URLhaus Database

You are currently viewing the URLhaus database entry for http://www.glendbank.com/wp-admin/Z97/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1973944
URL:	http://www.glendbank.com/wp-admin/Z97/?i=1
URL Status:	Offline
Host:	www.glendbank.com
Date added:	2022-01-13 13:40:04 UTC
Last online:	2022-01-24 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-13 13:41:09 UTC to abuse{at}24shells[dot]net)
Takedown time:	10 days, 21 hours, 40 minutes (down since 2022-01-24 11:21:38 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-14	TT_3826454.xlsm	xlsm	b8eeb9ce689d47606555621bc19a8656cf207de45ba62134e9c55c962a344dc6	33.33%
2022-01-14	8091140_737.xlsm	xlsm	1e42138c4309e5be0268be8f2e1b3a5831f56b26749146dbfa02a7ccf863b3fc	33.33%	Heodo
2022-01-14	CEMZ_34.xlsm	xlsm	e1f0eb778a09fec529aa7aff9d665828b18007c8e52d62565a552f606c04442f	n/a	Heodo
2022-01-14	9956776NXEBBIY_5590.xlsm	xlsm	6adebb1f908d95b0e98266710b732c600ff552131a6844031fc5417ea84615b9	n/a	Heodo
2022-01-14	3215_30.xlsm	xlsm	38fae338f6c68c5cf6e80768b44a9286d484b36262b24c1766f66e76de463aaf	35.00%	Heodo
2022-01-14	10798271.xlsm	xlsm	7ae8d061dd1dd74a37ac33eced5d361e376cc4b919bdfd82338595f8e17d1e46	33.87%	Heodo
2022-01-14	8786615-60675.xlsm	xlsm	b57a55f2405494bd567fe9fd7d0b20a4dff80c22cc57b45a3646dc9e19ac69f7	35.00%	Heodo
2022-01-14	175700625-04493869.xlsm	xlsm	77c84a4f67f70d068261158ddf09d5e98292a7d86397fb95dec8f0092a67d25f	n/a	Heodo
2022-01-14	921219087_1.xlsm	xlsm	9cd906e8e1ade72180999a159418a5afbfe2cebb2cbcabf9e53352b1101e8e99	n/a
2022-01-14	WEJ-86451.xlsm	xlsm	9ae614389cacb729663a11f54b57c02e7fd9009561d9be530e42e61b4f9eac0a	n/a	Heodo
2022-01-14	44498_901.xlsm	xlsm	4ae00681a3df217ac3d3dc4f3e7b9a154540d3047f51504700e9f6d937e6a29d	n/a	Heodo
2022-01-14	43359.xlsm	xlsm	2bddcf7091fe815708701ec5e688ab154d2d422c7bb736a50dec1ad373b77d8c	n/a	Heodo
2022-01-14	050699-50370862.xlsm	xlsm	5f371bba772204823b8a090dd95b8561926c57c6555fcfbad90d2ab65718ff71	n/a	Heodo
2022-01-14	539619-57772411.xlsm	xlsm	4ff2f64198d5fd1797397a1ecba30671d30b6f434b435d292a5814e780bb0ab6	28.57%	Heodo
2022-01-14	6560745_6.xlsm	xlsm	558a12c36fe643eed7b84461909486d24aadb653c730a99fa333aee3d4c6caed	n/a	Heodo
2022-01-14	2716_03.xlsm	xlsm	c6d25e85c9b94f389f35a0dcf68e58dd96c1b1dd4269ef4b5b8aac454b2efcba	30.16%
2022-01-14	HRSK-9926.xlsm	xlsm	3ed54e7edbfda5e8c76a389606e9626d5cdab72b4ed9b940465970e322d47ebc	n/a	Heodo
2022-01-14	87006_28611.xlsm	xlsm	e7dff9977a528e887ecaa6aa818a1ddf868d700f6e13078ac53d801c61d4771a	n/a	Heodo
2022-01-14	9237_36.xlsm	xlsm	1b541aec384ee441ed95203089c219b335fc960c20351c2b7abda2fd6ef0d502	n/a
