URLhaus Database

You are currently viewing the URLhaus database entry for https://fhdllp.com/wp-admin/RjPJKaNe7eFGuToyCtd/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2117985
URL:	https://fhdllp.com/wp-admin/RjPJKaNe7eFGuToyCtd/?i=1
URL Status:	Offline
Host:	fhdllp.com
Date added:	2022-03-28 22:49:04 UTC
Last online:	2023-01-21 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-01-21 09:42:06 UTC to abuse{at}godaddy[dot]com)
Takedown time:	9 months, 28 days, 11 hours, 40 minutes (down since 2023-01-21 10:30:13 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-30	YE-127368045036471.xlsm	xlsm	3ddb0afe002c6eb3262f0dd69d76dd10f43fe5994bf2d96da64624dfa7b55780	32.26%	Heodo
2022-03-30	NM-152127125.xlsm	xlsm	93629f0e94046fc0c1c1a2779a8e58d101136842695fc4ad3addbde6c7757dcd	n/a	Heodo
2022-03-30	FX-9492724550.xls	xls	9a452423716adc6142254ad9e0ff71b1c5c6e9b5afdbfa78848dd8e5412a3db0	28.33%	SilentBuilder
2022-03-30	4720080011974.xls	xls	6edf2bbc238af34d4d9a013d6ae99ec1a1df41d15caa4bf4e90ec5fd50ac19ee	28.33%	SilentBuilder
2022-03-30	52261316277145049.xls	xls	52a88ae53dec7d92214799f525ec1d5421ab795d9b0e952e3988e7d01775de4a	26.67%	SilentBuilder
2022-03-30	59688782459.xls	xls	6bc82ca44f9547143dd0946b0a5eb849e09e743565f3731328c94506ba8edb7a	n/a	SilentBuilder
2022-03-30	842931262116496.xls	xls	828929951f98381b6a75c461fb73a4432c2f52e1272800668629d783740179c8	n/a	SilentBuilder
2022-03-30	265504679167.xls	xls	20186c5c73a6b5800a5b9edaeb4ca017cd910d96adae3d2c6df643f6bc5ea42b	25.00%	SilentBuilder
2022-03-30	9356384526666.xls	xls	7c15e18d1dba244cc6c87a0ffa3947175c8a36156c690b62ea571af5e36fa32c	n/a	SilentBuilder
2022-03-30	602643292369352147.xls	xls	ef3d086b10d8ff1a6b4e0e8d2b12a320f6c5c03623b0cb931acf667cdc77a6b3	23.33%	SilentBuilder
2022-03-30	83346298558843898.xls	xls	9b549e9ae691f8b583596b3a513ca77624517277b8ce18a5379e2a75604cd6aa	28.33%	SilentBuilder
2022-03-30	54687121006.xls	xls	28c1994bc596421a111c75b795d98b2192edc5aa92b6d1e3adcefd40bd9d0bdf	38.18%	SilentBuilder
2022-03-30	415654207583460229.xls	xls	d4cfb0c8440f63b52a9a6506210f17aa2cbdeac594081472fa3f4c8440fbbc1d	n/a	SilentBuilder
2022-03-30	1562833939601227665.xls	xls	409aac8f35988e5be14f514036a2f7e33085bd3a296d958fc4d1bc4d7836673d	n/a	SilentBuilder
2022-03-30	9951923131632000418.xls	xls	dbc38c75e54064f7a99465694a4fc3a47c9d667bb87cded0c33ed6c6e22d7260	n/a	SilentBuilder
2022-03-30	8648212011.xls	xls	9580b70ecd826b21ad9e0ff4e1a49b40e9f1412b2793d1c838a8dbed34112bf8	n/a	SilentBuilder
2022-03-30	8248769269.xls	xls	0ed4a61da5b83e2f6e1f179296534712391f653cad49956df89b1f9af2651d26	n/a	SilentBuilder
2022-03-30	2630155977.xls	xls	34c5a61d58c466e1ece6c028111a70d2b8c31eb5e36b37af657d5188595e1f5e	n/a	SilentBuilder
2022-03-30	030642217532452997.xls	xls	e3c025ea969a7801acd598c71b4efadd504f65f294d81eabeecc4fda103183b9	n/a	SilentBuilder
2022-03-30	5698753562080635.xls	xls	fc11990e224dccd621a3e096de9d3ba9ea970ea8434a56a20ff5dbf00ac1bd90	n/a	SilentBuilder
2022-03-30	54763976128.xls	xls	905937ee43f2fc5221d18f42e0e1b2514bd1059016ddac70a5fe00c2092cf34a	n/a	SilentBuilder
2022-03-30	381519974379435440.xls	xls	7d9969135b930be92c93aac7e3057b98410a43fd0af360ee02b88b9ad570d116	n/a	SilentBuilder
