URLhaus Database

You are currently viewing the URLhaus database entry for http://leyuniversitaria.pe/b/OS_15161/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1971895
URL:	http://leyuniversitaria.pe/b/OS_15161/?i=1
URL Status:	Offline
Host:	leyuniversitaria.pe
Date added:	2022-01-12 21:43:03 UTC
Last online:	2022-01-14 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	sugimu_sec
Abuse complaint sent (?):	Yes (2022-01-12 21:44:08 UTC to abuse{at}diginl[dot]nl)
Takedown time:	1 day, 11 hours, 38 minutes (down since 2022-01-14 09:22:46 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-13	537LXVJ_1690081.xlsm	xlsm	25b8d35ed3266ce2eb8e7c3d62733d4a5947e1f7952e7c716ef173ae59e2f7fe	24.19%	Heodo
2022-01-13	lhwfpj099.xlsm	xlsm	236a6d0de83a050c7865dba3da1e5ec1e210668e47a23499a833dd10551e9087	n/a	Heodo
2022-01-13	710520-84.xlsm	xlsm	965ba65b5f61878b8ae10148e82de812b432f517f3d45802be713ea45aefd0c9	n/a	Heodo
2022-01-13	3527_32928.xlsm	xlsm	7b6f6a4bbc69ade611b991ec40d097b4b37590aa12be7376228f7a7a3b13220d	n/a	Heodo
2022-01-13	MR-35005.xlsm	xlsm	523f8798637989d56a2dc113543544950f4c2a5d11b2bcb6d73e96b2c6182f86	n/a	Heodo
2022-01-13	662240ALRWWJ-017.xlsm	xlsm	3ccc385404055d349d08f8743232053863df38651ccac0bc96a0935598a00c1a	n/a	Heodo
2022-01-13	59965-86634055.xlsm	xlsm	b5befbca72d6e064f55ecaf38f0ca70b8347f959011fd47e991ce5d8aa309de1	n/a	Heodo
2022-01-13	58992533-539.xlsm	xlsm	890e54734498c0cf6c05a9678b66b29e3c38203ea61f83937a017ba7afed9809	n/a
2022-01-13	SJ410.xlsm	xlsm	8186f82da42f9f07b405d280632e62d7632c4b472cbb489761bf400bc9ac2b74	n/a	Heodo
2022-01-13	A_4889265.xlsm	xlsm	b4fb2c694f76e85c361b9c285f67b7a5a15074919db0b9eb2d55521390eedbc3	n/a
2022-01-13	330_4222207.xlsm	xlsm	2fc174fae6bcf5ff45e069783a751950e4989cdebf6f04fe8ddfe2121ca28f15	n/a	Heodo
2022-01-13	51460620UCLG425.xlsm	xlsm	55831e6466e727c6dc0efc619eefaf7ff2a89d4ccb2f770e34aa49cd4a9894b9	n/a	Heodo
2022-01-13	830692_9934.xlsm	xlsm	dc8adc8e13d3e5a64f2d69f2163da90a19cd80594bf4db6b8d17c381312d28b6	n/a	Heodo
2022-01-13	IRLGL22.xlsm	xlsm	3e8ac5b89fdb8697813438a75aec6df15ad029e5c499a023f5bc7a209ff1b13b	n/a	Heodo
2022-01-13	8277_864.xlsm	xlsm	78dd5816d66701839612b5caf64d4337e45d516e52b5f177345f5019ce4aa907	n/a	Heodo
2022-01-13	259582NNAHV-076655318.xlsm	xlsm	115b1bbc0363cd535f4336aac31bed3fa17e2c2a4ebcb15618e55c9dfc91896b	n/a	Heodo
2022-01-13	VLTQ-053848.xlsm	xlsm	4f9ce5c9c9dd88a6a01a3df3299e0aa43da3bad195036c22b141f28769708334	n/a
2022-01-13	86262_3.xlsm	xlsm	a8b105b33e639fbfaf784868e4c8b14639d7e0dfbde96bb5071fa8d7160595fe	n/a	Heodo
