URLhaus Database

You are currently viewing the URLhaus database entry for http://emporiumbrewing.ca/css/MKEFbAtccjpJGr0MZPLu33b/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2119557
URL: http://emporiumbrewing.ca/css/MKEFbAtccjpJGr0MZPLu33b/?i=1
URL Status:Offline
Host: emporiumbrewing.ca
Date added:2022-03-29 16:32:04 UTC
Last online:2022-03-30 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-29 16:33:05 UTC to abuse{at}online[dot]net)
Takedown time:20 hours, 5 minutes Good (down since 2022-03-30 12:38:54 UTC)
Tags:doc emotet link epoch4 heodo link SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-307656096849.xlsxls d165b715b1c473df33c059be50a8eec754b9dc819ed59230ab9c74e352584753n/a SilentBuilder
2022-03-30144613147116324.xlsxls 60e88edf882041b4b5d3d2d44bef62b53fc478dc719df2d61ce6f55771cda593n/a SilentBuilder
2022-03-303270838058705286.xlsxls c1a38ee59c67a62ae3c7dd46f10ae1d065f69a6f3d14c910c59bf2d5dd22bdc7n/a SilentBuilder
2022-03-3046332509095.xlsxls 5c5982e66d129ffc81e2afdc277b205739de990caaa2fa12443b155bb16d7ef1n/a SilentBuilder
2022-03-30848248317363493442.xlsxls 0dc5fa042e539195dcbb04e6c1655104e9538a9e293e532aed1b9d28e18cfd69Virustotal results 25.00% SilentBuilder
2022-03-303151081767214.xlsxls 17ecc742902925465369b5dc8bb6c8c87d9e16a1cdde0c38c3b4264f73029cd6n/a SilentBuilder
2022-03-300997935317927716229.xlsxls 28ba829fb4abeb8e11243e10baa9049f361d5411bb569975c0bae2c64a800d3fVirustotal results 25.00% SilentBuilder
2022-03-30484032252616411102.xlsxls 385fc2720a678cc5b53d3d58caa225e7fa24e29c86ff6acecb609afb7659caa4n/a SilentBuilder
2022-03-30747234982794695.xlsxls 8268e3b187b04e9310ead1910af5d33341941f04739fe068e06eb341969b71afn/a SilentBuilder
2022-03-30977148239128.xlsxls b1c3d43a1b9fd0f97ca13511fa5bea8e9c537383fd9ca4962779312fc30460efn/a SilentBuilder
2022-03-3088339453356845463836.xlsxls 8afc3601bdf149acb399f6b30fe3188535845cbd8af7c0cf469d02e7524b2b6an/a SilentBuilder
2022-03-301793515851009018694.xlsxls 6280ad828511d4eb90c7c03d7f193d8f55f363f130e0c4aacc7481220313b846n/a SilentBuilder
2022-03-300475536850337.xlsxls 78b5d0693886a588ad59b63c17e3ccbc19b6d3145ab7f67641e4c80b952cc85an/a SilentBuilder
2022-03-30404027785008695.xlsxls ea9c422c9b703f062f979c2ecf05757a96bf46c483505d5e366cf8b27ddb7189n/a SilentBuilder
2022-03-306456172325.xlsxls 72f44b1c95347d606a9f1fabe8c22df22936c3b512184e810d88a2523b9c99d6n/a SilentBuilder
2022-03-29487929386392087.xlsxls 1b7b4de07674b0a896830c649a51473d0c17f4ea18ec4c30001b9886c6af41ddVirustotal results 23.73%SilentBuilder
2022-03-293343054653.xlsxls ccb548d41cebfcba2c1b04912fb4f992cca90e013536c6716e1cb2b8145b98d6n/a Heodo
2022-03-291266980359.xlsxls 4db12a7472a2427ea88cb16a24494b46824688abd29824abffa27f9366e46f30n/a SilentBuilder
2022-03-290452639299260427.xlsxls 21b493331dfa55c98bb5ac6fd74d85190940cfbcd4c7a6c499019918276e0cd8n/aSilentBuilder
2022-03-29837736284748247559.xlsxls 67a20d8315c3e1cb24416ae035906dcd81592e4320a2168428e11db1afeee329n/a SilentBuilder
2022-03-29153331545791288.xlsxls f65a94d6277859d9a378a87196fb29020f43daa4f319b0e64d292a3d15fc8b9an/a SilentBuilder
2022-03-295370464786524.xlsxls dba7a4b42e291b9f9fa4c9734d6671a1ebb6dda6e2bec200a0d72322ad1f37b6Virustotal results 21.67%SilentBuilder
2022-03-2926806009967715.xlsxls 304913e3996ab2ae3725ada6014aa2b911169ace045a0492921488504cab1120Virustotal results 21.05% SilentBuilder
2022-03-293482275773641.xlsxls de0451fa84d12094775843b0424bfcc18832943128c01ba088acae9c80a402e3n/a SilentBuilder
2022-03-29782811976932082.xlsxls d88413ed8bb6c8e22c93bbeeedcdbadc2ec6f0a39dfa83b931dd065eac775eden/a SilentBuilder
2022-03-2926476762810.xlsxls f64be21af4aac03b3dc8819ccfbff6b9512653e384fc9f1ba1603544dc8cbb22n/a Heodo