URLhaus Database

You are currently viewing the URLhaus database entry for http://www.escueladecinemza.com.ar/_installation/5vGw8B6SCaDwEIzNjTHdcXmdAZSj9l/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2117876
URL: http://www.escueladecinemza.com.ar/_installation/5vGw8B6SCaDwEIzNjTHdcXmdAZSj9l/?i=1
URL Status:Offline
Host: www.escueladecinemza.com.ar
Date added:2022-03-28 20:54:05 UTC
Last online:2022-04-23 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-28 20:55:12 UTC to abuse{at}hostmar[dot]com,abuse{at}dattatec[dot]com,pablo[dot]pepe{at}adinet[dot]com[dot]uy)
Takedown time:25 days, 4 hours, 23 minutes Bad (down since 2022-04-23 01:18:26 UTC)
Tags:doc emotet link epoch4 heodo link SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-302936476361.xlsxls 9adde116bf0bac725d59a9758fe3135672fcf8e2a7d30d3ae41d6df39452d54aVirustotal results 25.00% SilentBuilder
2022-03-3018194789051778415015.xlsxls 0d2f6209d514a862d07974e11e6722888d1e7d63c2dfdb6777f734929b6e5aaan/aSilentBuilder
2022-03-305617552942.xlsxls dca8eaa3af3959b306af25eed2fa0edff0e0afc2eff8303e02086f3c9e2d24aan/aSilentBuilder
2022-03-3039154528034071015.xlsxls 21cd95fb4f71525407b37a901590819a18d24ca48bd6b8f7170ff423e780dd4bn/aSilentBuilder
2022-03-3080729652248637510.xlsxls 7e23ee736d4dfb8a361e8867027e49d1cabadb8a99f76ee5afae043b5a4bffc4Virustotal results 26.67% Heodo
2022-03-30378043234736390.xlsxls c0a9e62b8ae9e9139d625c61a95632f2c0a1b3dede9da5df1c589ec7948040bcn/a SilentBuilder
2022-03-3098177900680.xlsxls 05b7de9ea6dc7fc6aa9bee8c26c08424ecb944f734630f2f5f708dd38c643200Virustotal results 25.42% SilentBuilder
2022-03-3074095383801133885.xlsxls 1c245a21651a8c0b846115b2fd1f0d4486ef0c80522d6d2384ca6ebac23fcc90Virustotal results 25.00% SilentBuilder
2022-03-3016861973270.xlsxls b7f5d43b1901da5a003086b8faa4f6f0d1f8af4ed7657fc2d5c74aa5cc621629n/a SilentBuilder
2022-03-303062829461490717.xlsxls 92b068c533ae97aca8470cdbc6e8d3bf23caaf19f593b462e8352e58cf21c352n/a SilentBuilder
2022-03-300551015910111.xlsxls 4951fce4529257a5344af35c9e06cc7d1c1cb2a852b283efea1e94d77315f02fn/a SilentBuilder
2022-03-3035211602185891512959.xlsxls bcef9c934fe5112b2ca48f5a9ea696c33d3114b345c63d7c331254037faff1a0n/a SilentBuilder
2022-03-301626767289334619.xlsxls 60e88edf882041b4b5d3d2d44bef62b53fc478dc719df2d61ce6f55771cda593n/a SilentBuilder
2022-03-3048872749831180450.xlsxls 15b8f817ad756bd04cd33d34f0a4670b25afa33c7ab59f37b322284809532d05n/a SilentBuilder
2022-03-301703113902707.xlsxls 2ed370e7b10a0832ccc6c51912b84345f0b6b1a0d19f212a86886497ec9bee8fn/a SilentBuilder
2022-03-30750569734842.xlsxls 4148c2fcfeafb479b13ec8c2b305fd2ebf671b61fe044476575a5b2be2b929dbn/a SilentBuilder
2022-03-3072961032541.xlsxls f30f9c9233859f2549dc271d14fd86bdebcc72c70e9c51ba4606b75cbf745473n/a SilentBuilder
2022-03-30624021944859184.xlsxls 905937ee43f2fc5221d18f42e0e1b2514bd1059016ddac70a5fe00c2092cf34an/a SilentBuilder
2022-03-308873406711995870.xlsxls 7d9969135b930be92c93aac7e3057b98410a43fd0af360ee02b88b9ad570d116n/a SilentBuilder
2022-03-307335454075205912.xlsxls 8268e3b187b04e9310ead1910af5d33341941f04739fe068e06eb341969b71afn/a SilentBuilder
2022-03-30496854486933180209.xlsxls b1c3d43a1b9fd0f97ca13511fa5bea8e9c537383fd9ca4962779312fc30460efn/a SilentBuilder
2022-03-3074682825070716838.xlsxls b1f9a8c2b79e9e80247652fcb54a87ead4d7b32c51769ae1622b94d9af3edeecVirustotal results 21.67% SilentBuilder