2022-01-13	7303174090.xlsm	xlsm	c9d6e67d61769e32b703185a1035e43bbc9c7c053cc1d06594fad3979da3cc9e	n/a	Heodo
2022-01-13	7468612_14.xlsm	xlsm	1070ee81825904e9b69247d5ecd09aa91e0be9722ff1b627740e98e0bd48ee7f	n/a	Heodo
2022-01-13	468486160_10489.xlsm	xlsm	2d009791d777c752c4fddb6e32e5d123d7ecf80145baef849436bf4879259b8e	n/a	Heodo
2022-01-13	928470526.xlsm	xlsm	109868bbf981851bac44548c11bee90f08fd3c83e06c9b9539f568e047f45e0a	n/a	Heodo
2022-01-13	dtlj_94022.xlsm	xlsm	b8f140e8a83cdb10b7816fd789deccef6d4373e8441fa40618b48484359041b5	n/a	Heodo
2022-01-13	BRC_477943.xlsm	xlsm	aeb70e41209244bbbb3f870a325ee369ce718361b2caf361f8472ce7b1b7001d	n/a	Heodo
2022-01-13	9248912XTWKB9.xlsm	xlsm	8b97c32b643fd911fc305bdb62b94e1b34bf97ba87335b1f81cabe2bbf250d24	26.98%	Heodo
2022-01-13	FZ_3597.xlsm	xlsm	b3a8073712469f70329fad465825f867bd6dcf83420de3004730f91ecc938138	n/a	Heodo
2022-01-13	hru_87.xlsm	xlsm	125468fda9c224d8a3ccdf92f08037a343c0341a8e64dc2c1182e1d3d4e496a7	26.98%	Heodo
2022-01-13	3532249581.xlsm	xlsm	cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46c	26.98%
2022-01-13	FTSAY_16826284.xlsm	xlsm	13f975538e7e72ac755218c6a35604d36e0278e74fed8e2270476b89268a7f2c	23.33%	Heodo
2022-01-13	QD_69005261.xlsm	xlsm	726be01c1600c33b9a3d322885ca12383ec5b64546bb389670176f77f7faf162	19.05%	Heodo
2022-01-13	U457186.xlsm	xlsm	d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dc	n/a	Heodo
2022-01-13	812994795047.xlsm	xlsm	2b8b0ca757e3eccb527d9ce11a9a8815f5a9ce3c6d2ed5a8711d4c109e88bd71	n/a	Heodo
2022-01-13	3801065.xlsm	xlsm	ca6662f6a52a16a294b7d873a1f4b60f6ed054cb1cbaf3207081f30380c573e2	n/a	Heodo
2022-01-13	ZQI-2.xlsm	xlsm	6c5843f31e83acb3be71be737cb15c279df63ad2191db42d1687985925eee1c9	22.22%	Heodo
2022-01-13	04518647-085750416.xlsm	xlsm	c841d1d5ae704ec93026da23d3f2b9e5f00d5a229a91117df6188db2e444e87d	n/a
2022-01-13	BPWA98039.xlsm	xlsm	9e1460b0a4debafe9636cf43ad6de3069afc41e53b2c0c09b6337bd165a7bcef	n/a	Heodo
2022-01-13	50262.xlsm	xlsm	1080082d0eec3c4e3583b6e259b0863c746d211af8a8b6b645b21059e60f1119	n/a	Heodo
2022-01-13	HG_20.xlsm	xlsm	c062d769449f6c74f82252e4215d23c83a360d97a7ed1b75001ba3250df330e7	n/a	Heodo
2022-01-13	656552193-024.xlsm	xlsm	113636402be711e8a8e0e2fc59491b969fc825e8352ebbc316418ea6f30a4bef	12.70%	Heodo
2022-01-13	8334459_576991.xlsm	xlsm	152d0b25ca2f0f4066edf77906c112fe4e6d49c17f6fc35a039686276ad7686d	n/a	Heodo
2022-01-13	a-90627.xlsm	xlsm	967d8e1ecaddadf97ad824647e734535d41e1996b725dd594a03a043d3795b1f	n/a	Heodo
2022-01-13	207504_4.xlsm	xlsm	20d7c4f7e882c414b403403773c244fa421744c48bb9e52a2f9236825be9a76f	11.11%	Heodo
