URLhaus Database

You are currently viewing the URLhaus database entry for http://gzndfit.com/520/757459399_5/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1984620
URL:	http://gzndfit.com/520/757459399_5/?i=1
URL Status:	Offline
Host:	gzndfit.com
Date added:	2022-01-17 21:29:06 UTC
Last online:	2022-09-19 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-17 21:30:09 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:	8 months, 4 days, 5 hours, 7 minutes (down since 2022-09-19 02:38:07 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-17	6639325695216.xls	doc	56baee570223f111ea34ab7bf30aab64d96a7e8b9ef4dcafc6e0eb2851a35127	n/a	Heodo
2022-01-18	6639325695216.xls	xls	59cb2552a34b231acb92fcee121b13d662ca7f0049a70aae86fe312270f548e5	n/a	SilentBuilder
2022-01-18	3017508743.xls	xls	a08e21a9646ed80fd78c00c66e67a24ae0fe62a3b0e7f1f8af0de9e7e5b36fef	n/a	SilentBuilder
2022-01-18	419924887040937928.xls	xls	42086786392d71f57268416d14275638e2955c797babcbd5ec21b7eed6703652	n/a	Heodo
2022-01-18	8005476796.xls	xls	35be5819e56e15ca1bc78bb61ba08a38d392461405142da722d534c2f87e55f5	n/a	Heodo
2022-01-18	763937848385648.xls	xls	26b4ee804e6a317a802f1c370398c6629f516477378bf94cad94413237e05c34	n/a	SilentBuilder
2022-01-18	1829486718599305.xls	xls	ef7820c85bc6c3df2447132bbed914ed101aeb7baf6e6edf25026375f9df3980	n/a	Heodo
2022-01-18	184369190617150113.xls	xls	a35ccc0277367ef2660f2eb7b2c5702b33e04ecabb9e9dc69f0e089d31b24abf	n/a	SilentBuilder
2022-01-18	0092049254547303.xls	xls	ebe7c1008e98277cac317211c9fb8db1371f256f9c344209fba11039fcfc1576	n/a	SilentBuilder
2022-01-18	025332188865321.xls	xls	fa10d4c1be08f4e283bdaaa42a1d800768187162e2d90bb494fa4367dcd494ad	n/a	SilentBuilder
2022-01-18	12168145637682.xls	xls	0971b78a1fa100002ec0c3cd1d18af109e56369c4a52b4445f10c30ea8ade7fc	n/a	SilentBuilder
2022-01-18	4880250592606961.xls	xls	0462fb1b5a8a7784bb9b1dc90185c6b031d6dbc1ca9256bc59a34bab1c87ab49	n/a	SilentBuilder
2022-01-18	405952026283011570.xls	xls	fef50521b3110b6efcd1210d87cffcc0912c24b496de185199e0ccd5b5a5c88e	n/a	SilentBuilder
2022-01-18	97373683192.xls	xls	4ad545641ce10800bcd2a75f03ae32b78d9fce1feb504c5353da50438959e3b0	n/a	SilentBuilder
2022-01-18	56605234681559.xls	xls	c61718c0dc7f0d5c5f66455826fd222262b081893085b7a528d3217b0bc6316d	n/a	SilentBuilder
2022-01-18	8392984811802.xls	xls	32eaa4ec7dce492883fce25e20778b8c6b36c2d269d3e55f713977f4ab0618b8	n/a	SilentBuilder
2022-01-18	083920199710836.xls	xls	bc1172240f277c311e80e1e9149ebab58d1870bc0a9e94f3bd898a025495be3e	n/a	SilentBuilder
2022-01-18	0940489376.xls	xls	e07cb07d8a2b296d0f506a805e5721233820e0f8d4c9d552940f71fca7be7a8c	n/a	SilentBuilder
2022-01-18	364075037494299960.xls	xls	e64f53d96cf4624502733103a45f67cc0635e35e624610cbec57ea9844d43203	n/a	Heodo
2022-01-18	282120813134.xls	xls	9b0a59dcae7eca85fa1088f429b85a4a491f79207a68cb7cb8925ef9d95f8ba4	n/a	SilentBuilder
2022-01-18	5143967235.xls	xls	e83230dd5995b3cb0477ab358fc13505cbe4ef8a103ee5eafc8763545ed64d8e	n/a	Heodo
2022-01-18	0571979644899203.xls	xls	6627edac0e7bcc8f7615afe466232eeb380497a02666fed395e330d866dba379	n/a	SilentBuilder
2022-01-18	2326280753491.xls	xls	ba5cec050921142c70a9666d32ed2689badaae0afbf6105f2c3a570638634d84	n/a	SilentBuilder
2022-01-18	665263469297.xls	xls	853bf53e1de361a8c42c16b3a74dd673f990ca41f7f540ab98004a9a39e60725	n/a	SilentBuilder
2022-01-18	600810381146468.xls	xls	321d80f76297387803acdb4fd4e6a4dc6073d515955445752390767e95884b67	n/a	SilentBuilder
2022-01-18	2348857240729103.xls	xls	b933c6fc1ce4b9df0d65fae6724a3053c183cbdf921053873252181bf50ed7a0	n/a	SilentBuilder
2022-01-18	53621177592068.xls	xls	b5abaa61ee5a2795808e2dc90c87c149ea7927be1431f1595fb1061e045b8657	n/a	SilentBuilder
2022-01-17	5309860563546174649.xls	xls	b9cf7499338b7ce6d879b0093cddd093f329e54f080335bc602f3b30f055978a	n/a	SilentBuilder
2022-01-17	0954457808372.xls	xls	5edfa18d54052256d62cd14523eee828be94dbd74b83296ece55b13122e94c56	13.56%	SilentBuilder
2022-01-17	44715652436.xls	xls	6c45d08768b929c1e9e51c06e8e11e0f679c9a66a33415a427417ee1a3391ee0	n/a	Heodo
2022-01-17	2556128731326783.xls	xls	5feb30d01fb35d5fde34eb531e533bbfe6870e26612f2b397214636aed65988d	n/a	Heodo
2022-01-17	6930993222183923276.xls	xls	ab2bf047df74757d07005fc84ec15055dd7ac5a47a765b547e5b5764da471e85	n/a	SilentBuilder
2022-01-17	97132427188.xls	xls	b57b7792f2d74379892499f9a23972aed0b7206a9041b5e3b0720b2a683c0d53	n/a	Heodo
2022-01-17	WZXrx_838701050.xls	xls	3bffdc24f84177cd3c0cb5d7a9eed6da2b8f55d4b121f155de26ca172706742a	n/a	Heodo
2022-01-17	mwekt_44695918.xls	xls	d786500c90a058e4f9fb3611f21c3c3854c9dd23c9a6925a21bcfd850cb8aa1c	n/a	Heodo
2022-01-17	qfvydkf107960.xls	xls	8976395bbc9ade87e7ecaf509860c9a460299dba5418b0c536818a7d14d5941f	n/a	SilentBuilder
2022-01-17	757459399_5.xls	xls	f3cf80c42c0fc25395425187c33a80f2f8f435f7ec49b72e2aaad39383daaa91	n/a	Heodo