URLhaus Database

You are currently viewing the URLhaus database entry for http://old.liceum9.ru/images/jcqrej-12499525/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1972436
URL: http://old.liceum9.ru/images/jcqrej-12499525/?i=1
URL Status:Offline
Host: old.liceum9.ru
Date added:2022-01-13 02:13:04 UTC
Last online:2022-01-24 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-13 02:14:09 UTC to abuse{at}rightside[dot]ru)
Takedown time:11 days, 4 hours, 0 minutes Bad (down since 2022-01-24 06:14:50 UTC)
Tags:doc emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-14I880280.xlsmxlsm d8eb28ba7038dd673602a96e242b10c5af8ea2f296fe49eb1b36bf837fbeef06n/a Heodo
2022-01-14233562675_80.xlsmxlsm fb58356a9441f7161d77eecdd0f392104e975276e68781df4885ec42e84b4d9cn/a 
2022-01-14ujgs-4577.xlsmxlsm 620279fcd1238b22b28ff6e4d98f577b33d7dcfe09e7729f6ffd76070cec42e8Virustotal results 25.40% Heodo
2022-01-14OES-18.xlsmxlsm 217dab1dcf450f814ccba0ec24734922bd9924881e63323677e377f709310938n/aHeodo
2022-01-14zichrv_908869.xlsmxlsm c319f68747fd435aca46ca88df79a412e6e2e3fd14935007ded0525bd0666416n/a Heodo
2022-01-1409723957-9352.xlsmxlsm 4c26657af2c3d125e367f56a36faf49573f77c6a9af55143175ad81263569504Virustotal results 22.58% Heodo
2022-01-14ETED_99566.xlsmxlsm 5cff33ed1b7a4ed8ef30baa3a47546681144826e18bdc2082c9676a4f32c4bbcn/a 
2022-01-13603071310.xlsmxlsm da82f1d4fefd343481585cf68b60330590b552ab3e3ad3acaf639732166f17a6Virustotal results 24.19% Heodo
2022-01-13YEGG_6.xlsmxlsm de4865c0852fca0e36d650b593966be6425eb478402e7eced10fa038abd2ae3en/a 
2022-01-13U1504428.xlsmxlsm 382027190f16994bc76a439e666be02710c43ee123e5bbf37e0394d1bd7e4a39n/a Heodo
2022-01-1357794_6103.xlsmxlsm 0f7733066d2857280a04dbe1d6780d51d49894c7576632be019c7b7b54318028n/aHeodo
2022-01-133245765805690483.xlsmxlsm 096504811c78492132ac12b84ad2a6ee435ac882bd0a59bed69a1b10775edf37Virustotal results 24.19% 
2022-01-1398012252-3118.xlsmxlsm cbfdd288ed81b34166f40cbb96b59bf5836fe4dc0f06b4f121a97ad11fed7786n/a Heodo
2022-01-13DHW_159.xlsmxlsm 88876b87c1e34620663cc95177326339d7853e695ff37d35a180f61d76d019beVirustotal results 23.33% 
2022-01-1360983941.xlsmxlsm a82961d7ec81fbc9a29aa3a06007eb18b887dfbe3e97ca6580c7682aa6021a86n/a Heodo
2022-01-13DmG-7176510.xlsmxlsm 00c4657fa8734227eb769bbed474082f1140185ab579073204135735b2c32f9cn/a 
2022-01-13NQwv_521.xlsmxlsm ea518dd18446672c07dfd03a7b14e0f939a89b414a670198e7cf429b6cba7d84n/a Heodo
2022-01-13FCV-09419949.xlsmxlsm 920f3ff6aeb6ae3263757fc11949ff22476eaf9c6471b521bf891b9a18192465n/a Heodo
