URLhaus Database

You are currently viewing the URLhaus database entry for http://eportfolio-bizcom.msci.dusit.ac.th/e_port/nCAvYGij36vA8Dl0Wo6p/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2120069
URL: http://eportfolio-bizcom.msci.dusit.ac.th/e_port/nCAvYGij36vA8Dl0Wo6p/?i=1
URL Status:Offline
Host: eportfolio-bizcom.msci.dusit.ac.th
Date added:2022-03-29 16:38:08 UTC
Last online:2022-04-07 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-03-29 16:39:05 UTC to helpdesk{at}apnic[dot]net)
Takedown time:8 days, 16 hours, 28 minutes Bad (down since 2022-04-07 09:07:12 UTC)
Tags:doc emotet link epoch4 heodo link SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-31DP-2061772859126.xlsmxlsm 894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7Virustotal results 36.51% Heodo
2022-03-31SGT-7388555364.xlsmxlsm 162637428037d1f8f3bd675b122e5b830107b9ea7352c8c765e97a3afbce1231Virustotal results 40.98% Heodo
2022-03-31MWY-2938598582.xlsmxlsm a1057f814e603d7b7ff7b711305cac0ef15e48b78499802d411424a19ee235f8Virustotal results 40.98% Heodo
2022-03-31HSS-01698180.xlsmxlsm a099f9c9c8eff7049da288a1205f1c0ccd52a4954930cabdd7a00dafbe8bbe6dVirustotal results 38.10% Heodo
2022-03-31OAD-09096499295.xlsmxlsm f88eb7101fdc0fe20190969ec3bb4651bf4f270d9a9636d6c1e1a84ae46a9cd6Virustotal results 37.10% Heodo
2022-03-31ILP-6950101.xlsmxlsm 30deb7a7086f74317285271a2e26e40dc43b461a1a77c77480ea742b02cbe51fVirustotal results 38.10% Heodo
2022-03-31VKZ-41924810.xlsmxlsm a43da1637de01a06d72a9d09981de5132b8bd971844704ee9fc7c5e07450a49dn/a Heodo
2022-03-31MA-83209111.xlsmxlsm 52939ecf287fe6bf3435960c423bf17f7ea8452f102024e9aca86cf806fdd533n/a Heodo
2022-03-31CQ-678145348633428.xlsmxlsm 70c7353a1e172d428b42bed59b7ddb9a6d1b60c368ec7ae5eb64c0eeed368080Virustotal results 43.55% Heodo
2022-03-31WZ-91633761.xlsmxlsm 08e924859a3a3f17c099cca75fbb3cfd7f8cd726fa2e89fb47ff02f9687143baVirustotal results 38.10% Heodo
2022-03-30HIM-94502749820.xlsmxlsm 39bbb570609ea300f9d959dcf23f2161043c6dedc230f97e7eab2388db651831Virustotal results 37.10% Heodo
2022-03-30TAY-660413728.xlsmxlsm a9815663da2b9c41013ae43700ed39ce8476ee64cad443c5c40bccd91420efc7Virustotal results 30.65%Heodo
2022-03-30HZ-401987240914317.xlsxls c37ffc0e87ede2e654c4112c8d1b9172041a21bc4174b248ee2c81af738bcaf5Virustotal results 28.33% Heodo
2022-03-30FX-9616829721809.xlsxls d743d15057637cf8074f2c125e85dec324808dae8860051c978dcda48f641d86Virustotal results 28.81% Heodo
2022-03-30782753501749037266.xlsxls 351b340794aa53151cbfc28a0915520349e8d2d2d33a41efd0c82e71dffcc9b2n/a Heodo
2022-03-3091631273775.xlsxls d50ff37a85433702c1107c3f20efde94efa785c44886033b550035b23d873ac1n/aHeodo
2022-03-308121343878.xlsxls 21cd95fb4f71525407b37a901590819a18d24ca48bd6b8f7170ff423e780dd4bn/aSilentBuilder
2022-03-30677483972366489.xlsxls 7e23ee736d4dfb8a361e8867027e49d1cabadb8a99f76ee5afae043b5a4bffc4Virustotal results 26.67% Heodo
2022-03-30174725961196886212.xlsxls 36525c62881502d638d137eef2414e9659a936b60d0ec784a833edd894e8d76fn/aHeodo
2022-03-3056017197051.xlsxls ac553e92c95bea557e54d66351d2c1937f8e92b8a5864dba69bdb9299c5b01c0n/a SilentBuilder
2022-03-3069310927857.xlsxls 2c5a6e2874d27ce1c3e678d86f41ae78e68de3348cde00858cf4299aa14ea521Virustotal results 23.33% Heodo
