URLhaus Database

You are currently viewing the URLhaus database entry for http://project4.monster-online.com/wzjmkm/mew-67260/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1977556
URL:	http://project4.monster-online.com/wzjmkm/mew-67260/?i=1
URL Status:	Offline
Host:	project4.monster-online.com
Date added:	2022-01-14 23:27:04 UTC
Last online:	2022-01-18 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-14 23:28:08 UTC to abuse{at}savvii[dot]com)
Takedown time:	3 days, 20 hours, 49 minutes (down since 2022-01-18 20:17:48 UTC)
Tags:	ArkeiStealer doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-15	I_821226.xlsm	xlsm	d8c07f93d53cd970c597ff94a8dc92c5b0e489a7e0489883fc86a4bd6d261f27	33.33%	Heodo
2022-01-15	U_933.xlsm	xlsm	6948e534c2e2cf5d79c9c210e98e900c3c00e4eb86b46c34ff57c29b950717d6	n/a	Heodo
2022-01-15	981846960646773.xlsm	xlsm	40c5e372942e0b9b1ddd00e203c67676f96fb761373fbe9bf108613a593ee57b	n/a	Heodo
2022-01-15	73-3802.xlsm	xlsm	2fcf005e25f8417cd55b6e4eadadd73f73f66a4d167f98d82daccb6756ac1609	n/a	Heodo
2022-01-15	28016224-235845.xlsm	xlsm	cd6f78b09ca63f714facbcfe21b27fd3c031242e28acdd1bcf6156719b76a9f7	n/a	Heodo
2022-01-15	PK_0929291.xlsm	xlsm	295b5684fd4d6da1bb6287b0bade91c880432d8d299e7788a254c9c9738dfcff	n/a	Heodo
2022-01-15	6793935USS_201095152.xlsm	xlsm	6c4e9288c11bd332eca6874187898648c605529694355f2a945ddfe0aba788a4	n/a	Heodo
2022-01-15	27476_8919.xlsm	xlsm	2e5d9260f3ded87b56eb1a493b09ec187c0deea70d4c32e9e7ba0741b9b37d22	n/a	Heodo
2022-01-15	2619QCILICQ_52673.xlsm	xlsm	9324abc8d81187724943e9372969e0559ecc4f2f9f976258bd59078bdb74e9d9	n/a	Heodo
2022-01-15	APHMF3.xlsm	xlsm	97a7bf62bcd75bff44e2ec53cecbfb4be386b7ef16c983ca0c5ac1733810f284	n/a	Heodo
2022-01-15	izrlmq-9641999.xlsm	xlsm	7605f72db5b159afe28fb4a8838e86705dc8cf60d780b307eaf0decd7bedd18d	n/a	Heodo
2022-01-15	085948630.xlsm	xlsm	87a3b24117e7f39be9bcfdce77aeb0bdc0bdd0c7a6b6a508d4252d8d547f68c3	n/a	Heodo
2022-01-15	N_7753.xlsm	xlsm	469f990886088f5fbc7cdcf34a1d989fb4a5e311155eb307828b819517009188	n/a	Heodo
2022-01-15	4950_5.xlsm	xlsm	be5993172db9a317aa35439a8c21a5ff4c2a5f6ce238a32d71ebbff993a2e7bc	n/a	Heodo
2022-01-15	120159DNDPJJDSDH-03862339.xlsm	xlsm	6160bd3b3820942851b4c56066611bd4c01ac70d8a520be8e9abff7f3aff45b7	n/a	Heodo
2022-01-15	xijds267949.xlsm	xlsm	e646168a1e6ffdd6ebaa34c81d6b6425c67f64db95d217af8b721655458ab199	n/a	Heodo
2022-01-15	Z-48609.xlsm	xlsm	62339184034e6ad69c9803d78caf51eb93963736899000a79763942bdb54b751	n/a	Heodo
2022-01-15	0315_63562214.xlsm	xlsm	8bec2125ada9f365ce9979eb8334ab12136f40458a47969f00c5d852f48c03a6	n/a	Heodo
2022-01-15	TJGHJ_47841.xlsm	xlsm	5be4fdc379541be75fda56d996fd5380b4f68fc14a295a5c39baf258f67636c1	n/a	Heodo
