2ab000bced2ac46e799b5d5a8e9d5Virustotal results 25.40% Heodo
2022-01-1378957-495.xlsmxlsm 726be01c1600c33b9a3d322885ca12383ec5b64546bb389670176f77f7faf162Virustotal results 19.05% Heodo
2022-01-13390214969628472.xlsmxlsm d32a60905cbcf3b82765d7291ede8777aa420c096699a8f848d3417e53158346Virustotal results 19.05% Heodo
2022-01-139985SNMEKV_6543179.xlsmxlsm e87856edf8567e6e432ef09f0cc575e581c36b5df71a16c71658a5fb980a3d86Virustotal results 23.81% Heodo
2022-01-1340271385CIZUNI_6609.xlsmxlsm ca6662f6a52a16a294b7d873a1f4b60f6ed054cb1cbaf3207081f30380c573e2n/a Heodo
2022-01-13XOPSW_19052848.xlsmxlsm ae4c37f20738b2bc766ca1b1437dd27be15c5a86e663f8ce3fc8be6762483305Virustotal results 22.22% Heodo
2022-01-13P-33379.xlsmxlsm 9e1460b0a4debafe9636cf43ad6de3069afc41e53b2c0c09b6337bd165a7bcefVirustotal results 15.87% Heodo
2022-01-13amwzhhq_238.xlsmxlsm 7fc994decafbc81cd090c28c1de605c93e2ae18f645faac2d1f6680b85ef7c13Virustotal results 14.29% Heodo
2022-01-1301848934_793.xlsmxlsm 27142990970a1968021bca00b4005ef206e3a553179b2e717e82ebfe8a8af1b9n/a Heodo
2022-01-1320619_746845.xlsmxlsm 8e8824a855908e301cb873fe67e37eb4af99b32f75fb1ea8997af913540ece02Virustotal results 17.46% Heodo
2022-01-1326461589716.xlsmxlsm 49ec26f8a352003e43a32615495ae4554e0bb8485ef889e7ba57cf869f026c4cVirustotal results 20.97% Heodo
2022-01-13nf_3165.xlsmxlsm 66aeea59b545894b858733af53ebb1e6ae6ede82ad79a0c5aac0d23e6f2074cfVirustotal results 23.33% Heodo
2022-01-13V011095.xlsmxlsm 20d7c4f7e882c414b403403773c244fa421744c48bb9e52a2f9236825be9a76fVirustotal results 11.11% Heodo
2022-01-13LKZ_4488.xlsmxlsm b21c8209187fabc29beb0082c15b206ca7431f5c87847ec024fbae1a21610754n/a Heodo
2022-01-13AZUH-51327.xlsmxlsm 307389333e95f7b7a8f1c9e038b24c4e6b85c6b43623aa7f64838478e839c79bn/a 
2022-01-13Tr9851.xlsmxlsm c75f61e13a66701aa52fd1bd91d8133ddabf27b91c79ce68ebe4dc6a1afeccd9n/a Heodo
2022-01-13531849647.xlsmxlsm cffc89330574a0b7d5096c64bff0483e4dbc38d09be06dd3fd4cafca0a4e99edVirustotal results 23.33% Heodo
2022-01-13cnXFf_71080.xlsmxlsm 9fbfeb3873dee627be46cf7c10015435d027d718dd42a7842badd45e590f782bn/a Heodo
2022-01-13H_923095.xlsmxlsm bdba8de0c76cdcb58edc0f3d1f6b6f7550c2d8e471440b6838923b5341d61131n/a Heodo
2022-01-1317-886333.xlsmxlsm 7d631c017cb37c772f9ec3a267d89dc26eb44eaf38e4fc579d90bf739878c8f2n/a Heodo
2022-01-13PY_99590558.xlsmxlsm 638c333549cd204d298c9443eb29055edf4bc9e420895fa088aef37f7b2668feVirustotal results 16.39% Heodo
2022-01-13vfl_22416.xlsmxlsm 56024c0d7c62463d3f34deb9d683dd9430b3486aecff8119188916e9b7800ab9Virustotal results 8.06% Heodo
2022-01-13gutim_6271686.xlsmxlsm 4d6bc8f7df3ef7c6c77fd6ed3aa6049ebf8de53e8cc28bd075c2a64df63687acVirustotal results 8.47%Heodo
2022-01-13SUd10949108.xlsmxlsm cb57d02722993dd10fe56d30e2b0675417684cdc6308212c9e30035f95e257ddn/a Heodo
