URLhaus Database

You are currently viewing the URLhaus database entry for http://www.meltatours.co.za/6982LPXYTQEINP-6448/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1973374
URL:	http://www.meltatours.co.za/6982LPXYTQEINP-6448/?i=1
URL Status:	Offline
Host:	www.meltatours.co.za
Date added:	2022-01-13 09:09:05 UTC
Last online:	2022-01-19 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-13 09:10:10 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	5 days, 22 hours, 38 minutes (down since 2022-01-19 07:48:20 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-14	UNx40767.xlsm	xlsm	4ff2f64198d5fd1797397a1ecba30671d30b6f434b435d292a5814e780bb0ab6	28.57%	Heodo
2022-01-14	hJW_1.xlsm	xlsm	558a12c36fe643eed7b84461909486d24aadb653c730a99fa333aee3d4c6caed	n/a	Heodo
2022-01-14	9724089-991340.xlsm	xlsm	dd43f7aff805ec6fe3bd061d0b56f766348dc687159a25895ae03963e70e3d4f	30.16%
2022-01-14	39_65385.xlsm	xlsm	3ed54e7edbfda5e8c76a389606e9626d5cdab72b4ed9b940465970e322d47ebc	n/a	Heodo
2022-01-14	XBTP0.xlsm	xlsm	e7dff9977a528e887ecaa6aa818a1ddf868d700f6e13078ac53d801c61d4771a	27.87%	Heodo
2022-01-14	5474_691813.xlsm	xlsm	1b541aec384ee441ed95203089c219b335fc960c20351c2b7abda2fd6ef0d502	n/a
2022-01-14	DTR_7533.xlsm	xlsm	d08e195ad3750d53f5dab90cbc01f05dc26d11db16c7eb3dc74a1656b7417cf7	27.42%	Heodo
2022-01-14	44475NLOC_9.xlsm	xlsm	8f7a9cc8cbc19032e25ab6524b05b1e6807b05e96abe4e3467200394ef44f5a8	n/a	Heodo
2022-01-14	99566575237121.xlsm	xlsm	48894064de8f0c8f53863ef98d25bc7855584bbbb261682c8eef1ff0e41397ee	n/a
2022-01-14	FTRU_426.xlsm	xlsm	44e19014ff150d3e22446507b5bc37be8660bf0cd9130a211434997867391938	n/a
2022-01-14	MW-7448.xlsm	xlsm	32247831bfb72b23c944a17a6881f8865b70f9d60875ba5c2f080c845d01c90e	26.98%	Heodo
2022-01-14	EN610454.xlsm	xlsm	5e5e12a3a114f3edcabd2e37239ea81f03db5f04ae7c6a5b5436f8898489f84f	n/a	Heodo
2022-01-14	647RTXTHFRCFO_83568504.xlsm	xlsm	4098eed9c3a2b676312fcf3dcdbcf4f18affb50ab9b31d02868aeee1b6e7d932	n/a	Heodo
2022-01-14	43789527-73486148.xlsm	xlsm	9fc43645a59ffc54409d20d58c7198ee61f8ab3a982a0928bf62523b1c61a575	n/a	Heodo
2022-01-14	15QKS-747047.xlsm	xlsm	4ddd7b352b1dcd33b7c14c1c0899bd7611ca731ce4f50be4a395afd8ceca2ebe	n/a	Heodo
2022-01-14	AYBIM-823815.xlsm	xlsm	3b63ba5e81eedd06656eca70b56b6d9490b598df1646dd83dacefe8cd52d6a77	23.81%	Heodo
2022-01-14	VYYJN_16695.xlsm	xlsm	a12973f38e2bc441e03c7453e8385101df0a71a16c56f56dcb65194a0729b32b	n/a
2022-01-14	601646-674597.xlsm	xlsm	b8e60cbecfbe9cdc725b0f3fc1524d2004d7a1e7a7aca69e4f7bc0ce89fe2f54	n/a
