URLhaus Database

You are currently viewing the URLhaus database entry for https://casinoc.ru/akt34/wzq-883/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1972832
URL:	https://casinoc.ru/akt34/wzq-883/?i=1
URL Status:	Offline
Host:	casinoc.ru
Date added:	2022-01-13 05:20:04 UTC
Last online:	2022-07-14 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-07-13 14:56:06 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	6 months, 2 days, 2 hours, 11 minutes (down since 2022-07-14 07:32:51 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-14	349125256_89.xlsm	xlsm	ff585f534b9fcb8f660da3a92bdf92629e9d66cc31aceff6d3cf69be3aa2da60	26.98%
2022-01-14	ZYEET_3726022.xlsm	xlsm	cc1a311b270fde1ce104b9dc4d1f05b7ca778e8a5d329daaf6c4771f348db83b	n/a
2022-01-14	A_16070605.xlsm	xlsm	30dfa07c13e151844f5a9f78152c5d608e0366c112205ddafe7c0b6c563e1637	n/a	Heodo
2022-01-14	83829736.xlsm	xlsm	38aa8bb59cfaed48d361e496e1682f677a3f58223fbe1a6a9e2e1fcd5d837c43	n/a	Heodo
2022-01-14	o-66.xlsm	xlsm	4ddd7b352b1dcd33b7c14c1c0899bd7611ca731ce4f50be4a395afd8ceca2ebe	n/a	Heodo
2022-01-14	P-3044593.xlsm	xlsm	296171d1b92b175041ee3829e60a6880b93861ef09614e912d112777fc2fe13a	26.98%	Heodo
2022-01-14	7223761-53.xlsm	xlsm	6fd0e2563b3a57caea1e0d3feb66a44be67ba02e5a317dab989189508a1117fe	n/a	Heodo
2022-01-14	2491-1989906.xlsm	xlsm	e2490ca7300bcaab90df45a49b7610f5f492f85ab78edae5188270bf8218128e	n/a	Heodo
2022-01-14	32-41.xlsm	xlsm	45838acaa7ed8af67a969668201240579e05f9f226ed6bb8929e23dc49e3f195	n/a	Heodo
2022-01-14	933.xlsm	xlsm	cba1a3338adb424dcab7c4bf255f10716bea60907d9d9384cf77d8cd3c935ecf	n/a	Heodo
2022-01-14	11143-76215324.xlsm	xlsm	a0a8993ac49af8c9a67d95350e800f6adfbc38b6bfc5a7c213eca23b0b9e5857	25.45%
2022-01-14	QMK-947.xlsm	xlsm	a3ed16a22af231bd92cf9ed387f9c2ec3979f8d189e3098db3f345937577e199	n/a	Heodo
2022-01-14	8012_42.xlsm	xlsm	217dab1dcf450f814ccba0ec24734922bd9924881e63323677e377f709310938	n/a	Heodo
2022-01-14	7721245.xlsm	xlsm	7c9c973d048c705d801b4bcf3fa2accbfa308a614b30e96868629b866e50c417	n/a	Heodo
2022-01-14	btghep_346871553.xlsm	xlsm	4eab3977f88e6444a99925c2a5769e6b720e8a6ba4ee8cc8235e23a33a1e6658	24.19%
2022-01-13	0832097-265.xlsm	xlsm	700465c4be1e671b009e46928a0479f311b16f05004d4e24755bb22c405781f1	n/a	Heodo
2022-01-13	XWR-89.xlsm	xlsm	731ec98a6308e19709812083b3dfba8b079aa48f36b486f2f06d7170de5d1541	n/a	Heodo
2022-01-13	96863_837.xlsm	xlsm	88422e6f6a8baaf355add1168faec3c2cf520438933d982dcff40a31f2468a09	n/a
2022-01-13	FBEVK_5110460.xlsm	xlsm	88d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02	22.58%	Heodo
