URLhaus Database

You are currently viewing the URLhaus database entry for https://alignerpliers.com/er1lrd/CSUM73/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1974818
URL: https://alignerpliers.com/er1lrd/CSUM73/?i=1
URL Status:Offline
Host: alignerpliers.com
Date added:2022-01-13 20:18:04 UTC
Last online:2022-01-19 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-13 20:19:07 UTC to admin{at}frantech[dot]ca,fdias{at}frantech[dot]ca)
Takedown time:5 days, 13 hours, 53 minutes Bad (down since 2022-01-19 10:12:46 UTC)
Tags:doc emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-1443452-581.xlsmxlsm 1945d61931cc7e9819244230ab70575eb1cebf7348d804e518182aecd018c76aVirustotal results 37.10% Heodo
2022-01-14LD-63989.xlsmxlsm a5a72434f5357b664856b5ce941ab93a74e2a5e9765cd65139c74b8d0c6c999cVirustotal results 33.87% Heodo
2022-01-14KH_2193306.xlsmxlsm 87a33eb014251fbd3e80d9dce2bf789e0c1b579d59554f4efbdd3f6d78a6e57fn/a Heodo
2022-01-148701336SVBWASJGQD_1.xlsmxlsm 8e5f2412f3d12b279e75f2237ca109db4bcf1196f89e12bf331a48f4b7850668n/a Heodo
2022-01-1497639026_686436.xlsmxlsm fa130c4577ad2bd4ea26ec8f6183a9ba6b14a91ed5e8f6bcd576cad3b9880a9an/a Heodo
2022-01-14CHLQ_16467.xlsmxlsm 8ac60a4dd90aa35456bca26f504442bf3464e6931317017199138907cf34f7bdn/a 
2022-01-14BV_923113.xlsmxlsm 45d0ff33414f7e28bd4bf48ec71ad16080126ebdf84d54e9c5b90ac9510eb5c7n/a Heodo
2022-01-14255891-18.xlsmxlsm a0275c9c329d34b36de75185370f870fd9f5b7531e100d597213b4b78cc979acn/a Heodo
2022-01-14384_26213.xlsmxlsm 41170eea358fd62c2b91fcc29d05724b8536d8691c295a7c7f16d12104946f97n/a Heodo
2022-01-14TXELuW_3.xlsmxlsm ea5179148ac7b6d4de608eb71ad65c3ba410acb6a3d3f8e28186c61c94d29c0cn/a 
2022-01-14829485_0654399.xlsmxlsm 754727f1351a9c17908d09e7425e5643319d698c7d35b450155d1750fc243a5an/a Heodo
2022-01-14166WPMZWWKB1093.xlsmxlsm 19c9c6f6944baa62d500484b962f67962eea9bc2e84c436bd8fadda4f01eebebn/a Heodo
2022-01-14SF22353625.xlsmxlsm 421f268790f86e00e04dea67f750c9f089b6cc04b3bd52e8cb2755a53b60ea07n/a Heodo
2022-01-14BYKXS_6.xlsmxlsm 8a1759da5cf30cda277162bcabe0a579ee44c76e90293cad589f0d6f1e36310bn/a 
2022-01-1407282784.xlsmxlsm ab5d8bf5fc5242d31fac07794a032f75a097559e76c27991d42d0afa48519db5n/a Heodo
2022-01-146966620_389996.xlsmxlsm 63d6ae5feb2ece25c4de9930b6779f1222d705097f3c6d16c06147699adef880n/a Heodo
2022-01-14215067631_55.xlsmxlsm 3e23d05ec9aa086013200c2df62ea349686f0b76b06f16992f3af4cdb0735bb4n/a Heodo
2022-01-14FA36124461.xlsmxlsm 01e14e3c803705655e2068d80e77f2e2103118f38fa43791e069273b46c8cc0dVirustotal results 34.43% Heodo
2022-01-149504_839.xlsmxlsm 91937b58d9ec22774d2b500998864b2929fca1cfe5ded24b2db292ed81b6471dn/a Heodo
2022-01-14TGV1.xlsmxlsm 6d309b2f00848aad2b4bb6ebe146e8bdc4dddb271c9ce170a5946cef29ccbe41n/a Heodo
2022-01-14722486YWAGZ_859.xlsmxlsm a972c47050ae7cf97f0c52155e8ab1462d5a9606eaf7140f1ee56f1e8a45dbb8n/a Heodo
