URLhaus Database

You are currently viewing the URLhaus database entry for http://medicinskaskolaberane.edu.me/wp-content/SG-68041023/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1973529
URL: http://medicinskaskolaberane.edu.me/wp-content/SG-68041023/?i=1
URL Status:Offline
Host: medicinskaskolaberane.edu.me
Date added:2022-01-13 10:28:04 UTC
Last online:2022-01-19 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-13 10:29:08 UTC to abuse{at}telekom[dot]me)
Takedown time:5 days, 16 hours, 31 minutes Bad (down since 2022-01-19 03:00:19 UTC)
Tags:doc emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-14186875.xlsmxlsm 240d9c912338f39fde436264a56a9b48ded82608f23ae5f4a8f732110c2b30a2Virustotal results 33.87% Heodo
2022-01-14MsuW91162684.xlsmxlsm 6ba6a434d96f238abda3e5064859a5053d173170c8d3f596833217b77a9d7d95Virustotal results 30.16% 
2022-01-14HEVBW-811.xlsmxlsm 0b9b2acaa62d7f34f96054e94f340c1f4957f6f0ecd13f1635b8cf9cbfe46098n/a Heodo
2022-01-14PLLVG_05026.xlsmxlsm 920dccc135e7f573d85fc925df056af68170bbdead1b6cd0e1fcd31b1e1b2e7en/a 
2022-01-14GGBI_2489395.xlsmxlsm 558a12c36fe643eed7b84461909486d24aadb653c730a99fa333aee3d4c6caedn/a Heodo
2022-01-14196207320_46.xlsmxlsm c6d25e85c9b94f389f35a0dcf68e58dd96c1b1dd4269ef4b5b8aac454b2efcban/a 
2022-01-14x-063358.xlsmxlsm 3ed54e7edbfda5e8c76a389606e9626d5cdab72b4ed9b940465970e322d47ebcn/a Heodo
2022-01-14QCM409921.xlsmxlsm e7dff9977a528e887ecaa6aa818a1ddf868d700f6e13078ac53d801c61d4771aVirustotal results 27.87% Heodo
2022-01-1413_6645997.xlsmxlsm dc929317cca3b519661820052cd357c4891f7725de37b15637010b5903292a0bn/a Heodo
2022-01-14YDFF649231.xlsmxlsm fdb92c93fc55216d88ecb346e4b600385fb8cc3ee2aa598cef3cad99b3f59fb3n/a Heodo
2022-01-1431121671DZSP_5.xlsmxlsm 48894064de8f0c8f53863ef98d25bc7855584bbbb261682c8eef1ff0e41397een/a 
2022-01-14573162495.xlsmxlsm 046d5f85d492903e52b9161d9454a1b6a18f3980482650fff9a9b2ba7086c1c0n/a Heodo
2022-01-143581-62298.xlsmxlsm 9bbdbbf2e16c8304a30bc12313362864d0b4611b6b5564e5fa4efeb559c9a4c6n/aHeodo
2022-01-14ESO_4305157.xlsmxlsm de7e4158f8c853cec334533366fbfa1568ec9384f0e5d07d1bc57298aab905b4n/a 
2022-01-14ZDOQ226207.xlsmxlsm 5e5e12a3a114f3edcabd2e37239ea81f03db5f04ae7c6a5b5436f8898489f84fn/a Heodo
2022-01-14BAA_69913438.xlsmxlsm 4098eed9c3a2b676312fcf3dcdbcf4f18affb50ab9b31d02868aeee1b6e7d932n/aHeodo
2022-01-1466952QYEFRFR_010687147.xlsmxlsm 427030980a8af62adaf28fc00d1ee2507de9cf4f09b4cbcd5b00b064e60d4d3dn/a 
2022-01-1493626_409814.xlsmxlsm 4ddd7b352b1dcd33b7c14c1c0899bd7611ca731ce4f50be4a395afd8ceca2eben/a Heodo