2022-01-133462238_9353993.xlsmxlsm 840b14be8c10c32e02b2c43fb7fce553f9a5fd5131d87cc9d95b514583ef2d49n/a 
2022-01-13G_4477848.xlsmxlsm 68eccb845f74a05448a6998438e0f542a396bd7c29117dadaf1797e940f0e9f9Virustotal results 30.16% Heodo
2022-01-13JAL_3.xlsmxlsm a139884d68aacbe19a1b68501de5392ef5ba05cc3eb5a5b2ed0c347db44af4can/a 
2022-01-13349_43210598.xlsmxlsm 5cf53f9f40389a8c56abd3a90681dadd27c0db904fbc2422ec9baa37e84c1584Virustotal results 30.65% Heodo
2022-01-134876409-530726.xlsmxlsm e8582d91a7c35b946a184125231a598380cf9c149e2e754acad290a1e129ad03n/a 
2022-01-13898378299-2939339.xlsmxlsm da2a461e20d4c87bd5324dad79a728e4223d6b8b70ec892fce58fdec3ca86af6n/a Heodo
2022-01-13284793_76116003.xlsmxlsm 3fc26c9fd1f5685b0dbd0bf5f56d85f5ae94056eb3a8ab041389b3f2948cf3f0n/a Heodo
2022-01-1311_13743.xlsmxlsm 603fc4bf5e141be1b30fb64551545d7f757d7f508891d17256ffc5564f3ccfc8n/a Heodo
2022-01-132889_6194.xlsmxlsm e07efb44e73f01e1cd957c1874bce0e453c91eaa561f46efb373edb97100320an/a Heodo
2022-01-13DX_6363769.xlsmxlsm e8da2349f8ec549d999a3e63b1f859f0452b0301aaf4fced70ecbba675b81247n/a 
2022-01-13579615_0.xlsmxlsm 7d20451deedc42248ceeb3cc205328d45bdc50d6d9a652f08773d052e1c598cen/a Heodo
2022-01-13030993353_28073911.xlsmxlsm c87454534ee25d7d677e5bab46857f861240685ce17532b788892d370096be83n/a Heodo
2022-01-13R00994.xlsmxlsm 1070ee81825904e9b69247d5ecd09aa91e0be9722ff1b627740e98e0bd48ee7fn/a Heodo
2022-01-132117-88569.xlsmxlsm 2d009791d777c752c4fddb6e32e5d123d7ecf80145baef849436bf4879259b8en/a Heodo
2022-01-1347277486_496449.xlsmxlsm 109868bbf981851bac44548c11bee90f08fd3c83e06c9b9539f568e047f45e0aVirustotal results 32.79% Heodo
2022-01-13511996ORGNKUBSO-72772314.xlsmxlsm b8f140e8a83cdb10b7816fd789deccef6d4373e8441fa40618b48484359041b5n/a Heodo
2022-01-13747095641.xlsmxlsm 399fd8ce9218a6b24bbf3c9e307934df9b2954d45119371365be1360c88ec6f5Virustotal results 25.40% Heodo
2022-01-13WDU_518367.xlsmxlsm 8b97c32b643fd911fc305bdb62b94e1b34bf97ba87335b1f81cabe2bbf250d24Virustotal results 27.87% Heodo
2022-01-1377677-45309.xlsmxlsm b3a8073712469f70329fad465825f867bd6dcf83420de3004730f91ecc938138n/a Heodo
2022-01-13778440_7565474.xlsmxlsm cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46cVirustotal results 26.98% 
2022-01-13SDIAH_94527.xlsmxlsm 07fddbd97e1846aa7ef2fae79ea0d177a89210725b1a66a8b52bb066cc36bb1en/a Heodo
2022-01-13JaVqtk_995.xlsmxlsm 726be01c1600c33b9a3d322885ca12383ec5b64546bb389670176f77f7faf162Virustotal results 19.05% Heodo
