URLhaus Database

You are currently viewing the URLhaus database entry for http://nbp-c.com/ya/WjOem_33546527/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1973113
URL:	http://nbp-c.com/ya/WjOem_33546527/?i=1
URL Status:	Offline
Host:	nbp-c.com
Date added:	2022-01-13 07:22:05 UTC
Last online:	2022-01-16 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-13 07:24:17 UTC to abuse{at}gmo[dot]jp)
Takedown time:	2 days, 19 hours, 8 minutes (down since 2022-01-16 02:32:29 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-14	930534-19.xlsm	xlsm	e431741ede2c4e1a83b0a6c32b22491dc3a339ff2bd6fbc65a790a1b40d9c504	30.16%	Heodo
2022-01-14	okfgic_494939.xlsm	xlsm	dc929317cca3b519661820052cd357c4891f7725de37b15637010b5903292a0b	n/a	Heodo
2022-01-14	9617955QQK_7.xlsm	xlsm	b3d62ba93cc8f17f277bd60b9b50cfbab2ded7ade8f655e8c73049cd24eb47e0	n/a	Heodo
2022-01-14	95406719_59247171.xlsm	xlsm	fc9e7299de540f55f0d72e1e4ad263d28ee2901c8d3ffaf1c604da0b1bacfe95	n/a	Heodo
2022-01-14	J-6.xlsm	xlsm	ffd488864d8e96ae20dbefcdd830f2fb7af09eac36007998f4ae36743603da70	n/a	Heodo
2022-01-14	akqeft360112.xlsm	xlsm	992922c0dd74c7f68096c93f4df4d4fb642f1503e40b7b20eef156edebe70839	n/a	Heodo
2022-01-14	21275QXXZUBXZIH_84765658.xlsm	xlsm	0db8962b34a097cbefe62d17aae56cbb6e86fd1f8302a190427bf5de9e3a678c	n/a	Heodo
2022-01-14	J773244.xlsm	xlsm	c38669a80f2dce6bbc2dbfc67e98ecead22379ea9733a7e496c8cc6896d61d11	n/a	Heodo
2022-01-14	864883776_46159646.xlsm	xlsm	28d1e4658a5855c9dd40f51712aa35a428f2a49c8ae9c5c29232226e521b4a86	n/a	Heodo
2022-01-14	MHAFR_00284.xlsm	xlsm	9fc43645a59ffc54409d20d58c7198ee61f8ab3a982a0928bf62523b1c61a575	26.98%	Heodo
2022-01-14	jmosl53.xlsm	xlsm	01b6b87e5f1109dbdd48ab54dbfd901d7da79237a127ca29b56852e8bbc31287	n/a
2022-01-14	XC_9856.xlsm	xlsm	68a933359b3763ca27f3ad54dc136f2836e4060f851f1ef534ab5a9c57894508	n/a	Heodo
2022-01-14	VLJGF_115.xlsm	xlsm	cb0d9916b6be6d3b9d52d057b5b8aa3b223284abe331467dea72eca27165a618	n/a	Heodo
2022-01-14	EM_3973860.xlsm	xlsm	79c581f4884e402ecb60b3932c4a43f11c84a7102e48e115094d29418102f1f8	n/a	Heodo
2022-01-14	INN-1246.xlsm	xlsm	3f01a59cd2c4cf701b22464a7fd495b33a2ffd5f2c631ed6bbf0e2766cf73d88	n/a
2022-01-14	FKKZ_897.xlsm	xlsm	b8b1fb98701bf450f491a99a027c35455ecc635801276ec74d0f637aa91aa3f9	n/a	Heodo
2022-01-14	61615938161276315.xlsm	xlsm	a0a8993ac49af8c9a67d95350e800f6adfbc38b6bfc5a7c213eca23b0b9e5857	n/a
2022-01-14	Yn8835417.xlsm	xlsm	620279fcd1238b22b28ff6e4d98f577b33d7dcfe09e7729f6ffd76070cec42e8	25.40%	Heodo
2022-01-14	891_59397.xlsm	xlsm	746ed727461dc53a7de144c1f199f8c4c6defc5ae50a0215e559224923efa78e	n/a