2022-01-13	FgdO_40947.xlsm	xlsm	792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0f	22.95%	Heodo
2022-01-13	WEDOI_72.xlsm	xlsm	bade694a72c3d8e5887ae4e1f1554aa85add86c8748b60af2e53e4241570d8f7	n/a
2022-01-13	21824_943627.xlsm	xlsm	6e346a952b92ea8d7ecde685f07f01806f0d66530eb588748cfdf35aa4467797	22.58%
2022-01-13	03565729-369.xlsm	xlsm	929400abfc42d038419315b35d0fd68f85270fee48b20985276ff79651f09264	n/a	Heodo
2022-01-13	E_2.xlsm	xlsm	e020f5b35d29bb3f229bd162a0fae0de5d977d49db96f1f3e06fe40a24c19679	n/a	Heodo
2022-01-13	1672484-51477419.xlsm	xlsm	ac61723d025f90be4b2b44d6643e6ef15327be31899b8cbdaa43c0a2fac25f5e	30.16%	Heodo
2022-01-13	JchGK_1616285.xlsm	xlsm	ee0c82ba730d2e5701d2845b6c1d4da35fa43842573d736d23446ea49fdef907	31.75%	Heodo
2022-01-13	649_004.xlsm	xlsm	920f3ff6aeb6ae3263757fc11949ff22476eaf9c6471b521bf891b9a18192465	n/a	Heodo
2022-01-13	207363566_0675429.xlsm	xlsm	478d59d47026e5c19226e76dfd2efe51f203ad4f97a093363c1448dd97a12764	n/a	Heodo
2022-01-13	H_8508.xlsm	xlsm	b61f87bbf1bdfd5c3b46851f485213ae5a8abd6764d3e228d71ff34b9ce1c2d6	n/a	Heodo
2022-01-13	178143_971991.xlsm	xlsm	8186f82da42f9f07b405d280632e62d7632c4b472cbb489761bf400bc9ac2b74	n/a	Heodo
2022-01-13	G_06.xlsm	xlsm	b4fb2c694f76e85c361b9c285f67b7a5a15074919db0b9eb2d55521390eedbc3	n/a
2022-01-13	wvugled-068308.xlsm	xlsm	43b4a4ded4844dc3840f383b8b10f7c9691f0044e5cf6a24681fdd62927988ac	n/a
2022-01-13	32ZSN_26565.xlsm	xlsm	e2053410b37647f1f7e190f99174fbe37bf5833edbc9801319f4443e1478eb7c	n/a	Heodo
2022-01-13	8094467-3614978.xlsm	xlsm	6aba2f1108a54a6e94dddf1fd12bc6f4b8b8a6d083fc5481e8ad35dc9b20b192	35.00%	Heodo
2022-01-13	1862496.xlsm	xlsm	c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39	n/a	Heodo
2022-01-13	07941372ZDVNMU_0345.xlsm	xlsm	78dd5816d66701839612b5caf64d4337e45d516e52b5f177345f5019ce4aa907	31.15%	Heodo
2022-01-13	60476675-1.xlsm	xlsm	e07efb44e73f01e1cd957c1874bce0e453c91eaa561f46efb373edb97100320a	n/a	Heodo
2022-01-13	7281769EKQDKGECT_651767.xlsm	xlsm	4f9ce5c9c9dd88a6a01a3df3299e0aa43da3bad195036c22b141f28769708334	n/a
2022-01-13	5926_005.xlsm	xlsm	a8b105b33e639fbfaf784868e4c8b14639d7e0dfbde96bb5071fa8d7160595fe	n/a	Heodo
2022-01-13	395430673_235.xlsm	xlsm	73aba3d6a7b537481c898581b8ccc0131152c0d0fc93500b4c562db824073360	n/a	Heodo
2022-01-13	5715384XMRJZEJ132.xlsm	xlsm	1070ee81825904e9b69247d5ecd09aa91e0be9722ff1b627740e98e0bd48ee7f	n/a	Heodo
2022-01-13	246699CKKFDIB-144.xlsm	xlsm	4c2cf1d0796d8ac276ad283bbb14986b510a2a3b33e76005c8968b653d43d844	n/a	Heodo