2022-03-30933851831609944829.xlsxls 28c1994bc596421a111c75b795d98b2192edc5aa92b6d1e3adcefd40bd9d0bdfVirustotal results 38.18% SilentBuilder
2022-03-3038106437472724952.xlsxls 05bd11c534ccbcecb257194ae6e0424eb2de9623336ea812dcf0e033a873463cn/a SilentBuilder
2022-03-307321055720283691.xlsxls 4951fce4529257a5344af35c9e06cc7d1c1cb2a852b283efea1e94d77315f02fn/a SilentBuilder
2022-03-307606376720595165613.xlsxls 8962aaa71206d6ab184fd4c5d8d8fc956ad277803b3a33e0519943cb304849a8n/a SilentBuilder
2022-03-3054238416756806.xlsxls 15b8f817ad756bd04cd33d34f0a4670b25afa33c7ab59f37b322284809532d05n/a SilentBuilder
2022-03-301692575600.xlsxls 4d57182432ade39fbabce23e685ff21cc1d6cf5966f8bf69e222d84d6c2176e4n/a SilentBuilder
2022-03-305788766084700973.xlsxls 76ed69153d3bac77298a51cc96c08cdcc5df5ee5b55d2cea606449d82bb3efbcVirustotal results 23.33% SilentBuilder
2022-03-3089350874399000720200.xlsxls f30f9c9233859f2549dc271d14fd86bdebcc72c70e9c51ba4606b75cbf745473n/a SilentBuilder
2022-03-303861366180196.xlsxls 99f00e2a4ed7ffc848c6d17b428903f2234a4279a94026429569afa46cbf1f52n/a SilentBuilder
2022-03-3097481937489.xlsxls e2ee016889aedab89bbc5f12cac6caa90469cc9399fb4d492feda727602e4ed4n/a SilentBuilder
2022-03-3045740311301179327.xlsxls 562cb8922d82b50caf2e7452a6db106849432c9577c62aca3f1fd5fe90cd5308n/a SilentBuilder
2022-03-301531921856494.xlsxls 052fbc6590f24acff458963b590eef70e2476dda44c74382ebbbc8cc3a9e9c25n/a SilentBuilder
2022-03-309498452599.xlsxls b1f9a8c2b79e9e80247652fcb54a87ead4d7b32c51769ae1622b94d9af3edeecVirustotal results 21.67% SilentBuilder
2022-03-3088491172033091518.xlsxls 24ad9d3f78bea240504cbce0249b7039af63a76ace53c784675eddccc8a91de0n/a Heodo
2022-03-3009969579602823287911.xlsxls 795d1cb7302f7f2d226a7a50f9a1dfaca81c320aabc71f47113736bc0712a6a7Virustotal results 24.56% SilentBuilder
2022-03-30126108152737853.xlsxls 18a5aadfb1ade6b05280001f26d457382545510248408bbf0ba6d73aecd59e1en/a SilentBuilder
2022-03-3049189515367947047438.xlsxls b8d670ca1984f7ecc9e90c4bc0c4c4d96172690aead7080171735f96c11ba21fn/a SilentBuilder
2022-03-30130177127860696.xlsxls 2b4e433d431ddc546d2381f7d44f58b9d96905ff4daa7e31f746eedb8ca8d196Virustotal results 23.33% SilentBuilder
2022-03-2941756123313209.xlsxls 6eb16e0690e24c1b65d09c39133e26dee115930191fbb0b6a2a6bbf2963962c1Virustotal results 23.33%SilentBuilder
2022-03-290876854844753232.xlsxls 1dbea40fcbd816ab601a760ef3a43708219096749c335057165212872cf8833dn/a Heodo
2022-03-294460879463.xlsxls b1607ec0f6786f359c81b5a083c3ba60a429a0cc7d89c5d7613b026afa3a1651n/a SilentBuilder
2022-03-2932702943376818153.xlsxls a9d6a9012999a42d370302b30ec394941e0482c23b21e6688f717663fd768844Virustotal results 23.33% Heodo
2022-03-298511454633061336.xlsxls 763aa1575b640a655dc00661ee174dfe2841c1e63072c4cfa50ece13c99e6756Virustotal results 23.33%SilentBuilder
2022-03-298191512868541501857.xlsxls 0d84099e5919846f0fdcdbfe62f8c2567c08eff2c743a0fbb1578e299b2a3b09n/a SilentBuilder
2022-03-299396462620516110037.xlsxls 7fe5cc139289dcde3ea311427e6ff9c2171dde027b2b96df256f576e28809e5bn/a SilentBuilder
2022-03-292550136833.xlsxls 0a6154f3c866b22e26356c0459f4b0eabee2bf9a7dffa104440b5db1ea99e2f7n/a Heodo
2022-03-2954337902315.xlsxls 23f8a8f49c3c031d30875fae0ca861f77ca7de37772390ea7645e05f5eb02cban/aSilentBuilder
2022-03-293973497348251168077.xlsxls 476ea29f364db5e102db5d55d7dd0e6ae4c9d724fec779bbc4eaa53d82ff6914n/a SilentBuilder