URLhaus Database

You are currently viewing the URLhaus database entry for http://onafrica.tech/xh4z1v5/557443485-37672/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1977581
URL:	http://onafrica.tech/xh4z1v5/557443485-37672/?i=1
URL Status:	Offline
Host:	onafrica.tech
Date added:	2022-01-14 23:40:05 UTC
Last online:	2022-01-16 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-14 23:41:06 UTC to abuse{at}a2hosting[dot]com)
Takedown time:	1 day, 0 hours, 56 minutes (down since 2022-01-16 00:38:00 UTC)
Tags:	doc emotet epoch5 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-15	dZL-044.xlsm	xlsm	d8c07f93d53cd970c597ff94a8dc92c5b0e489a7e0489883fc86a4bd6d261f27	33.33%	Heodo
2022-01-15	A_742.xlsm	xlsm	6948e534c2e2cf5d79c9c210e98e900c3c00e4eb86b46c34ff57c29b950717d6	n/a	Heodo
2022-01-15	LLK981983.xlsm	xlsm	0592991b1732e1e08398bc9d0d002b8712f5d04c2ccb93bbdc194f100cfe4cd5	n/a	Heodo
2022-01-15	Z_685.xlsm	xlsm	2fcf005e25f8417cd55b6e4eadadd73f73f66a4d167f98d82daccb6756ac1609	n/a	Heodo
2022-01-15	Z-4.xlsm	xlsm	8463333f274f70052520e2419d87787a7d26dba8fd42ce3636bc31648459c391	n/a	Heodo
2022-01-15	41520045_10658683.xlsm	xlsm	847fbb97e6239c45b156e552f926c3ab3a6b874bebddb606349d8748ab97b4e2	n/a	Heodo
2022-01-15	XKE_9301797.xlsm	xlsm	295b5684fd4d6da1bb6287b0bade91c880432d8d299e7788a254c9c9738dfcff	n/a	Heodo
2022-01-15	116XQWO34218929.xlsm	xlsm	6c4e9288c11bd332eca6874187898648c605529694355f2a945ddfe0aba788a4	n/a	Heodo
2022-01-15	ZPVW_6770366.xlsm	xlsm	2e5d9260f3ded87b56eb1a493b09ec187c0deea70d4c32e9e7ba0741b9b37d22	n/a	Heodo
2022-01-15	99911597-76208828.xlsm	xlsm	7bd561959295ba5aad56e198caa95e3b1165906ae704be0dea8874044e92aad4	34.43%	Heodo
2022-01-15	9406353-0177088.xlsm	xlsm	97a7bf62bcd75bff44e2ec53cecbfb4be386b7ef16c983ca0c5ac1733810f284	n/a	Heodo
2022-01-15	tU_75567.xlsm	xlsm	0045b20232732fb2c4598671f7d31824da64275a796b6da748355d3aed6af989	n/a	Heodo
2022-01-15	NESvP-61901728.xlsm	xlsm	87a3b24117e7f39be9bcfdce77aeb0bdc0bdd0c7a6b6a508d4252d8d547f68c3	n/a	Heodo
2022-01-15	1714120_755736.xlsm	xlsm	469f990886088f5fbc7cdcf34a1d989fb4a5e311155eb307828b819517009188	n/a	Heodo
2022-01-15	Lnrz-44556915.xlsm	xlsm	be5993172db9a317aa35439a8c21a5ff4c2a5f6ce238a32d71ebbff993a2e7bc	n/a	Heodo
2022-01-15	2780-959092097.xlsm	xlsm	6160bd3b3820942851b4c56066611bd4c01ac70d8a520be8e9abff7f3aff45b7	n/a	Heodo
2022-01-15	298694374417362.xlsm	xlsm	e646168a1e6ffdd6ebaa34c81d6b6425c67f64db95d217af8b721655458ab199	n/a	Heodo
2022-01-15	7264473_7.xlsm	xlsm	62339184034e6ad69c9803d78caf51eb93963736899000a79763942bdb54b751	n/a	Heodo
2022-01-15	wGs_6592608.xlsm	xlsm	5be4fdc379541be75fda56d996fd5380b4f68fc14a295a5c39baf258f67636c1	n/a	Heodo
2022-01-15	cfuM_3.xlsm	xlsm	546583b23bacf305f0c2460964530d3ed35ce17205cba9a3085a4f259d282253	n/a	Heodo