2022-03-308074617515.xlsxls a1c1f7785047048e4479c915a444f098c878a44e2a4496cfb20d84d6c2b17f8bn/a SilentBuilder
2022-03-303548146408524351364.xlsxls d33967aeb1dd24d0b71c8804770377b3713c0aa8f3944062fe6c1a9e3437a1f3Virustotal results 23.33% SilentBuilder
2022-03-309785086456424.xlsxls 50c3d5a37ccc9d63435cb5ed56e8a758234f55c42f3d8a90c12fdde81ae649bfVirustotal results 22.03% SilentBuilder
2022-03-30701030273561804950.xlsxls 8bc576d7a20e6614e7b139a3ee525c37e46da65fcd2d59a8d4adf1b57354ae05n/a SilentBuilder
2022-03-297975513812764238383.xlsxls 97df6ceb1a63712a6b1bf8f40f12d8add7b3a4e7f8191734eaee45dc10aee3ecn/a Heodo
2022-03-2995554482667987340.xlsxls cf32dd8b34af56ba98e8e60de33e463349578b7c5f034c6b5394c1de65d8b3bbn/a SilentBuilder
2022-03-2966652187300239.xlsxls d2c2f994b521bda48acab4fdb007d4fd5b14e1d30efd50a47348c9021992ff50Virustotal results 23.33% Heodo
2022-03-29440341788625861.xlsxls 6ddbab092ea3334218e1a42e8c21dacd63db67a4c382a78095e0712c06d9a667Virustotal results 21.67% SilentBuilder
2022-03-2925988507739432944.xlsxls 67a20d8315c3e1cb24416ae035906dcd81592e4320a2168428e11db1afeee329n/a SilentBuilder
2022-03-296550796871052068.xlsxls f65a94d6277859d9a378a87196fb29020f43daa4f319b0e64d292a3d15fc8b9an/a SilentBuilder
2022-03-2927034371018286695800.xlsxls c52e93e91b5d59d300c8514569b22a800531880de8cf3da12f3bf4166ebb3781Virustotal results 23.73%Heodo
2022-03-29146325983036.xlsxls e95274d5674d72d9075b19df5fb27cb9c5d27b574c413130399be9ddfc9805f9n/a SilentBuilder
2022-03-299284388261.xlsxls 867434fed6520d51d6ab9e462cc33d2a09e120de7603f17cb852687812ffb18fn/a SilentBuilder
2022-03-2922434239525461147772.xlsxls d88413ed8bb6c8e22c93bbeeedcdbadc2ec6f0a39dfa83b931dd065eac775edeVirustotal results 23.33% SilentBuilder
2022-03-294889053332405.xlsxls 9575e2971e7e9d0105384f20c77f085a66fe3e95903619289c697f24ab411e42Virustotal results 21.67% SilentBuilder
2022-03-29724163875963188.xlsxls fd45dbcb4421d2e1dab4a3a89b5f3ad86804cd028f538e6b5863ed931418bfc3Virustotal results 28.33% SilentBuilder
2022-03-2948153147930288.xlsxls 73baef7a8bc37374ee8275b8aaf5fb16f78627b699d6705a3788eb71bc57aeafVirustotal results 27.12% SilentBuilder
2022-03-2921139073956875021580.xlsxls c28b963c8ebc03cf18551688a0c512e5e27557ae0bacda77943bd6740ff3cdefn/aSilentBuilder
2022-03-290564152962555211.xlsxls 9cc0ea3669fa33e3dd91401e013865c29f1641425ae33257383336d00f983afaVirustotal results 26.67%SilentBuilder
2022-03-2975991307734820.xlsxls 4c815a49ee680d680791d6675b253a0407bee7805e8d7d9a443ea0869df8097en/a SilentBuilder
2022-03-292372248409254968.xlsxls 93f421717b6adc45facdb7f536cfaf63eaeb0bdfc53d9d8b56f479d048c7cc5dn/a SilentBuilder
2022-03-2815240698305191.xlsxls 6cfd86adfe720a6432fb65748f6d9c8607f6c15fe412f73e1efd964268152bbaVirustotal results 21.67%SilentBuilder
2022-03-2841418021654.xlsxls 69cfcb0822207ba5d2438f1936d2522c9eaba929f78897554b0b100c7abac3f8n/aSilentBuilder
2022-03-28543545672840.xlsxls 337ee78277daf4f7c28f4a764d468d4e364a6751d2351cbfd0989b4f95bb275dVirustotal results 26.32%SilentBuilder
2022-03-28628502147565612.xlsxls f21df05485fe9c9bd7f1a6b2e29a7f3c502ced4c71cc2e712311aee38dfddd8dVirustotal results 20.69% SilentBuilder
2022-03-286146617552366797.xlsxls b3ba3094c0eacfe54fa37b3d350e064f7622e1d9e64b6de4cd196d6abf3cb058n/a SilentBuilder