2022-01-135291172-501.xlsmxlsm d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dcn/a Heodo
2022-01-132250_373.xlsmxlsm 2b8b0ca757e3eccb527d9ce11a9a8815f5a9ce3c6d2ed5a8711d4c109e88bd71Virustotal results 22.22% Heodo
2022-01-1355540765_86.xlsmxlsm 1d8482afdb97aba866fc26b21eaa9f92f46ea841566bb0588150aecd4347cd45n/a Heodo
2022-01-13lqwJ_5.xlsmxlsm 6c5843f31e83acb3be71be737cb15c279df63ad2191db42d1687985925eee1c9Virustotal results 22.22% Heodo
2022-01-13MP-47.xlsmxlsm 2cfe6cc60d786a8b94d9d3114d344fb74c21e5ce5391dea3d1550df17fee05b4n/a Heodo
2022-01-13N0969.xlsmxlsm 80f7072eb1b894cec06813c3267356f693ff21d0d1f116d1cf53d5b8035277deVirustotal results 16.13% Heodo
2022-01-1340284-498427.xlsmxlsm 1080082d0eec3c4e3583b6e259b0863c746d211af8a8b6b645b21059e60f1119n/a Heodo
2022-01-131783204398.xlsmxlsm 4dc514dc9290b966a14aadaab3d4c168419ed606a81d0a1262318d8b305cfc8dn/a Heodo
2022-01-13TMK-8943735.xlsmxlsm 113636402be711e8a8e0e2fc59491b969fc825e8352ebbc316418ea6f30a4befVirustotal results 12.70% Heodo
2022-01-133851188_8724648.xlsmxlsm 152d0b25ca2f0f4066edf77906c112fe4e6d49c17f6fc35a039686276ad7686dVirustotal results 15.00% Heodo
2022-01-13836_4700.xlsmxlsm 66aeea59b545894b858733af53ebb1e6ae6ede82ad79a0c5aac0d23e6f2074cfVirustotal results 23.33% Heodo
2022-01-133892_23.xlsmxlsm 20d7c4f7e882c414b403403773c244fa421744c48bb9e52a2f9236825be9a76fVirustotal results 11.11% Heodo
2022-01-137846_9366.xlsmxlsm 9eb7d16794f6e4e2e701458af298b2b16c91a04dd45361cc306f32bc5fd25491n/a Heodo
2022-01-13899_9290294.xlsmxlsm d96dba578ec6bbb043e6ef20f9f43779bd471f5329b9ba5416a0a4785564ebd6n/a Heodo
2022-01-13680881883040.xlsmxlsm 37bb74fcd5b1ff6bbd323163e21277b3ed80d124cc4d727f4ec64d1048a2c85en/a Heodo
2022-01-13623151_88255828.xlsmxlsm ae8e1d5678b54ef2ddb35fcf1233370916f4e2355f1aeb9066b9f7e12d07bcacVirustotal results 22.95% Heodo
2022-01-135532ZDQYQKU94.xlsmxlsm e1de888c89a83b9cc12fc5432961766a1de1ad53ebd4aa7f3cda06d9c8cce841Virustotal results 22.95% Heodo
2022-01-1317120QZE_429562.xlsmxlsm 876844b7e19d8b57429b07b92fd1092f3847f3e2521cb00e52b9a418fab8b6a1n/a Heodo
2022-01-13QBW-8.xlsmxlsm 69af6706b85f8b7530add4d0277acf97e3f30aa8240e27adf3c97ba52581e86cn/a Heodo
2022-01-13698817_4804.xlsmxlsm bdba8de0c76cdcb58edc0f3d1f6b6f7550c2d8e471440b6838923b5341d61131n/a Heodo
2022-01-13ddzouxv_1.xlsmxlsm 6fe7b78ea9db6e96209e494f360de1bd7916f994b0f7aaca76264f486fde5d95n/a Heodo
2022-01-13ADP2091.xlsmxlsm ddca89f94ff0868602b306f18988690fb09003c760ad41bed5a9dd432425aacdVirustotal results 14.52% Heodo