URLhaus Database

You are currently viewing the URLhaus database entry for http://gyapu-b2b.digitechnologynepal.com/6cvpol/XIU841362/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1972880
URL: http://gyapu-b2b.digitechnologynepal.com/6cvpol/XIU841362/?i=1
URL Status:Offline
Host: gyapu-b2b.digitechnologynepal.com
Date added:2022-01-13 05:49:06 UTC
Last online:2022-01-16 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: sugimu_sec
Abuse complaint sent (?): Yes (2022-01-13 05:50:16 UTC to dcundiff{at}a2hosting[dot]com)
Takedown time:3 days, 4 hours, 25 minutes Bad (down since 2022-01-16 10:15:39 UTC)
Tags:doc emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-141889412_169.xlsmxlsm 046d5f85d492903e52b9161d9454a1b6a18f3980482650fff9a9b2ba7086c1c0n/a Heodo
2022-01-14EBCZS24.xlsmxlsm dc91c7176e2bff04a36a36648c214aded82bdc8c5a148d7eed728ce18b4c470dn/a Heodo
2022-01-14777554-50944619.xlsmxlsm 0db8962b34a097cbefe62d17aae56cbb6e86fd1f8302a190427bf5de9e3a678cn/a Heodo
2022-01-141025943-5681.xlsmxlsm 5ebbbd43a04a87e9d85a876ce8c8a0fe2e737082fd820835c7d4378d380ed20dn/a Heodo
2022-01-149866_63.xlsmxlsm cf5ed745b4a6923a96dd4239ddf13cc355814ea3d0ef98f71204bc0f085937aan/a Heodo
2022-01-14T_1.xlsmxlsm 427030980a8af62adaf28fc00d1ee2507de9cf4f09b4cbcd5b00b064e60d4d3dn/a 
2022-01-14QN_559240784.xlsmxlsm 878245ca533c239b7066ce1bb483d8cd42a8d5887954c3e4db00b5a52d46f354Virustotal results 26.98% 
2022-01-14oepk_7780238.xlsmxlsm 3b63ba5e81eedd06656eca70b56b6d9490b598df1646dd83dacefe8cd52d6a77n/aHeodo
2022-01-1497619511977563.xlsmxlsm 6fd0e2563b3a57caea1e0d3feb66a44be67ba02e5a317dab989189508a1117feVirustotal results 27.87% Heodo
2022-01-14717924512050.xlsmxlsm 79c581f4884e402ecb60b3932c4a43f11c84a7102e48e115094d29418102f1f8n/a Heodo
2022-01-14L0681055.xlsmxlsm 07182ae5f4de5bc294feeecdd94ad0a6e8fe552c92f4b80bacd7e87b90d848bcn/a Heodo
2022-01-14UEOYP520671.xlsmxlsm 4a19f5f2a8ef90461d8ab380d842388206e4e3792d88477de757b7857c2c8a2bn/a Heodo
2022-01-14fi_9804819.xlsmxlsm a0a8993ac49af8c9a67d95350e800f6adfbc38b6bfc5a7c213eca23b0b9e5857Virustotal results 25.45% 
2022-01-14091788854.xlsmxlsm 736d7dd8f6451b13696e026b82b6c6821497e1dcd096917e9c29c67209989d43n/a Heodo
2022-01-14890_1155.xlsmxlsm 7aa44c0791b35f633ef18c39ea504a2ff2b50ab64ed914a7827846f28fff5decn/a Heodo
2022-01-143461779.xlsmxlsm 07c1049d9a3e9b859567b8d09bff4e7bd325807af84f776e4894da8b8241f2f8n/a Heodo
2022-01-14c0518.xlsmxlsm 9914b76a0ba3fb9da5a56e91338779ce902665c925d401d929aadf7974293d79n/a Heodo
2022-01-13A_7693.xlsmxlsm 700465c4be1e671b009e46928a0479f311b16f05004d4e24755bb22c405781f1n/a Heodo
2022-01-13444067_20.xlsmxlsm fbaad03de2f185ae958c7192e2215fb6678792763d4872c4d3081d8980edc463n/a Heodo