2022-03-30	492442656916886.xls	xls	562cb8922d82b50caf2e7452a6db106849432c9577c62aca3f1fd5fe90cd5308	n/a	SilentBuilder
2022-03-30	7539361984.xls	xls	fd2ecf04bb4da7241599359cdb7b7f3a79197b33968f784ea57336faf2c84ba9	n/a	SilentBuilder
2022-03-30	587323366714.xls	xls	9e011d77b179dc3075654faa2f570ff83e31cb879ef14891e49805831790a329	25.00%	SilentBuilder
2022-03-30	8908097355.xls	xls	a1c1f7785047048e4479c915a444f098c878a44e2a4496cfb20d84d6c2b17f8b	n/a	SilentBuilder
2022-03-30	6071344687109731992.xls	xls	795d1cb7302f7f2d226a7a50f9a1dfaca81c320aabc71f47113736bc0712a6a7	n/a	SilentBuilder
2022-03-30	02075514659721926.xls	xls	c014caec272f00448f32115b18b4c88c92ee9e4601ba0e8a8b6912d62c76ef70	n/a	SilentBuilder
2022-03-30	08403513268.xls	xls	8bc576d7a20e6614e7b139a3ee525c37e46da65fcd2d59a8d4adf1b57354ae05	n/a	SilentBuilder
2022-03-29	69928499546977.xls	xls	bbfd1a6119f3e1a55e92ffce783efd08f462e72b34095a96c3590100fce48077	n/a	Heodo
2022-03-29	44825209099443828957.xls	xls	ccb548d41cebfcba2c1b04912fb4f992cca90e013536c6716e1cb2b8145b98d6	n/a	Heodo
2022-03-29	4272226365977.xls	xls	fa71482fa174e9b6b3a1a1b356349d522ae45132349656afae93182a187ba493	21.67%	SilentBuilder
2022-03-29	7624038571202.xls	xls	6ddbab092ea3334218e1a42e8c21dacd63db67a4c382a78095e0712c06d9a667	n/a	SilentBuilder
2022-03-29	12586293600.xls	xls	11e85a3bcab8d5d4f43929a8cf0783d612f20f10f38a0d84e702f110e149e565	23.33%	SilentBuilder
2022-03-29	7425501212759292213.xls	xls	4a1f67eac68a30b3e0d924a827eb976aebd1eca8f0cfdb68ca7d4adeb3d86abd	n/a	SilentBuilder
2022-03-29	3354023245846204.xls	xls	e95274d5674d72d9075b19df5fb27cb9c5d27b574c413130399be9ddfc9805f9	21.67%	SilentBuilder
2022-03-29	951096339442844412.xls	xls	de0451fa84d12094775843b0424bfcc18832943128c01ba088acae9c80a402e3	n/a	SilentBuilder
2022-03-29	59346632454734187892.xls	xls	d88413ed8bb6c8e22c93bbeeedcdbadc2ec6f0a39dfa83b931dd065eac775ede	n/a	SilentBuilder
2022-03-29	422001752030173.xls	xls	9575e2971e7e9d0105384f20c77f085a66fe3e95903619289c697f24ab411e42	21.67%	SilentBuilder
2022-03-29	23601195977533.xls	xls	eda7f7e8834bcc66058cf806569b10374127869c38c074ce5b1d6762277d8d71	26.67%	Heodo
2022-03-29	5711975612967356.xls	xls	2e17ea0e89889002764dc4aae016b399c71ba824d3accc5cfb2cdbcbdacbf37d	n/a	Heodo
2022-03-29	7434420671538468397.xls	xls	8271c0fe9e85c53be37c57736e8d0250caaba5ba1b1ca08bdc1895f5a2607db4	n/a	SilentBuilder
2022-03-29	700717048720849734.xls	xls	59846e1c9e998c424dfe77213f55c164c21cadf7a9f3744d9bcfab9b5770c254	26.67%	SilentBuilder
2022-03-29	774926011934248258.xls	xls	89327842044464e84ac374b29fb1fe2f24e658964282c5db0eaa67037ad721f0	22.81%	Heodo
2022-03-29	522831576654691.xls	xls	5ce1b840a408fddaae1d38245033f780e949755d2caa8beb8ca870eff684a7d7	26.67%	Heodo
2022-03-29	6199959437731712.xls	xls	6cfd86adfe720a6432fb65748f6d9c8607f6c15fe412f73e1efd964268152bba	21.67%	SilentBuilder
2022-03-28	82380672109293352.xls	xls	f12905c984c2c58ec466f9e198a65aba6cdc55062e8028395957a9ac8dc38b81	22.81%	SilentBuilder
2022-03-28	9512098530030348577.xls	xls	84d1f9bf03c6740e5adccd60b52cf2caab1fc15d63fae2d6659daa2299dea489	20.34%	SilentBuilder