2022-01-1488827552_696.xlsmxlsm de59e179f2f1f561d14fc8fe0d9e607430201108b22880bef5fb5284a2b0a41eVirustotal results 31.75% Heodo
2022-01-14NHOE-4615.xlsmxlsm 1f33cccbde25d58a817b0b6355084b8d0694bb104019808808694c2e6bbe2fbbn/a Heodo
2022-01-14PT_8568742.xlsmxlsm 8241a915f1a80d0c6898233cdfef1c73d4e00a2b17c41b4bf84984d9b4234f46n/a Heodo
2022-01-14madwbk_3470.xlsmxlsm e1f0eb778a09fec529aa7aff9d665828b18007c8e52d62565a552f606c04442fn/a Heodo
2022-01-1467625978.xlsmxlsm 33907752a95eb439381ffe72885f212ed6dc3f71fb2a3a352478b5fd83ab3eden/a Heodo
2022-01-14zm3857.xlsmxlsm 74fbe0349e9ce3a448a58ffd97a0d40d818b39d27cc47c021374846d7ba4d4a8n/a 
2022-01-14mgljko_6.xlsmxlsm 7ae8d061dd1dd74a37ac33eced5d361e376cc4b919bdfd82338595f8e17d1e46n/a Heodo
2022-01-14ABICQ-28.xlsmxlsm b57a55f2405494bd567fe9fd7d0b20a4dff80c22cc57b45a3646dc9e19ac69f7Virustotal results 35.00% Heodo
2022-01-14476152_150598.xlsmxlsm 141cd6be868c4fa899a6d5f3f2f0ea22d94887abe2e2a3246efb2908d25031baVirustotal results 33.33% Heodo
2022-01-14J_26615263.xlsmxlsm 9cd906e8e1ade72180999a159418a5afbfe2cebb2cbcabf9e53352b1101e8e99n/a 
2022-01-14669521518_9450.xlsmxlsm 0e9ecd9a72922bccbcb8e10f539cb80caf27d6e4a3d3fee85db032623821a4aen/a Heodo
2022-01-14YUN_3.xlsmxlsm 8e187d1c08fcb2c9af4b7ad945c3268b5760aa57485520ce53ebf0be9c703935n/a Heodo
2022-01-142203_99159164.xlsmxlsm 2bddcf7091fe815708701ec5e688ab154d2d422c7bb736a50dec1ad373b77d8cn/a Heodo
2022-01-14442881_79.xlsmxlsm 3e81aeff6c3de374e2eccaf42502eb484fd572d9cfd1b165fb2d05169913a6e5n/a Heodo
2022-01-14189141_31789.xlsmxlsm 4388bfb3d3bd1ca9b1fc3350e1a4b12fa5eb80e25003b4cf503e7613279e4aceVirustotal results 30.16% Heodo
2022-01-14elUer-56510378.xlsmxlsm 8930ee76733f7d47386802541a1c011bacf01d3a97b98801b53dc4906502f824n/a Heodo
2022-01-143220941PAZCQMQLR_5298.xlsmxlsm 1bf3f41d82ed092eea42534ba64d892d4076a4898d514e5a2f143d5ce067f42bn/a Heodo
2022-01-142837-6065635.xlsmxlsm 42c5bb56d6d7939abf3f29c32648b0239c79d8362d5b7634e96c8387b4376831Virustotal results 28.57% Heodo
2022-01-14XCX_67628489.xlsmxlsm a45f772b66ff40e7de3bb7541d5563fc62563fb2aa9ab6b9343e4ab859593c7en/a 
2022-01-14608868_685587.xlsmxlsm 89b7747123c915f3a7dab01f114cee02c6956b8e8aa87de4fe37ba329f5ad40aVirustotal results 31.15% Heodo
2022-01-14327499_6344788.xlsmxlsm 0766c61d5d861dd6db71ee8f535e5f405f9d7ae80dfc5c83938e000d2b4ba58an/a Heodo
2022-01-14233-7575806.xlsmxlsm a89097e556d8e582deba3d9f6c471d585cd8ea41cf7e40480f967985ed90e60dn/a 
2022-01-14GGHMD_43706689.xlsmxlsm 38b84fcdf7e7ed1a95a221a66ebb59bf63847b414da3370144e103a23b9a577aVirustotal results 26.67% Heodo
2022-01-141074429CFAIJGIJLW4247317.xlsmxlsm bd84338df7f1e8eae032de81e2839eb85a6f05c8e7f3afb88bade961419a9d49n/a 
2022-01-14631139582_50887550.xlsmxlsm 69ef1b95072beb41ac0bd2bff9613836579a4e1b2738fd5f150a0507e1c97fa4n/a Heodo