2022-01-14XCAO-52007.xlsmxlsm 15b5006b335aba5547f75fb7a9399251115e8ae410691b568fd1064c2facafe8Virustotal results 25.40% Heodo
2022-01-1485954_95304253.xlsmxlsm 296171d1b92b175041ee3829e60a6880b93861ef09614e912d112777fc2fe13aVirustotal results 26.98% Heodo
2022-01-14SC-59.xlsmxlsm a12973f38e2bc441e03c7453e8385101df0a71a16c56f56dcb65194a0729b32bn/a 
2022-01-14poud1104.xlsmxlsm 0e2db8bad325d450826ee98740532c44b36d70a95f31178c85a50f4e8ee9c8b0n/a Heodo
2022-01-141472145MSIDKVZ186009.xlsmxlsm e59685a5244eb67b90182bec159a7ec89a66592e8a06efd89dd4e5b19b11cbd6n/a Heodo
2022-01-149724ZBYR_555.xlsmxlsm b8b1fb98701bf450f491a99a027c35455ecc635801276ec74d0f637aa91aa3f9Virustotal results 25.40% Heodo
2022-01-145591905_255505.xlsmxlsm a0a8993ac49af8c9a67d95350e800f6adfbc38b6bfc5a7c213eca23b0b9e5857Virustotal results 25.45% 
2022-01-14R-72729411.xlsmxlsm 736d7dd8f6451b13696e026b82b6c6821497e1dcd096917e9c29c67209989d43n/a Heodo
2022-01-14fzofr_69427291.xlsmxlsm 7aa44c0791b35f633ef18c39ea504a2ff2b50ab64ed914a7827846f28fff5decn/a Heodo
2022-01-14fmilvz_53200874.xlsmxlsm 7c9c973d048c705d801b4bcf3fa2accbfa308a614b30e96868629b866e50c417n/a Heodo
2022-01-14S-98.xlsmxlsm 9914b76a0ba3fb9da5a56e91338779ce902665c925d401d929aadf7974293d79n/a Heodo
2022-01-14KEUWI-28.xlsmxlsm 948bece3441056d04af338e263063315d45921d28cf536276011fab5b2127a00n/a Heodo
2022-01-13UP_74.xlsmxlsm fbaad03de2f185ae958c7192e2215fb6678792763d4872c4d3081d8980edc463Virustotal results 24.19% Heodo
2022-01-1373911091-122640778.xlsmxlsm e15f4ab1af0935e26f54b19c1221a5dd41698713dfa44c327a206ffd708f3ceen/a Heodo
2022-01-13901936420.xlsmxlsm 88d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02Virustotal results 22.58%Heodo
2022-01-13hsm380888297.xlsmxlsm 7585b5ae0e18149ef1ef83b54ff727158a1f11364edde0d8e4ecaa3462369f3bn/a 
2022-01-13612625501_74.xlsmxlsm 3acb79e666d3707fa30bea2fc66a8432f80c7af6af0b835810549c9b20d03838n/a Heodo
2022-01-1313208627_08844.xlsmxlsm 93eff588c9152694a19cbbf9dcaf7e7185dd1a6b7e1165b73555bab7bd468d6an/a Heodo
2022-01-131533FJKU_9153.xlsmxlsm 8956b950352fe247497f8aa4a0738a1fd22c1e32a643a1e98ecc416229fa29f4n/a Heodo
2022-01-13NLL_0338336.xlsmxlsm 80f732153350e276a2b676506c38904e02387501bbd7946340ee90858bcc5f79n/a Heodo
2022-01-1342390511628813.xlsmxlsm 00c4657fa8734227eb769bbed474082f1140185ab579073204135735b2c32f9cn/a 
2022-01-13D4898252.xlsmxlsm ee0c82ba730d2e5701d2845b6c1d4da35fa43842573d736d23446ea49fdef907Virustotal results 31.75% Heodo
2022-01-13295_61385.xlsmxlsm 920f3ff6aeb6ae3263757fc11949ff22476eaf9c6471b521bf891b9a18192465Virustotal results 30.16% Heodo