2022-01-14	05003652-14088.xlsm	xlsm	3dd7791745ef386d30fdac27e392533cbf154de6881440bf6bae3b947c775402	n/a	Heodo
2022-01-14	gxny-2.xlsm	xlsm	4eab3977f88e6444a99925c2a5769e6b720e8a6ba4ee8cc8235e23a33a1e6658	24.19%
2022-01-14	CDQR_60708.xlsm	xlsm	700465c4be1e671b009e46928a0479f311b16f05004d4e24755bb22c405781f1	n/a	Heodo
2022-01-13	534717908_18.xlsm	xlsm	731ec98a6308e19709812083b3dfba8b079aa48f36b486f2f06d7170de5d1541	22.58%	Heodo
2022-01-13	040783772241.xlsm	xlsm	e15f4ab1af0935e26f54b19c1221a5dd41698713dfa44c327a206ffd708f3cee	n/a	Heodo
2022-01-13	66805101086.xlsm	xlsm	88d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02	22.58%	Heodo
2022-01-13	ZQS15666.xlsm	xlsm	792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0f	22.95%	Heodo
2022-01-13	SZ_0919.xlsm	xlsm	bade694a72c3d8e5887ae4e1f1554aa85add86c8748b60af2e53e4241570d8f7	22.58%
2022-01-13	IKJUX_67727.xlsm	xlsm	93eff588c9152694a19cbbf9dcaf7e7185dd1a6b7e1165b73555bab7bd468d6a	n/a	Heodo
2022-01-13	A_37757374.xlsm	xlsm	929400abfc42d038419315b35d0fd68f85270fee48b20985276ff79651f09264	n/a	Heodo
2022-01-13	TBG_4966416.xlsm	xlsm	ecf91431dd232099783efaccf118d076e4116f577bd121646ecfdb2e66cef7ef	n/a	Heodo
2022-01-13	Z_72600525.xlsm	xlsm	48c3c2d26bd19b1dc2eb3c36a851b00ef5cd2db217ae6bd0d89cc11c8a1a8513	27.59%
2022-01-13	FLXB_5828.xlsm	xlsm	bdaea2c03177079e3874c6f5d9df40bd1d98dc7adf2f25e7226e35852c2a633b	31.75%
2022-01-13	Y-93779.xlsm	xlsm	0282a5f27aea18bebe2c3a6406c3145994755a9f37ec1e941ea0dcc1f6978550	33.33%	Heodo
2022-01-13	YX0584.xlsm	xlsm	8b8691c729c4aae4cda2049c3fcbf3153562829da68bfd3121e61dc3f9bf2cfb	n/a	Heodo
2022-01-13	BGqGjW_75741.xlsm	xlsm	f6319e708e7c942acfec28dcc5e23df293475f01d892e4992d9717277f79d6ee	n/a	Heodo
2022-01-13	45929331-19.xlsm	xlsm	a139884d68aacbe19a1b68501de5392ef5ba05cc3eb5a5b2ed0c347db44af4ca	n/a
2022-01-13	22332_958.xlsm	xlsm	5cf53f9f40389a8c56abd3a90681dadd27c0db904fbc2422ec9baa37e84c1584	30.65%	Heodo
2022-01-13	76810CLNZGSUM_5932.xlsm	xlsm	8731dcd378702d6a9d4a679e338cbd69e94a5030d0dc0520456e30760f81cc6e	n/a	Heodo
2022-01-13	H3.xlsm	xlsm	ac680177934f28cf84fc94b0e1f006de320955fd9f17bed4d39699cda13c8bd6	n/a
2022-01-13	811273_169.xlsm	xlsm	dc8adc8e13d3e5a64f2d69f2163da90a19cd80594bf4db6b8d17c381312d28b6	n/a	Heodo
2022-01-13	63041978884143.xlsm	xlsm	c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39	n/a	Heodo
2022-01-13	gr_4643.xlsm	xlsm	78dd5816d66701839612b5caf64d4337e45d516e52b5f177345f5019ce4aa907	n/a	Heodo