2022-01-13	VPN_343.xlsm	xlsm	9eb7d16794f6e4e2e701458af298b2b16c91a04dd45361cc306f32bc5fd25491	n/a	Heodo
2022-01-13	M_08102466.xlsm	xlsm	d96dba578ec6bbb043e6ef20f9f43779bd471f5329b9ba5416a0a4785564ebd6	n/a	Heodo
2022-01-13	10471676299.xlsm	xlsm	37bb74fcd5b1ff6bbd323163e21277b3ed80d124cc4d727f4ec64d1048a2c85e	n/a	Heodo
2022-01-13	BOa7189468.xlsm	xlsm	ae8e1d5678b54ef2ddb35fcf1233370916f4e2355f1aeb9066b9f7e12d07bcac	n/a	Heodo
2022-01-13	5612812_44739730.xlsm	xlsm	a31aca91b05fbf55ff7e2ebb699e532dbd3025bdc3b9f2646fef0f330f6e574a	11.11%	Heodo
2022-01-13	Ep_116062381.xlsm	xlsm	876844b7e19d8b57429b07b92fd1092f3847f3e2521cb00e52b9a418fab8b6a1	n/a	Heodo
2022-01-13	ZEB-1850770.xlsm	xlsm	d9d0e65da97a353a9cc189af41082ae0bf1dff0acb39bb620a34ddb0c642ac79	n/a	Heodo
2022-01-13	5896869898.xlsm	xlsm	0f3edf4e46a263ca74e1089aaebc8b85db3e80677f8f4606e5f9a09fecec3903	20.00%	Heodo
2022-01-13	382229789-409201.xlsm	xlsm	ee49f3ff07ef559fa5be77fbc12091b27970f3ea8dc8b8aa46bab089adb8213e	12.90%	Heodo
2022-01-13	31909584_79778.xlsm	xlsm	b98bb81e71273e575642ed7f7099c846ad35017b883a860554a891c23ab9595a	n/a	Heodo
2022-01-13	KN_64241.xlsm	xlsm	bda64d87a6c5a5cd6926f31ff7be5bbe30123e2285e026e4d00028eb2e3221d5	n/a	Heodo
2022-01-13	VMD423624.xlsm	xlsm	bfc5772205c81262f1c0e3bd7742f6aa7d2f41e03cbdd43729f2376a9b96ea16	n/a	Heodo
2022-01-13	KnK_57863284.xlsm	xlsm	ed02cf2428790fc05964cbe66c268a67503551249437381125a51401de15e753	n/a	Heodo
2022-01-13	60521-708012.xlsm	xlsm	07efdf65fbb6c43bdc3ac46453701f3d1bb0f284bad5865fb4f4cf54c127708e	n/a	Heodo
2022-01-13	wjuolie_977.xlsm	xlsm	47171e7e88ede748460af600d64eaf005c1f606df64bca51bcabb9e3a4e872d9	14.75%	Heodo
2022-01-13	YG_82144.xlsm	xlsm	ae3ac0659210f9f66b73bb14858d53a215ed91ef3c5b812c671fd4e824ee150a	8.06%	Heodo
2022-01-13	6696828ZQKGL_114.xlsm	xlsm	1463c17a7f06236bf5e8cf4ce7964cc17b2eabaedf00822387824b45f83021b5	n/a	Heodo
2022-01-12	ZIJLF8423612.xlsm	xlsm	20039ff121b47e5026b29877b299b76e47f3c7f766b9010a04e148a19823dbb6	20.00%	Heodo
2022-01-12	870DJGXCTUFC-3.xlsm	xlsm	60610dee4927e907b5a6a4ac49f8c921fa8af7005b2e8deb2b26ffcc1cac6322	16.67%	Heodo
2022-01-12	2940213-536.xlsm	xlsm	24355720d9e3b12c0bd49ad9b2ade504263a3bc06d95103a3c086a316dc2ecbc	n/a	Heodo
2022-01-12	yijj-62252.xlsm	xlsm	9f0a7342511328df49b73e718bb20dd3db1437cb3d115548f9d6a0cfda3af0d3	19.67%	Heodo
2022-01-12	8793_55.xlsm	xlsm	44f513de7c81d64e9cabb5947eec931b496e087645596cf2f7b781188d5c139e	8.06%	Heodo
2022-01-12	u-003.xlsm	xlsm	4dc2f22181beb5116c902aa2749a512b84988a39d68d896bbfd32ec7014bdbb3	n/a	Heodo
2022-01-12	7266_656.xlsm	xlsm	af2883e71c1c33d15944d4bdd9bfe7f027a2f50299f203642ecdc906cedf3b2e	n/a	Heodo