URLhaus Database

You are currently viewing the URLhaus database entry for https://hoffmeyer-waagen.de/Bilder/rvogZCHOaypQgHRvdcT5rBcD7/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2119424
URL: https://hoffmeyer-waagen.de/Bilder/rvogZCHOaypQgHRvdcT5rBcD7/?i=1
URL Status:Offline
Host: hoffmeyer-waagen.de
Date added:2022-03-29 14:46:10 UTC
Last online:2022-03-30 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-29 14:47:05 UTC to abuse{at}hosteurope[dot]de)
Takedown time:14 hours, 32 minutes Good (down since 2022-03-30 05:19:52 UTC)
Tags:doc emotet link epoch4 heodo link SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-308018918537061.xlsxls fd2ecf04bb4da7241599359cdb7b7f3a79197b33968f784ea57336faf2c84ba9n/a SilentBuilder
2022-03-3045705186566864635277.xlsxls b53e7fd809f9e654c0d9d6d4f0aa797529daadc82b205bcecc3b564b45892ac4Virustotal results 25.00% SilentBuilder
2022-03-30359590059701813771.xlsxls 00dc943ad8b806227c7e348971e538f6d3aa287ec1fcd2e645d272d3e0fea436n/a SilentBuilder
2022-03-30706535374511229156.xlsxls 6280ad828511d4eb90c7c03d7f193d8f55f363f130e0c4aacc7481220313b846n/a SilentBuilder
2022-03-3034329339836692009701.xlsxls 89136067e996c0c3a8e676d6ce711ab54ecf8a512369eb2075ad4e0fb8eea359n/a SilentBuilder
2022-03-3065190956054208826.xlsxls 805ea337e3e761a017b54b6a0dd8dacc8e1e05f20f2b5ae129fa1882c4e2ecf4Virustotal results 23.33% SilentBuilder
2022-03-307789249329377692.xlsxls b8d670ca1984f7ecc9e90c4bc0c4c4d96172690aead7080171735f96c11ba21fn/a SilentBuilder
2022-03-29753506958059284704.xlsxls 97df6ceb1a63712a6b1bf8f40f12d8add7b3a4e7f8191734eaee45dc10aee3ecn/a Heodo
2022-03-2998699611694203675194.xlsxls cf32dd8b34af56ba98e8e60de33e463349578b7c5f034c6b5394c1de65d8b3bbn/a SilentBuilder
2022-03-2968918118836249.xlsxls 81ba58623792becf40d816c7b68f709ae3ff2985753490501f12ea3987f9bb5eVirustotal results 23.33% SilentBuilder
2022-03-296843937001340434040.xlsxls 6741b0effa1844c85e25015d8c01ab0330e793dc563cfe2977746f5eb7a37fd3n/a SilentBuilder
2022-03-2945676630152.xlsxls ed2f8d7e4690bad774218068fb147924da6ac0dc68f5329699e01075b866a262n/a SilentBuilder
2022-03-29946755242119572.xlsxls 30c386f8b27cab9ed4525f9123ace697473b0a9c1a5d17ce0267258535926383Virustotal results 23.73% SilentBuilder
2022-03-2941043367189644.xlsxls 17be914f3d6a88c006b33cea5ac7e4774eb6c0c57d8ae8b3c7ad07a45d4efa81Virustotal results 23.33%SilentBuilder
2022-03-29293523061507.xlsxls 299eef9367c7d46794f985f1653108dff2ea664d29f31b8ba1a08c934e1d42b6Virustotal results 23.33% SilentBuilder
2022-03-291891597998229336.xlsxls 785f830ec42e6e6de3f29b1037818fa35ba3bf5bdcc06cff94a3bc582927086cVirustotal results 21.67% SilentBuilder
2022-03-29843394155014778003.xlsxls c61a6a125d65791a39445d25af536dc56cde0c8c1c013c3869fdd9a65ec6f59bn/a SilentBuilder
2022-03-290000575755783310.xlsxls d32e7772c5e0a4b5efc90ec207f69a7e3339f692038776b1532299a837356affn/a SilentBuilder
2022-03-2962725822564753164747.xlsxls fd45dbcb4421d2e1dab4a3a89b5f3ad86804cd028f538e6b5863ed931418bfc3Virustotal results 28.33% SilentBuilder
2022-03-292890312809818.xlsxls 36d98b62a40c66f88eb4e10e8ac0e388b5c1ed865e08f9314579a15d3f81b3c1Virustotal results 26.67% SilentBuilder