URLhaus Database

You are currently viewing the URLhaus database entry for https://znzhou.top/wp-admin/I_180/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1984642
URL:	https://znzhou.top/wp-admin/I_180/?i=1
URL Status:	Offline
Host:	znzhou.top
Date added:	2022-01-17 21:37:05 UTC
Last online:	2022-03-09 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-17 21:38:07 UTC to anti-spam{at}list[dot]alibaba-inc[dot]com,abuse{at}12321[dot]cn,abuse{at}alibaba-inc[dot]com)
Takedown time:	1 month, 20 days, 4 hours, 44 minutes (down since 2022-03-09 02:22:32 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-18	3240471407902323933.xls	xls	59cb2552a34b231acb92fcee121b13d662ca7f0049a70aae86fe312270f548e5	15.25%	SilentBuilder
2022-01-18	42051736054132.xls	xls	32151a8459b973e9f407a6baf3722a9a1eb6fb27a7db9f9693fc033b64e30219	n/a	Heodo
2022-01-18	0017715897270.xls	xls	b463abec1dfc612e1ea59fa20ed07f468fbdc69e8694a5af639fa79435ce4f58	n/a	Heodo
2022-01-18	5056399108253.xls	xls	4dd34288d1597de3f5939787b91e85331964708a0f7c73655e6d8239c4688756	n/a	Heodo
2022-01-18	3680248933085252.xls	xls	6cff0fc7ee4e1c70b0fb94ffc68d8939a2c5afc238ecaf0dc9e2a829baa2aaa9	n/a	SilentBuilder
2022-01-18	389682509032526.xls	xls	b4a49e89e7852d569ea4a0d6abbfb489a53b392e38fb16270343b54b2cc34b00	n/a	SilentBuilder
2022-01-18	134409937784771252.xls	xls	a35ccc0277367ef2660f2eb7b2c5702b33e04ecabb9e9dc69f0e089d31b24abf	n/a	SilentBuilder
2022-01-18	8154638145900637.xls	xls	35da04ff2a62f8c0275a0e10151c69d9cfd7fd35dfc2ef154105492a517023d3	n/a	Heodo
2022-01-18	61355207921438240370.xls	xls	ebe7c1008e98277cac317211c9fb8db1371f256f9c344209fba11039fcfc1576	n/a	SilentBuilder
2022-01-18	769772598416476072.xls	xls	f992f21f03b86aefe34db46f747ad9c063feebaac70cc1eff8cb76806aed499d	n/a	SilentBuilder
2022-01-18	017241844505921.xls	xls	0462fb1b5a8a7784bb9b1dc90185c6b031d6dbc1ca9256bc59a34bab1c87ab49	n/a	SilentBuilder
2022-01-18	154044752768860.xls	xls	dab9f48f4ae76936b59d34d7be449dbc15e45ba29d6dd1a861eca70b8ab4c6d1	n/a	Heodo
2022-01-18	164859482808.xls	xls	4ad545641ce10800bcd2a75f03ae32b78d9fce1feb504c5353da50438959e3b0	17.24%	SilentBuilder
2022-01-18	0793223213.xls	xls	c61718c0dc7f0d5c5f66455826fd222262b081893085b7a528d3217b0bc6316d	n/a	SilentBuilder
2022-01-18	54427293239883.xls	xls	32eaa4ec7dce492883fce25e20778b8c6b36c2d269d3e55f713977f4ab0618b8	n/a	SilentBuilder
2022-01-18	3302811518882.xls	xls	bc1172240f277c311e80e1e9149ebab58d1870bc0a9e94f3bd898a025495be3e	n/a	SilentBuilder
2022-01-18	604836303978.xls	xls	e07cb07d8a2b296d0f506a805e5721233820e0f8d4c9d552940f71fca7be7a8c	n/a	SilentBuilder
2022-01-18	5514524148122614.xls	xls	78edafc9ef5c586ac250ab33c4670eb0777e862160498429f24acbb551b6f3e4	n/a	Heodo
2022-01-18	46377497439721.xls	xls	9b0a59dcae7eca85fa1088f429b85a4a491f79207a68cb7cb8925ef9d95f8ba4	n/a	SilentBuilder
2022-01-18	9599449643627942.xls	xls	e83230dd5995b3cb0477ab358fc13505cbe4ef8a103ee5eafc8763545ed64d8e	n/a	Heodo
2022-01-18	0024350710601.xls	xls	027a72970eec77e5214269c8f79a87f5f614a1ecee11257b3feac2fbf54740f2	n/a	SilentBuilder
2022-01-18	594162739003867.xls	xls	92bf6d722708e0e9428275c7d0789a52e3fefca383f020e0b8a9cf32e01fb954	16.95%	Heodo
2022-01-18	73935760326737247.xls	xls	5255b0788b382c41d46027fda6dc4e3c717a4cbc46469614299d184bf77037df	n/a	SilentBuilder
2022-01-18	786455696033048280.xls	xls	ee8b7476fa35280678b3b70ee6f8142bb7945783f64da2a541c0a42e0e804506	n/a	Heodo
2022-01-18	9633997686317589.xls	xls	b933c6fc1ce4b9df0d65fae6724a3053c183cbdf921053873252181bf50ed7a0	n/a	SilentBuilder
2022-01-17	70218332476329549.xls	xls	b5abaa61ee5a2795808e2dc90c87c149ea7927be1431f1595fb1061e045b8657	n/a	SilentBuilder
2022-01-17	1750424701344467309.xls	xls	b9cf7499338b7ce6d879b0093cddd093f329e54f080335bc602f3b30f055978a	n/a	SilentBuilder
2022-01-17	37077709930829832049.xls	xls	d90276f1e57f91966cccef797f36ba18dfdc19cf92a4505d0f59f2421f4eb2ba	16.67%	SilentBuilder
2022-01-17	48275869080.xls	xls	5edfa18d54052256d62cd14523eee828be94dbd74b83296ece55b13122e94c56	n/a	SilentBuilder
2022-01-17	66653411688607681601.xls	xls	63ca712aa3ded137254262b9946785369c094b3e58b186e4ddaf34ba8b5d9e85	16.67%	Heodo
2022-01-17	7279721592121813.xls	xls	01476eaa4b0f7bdde2a764be2f017d11e0a9743bdf0447c63288607ef7437ac1	16.67%	Heodo
2022-01-17	24268928033810.xls	xls	60bfb92cf2f86b683b04d1917c4eccb0529dd8c401d77e0aeef0793e82f78717	n/a	SilentBuilder
2022-01-17	atzsnn-4.xls	xls	dbb52b7d676d81751c83f7d43e59bd1e90425b2c2abc11cd6af1dd99199ed27d	20.34%	Heodo
2022-01-17	RR_060.xls	xls	5d238f612e5268535e8d7135c599c9c144d2614962db181e4c96da8b824f7111	20.34%	SilentBuilder
2022-01-17	BDJF-86.xls	xls	bc7693e2ec1418db5c491f12c6573e6f8cb27c63238bb6159f060fba5275f256	20.34%	SilentBuilder
2022-01-17	I_180.xls	xls	79898684a6ed1b1f8c85e4e22f8b69099e0db3e80f1776656b5cc9d6d2022317	n/a	Heodo