2022-01-14LMF997610.xlsmxlsm be9b720458252f06a6688c838079c24730523961b9242c3a0c76ef5c4c1ac949Virustotal results 26.98% Heodo
2022-01-1470534992_589522.xlsmxlsm ec237a7588cb70688e3f57edf9ec59126b234f51b996b68000604002a379dc5dn/aHeodo
2022-01-1431011MKVRZY_82185626.xlsmxlsm 59ae2ce51e3e9e2d3e412dcf23488aa002acb72d34656606872d00bb4ab0eca3n/a 
2022-01-142227290_503046.xlsmxlsm 878245ca533c239b7066ce1bb483d8cd42a8d5887954c3e4db00b5a52d46f354n/a 
2022-01-14LG-755042.xlsmxlsm 3b63ba5e81eedd06656eca70b56b6d9490b598df1646dd83dacefe8cd52d6a77Virustotal results 23.81%Heodo
2022-01-1439IDQ-286.xlsmxlsm 296171d1b92b175041ee3829e60a6880b93861ef09614e912d112777fc2fe13an/a Heodo
2022-01-142138787_14737.xlsmxlsm b8e60cbecfbe9cdc725b0f3fc1524d2004d7a1e7a7aca69e4f7bc0ce89fe2f54n/a 
2022-01-147482412399.xlsmxlsm 70331e285111162a78eb26ed4f17fa1fd42d663b4355e55f6e4aa117d19dd2f3Virustotal results 25.81% Heodo
2022-01-14rcjy-815715.xlsmxlsm b8b1fb98701bf450f491a99a027c35455ecc635801276ec74d0f637aa91aa3f9n/a Heodo
2022-01-14NT-60568.xlsmxlsm b258f9290e51fbb164e311ba5ed55dc99113582e4f849be35be5efcd3a6784a7n/a Heodo
2022-01-14TTW-293.xlsmxlsm d55979fab69e6383de91fecd3232f4f013cc7eb8de5a4a0090c6e0a371765b4cn/a 
2022-01-14adfo-58.xlsmxlsm 88309150746b21b8bf021aead74ef1695d5008b340897b2a84f0a254ddfcc7f8n/a Heodo
2022-01-14FNEGH-720430.xlsmxlsm 3dd7791745ef386d30fdac27e392533cbf154de6881440bf6bae3b947c775402n/a Heodo
2022-01-14i_67754859.xlsmxlsm 4eab3977f88e6444a99925c2a5769e6b720e8a6ba4ee8cc8235e23a33a1e6658Virustotal results 24.19% 
2022-01-14Nrdlne-294.xlsmxlsm 700465c4be1e671b009e46928a0479f311b16f05004d4e24755bb22c405781f1n/a Heodo
2022-01-13S-955.xlsmxlsm 731ec98a6308e19709812083b3dfba8b079aa48f36b486f2f06d7170de5d1541Virustotal results 22.58% Heodo
2022-01-13I902.xlsmxlsm 88422e6f6a8baaf355add1168faec3c2cf520438933d982dcff40a31f2468a09n/a 
2022-01-1305586645_05.xlsmxlsm 88d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02n/aHeodo
2022-01-131454_98240843.xlsmxlsm 792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0fVirustotal results 22.95% Heodo
2022-01-13INV_03609023.xlsmxlsm cfcf60f2a598ac8e1abc547928fb7b32fa3b58afb00c098f3b6b34b77d0ffbb9n/a Heodo
2022-01-135460YLWTVVGA581331.xlsmxlsm 9fe942b1c143f254d99df8604defb206f10f9a06db88872e562e80361e1fd005n/a Heodo
2022-01-1336344252.xlsmxlsm 88876b87c1e34620663cc95177326339d7853e695ff37d35a180f61d76d019beVirustotal results 23.33% 
2022-01-13582152568_4.xlsmxlsm a82961d7ec81fbc9a29aa3a06007eb18b887dfbe3e97ca6580c7682aa6021a86Virustotal results 22.58% Heodo
2022-01-13QN_744.xlsmxlsm ac61723d025f90be4b2b44d6643e6ef15327be31899b8cbdaa43c0a2fac25f5eVirustotal results 30.16% Heodo
2022-01-1395347238RLVUPV_2.xlsmxlsm ea518dd18446672c07dfd03a7b14e0f939a89b414a670198e7cf429b6cba7d84n/a Heodo