2022-01-13151573_6173.xlsmxlsm 88422e6f6a8baaf355add1168faec3c2cf520438933d982dcff40a31f2468a09n/a 
2022-01-1340568RCOPZIIK_517929.xlsmxlsm 7e9d46cddda81be61354089d761d2fd16244b505d6aed655e1fc0a44203cb37bn/a Heodo
2022-01-13X_2893196.xlsmxlsm 792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0fVirustotal results 22.95% Heodo
2022-01-130163_60333.xlsmxlsm cfcf60f2a598ac8e1abc547928fb7b32fa3b58afb00c098f3b6b34b77d0ffbb9n/a Heodo
2022-01-13ysczt-779.xlsmxlsm cbfdd288ed81b34166f40cbb96b59bf5836fe4dc0f06b4f121a97ad11fed7786n/a Heodo
2022-01-13KPHA324106612.xlsmxlsm 88876b87c1e34620663cc95177326339d7853e695ff37d35a180f61d76d019beVirustotal results 24.59% 
2022-01-13WI65178934.xlsmxlsm 80f732153350e276a2b676506c38904e02387501bbd7946340ee90858bcc5f79Virustotal results 22.58% Heodo
2022-01-130429910682.xlsmxlsm ac61723d025f90be4b2b44d6643e6ef15327be31899b8cbdaa43c0a2fac25f5en/a Heodo
2022-01-13yhhj_699345.xlsmxlsm ee0c82ba730d2e5701d2845b6c1d4da35fa43842573d736d23446ea49fdef907Virustotal results 31.75% Heodo
2022-01-13WUPJ-97888236.xlsmxlsm 920f3ff6aeb6ae3263757fc11949ff22476eaf9c6471b521bf891b9a18192465n/a Heodo
2022-01-1366GGVRFKP_706852.xlsmxlsm 478d59d47026e5c19226e76dfd2efe51f203ad4f97a093363c1448dd97a12764n/a Heodo
2022-01-13195910527514.xlsmxlsm a58fa75e6f2b26544b017856c6e1c56cb39d7769f3854c1cebdebdc0bcdbee9eVirustotal results 30.65% Heodo
2022-01-133388784RJZJBHQ-8500545.xlsmxlsm a139884d68aacbe19a1b68501de5392ef5ba05cc3eb5a5b2ed0c347db44af4can/a 
2022-01-13215OHNNKTD-086602828.xlsmxlsm 5cf53f9f40389a8c56abd3a90681dadd27c0db904fbc2422ec9baa37e84c1584Virustotal results 30.65% Heodo
2022-01-137006384_857327.xlsmxlsm aefebee74f868174371b6f9925e3484198f01753d2e1ed58c2b99a6c2e24de08Virustotal results 31.15% 
2022-01-13UK_38698.xlsmxlsm ac680177934f28cf84fc94b0e1f006de320955fd9f17bed4d39699cda13c8bd6n/a 
2022-01-13CO_84165.xlsmxlsm 04827a9681f241aa1b60498b2b4202dacadf89f326ae4f3b006c475453d8d28dVirustotal results 27.87% 
2022-01-13ewa_47.xlsmxlsm c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39n/a Heodo
2022-01-13R_396364637.xlsmxlsm 78dd5816d66701839612b5caf64d4337e45d516e52b5f177345f5019ce4aa907n/a Heodo
2022-01-13516481-8.xlsmxlsm e07efb44e73f01e1cd957c1874bce0e453c91eaa561f46efb373edb97100320an/a Heodo
2022-01-13HHIEP_9831334.xlsmxlsm e8da2349f8ec549d999a3e63b1f859f0452b0301aaf4fced70ecbba675b81247n/a 
2022-01-1345679SGMFC-85.xlsmxlsm febd9978510715acb1f4bb87d04412fb1e3e6e2720329590b6b146de515d2d85Virustotal results 31.75% 
2022-01-134188526-4756086.xlsmxlsm 73aba3d6a7b537481c898581b8ccc0131152c0d0fc93500b4c562db824073360n/a Heodo