2022-01-14	WV_076.xlsm	xlsm	e59685a5244eb67b90182bec159a7ec89a66592e8a06efd89dd4e5b19b11cbd6	n/a	Heodo
2022-01-14	skvhiaa_374.xlsm	xlsm	b8b1fb98701bf450f491a99a027c35455ecc635801276ec74d0f637aa91aa3f9	25.40%	Heodo
2022-01-14	Z_72039.xlsm	xlsm	5388d17d28ba671fbe8a27779a4ff0a97c15a00c1a91e946824b81b38c6d8e90	25.40%	Heodo
2022-01-14	1197_661.xlsm	xlsm	a1a5295caf727bb6210b32ba53371db4451b4355c8bf0b420b09dc8e1182fad5	26.98%	Heodo
2022-01-14	39307_027.xlsm	xlsm	88309150746b21b8bf021aead74ef1695d5008b340897b2a84f0a254ddfcc7f8	n/a	Heodo
2022-01-14	6028282WPOIPZOO_55452.xlsm	xlsm	9c8a39e1e2d7547aebadc4f37b84543d9e48faca443b9acd76cdf46d65459acd	n/a
2022-01-14	VljPzm_36213962.xlsm	xlsm	4eab3977f88e6444a99925c2a5769e6b720e8a6ba4ee8cc8235e23a33a1e6658	24.19%
2022-01-14	sqeuggu-80.xlsm	xlsm	700465c4be1e671b009e46928a0479f311b16f05004d4e24755bb22c405781f1	n/a	Heodo
2022-01-13	EZCDA935018417.xlsm	xlsm	fbaad03de2f185ae958c7192e2215fb6678792763d4872c4d3081d8980edc463	24.19%	Heodo
2022-01-13	99823WNVSTMQ_548966.xlsm	xlsm	e15f4ab1af0935e26f54b19c1221a5dd41698713dfa44c327a206ffd708f3cee	n/a	Heodo
2022-01-13	4897_741955.xlsm	xlsm	88d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02	n/a	Heodo
2022-01-13	WKLP-990.xlsm	xlsm	792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0f	n/a	Heodo
2022-01-13	66948234367289519.xlsm	xlsm	096504811c78492132ac12b84ad2a6ee435ac882bd0a59bed69a1b10775edf37	24.19%
2022-01-13	329770-18307.xlsm	xlsm	cbfdd288ed81b34166f40cbb96b59bf5836fe4dc0f06b4f121a97ad11fed7786	n/a	Heodo
2022-01-13	55280408SMRAYXFRQ-02.xlsm	xlsm	88876b87c1e34620663cc95177326339d7853e695ff37d35a180f61d76d019be	n/a
2022-01-13	37612864_0207778.xlsm	xlsm	a82961d7ec81fbc9a29aa3a06007eb18b887dfbe3e97ca6580c7682aa6021a86	22.58%	Heodo
2022-01-13	LZ5379431.xlsm	xlsm	00c4657fa8734227eb769bbed474082f1140185ab579073204135735b2c32f9c	n/a
2022-01-13	97640196_16391.xlsm	xlsm	ea518dd18446672c07dfd03a7b14e0f939a89b414a670198e7cf429b6cba7d84	n/a	Heodo
2022-01-13	63853_64556.xlsm	xlsm	178140aa190e5af477ce55e0e4eed3580b2bd4c9a7eeae1329291f31f286880f	n/a	Heodo
2022-01-13	67795189_83.xlsm	xlsm	840b14be8c10c32e02b2c43fb7fce553f9a5fd5131d87cc9d95b514583ef2d49	n/a
2022-01-13	QQIQ439.xlsm	xlsm	f6319e708e7c942acfec28dcc5e23df293475f01d892e4992d9717277f79d6ee	30.65%	Heodo
2022-01-13	yVZFHi251.xlsm	xlsm	4a3a254a975f87ed78ab0ab53de0a7f8ab2235a1bc8abea99ade0593d3c2c450	n/a	Heodo
2022-01-13	NI_96495.xlsm	xlsm	5cf53f9f40389a8c56abd3a90681dadd27c0db904fbc2422ec9baa37e84c1584	30.65%	Heodo
2022-01-13	GPKYZ-1.xlsm	xlsm	67db098ffc37f7ee91efe9d171ee286e1f72b744f50dce8d4e83309ba5f21593	n/a	Heodo