2022-01-13	Pzm_53716578.xlsm	xlsm	08c7c9f40c6db283966c794771c90b7d9f65dedfb785b861e02187f62f0dc0c8	32.26%	Heodo
2022-01-13	FILH_48.xlsm	xlsm	4624a6c75a73e206d26cf23225ddf8c14c9bd3fac85edc04aebf63a281aa8bd4	n/a	Heodo
2022-01-13	787618788.xlsm	xlsm	aeb70e41209244bbbb3f870a325ee369ce718361b2caf361f8472ce7b1b7001d	n/a	Heodo
2022-01-13	43387739-8598542.xlsm	xlsm	e867e8691b17fd95fce36eb933b1c36744f45513e44d931d07bf95229e47bef1	n/a	Heodo
2022-01-13	ATK_391.xlsm	xlsm	6acfbc04a4d8ee5bed51c551d533b4b99936760fdf3f6db32d1216130c89700c	n/a	Heodo
2022-01-13	BQJEY-42.xlsm	xlsm	b3a8073712469f70329fad465825f867bd6dcf83420de3004730f91ecc938138	n/a	Heodo
2022-01-13	9122-47494.xlsm	xlsm	cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46c	26.98%
2022-01-13	BQP_5.xlsm	xlsm	13f975538e7e72ac755218c6a35604d36e0278e74fed8e2270476b89268a7f2c	n/a	Heodo
2022-01-13	xzf_38465443.xlsm	xlsm	9e443aedd2833d67bb9b858bd14abc6a235186f865e05497ac39ab8cd0185156	n/a	Heodo
2022-01-13	362873166-90906.xlsm	xlsm	d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dc	n/a	Heodo
2022-01-13	315_143.xlsm	xlsm	e87856edf8567e6e432ef09f0cc575e581c36b5df71a16c71658a5fb980a3d86	n/a	Heodo
2022-01-13	5693253.xlsm	xlsm	1d8482afdb97aba866fc26b21eaa9f92f46ea841566bb0588150aecd4347cd45	n/a	Heodo
2022-01-13	E_941925.xlsm	xlsm	ae4c37f20738b2bc766ca1b1437dd27be15c5a86e663f8ce3fc8be6762483305	n/a	Heodo
2022-01-13	55292226.xlsm	xlsm	2cfe6cc60d786a8b94d9d3114d344fb74c21e5ce5391dea3d1550df17fee05b4	n/a	Heodo
2022-01-13	312-86.xlsm	xlsm	9e1460b0a4debafe9636cf43ad6de3069afc41e53b2c0c09b6337bd165a7bcef	n/a	Heodo
2022-01-13	59757708211750.xlsm	xlsm	1080082d0eec3c4e3583b6e259b0863c746d211af8a8b6b645b21059e60f1119	n/a	Heodo
2022-01-13	WSMS_9355.xlsm	xlsm	c062d769449f6c74f82252e4215d23c83a360d97a7ed1b75001ba3250df330e7	n/a	Heodo
2022-01-13	099822_5221982.xlsm	xlsm	113636402be711e8a8e0e2fc59491b969fc825e8352ebbc316418ea6f30a4bef	12.70%	Heodo
2022-01-13	48045952_53497400.xlsm	xlsm	49ec26f8a352003e43a32615495ae4554e0bb8485ef889e7ba57cf869f026c4c	n/a	Heodo
2022-01-13	U_28.xlsm	xlsm	967d8e1ecaddadf97ad824647e734535d41e1996b725dd594a03a043d3795b1f	n/a	Heodo
2022-01-13	bnEuL22.xlsm	xlsm	8e2712e45fb0cbdc5a565ba4f5582ef6b0d871a0159abaed0fb6c4d519382547	17.46%	Heodo
2022-01-13	S_6314854.xlsm	xlsm	90d0f5a1133f995ef6280f0b82b5de6d04f94f727ee5842a0a36f6e4a0b4460c	17.46%	Heodo
2022-01-13	04XEJFQG595063.xlsm	xlsm	ff782330fa53c402a91c06a1199ccdc467f8470af11fb786ee746df1ab19f594	11.29%	Heodo