2022-01-13sxvv4837317.xlsmxlsm f9f1c04b9ca8d2ea3cc2466d6b1b860e64f73af649c40ee87e12847d52ffd37fn/a 
2022-01-1356301_754804.xlsmxlsm 68eccb845f74a05448a6998438e0f542a396bd7c29117dadaf1797e940f0e9f9Virustotal results 30.16% Heodo
2022-01-13631568.xlsmxlsm 16f97932280be2993225898332a0767ed137da3165548ad226ecda3a7cf79159n/a Heodo
2022-01-13D_7.xlsmxlsm dbba21253eed4317b9b541462ce3c2804ee91847f8b5f851b11d4b58568aa1fdn/a Heodo
2022-01-13858849-52.xlsmxlsm 8731dcd378702d6a9d4a679e338cbd69e94a5030d0dc0520456e30760f81cc6en/a Heodo
2022-01-136546602149443.xlsmxlsm ac680177934f28cf84fc94b0e1f006de320955fd9f17bed4d39699cda13c8bd6n/a 
2022-01-13547641734.xlsmxlsm 04827a9681f241aa1b60498b2b4202dacadf89f326ae4f3b006c475453d8d28dVirustotal results 27.87% 
2022-01-13adxjye90201630.xlsmxlsm c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39n/a Heodo
2022-01-13KC_0767759.xlsmxlsm 603fc4bf5e141be1b30fb64551545d7f757d7f508891d17256ffc5564f3ccfc8Virustotal results 30.16% Heodo
2022-01-13VYUH_787380.xlsmxlsm e07efb44e73f01e1cd957c1874bce0e453c91eaa561f46efb373edb97100320an/a Heodo
2022-01-13KH-1015659.xlsmxlsm 4f9ce5c9c9dd88a6a01a3df3299e0aa43da3bad195036c22b141f28769708334Virustotal results 27.87% 
2022-01-139493803898.xlsmxlsm 7d20451deedc42248ceeb3cc205328d45bdc50d6d9a652f08773d052e1c598cen/a Heodo
2022-01-13YJEO-435.xlsmxlsm c9d6e67d61769e32b703185a1035e43bbc9c7c053cc1d06594fad3979da3cc9en/a Heodo
2022-01-1381741907_37048.xlsmxlsm 2d009791d777c752c4fddb6e32e5d123d7ecf80145baef849436bf4879259b8en/a Heodo
2022-01-13slo_68925.xlsmxlsm 109868bbf981851bac44548c11bee90f08fd3c83e06c9b9539f568e047f45e0aVirustotal results 32.79% Heodo
2022-01-1381092_52.xlsmxlsm 6bddf38bb58c7d8bd08898e834847c37292b0df1b11b21d23a55f3b062553608n/a Heodo
2022-01-13ptcld_88832.xlsmxlsm aeb70e41209244bbbb3f870a325ee369ce718361b2caf361f8472ce7b1b7001dn/a Heodo
2022-01-13JD951561.xlsmxlsm e867e8691b17fd95fce36eb933b1c36744f45513e44d931d07bf95229e47bef1n/a Heodo
2022-01-13SLHXR-9361.xlsmxlsm 6acfbc04a4d8ee5bed51c551d533b4b99936760fdf3f6db32d1216130c89700cn/a Heodo
2022-01-1319024499-93.xlsmxlsm b3a8073712469f70329fad465825f867bd6dcf83420de3004730f91ecc938138n/a Heodo
2022-01-131778_22896.xlsmxlsm cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46cn/a 
2022-01-1304181-69.xlsmxlsm 07fddbd97e1846aa7ef2fae79ea0d177a89210725b1a66a8b52bb066cc36bb1en/a Heodo
2022-01-13frhlkb-7.xlsmxlsm 9e443aedd2833d67bb9b858bd14abc6a235186f865e05497ac39ab8cd0185156n/a Heodo
2022-01-133508_4843.xlsmxlsm d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dcn/a Heodo