URLhaus Database

You are currently viewing the URLhaus database entry for http://flumedya.com/assets/VZB63LIUFFBmfaHeegnmL/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2119293
URL: http://flumedya.com/assets/VZB63LIUFFBmfaHeegnmL/?i=1
URL Status:Offline
Host: flumedya.com
Date added:2022-03-29 13:14:05 UTC
Last online:2022-04-02 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-29 13:15:06 UTC to abuse{at}omurtech[dot]com)
Takedown time:3 days, 21 hours, 50 minutes Bad (down since 2022-04-02 11:05:48 UTC)
Tags:doc emotet link epoch4 heodo link SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-31RJ-44355907841791.xlsmxlsm 894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7Virustotal results 36.51% Heodo
2022-03-31WH-21875360.xlsmxlsm b0fa5dda99558a54917cc9a5f6269d440cd8b30ed825f72c837d6e4044d9f628Virustotal results 42.62% Heodo
2022-03-31VD-486679031483.xlsmxlsm a1057f814e603d7b7ff7b711305cac0ef15e48b78499802d411424a19ee235f8Virustotal results 40.98% Heodo
2022-03-31KUR-3086934666666.xlsmxlsm 09edc074cf0f65e7ff9b4ce87add12e2dba511bdfe639896c894d4b0d1945438n/a Heodo
2022-03-31JYN-0347849020686.xlsmxlsm 54bb2433c32ae91e6033d49276536fd303652e555e7d1cdf5e1aa0bf9f483d18Virustotal results 40.32% Heodo
2022-03-31WRL-43516091767914.xlsmxlsm 39bbb570609ea300f9d959dcf23f2161043c6dedc230f97e7eab2388db651831Virustotal results 38.71% Heodo
2022-03-31OUU-400975304.xlsmxlsm 4f1ab8d0a0a6f8a7964b32b8a4bdd94bad95e6774501cf7685028a40efc761e2n/a Heodo
2022-03-31VC-41092557515.xlsmxlsm 764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590n/a Heodo
2022-03-31HK-147419552158.xlsmxlsm f93f882fe4bac2b1210512c64a2985c99282b49a95a2aaa3bfcf6865d6dd0056Virustotal results 39.68% Heodo
2022-03-30EQP-58194794.xlsmxlsm 24499993a94d9888bcdc8a5b9c58aadb86dbd363efdfc2fe1996d98dba57bde8Virustotal results 39.68% Heodo
2022-03-30WED-212032406100.xlsmxlsm 8eb161bd22ea52d987b19953ebebe364df8a0779ed9f42ad96c6dec32f8cce52n/a Heodo
2022-03-30ES-00084207298728.xlsxls a14fb7f51582ec1f9af65f4300ff4dde6a99d12bd2b08f70863ca16d508c72baVirustotal results 28.33% Heodo
2022-03-30QB-41232976.xlsxls c83aefdafdc478ffff051002d1c7b4675c068648d57fca17f788d575ce297596Virustotal results 28.33%SilentBuilder
2022-03-3081358523064410.xlsxls 6edf2bbc238af34d4d9a013d6ae99ec1a1df41d15caa4bf4e90ec5fd50ac19eeVirustotal results 28.33%SilentBuilder
2022-03-3019122907054357888.xlsxls d50ff37a85433702c1107c3f20efde94efa785c44886033b550035b23d873ac1n/aHeodo
2022-03-30294367218914659860.xlsxls 6bc82ca44f9547143dd0946b0a5eb849e09e743565f3731328c94506ba8edb7an/a SilentBuilder
2022-03-3066729976175775726.xlsxls 21cd95fb4f71525407b37a901590819a18d24ca48bd6b8f7170ff423e780dd4bn/aSilentBuilder
2022-03-301369406641026865163.xlsxls aa86d1be623622ae373fc9dcfb7365d513d0e273891e34b480ab2d7b10d6a7bbn/a Heodo
2022-03-3053132757324277520.xlsxls b2565c24c9c72461d71c25df5d6ea291c53cd27725217f8c6585653cbdf72648Virustotal results 25.00%Heodo
2022-03-3029550204678995382.xlsxls fae4ba041a7ff41b27eaca9a975639c14394948c6cbd170c77fd6271dcd269a4n/a SilentBuilder
2022-03-309318061106818988.xlsxls ef3d086b10d8ff1a6b4e0e8d2b12a320f6c5c03623b0cb931acf667cdc77a6b3Virustotal results 23.33% SilentBuilder
2022-03-3052077863368550257.xlsxls ebfa044ba6f3aeb955776b3c5565296472f0f8f6ed2dbb78c25c87f8107de4f3Virustotal results 22.03% Heodo
2022-03-30125820511725097150.xlsxls 079806e7e5cae5bb3c9852b5a9baf4b25235e85e5e134fd5fa77eedce4f0ccfcn/a SilentBuilder
2022-03-304011174403.xlsxls 94572bba7488c332400063524bfc88171b7996d51e066f58d4edbb620d5ead70n/a SilentBuilder