2022-01-13008537594568568.xlsmxlsm 1070ee81825904e9b69247d5ecd09aa91e0be9722ff1b627740e98e0bd48ee7fn/a Heodo
2022-01-136050_07226.xlsmxlsm 2d009791d777c752c4fddb6e32e5d123d7ecf80145baef849436bf4879259b8en/a Heodo
2022-01-13TJUF93361.xlsmxlsm 08c7c9f40c6db283966c794771c90b7d9f65dedfb785b861e02187f62f0dc0c8n/a Heodo
2022-01-13vI40844154.xlsmxlsm 4624a6c75a73e206d26cf23225ddf8c14c9bd3fac85edc04aebf63a281aa8bd4n/a Heodo
2022-01-13FC2532993.xlsmxlsm 399fd8ce9218a6b24bbf3c9e307934df9b2954d45119371365be1360c88ec6f5Virustotal results 25.40% Heodo
2022-01-13410-81250544.xlsmxlsm 8b97c32b643fd911fc305bdb62b94e1b34bf97ba87335b1f81cabe2bbf250d24n/a Heodo
2022-01-13AEJSO_332016.xlsmxlsm 6acfbc04a4d8ee5bed51c551d533b4b99936760fdf3f6db32d1216130c89700cVirustotal results 29.51% Heodo
2022-01-13PyJY-57.xlsmxlsm 125468fda9c224d8a3ccdf92f08037a343c0341a8e64dc2c1182e1d3d4e496a7Virustotal results 26.98% Heodo
2022-01-13260259_8858.xlsmxlsm a64b918b227ae002b52f8ca07c1e57fbf11e0f6a0c5a06abbf79e2b209bce48bVirustotal results 22.22% Heodo
2022-01-13165490669135.xlsmxlsm 13f975538e7e72ac755218c6a35604d36e0278e74fed8e2270476b89268a7f2cVirustotal results 23.33% Heodo
2022-01-13SvO-14126.xlsmxlsm 9e443aedd2833d67bb9b858bd14abc6a235186f865e05497ac39ab8cd0185156n/a Heodo
2022-01-136625-91463.xlsmxlsm 6a8fc7cb880a404032161e81d67152873581b6614b238faebd731fb7fbd8cb92n/a Heodo
2022-01-1318556YAMVFSSN_91.xlsmxlsm 2b8b0ca757e3eccb527d9ce11a9a8815f5a9ce3c6d2ed5a8711d4c109e88bd71Virustotal results 22.22% Heodo
2022-01-13LK-639.xlsmxlsm ca6662f6a52a16a294b7d873a1f4b60f6ed054cb1cbaf3207081f30380c573e2n/a Heodo
2022-01-13e-68161.xlsmxlsm ae4c37f20738b2bc766ca1b1437dd27be15c5a86e663f8ce3fc8be6762483305Virustotal results 22.22% Heodo
2022-01-13USC_56.xlsmxlsm c841d1d5ae704ec93026da23d3f2b9e5f00d5a229a91117df6188db2e444e87dn/a 
2022-01-1374-968186.xlsmxlsm 9e1460b0a4debafe9636cf43ad6de3069afc41e53b2c0c09b6337bd165a7bcefn/a Heodo
2022-01-13BSDZF-21871.xlsmxlsm 7fc994decafbc81cd090c28c1de605c93e2ae18f645faac2d1f6680b85ef7c13n/a Heodo
2022-01-13XAB_65654415.xlsmxlsm 4dc514dc9290b966a14aadaab3d4c168419ed606a81d0a1262318d8b305cfc8dn/a Heodo
2022-01-13vrk-601232.xlsmxlsm 6169a4500b717ca5de60b77b01c2c1ddf5dbe18bafd0af142248d5066eef19ecn/a Heodo
2022-01-135768164.xlsmxlsm 49ec26f8a352003e43a32615495ae4554e0bb8485ef889e7ba57cf869f026c4cn/a Heodo
2022-01-13drjmtas18962.xlsmxlsm 259272a5032f537239c61ba1c8b5bdd26e8e6c4f1ec9b54ee52eaeeac5f5690cn/a Heodo
2022-01-13FLE_8199495.xlsmxlsm 20d7c4f7e882c414b403403773c244fa421744c48bb9e52a2f9236825be9a76fVirustotal results 11.11% Heodo
2022-01-1358357989-724453.xlsmxlsm 40c1afd52c86bae8bfb0c51cace1a0eb0e0ba0c12003ff8685f47df8cd3f9348n/a Heodo