2022-01-14	60172074-556.xlsm	xlsm	d08e195ad3750d53f5dab90cbc01f05dc26d11db16c7eb3dc74a1656b7417cf7	27.42%	Heodo
2022-01-14	228543-13.xlsm	xlsm	8f7a9cc8cbc19032e25ab6524b05b1e6807b05e96abe4e3467200394ef44f5a8	n/a	Heodo
2022-01-14	55LZKBMKPZ4227599.xlsm	xlsm	046d5f85d492903e52b9161d9454a1b6a18f3980482650fff9a9b2ba7086c1c0	n/a	Heodo
2022-01-14	0769_93048276.xlsm	xlsm	9bbdbbf2e16c8304a30bc12313362864d0b4611b6b5564e5fa4efeb559c9a4c6	n/a	Heodo
2022-01-14	136449942.xlsm	xlsm	0db8962b34a097cbefe62d17aae56cbb6e86fd1f8302a190427bf5de9e3a678c	27.42%	Heodo
2022-01-14	OJvIM_874129628.xlsm	xlsm	5e5e12a3a114f3edcabd2e37239ea81f03db5f04ae7c6a5b5436f8898489f84f	n/a	Heodo
2022-01-14	sajT508619.xlsm	xlsm	4098eed9c3a2b676312fcf3dcdbcf4f18affb50ab9b31d02868aeee1b6e7d932	n/a	Heodo
2022-01-14	imsy-69793.xlsm	xlsm	38aa8bb59cfaed48d361e496e1682f677a3f58223fbe1a6a9e2e1fcd5d837c43	n/a	Heodo
2022-01-14	KCO_09466271.xlsm	xlsm	15b5006b335aba5547f75fb7a9399251115e8ae410691b568fd1064c2facafe8	25.40%	Heodo
2022-01-14	95400-6656705.xlsm	xlsm	296171d1b92b175041ee3829e60a6880b93861ef09614e912d112777fc2fe13a	n/a	Heodo
2022-01-14	n_6.xlsm	xlsm	cb0d9916b6be6d3b9d52d057b5b8aa3b223284abe331467dea72eca27165a618	n/a	Heodo
2022-01-14	O-87162.xlsm	xlsm	0e2db8bad325d450826ee98740532c44b36d70a95f31178c85a50f4e8ee9c8b0	n/a	Heodo
2022-01-14	cipogox_995031.xlsm	xlsm	70331e285111162a78eb26ed4f17fa1fd42d663b4355e55f6e4aa117d19dd2f3	n/a	Heodo
2022-01-14	V-12675.xlsm	xlsm	77f9047608db228251671697e703de19448819776d18446a1c5cbae840087e02	n/a
2022-01-14	692438496_8001.xlsm	xlsm	c2ab14bf957655123abdaeec4efe8202b1e6038c324c3492e2b610175334ff58	25.40%	Heodo
2022-01-14	uRrobs_832400290.xlsm	xlsm	a1a5295caf727bb6210b32ba53371db4451b4355c8bf0b420b09dc8e1182fad5	n/a	Heodo
2022-01-14	N-16102.xlsm	xlsm	28d2e274a082c7de870cd52bde0f9bb929bcb9331d7ce9e85f5c9bb6948a59db	n/a
2022-01-14	YY-46462.xlsm	xlsm	3dd7791745ef386d30fdac27e392533cbf154de6881440bf6bae3b947c775402	n/a	Heodo
2022-01-14	95298_55.xlsm	xlsm	9914b76a0ba3fb9da5a56e91338779ce902665c925d401d929aadf7974293d79	25.42%	Heodo
2022-01-14	037_26967.xlsm	xlsm	948bece3441056d04af338e263063315d45921d28cf536276011fab5b2127a00	n/a	Heodo
2022-01-13	4724_9148.xlsm	xlsm	fbaad03de2f185ae958c7192e2215fb6678792763d4872c4d3081d8980edc463	n/a	Heodo
2022-01-13	YUT_19009.xlsm	xlsm	88422e6f6a8baaf355add1168faec3c2cf520438933d982dcff40a31f2468a09	n/a
2022-01-13	13713920-1086.xlsm	xlsm	17f3a4a5b8ba1daf0deed46f749b2df4846ff01f6abab21597fa0791667f9387	n/a
2022-01-13	957_3.xlsm	xlsm	792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0f	22.95%	Heodo