2022-01-15	b_96381464.xlsm	xlsm	e54c7e04ad7a623d9ef4cf30a5c8cd0eaa26f3a162d3e64bb39e9c755d8f839b	n/a	Heodo
2022-01-15	744PLIDITZD-608.xlsm	xlsm	e869f1f1c15fc3635f603c1f201e91c4d4fc67e27d48fa526512922a2dfa61ac	n/a	Heodo
2022-01-15	BKW_30.xlsm	xlsm	aad14c7063245eaa7cec884fdbf70fb9b202755952f6306a0a608bdae6f3f80c	n/a	Heodo
2022-01-15	4096968.xlsm	xlsm	88184fd50c3237c5420e39824ef12f6d3ceac1fbd74e9e7875c4649b9a8452bc	n/a	Heodo
2022-01-15	rpau-5604868.xlsm	xlsm	9c2abecd00d322ebcd209a17267f2770bfac92d76554a4ff0cfb5f39a136526d	n/a	Heodo
2022-01-15	54534468.xlsm	xlsm	e122abd14608a2f8f418442d0c8d4db849b832d246000e22b23216b64fc5d148	n/a	Heodo
2022-01-15	29_0482429.xlsm	xlsm	b5ffff49dd82dfbb3629980f11d5976df500410b593e2c0e336aff839d69dbb0	n/a	Heodo
2022-01-15	82848806-734.xlsm	xlsm	aa3502e81f27a2ae1486354bd438bb082e23fdd08f5e35defe7a676ea7631c7f	n/a	Heodo
2022-01-15	KN11568.xlsm	xlsm	865eb35199ab84b4cefee238e23662fcde705cdd1f89fa2e8adaeb2cd4fe13a0	n/a	Heodo
2022-01-15	06388_79688401.xlsm	xlsm	e37e5c57c8ee2c0a6920611443300efbaf70d3070a387ad075818f869ca3de35	n/a	Heodo
2022-01-15	505495282_10811.xlsm	xlsm	5f18c310f5253557bd4e3db65b76f929de0a63e9228508432f417be214cb1c6e	n/a	Heodo
2022-01-15	892448531227590.xlsm	xlsm	18407ac6698ef4bcd8d03f4a6e0934e0f737014d3da7b8b9f9573aff85531e86	n/a	Heodo
2022-01-15	yg_1937.xlsm	xlsm	24e6bb90d4b84c8fb6769e7637035f9154e23fa9ba28b65c5162f1d5e3b9a0ce	n/a	Heodo
2022-01-15	789227761321.xlsm	xlsm	7b13a221a0b62f54ec6947573c797094f113558c1bc574b6bacdffe3061cf72e	n/a	Heodo
2022-01-15	DFR674923.xlsm	xlsm	69b7e80cb47b695d05fe1e5816175cd6f3410e6fcf4e2ac79ebe2f96f04695a5	n/a	Heodo
2022-01-15	wlvb_115789.xlsm	xlsm	676121a2e44ebeec23e8103a93adec3154731c96e594e194b21398eb0da2ad1d	n/a	Heodo
2022-01-15	89568-857171.xlsm	xlsm	6b905847ed946ae2b8b8e9425995c2ee708464f8c6d0a0c2f5282dbcc79012d8	n/a	Heodo
2022-01-15	454_928047322.xlsm	xlsm	9a31fc23a27bd0e049c2fa04ef0d1f830f4183b026889fcdbea3969a2d9e4092	n/a	Heodo
2022-01-15	N_73372571.xlsm	xlsm	a74e56368e271fed755aa1071a1286036351e04358f0707a7f062d2d18457874	n/a	Heodo
2022-01-15	k-591.xlsm	xlsm	44b990e0cecfdbce9a3071b4b5a23cb9bfd7fbccb6fb5eb267b229a822c932b0	n/a	Heodo
2022-01-15	SNB71936271.xlsm	xlsm	d88a7ac3b8616da5e351a91188251a68584ec2d51a5c491c18f661a322ce9319	n/a	Heodo
2022-01-15	XVX-66952070.xlsm	xlsm	c8ae806c1fad8007f17331fc0ea71d000140443e4596a430f7cd80332ac3c2cb	n/a	Heodo
2022-01-15	58799477746.xlsm	xlsm	3a65abf1b08c0b1d64979d349e28077ac40c68c38fd7f2581468337a6e5d848a	n/a	Heodo
2022-01-15	UBPO_301320774.xlsm	xlsm	d90488474a115987753f7d96f2810900bd6abfc52ac05aeed67710e18e0314ad	n/a	Heodo
2022-01-15	05500409-604760.xlsm	xlsm	af74adf2376ab0a8fb16735d44fc3e72bc4480a91b2cf9de85cd2f9ab7fe1fb5	n/a	Heodo