2022-01-15	16458725.xlsm	xlsm	d60a0d354b47db9947cccf869113e1fc3db29e6dd52da4de97e3f597c8413126	n/a	Heodo
2022-01-15	ANGPR067855.xlsm	xlsm	e54c7e04ad7a623d9ef4cf30a5c8cd0eaa26f3a162d3e64bb39e9c755d8f839b	n/a	Heodo
2022-01-15	008262-859159283.xlsm	xlsm	c1a965ede59ecf82604f9e28dea05524ca8c4c5f826c417c629bfbd5cb21602c	33.33%	ArkeiStealer
2022-01-15	YZHNR_639649.xlsm	xlsm	103ebce0fa6518db55234f954a8cc2f199225e8badf6cc45d82cba723101a60a	n/a	Heodo
2022-01-15	EALNJ_03518684.xlsm	xlsm	aad14c7063245eaa7cec884fdbf70fb9b202755952f6306a0a608bdae6f3f80c	n/a	Heodo
2022-01-15	J91300.xlsm	xlsm	af4524f85f636f8b929b04a779bee53c82da66d25d3be5a761b49d081af082f9	n/a	Heodo
2022-01-15	6731KSI_23267.xlsm	xlsm	9f593a4d8c3165dc5052f06fac8f6bc92bfe45012131fc75cf27ec63ce1f3adf	n/a	Heodo
2022-01-15	BBZ09698.xlsm	xlsm	afde85c0f3400cdd70d59c378196695e4b64b7b6b559a7d481e1679f0dd8ed09	n/a	Heodo
2022-01-15	481180958487.xlsm	xlsm	d7818be62c9a6e0eefdc0fd0a685debddaa7d58bdc9140d59be286e46b7bb766	n/a	Heodo
2022-01-15	vwl_479.xlsm	xlsm	865eb35199ab84b4cefee238e23662fcde705cdd1f89fa2e8adaeb2cd4fe13a0	n/a	Heodo
2022-01-15	X_01999.xlsm	xlsm	e37e5c57c8ee2c0a6920611443300efbaf70d3070a387ad075818f869ca3de35	n/a	Heodo
2022-01-15	GHU06386.xlsm	xlsm	5f18c310f5253557bd4e3db65b76f929de0a63e9228508432f417be214cb1c6e	n/a	Heodo
2022-01-15	LhRsiL96340.xlsm	xlsm	18407ac6698ef4bcd8d03f4a6e0934e0f737014d3da7b8b9f9573aff85531e86	n/a	Heodo
2022-01-15	390494490769.xlsm	xlsm	dd2c0fe2695c9a23678226e60228715951f3a61a3ee3dd18d36c9fd420c88647	n/a	Heodo
2022-01-15	iUzcN_89965.xlsm	xlsm	b6b586b1c26a7264dcdb98835a99b42bac6a040f962f3e9b36f7a2d22515b65f	n/a	Heodo
2022-01-15	3305665-0.xlsm	xlsm	de6733eb50cc7fad43c6861b199e19e9b1c03eb84a214c35008270c9479492bc	n/a	Heodo
2022-01-15	227904711504.xlsm	xlsm	604e011f3b1701d6c0f5c814de83490df5f06fba4e310a5bfa54e07e616f1702	n/a	Heodo
2022-01-15	778324FUGIUOJ-4925.xlsm	xlsm	689f0b122802abddf27d88f5df2aab645cdada2bf8b91ea5e6762a0c95d5d07f	n/a	Heodo
2022-01-15	MK_37955210.xlsm	xlsm	ea2b0d083fdda71d15fbbcd29d7bacc4badad078fc1ef2ed013851549777137e	n/a	Heodo
2022-01-15	879739_6756.xlsm	xlsm	0d1d5b1a694a7e274855a52facc4da0bb15b6fd46e19023e232209ccf855e65a	n/a	Heodo
2022-01-15	3440AOZVGY-869.xlsm	xlsm	86c79390ec351aac0cb64614d49eb4a932c8402bf8f91df157c84751d7725926	n/a	Heodo
2022-01-15	km_13989.xlsm	xlsm	c308d91794be470f723e310dfb1cc84fd2f0e54d63b1c06d5ac39cf4ec0f371a	n/a	Heodo
2022-01-15	60166.xlsm	xlsm	c8ae806c1fad8007f17331fc0ea71d000140443e4596a430f7cd80332ac3c2cb	n/a	Heodo
2022-01-15	ZB-240974.xlsm	xlsm	cbabf31062db7ba965fddcf8a0309fd8f045f20c5fd0baf6d086f52878f0ed03	n/a	Heodo
2022-01-15	Ucrep_65826035.xlsm	xlsm	d90488474a115987753f7d96f2810900bd6abfc52ac05aeed67710e18e0314ad	n/a	Heodo