2022-01-13KFR_026.xlsmxlsm 606bdc0d3e58d7d91c534e101fb416b5228923b9dadb4e36fde81dbe986b289bn/a 
2022-01-136843492_86583049.xlsmxlsm fdfd932d1468e1c045f96cc60c7c061f31d3972e8e12692d8c3d575b2a0f74aan/a Heodo
2022-01-13E_25613829.xlsmxlsm ea5980e993f66791118fa470edea8ba26b09d5092a3eedb3ecba5fe80c3b5edcVirustotal results 14.75% Heodo
2022-01-12mq-027048.xlsmxlsm 2ece719378f63a328fbf4fcb4a059dea6cbb9a7d2be5481ec168f1e681fc7c56Virustotal results 8.06% Heodo
2022-01-12ar_436607148.xlsmxlsm c2ddab3e04d60aef6cc2b227982e2701eeb4fb51f6a76c1f3047dffe536fccaaVirustotal results 8.47% Heodo
2022-01-12ecvop_33037.xlsmxlsm 60610dee4927e907b5a6a4ac49f8c921fa8af7005b2e8deb2b26ffcc1cac6322n/aHeodo
2022-01-12547689700_8580678.xlsmxlsm 45a53e72db4a9d55d161277cf30ab36f2bdb6881937d80538c8468630a59b392n/a Heodo
2022-01-121391626785.xlsmxlsm 135ace077486200deffc6797336cc464b62f91268eef6e6cee687a8c6d792053Virustotal results 8.06% Heodo
2022-01-12568-1827970.xlsmxlsm 3c8b54def22442aaa334cbae48263d897ca2d62d76dc4df4e6efb03849d8c2a7n/aHeodo
2022-01-12XBBY_82978.xlsmxlsm 9dee7ff2bd3004489efc095782412235b35f95c28c23696b3a4512b8780ffbean/a Heodo
2022-01-12FRU_121.xlsmxlsm 9b6c2d3a2e0010b47a9e3f6a391bb288234c1edad441716ec99b1188a5ae2915n/a Heodo
2022-01-12RTVCH_7727445.xlsmxlsm e51255b61860adae1096b1521ad1fcaaa48b92d4c992c8fb3c449339af2d01dfn/a Heodo
2022-01-12kVBSL-0921.xlsmxlsm f4d388e756c6671857985c8b0a17656c92e1f22da75e28cce94a65f17daf8266n/a Heodo
2022-01-129012560513108.xlsmxlsm e39304e5761525a2038957233d6586c769837ac3c5a02b742e2fba6fb84b061bn/aHeodo
2022-01-12731697.xlsmxlsm ac1a9c4299618d4a3024d88f644e7ff3813627c6b91a5be1b6ea64c037ec7c99Virustotal results 17.46%Heodo
2022-01-12UVYI4203.xlsmxlsm 6511bf0cd0a150e9e4530b6b27ec3c9227b0e6ff38eafd6f6045f71ded06bc03n/aHeodo
2022-01-12ek_297.xlsmxlsm e64991c009715f3cd077bfef9f339f8b58c16ac9d35300e911fce66b692b4f3cn/aHeodo
2022-01-12lw_6440166.xlsmxlsm aa0e7e06ef6a8326e0d55630872406ec5a56ab4677760157c5b8cf9c7bc49623n/aHeodo
2022-01-12MP_37752024.xlsmxlsm 79daeb5bf882947dee2541dcc653db008700b0f5b528335398d1ee9d934e3e7aVirustotal results 17.46% Heodo
2022-01-126407118586.xlsmxlsm ff0dd0d6c82eabd6f0c69da4f366755d7e300e845e1eb68342107fa69d83b53en/aHeodo
2022-01-12O_89652.xlsmxlsm 367f7d4194c28142b7c89380146a570ff8af5377d25eb6b38c683c298be08ad3n/a Heodo
2022-01-12157644636_8063.xlsmxlsm 0bafd60ddca971a6e30bc4b88c757eb075c063b03d728b237331e60e83e33f63Virustotal results 18.03%Heodo
2022-01-1218348_34.xlsmxlsm ecda95e13eaad051279976a5ff4bf109941d61714b646abed4582c7754b4b961n/aHeodo
2022-01-12uDp47850.xlsmxlsm d849653d17e3c01ffc362dfb72f24d8fad6889bd89db870a79684f63f6eae6b6n/a Heodo
2022-01-122118364-476607230.xlsmxlsm 7dcd68024365fd30579b4707f0a9ad5f12f539cda108142174ea46efcf32f7f9n/a Heodo
2022-01-1258604.xlsmxlsm acd09a48b2d4eaa17d62bf95d566f97bffd1ac9e63546cf81cde6b994b17785bn/a Heodo