2022-01-15	V5148.xlsm	xlsm	55609e9411de2aa6dca0995747f89cc0b89081e6722e497433da8f8d02e9a2f2	n/a	Heodo
2022-01-15	R_29205078.xlsm	xlsm	c909891cc6ab3148cc2e5af0f42b18f4fea635079447729eba2203ffdbdf32d4	n/a	Heodo
2022-01-15	JE-382.xlsm	xlsm	0c68a7f1d74f3e00c0566eece5ce5825b0d3698dc7f108664e3d9892954062b7	n/a	Heodo
2022-01-15	au167809312.xlsm	xlsm	7048b590b47e71cb6a20b35c192d264bc4bb1fb4213dbb9a9a2c9748d53af762	n/a	Heodo
2022-01-15	522015_9255.xlsm	xlsm	2966763dc88ba44de5f3aa8ff82addad4bb4b567bdfe60a067f169098258c418	n/a	Heodo
2022-01-15	2662038131.xlsm	xlsm	20f452bb488539a7e3a4840a8ed88bff9a700b89e50439e71b40181a71ee604d	n/a	Heodo
2022-01-15	05289987_72890.xlsm	xlsm	22f20d029b24272da77ea4b56a36a93a3f837d0d98cc207433d92f7eed14074e	n/a	Heodo
2022-01-15	15722640_8073.xlsm	xlsm	0400c5d7c8ad85387bca95f3beb4be0b192f8a53aaf64f60e631ac66c60b5504	n/a	Heodo
2022-01-15	55659_7.xlsm	xlsm	5225cb80d26dfdd86adfb738e4bd1db0465b96e113af141c8cbd9d0bf4dc1e45	n/a	Heodo
2022-01-15	8193_3247.xlsm	xlsm	db676ef714ea818edca3ff4a25da38808cbec2a6d7b944a237e44ad29d8932da	n/a	Heodo
2022-01-15	60647543.xlsm	xlsm	27e87e375006f747c439d7ee9faf69843cc289ff75a5eb062abbea47c57efcac	34.92%	Heodo
2022-01-15	4710074005092.xlsm	xlsm	771e8eb9454d09d3f655f55713b1791583aaa6f813d896737b38d1da511fcb15	n/a	Heodo
2022-01-15	62566_83.xlsm	xlsm	d6d33e7076e3ff778ea32c349701dc2c599fc78d287883f2ad9c16a820386e37	n/a	Heodo
2022-01-15	102-766374.xlsm	xlsm	3abfe866becd4133977aa353ac9851353631d67be57d77cd85419f68a31b3f69	n/a	Heodo
2022-01-15	3116770-041.xlsm	xlsm	acc909b16bebc45d5321810acc605b915d831920e00fc443380298a602eb911d	n/a	Heodo
2022-01-15	85724_4466130.xlsm	xlsm	d18ee35b037d473e3ef71c9d7b34e4a758b27a2ac27316621475b6944e5d453c	n/a	Heodo
2022-01-15	744991_283884121.xlsm	xlsm	17f92479a5b8f4bd0e4ea0601f49f3d43a2998b0fe44ad764e298f6fd561074d	n/a	Heodo
2022-01-15	19042URZRGHH200919.xlsm	xlsm	38e63247da950af1a3a96864cef46f801d99fe847c9cfab2022dd1bbfd969247	n/a	Heodo
2022-01-15	9612092-4.xlsm	xlsm	26261f6683880339a902fbe83bf577ff5656ba5e8b1b274c694a8a2f31a83346	n/a	Heodo
2022-01-15	ZZdQVR5043.xlsm	xlsm	9e4e5949a37f75d6982aac9b092694911ce63a2c0bdda51d4a4e318d655f72a2	n/a	Heodo
2022-01-15	WIH_76389259.xlsm	xlsm	7c6700d88b841ee2fef7de88ce4486004142a265bc1ab53c49bfc35e56a93608	n/a	Heodo
2022-01-15	996324463_54509.xlsm	xlsm	39f0876ad6c8bcc72ac8e603e2a76774875c093b28d0d0334fb516aa70552a38	n/a	Heodo
2022-01-15	cv-257925.xlsm	xlsm	da212a847de3ec4a0c978c8381ce63f01d5147f5c4dc126039572b44eb31e771	34.92%	Heodo
2022-01-15	03734.xlsm	xlsm	9bd24cb87c4cce6952ace24b5b41e4be0f7606fb7941eff03d2d872d37c44d5b	n/a	Heodo
2022-01-14	557443485-37672.xlsm	xlsm	81914cad7d88ef0b90b3eb2ea2bdd84ecdadcaca51cf2673e82350452c0b094a	n/a	Heodo