2022-01-13	5177621-5661529.xlsm	xlsm	115b1bbc0363cd535f4336aac31bed3fa17e2c2a4ebcb15618e55c9dfc91896b	n/a	Heodo
2022-01-13	B_218085238.xlsm	xlsm	4f9ce5c9c9dd88a6a01a3df3299e0aa43da3bad195036c22b141f28769708334	n/a
2022-01-13	ZuuBaE_43077.xlsm	xlsm	febd9978510715acb1f4bb87d04412fb1e3e6e2720329590b6b146de515d2d85	31.75%
2022-01-13	565_0.xlsm	xlsm	c9d6e67d61769e32b703185a1035e43bbc9c7c053cc1d06594fad3979da3cc9e	27.42%	Heodo
2022-01-13	QTY_2072096.xlsm	xlsm	41750a936f4e59a899e45972dd3ccf154305807c52bd7e5f5b19344e909f86ba	n/a	Heodo
2022-01-13	veopz63216725.xlsm	xlsm	5d7049ddd0c94d31087e9b7809dd67ab2c097e01ffacb571225e7ab561f57f39	31.75%	Heodo
2022-01-13	MSNO_33398.xlsm	xlsm	109868bbf981851bac44548c11bee90f08fd3c83e06c9b9539f568e047f45e0a	n/a	Heodo
2022-01-13	82100394_9394879.xlsm	xlsm	b8f140e8a83cdb10b7816fd789deccef6d4373e8441fa40618b48484359041b5	n/a	Heodo
2022-01-13	UQZZX-573529761.xlsm	xlsm	399fd8ce9218a6b24bbf3c9e307934df9b2954d45119371365be1360c88ec6f5	n/a	Heodo
2022-01-13	385117_10124.xlsm	xlsm	e867e8691b17fd95fce36eb933b1c36744f45513e44d931d07bf95229e47bef1	n/a	Heodo
2022-01-13	RFOF_64.xlsm	xlsm	6acfbc04a4d8ee5bed51c551d533b4b99936760fdf3f6db32d1216130c89700c	n/a	Heodo
2022-01-13	07107439_9746.xlsm	xlsm	b3a8073712469f70329fad465825f867bd6dcf83420de3004730f91ecc938138	n/a	Heodo
2022-01-13	txtwvm_0.xlsm	xlsm	cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46c	n/a
2022-01-13	dkrjd-497321504.xlsm	xlsm	915354db100b6c7c744bede05828fd397ef2ab000bced2ac46e799b5d5a8e9d5	n/a	Heodo
2022-01-13	blt_79212.xlsm	xlsm	9e443aedd2833d67bb9b858bd14abc6a235186f865e05497ac39ab8cd0185156	n/a	Heodo
2022-01-13	4154069_097.xlsm	xlsm	d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dc	n/a	Heodo
2022-01-13	95758CLQVR_9.xlsm	xlsm	f745757e79c9411ab969a3e2ab5ccff444e4542b87681828c091f595826410b5	22.95%	Heodo
2022-01-13	17576_30079.xlsm	xlsm	1d8482afdb97aba866fc26b21eaa9f92f46ea841566bb0588150aecd4347cd45	n/a	Heodo
2022-01-13	xvSb7284407.xlsm	xlsm	6c5843f31e83acb3be71be737cb15c279df63ad2191db42d1687985925eee1c9	n/a	Heodo
2022-01-13	ONW-97446139.xlsm	xlsm	2cfe6cc60d786a8b94d9d3114d344fb74c21e5ce5391dea3d1550df17fee05b4	n/a	Heodo
2022-01-13	TXA_83513.xlsm	xlsm	9e1460b0a4debafe9636cf43ad6de3069afc41e53b2c0c09b6337bd165a7bcef	n/a	Heodo
2022-01-13	KSBW-90.xlsm	xlsm	1080082d0eec3c4e3583b6e259b0863c746d211af8a8b6b645b21059e60f1119	n/a	Heodo
2022-01-13	5934-081.xlsm	xlsm	27142990970a1968021bca00b4005ef206e3a553179b2e717e82ebfe8a8af1b9	22.95%	Heodo
2022-01-13	QPG_5982688.xlsm	xlsm	8e8824a855908e301cb873fe67e37eb4af99b32f75fb1ea8997af913540ece02	19.35%	Heodo