2022-03-302406212904994099982.xlsxls d165b715b1c473df33c059be50a8eec754b9dc819ed59230ab9c74e352584753n/a SilentBuilder
2022-03-308102194407795.xlsxls ee0751444c28714ba1f0d4228dbfcee7ee0d8fe35176d8ab8ad52fe2d0eca562n/a SilentBuilder
2022-03-305391949812.xlsxls 15b8f817ad756bd04cd33d34f0a4670b25afa33c7ab59f37b322284809532d05n/a SilentBuilder
2022-03-300503258582726.xlsxls 8c2643d96b8786245f44bdd74656f201f7893152c1df78c9497d5734cbcb63abn/a SilentBuilder
2022-03-301303545586819948.xlsxls 2caac6509283ebdd1ce41a7766708b7a7c41f6ceeea9e3dd192d01913070ed2an/a Heodo
2022-03-3034075986328192344214.xlsxls 4e9360135bc764d3e1c38b136a67db8939b68992f983c17c2096ee12d028b362n/a SilentBuilder
2022-03-3035387054867508.xlsxls a612e9a7b8f4a08f1b73f5a7e07b586913f327d8bd789ca7ce7c1e6e80883f91n/a SilentBuilder
2022-03-308580523000035.xlsxls e2ee016889aedab89bbc5f12cac6caa90469cc9399fb4d492feda727602e4ed4n/a SilentBuilder
2022-03-301407929646082.xlsxls 562cb8922d82b50caf2e7452a6db106849432c9577c62aca3f1fd5fe90cd5308n/a SilentBuilder
2022-03-3066754908611.xlsxls b1c3d43a1b9fd0f97ca13511fa5bea8e9c537383fd9ca4962779312fc30460efn/a SilentBuilder
2022-03-300894175243993.xlsxls 7103255e4f3ba04e29134d3d552246d8af73ba82f1cb6443751457974a8471c1Virustotal results 23.33% SilentBuilder
2022-03-308460009956863522247.xlsxls a1c1f7785047048e4479c915a444f098c878a44e2a4496cfb20d84d6c2b17f8bn/a SilentBuilder
2022-03-3076152264527329.xlsxls f37c6c8662785514f852d04f94ac6b2217b3c5244e84dae528f13c5b8b95daecn/a SilentBuilder
2022-03-3095187440461366973740.xlsxls 8bf74e3bd0c2bd417840c78d7de56486295b5ffdf9f9e358a3c4348b5147037dn/a Heodo
2022-03-30601972013942608454.xlsxls 9b7452e408963921f685e25246f5c63af11c407ac04a6fa47ffe38b3325b52bdVirustotal results 22.03% Heodo
2022-03-2955759527876951.xlsxls 1b7b4de07674b0a896830c649a51473d0c17f4ea18ec4c30001b9886c6af41ddVirustotal results 23.73%SilentBuilder
2022-03-298927239361386.xlsxls 4db12a7472a2427ea88cb16a24494b46824688abd29824abffa27f9366e46f30n/a SilentBuilder
2022-03-2951206868609047583.xlsxls b26329204d4a737b51b710c6fb4ca573291be87a1fb5606f0e0b75987c09908fVirustotal results 23.33% SilentBuilder
2022-03-293786671568.xlsxls 6ddbab092ea3334218e1a42e8c21dacd63db67a4c382a78095e0712c06d9a667Virustotal results 21.67% SilentBuilder
2022-03-2998295847628971849268.xlsxls 37b9f7f289229073f7615e9694ead523ff3f6cdf77a0cf2d0694d910a10ce6b7n/a Heodo
2022-03-2949156166115307137322.xlsxls f4dfdc4cc743e4303a3c426563236a373e1fc97a507a36f7fa28f1136807e19fVirustotal results 22.03% Heodo
2022-03-29053675670259.xlsxls c92ded7a25787ebf85924eaa3bcda461a2f4bcd31f482604e652d7334645fe1dn/a Heodo
2022-03-2912502180724167.xlsxls d0dc2168b3dd4944488dd41feee933b81254176491122d8afdbcd8bafa175694n/a SilentBuilder
2022-03-294405803868.xlsxls f6fcd17a0f9ac625fbdc7082aaf01b5cf749e979bab76a1839c27a3fa804f2efVirustotal results 22.03%SilentBuilder
2022-03-2986681342404070827466.xlsxls f64be21af4aac03b3dc8819ccfbff6b9512653e384fc9f1ba1603544dc8cbb22n/a Heodo
2022-03-2984495659563.xlsxls a4e11b592f318bf05d351dd21b0cec5939ac72034bedafb74e8385d71da94b50Virustotal results 30.00% SilentBuilder
2022-03-29317629152300654.xlsxls fa0b00a97c0fcdee52edad2f04692efa11a8567946cffac17a52cfef6da485a6n/aSilentBuilder
2022-03-297725287501929456.xlsxls 65cb61155f04597306d3d063ed292605790a5dca2c616422756b23ef4d5c18dfn/aHeodo
2022-03-29608938112621.xlsxls 68ae9bd4498bd077c5e0200bef2aa21a028e4cd90587d80788b9cb7955b35b81Virustotal results 25.42%Heodo