2022-01-15	155236_14086.xlsm	xlsm	e2a1cdd6e9d75010905c95a66ea4499a1ed22741860db4257200d37d463c8ac4	n/a	Heodo
2022-01-15	536_8.xlsm	xlsm	55609e9411de2aa6dca0995747f89cc0b89081e6722e497433da8f8d02e9a2f2	n/a	Heodo
2022-01-15	MB_217223674.xlsm	xlsm	c909891cc6ab3148cc2e5af0f42b18f4fea635079447729eba2203ffdbdf32d4	n/a	Heodo
2022-01-15	23281_283.xlsm	xlsm	7048b590b47e71cb6a20b35c192d264bc4bb1fb4213dbb9a9a2c9748d53af762	n/a	Heodo
2022-01-15	ONDT707347.xlsm	xlsm	cfeafd9e2f4f80535f88ed319fbc467de58ad68746d9839e35bc335e7093386e	n/a	Heodo
2022-01-15	856004-28470.xlsm	xlsm	2966763dc88ba44de5f3aa8ff82addad4bb4b567bdfe60a067f169098258c418	n/a	Heodo
2022-01-15	DAg-504528.xlsm	xlsm	0090643800e1f49a41801bb84916471fe71b2778e2cef65930e5b25b3c62fc8d	n/a	Heodo
2022-01-15	14858651_8.xlsm	xlsm	22f20d029b24272da77ea4b56a36a93a3f837d0d98cc207433d92f7eed14074e	n/a	Heodo
2022-01-15	ih1267.xlsm	xlsm	3621ae028dccc8403535f79e18471a4de1256cf06f3c96a94be537d833856eb7	n/a	Heodo
2022-01-15	3926_14875.xlsm	xlsm	db676ef714ea818edca3ff4a25da38808cbec2a6d7b944a237e44ad29d8932da	n/a	Heodo
2022-01-15	430905_4474059.xlsm	xlsm	27e87e375006f747c439d7ee9faf69843cc289ff75a5eb062abbea47c57efcac	34.92%	Heodo
2022-01-15	VE0390.xlsm	xlsm	771e8eb9454d09d3f655f55713b1791583aaa6f813d896737b38d1da511fcb15	n/a	Heodo
2022-01-15	fGLFt0882435.xlsm	xlsm	1f7a5f12dd0eb712be2e7b1743244984f5924481524eb1c67cac97df0c34ddf2	36.51%	Heodo
2022-01-15	va02958.xlsm	xlsm	77ffacc52c59a0eb5b6b3714889a43cc959b49088f530582dc6481df50f843f1	38.33%	Heodo
2022-01-15	75293813_22611020.xlsm	xlsm	ac7bc114197f00db5cdc8220478ccee911aaa8a17481da2be5bd05e884c00b2a	n/a	Heodo
2022-01-15	C_1164737.xlsm	xlsm	d23b6087f9c63fee7bf5d8e620cf88ca2c38fe8ee342deed923d705fa9b6d68c	n/a	Heodo
2022-01-15	3035-5881.xlsm	xlsm	35101e24e0d9b97edc46d35011a21e505ee4b05036998544ad3dad3444e09376	n/a	Heodo
2022-01-15	MIE_12957074.xlsm	xlsm	efa77ac16d7ac9c01da1faece2214bb67d0a73c8b31260dd11522e8a77ab24a4	n/a	Heodo
2022-01-15	MSF-38204202.xlsm	xlsm	de54a7c99135db230ba151e513f7813ccca74b08201d7592958e82c51b152386	36.07%	Heodo
2022-01-15	6235RMOTO-37.xlsm	xlsm	b8121edc6cc2e93b9a7832beca7e11a32f3c0b8214816c8276a2d2eeec251050	n/a	Heodo
2022-01-15	Nbf62921.xlsm	xlsm	bd6f9bc0e68e1508ca81f61f53878f1a5567ee9a16d80d3a7f0384862c6b076f	n/a	Heodo
2022-01-15	ehkn4.xlsm	xlsm	1f2fb274efe18ae6707db44fd5e92e99c9da494530658002e2443435536ad260	n/a	Heodo
2022-01-15	BTQ_1433.xlsm	xlsm	df3d1c9f634b214294ffb42adacb58b20d8aa9f35da387af12be4ef35556a1ea	36.51%	Heodo
2022-01-14	hpuz-999220050.xlsm	xlsm	8f0f2077aa3edcc93ab9afc1a8e9b37a8e2188bd636656b06daedf8135750b73	n/a	Heodo
2022-01-14	mew-67260.xlsm	xlsm	c7f2afe51337a22d7458aad225f6c867436b3c51c0897ddd6815294d8731353a	37.70%	Heodo