2022-01-13	6982285077.xlsm	xlsm	4c82d1c41c6287dbc29a8404a82c908dc052b2b7120ea9e58c0cec067ad4fca2	n/a	Heodo
2022-01-13	929498_4359.xlsm	xlsm	8bbb676c7050da79e895b56bb776939362302b3c8b14612ddda54109563de801	28.57%	Heodo
2022-01-13	UV3799436.xlsm	xlsm	c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39	n/a	Heodo
2022-01-13	6942827151861.xlsm	xlsm	603fc4bf5e141be1b30fb64551545d7f757d7f508891d17256ffc5564f3ccfc8	30.16%	Heodo
2022-01-13	210181465-8516407.xlsm	xlsm	e07efb44e73f01e1cd957c1874bce0e453c91eaa561f46efb373edb97100320a	29.51%	Heodo
2022-01-13	346092971_26341513.xlsm	xlsm	e8da2349f8ec549d999a3e63b1f859f0452b0301aaf4fced70ecbba675b81247	n/a
2022-01-13	0193867CJYUSO-67296408.xlsm	xlsm	7d20451deedc42248ceeb3cc205328d45bdc50d6d9a652f08773d052e1c598ce	n/a	Heodo
2022-01-13	vmetp-75849.xlsm	xlsm	c87454534ee25d7d677e5bab46857f861240685ce17532b788892d370096be83	30.16%	Heodo
2022-01-13	3280-222026.xlsm	xlsm	1070ee81825904e9b69247d5ecd09aa91e0be9722ff1b627740e98e0bd48ee7f	n/a	Heodo
2022-01-13	534715603263.xlsm	xlsm	5d7049ddd0c94d31087e9b7809dd67ab2c097e01ffacb571225e7ab561f57f39	31.75%	Heodo
2022-01-13	L_32457088.xlsm	xlsm	08c7c9f40c6db283966c794771c90b7d9f65dedfb785b861e02187f62f0dc0c8	n/a	Heodo
2022-01-13	F2477688.xlsm	xlsm	6bddf38bb58c7d8bd08898e834847c37292b0df1b11b21d23a55f3b062553608	n/a	Heodo
2022-01-13	MI438847155.xlsm	xlsm	aeb70e41209244bbbb3f870a325ee369ce718361b2caf361f8472ce7b1b7001d	n/a	Heodo
2022-01-13	74435754-2019385.xlsm	xlsm	8440f26c78450c4b1f022a497363963b84b99da232ca91b5da7f4aad2234bbc1	n/a	Heodo
2022-01-13	7320VMBB49.xlsm	xlsm	b3a8073712469f70329fad465825f867bd6dcf83420de3004730f91ecc938138	n/a	Heodo
2022-01-13	1612828_9435.xlsm	xlsm	125468fda9c224d8a3ccdf92f08037a343c0341a8e64dc2c1182e1d3d4e496a7	26.98%	Heodo
2022-01-13	202615_24.xlsm	xlsm	0c23040b2cdf922d16cfc8d568d6a8fae67ea86e7de5268d0aad58d9a592946e	25.40%	Heodo
2022-01-13	101872-45429411.xlsm	xlsm	07fddbd97e1846aa7ef2fae79ea0d177a89210725b1a66a8b52bb066cc36bb1e	n/a	Heodo
2022-01-13	647286-95.xlsm	xlsm	9e443aedd2833d67bb9b858bd14abc6a235186f865e05497ac39ab8cd0185156	n/a	Heodo
2022-01-13	vyoo-5007.xlsm	xlsm	6a8fc7cb880a404032161e81d67152873581b6614b238faebd731fb7fbd8cb92	n/a	Heodo
2022-01-13	648056960.xlsm	xlsm	2b8b0ca757e3eccb527d9ce11a9a8815f5a9ce3c6d2ed5a8711d4c109e88bd71	n/a	Heodo
2022-01-13	978854_32702.xlsm	xlsm	ca6662f6a52a16a294b7d873a1f4b60f6ed054cb1cbaf3207081f30380c573e2	n/a	Heodo
2022-01-13	lB_39.xlsm	xlsm	ae4c37f20738b2bc766ca1b1437dd27be15c5a86e663f8ce3fc8be6762483305	n/a	Heodo