2022-01-13	RPCV_8845551.xlsm	xlsm	bade694a72c3d8e5887ae4e1f1554aa85add86c8748b60af2e53e4241570d8f7	n/a
2022-01-13	CU-5612244.xlsm	xlsm	6e346a952b92ea8d7ecde685f07f01806f0d66530eb588748cfdf35aa4467797	n/a
2022-01-13	7722863057933589.xlsm	xlsm	c0ca16ad86b853948c2ef02e2763a14a165dcdb87a8ab946f6ddc90d2ed99c32	n/a	Heodo
2022-01-13	41673787_517.xlsm	xlsm	f1ec4f871b40968083790f9f1e19eaf6c17301f20743055e00b6382b3d5b2f55	n/a	Heodo
2022-01-13	NS_67020920.xlsm	xlsm	3ee5184a13e445cfb1886d07497ad642ebcf9b1d33fa9628d60e50e8cfa882e3	n/a	Heodo
2022-01-13	12200-1333352.xlsm	xlsm	e894314815096ab9fbaa2b7f084fbe70f1de47caf8d5f282e012a8095831da67	n/a
2022-01-13	95889688.xlsm	xlsm	0282a5f27aea18bebe2c3a6406c3145994755a9f37ec1e941ea0dcc1f6978550	33.33%	Heodo
2022-01-13	ceffF_871.xlsm	xlsm	accddc7c06e08cf3517f7277a5c299c85176cd7821220fcbc6681c3dfba5be01	30.16%	Heodo
2022-01-13	75655-3648.xlsm	xlsm	b935e9ee2e3088640c3924e7434607aa3af911123be613e2f1456c19afb23c9b	33.33%	Heodo
2022-01-13	J77902.xlsm	xlsm	4a3a254a975f87ed78ab0ab53de0a7f8ab2235a1bc8abea99ade0593d3c2c450	n/a	Heodo
2022-01-13	H439.xlsm	xlsm	67db098ffc37f7ee91efe9d171ee286e1f72b744f50dce8d4e83309ba5f21593	30.16%	Heodo
2022-01-13	27261648-36533.xlsm	xlsm	8731dcd378702d6a9d4a679e338cbd69e94a5030d0dc0520456e30760f81cc6e	n/a	Heodo
2022-01-13	J-5346.xlsm	xlsm	4c82d1c41c6287dbc29a8404a82c908dc052b2b7120ea9e58c0cec067ad4fca2	n/a	Heodo
2022-01-13	430997STHQJYOOH63576.xlsm	xlsm	dc8adc8e13d3e5a64f2d69f2163da90a19cd80594bf4db6b8d17c381312d28b6	n/a	Heodo
2022-01-13	50AKTIBR-3.xlsm	xlsm	c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39	n/a	Heodo
2022-01-13	oN98725668.xlsm	xlsm	603fc4bf5e141be1b30fb64551545d7f757d7f508891d17256ffc5564f3ccfc8	30.16%	Heodo
2022-01-13	44057245-10714.xlsm	xlsm	115b1bbc0363cd535f4336aac31bed3fa17e2c2a4ebcb15618e55c9dfc91896b	n/a	Heodo
2022-01-13	Pec_701.xlsm	xlsm	e8da2349f8ec549d999a3e63b1f859f0452b0301aaf4fced70ecbba675b81247	n/a
2022-01-13	d-213046036.xlsm	xlsm	febd9978510715acb1f4bb87d04412fb1e3e6e2720329590b6b146de515d2d85	n/a
2022-01-13	LJl-5404442.xlsm	xlsm	c87454534ee25d7d677e5bab46857f861240685ce17532b788892d370096be83	30.16%	Heodo
2022-01-13	c-448004570.xlsm	xlsm	41750a936f4e59a899e45972dd3ccf154305807c52bd7e5f5b19344e909f86ba	33.33%	Heodo
2022-01-13	47471ZPZAGIWVXH-1925.xlsm	xlsm	2d009791d777c752c4fddb6e32e5d123d7ecf80145baef849436bf4879259b8e	n/a	Heodo
2022-01-13	817_9921.xlsm	xlsm	109868bbf981851bac44548c11bee90f08fd3c83e06c9b9539f568e047f45e0a	n/a	Heodo
2022-01-13	hquo213.xlsm	xlsm	93d3e72ebe801f6ce7a577d88f1cb395aee4124d390adf1b4d2711786623e0d6	n/a	Heodo