URLhaus Database

You are currently viewing the URLhaus database entry for http://enyx.ch/js/qV22gDJxE6T/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120072
URL:	http://enyx.ch/js/qV22gDJxE6T/?i=1
URL Status:	Offline
Host:	enyx.ch
Date added:	2022-03-29 16:42:03 UTC
Last online:	2022-03-30 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 16:43:05 UTC to abuse{at}hosttech[dot]eu)
Takedown time:	19 hours, 22 minutes (down since 2022-03-30 12:05:05 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-30	7370850876.xls	xls	60e88edf882041b4b5d3d2d44bef62b53fc478dc719df2d61ce6f55771cda593	n/a	SilentBuilder
2022-03-30	235004657105.xls	xls	73a7d36de3e4f7ddc7f714ff205b0ccd1660020f04898ec79764150268cc31e5	n/a	SilentBuilder
2022-03-30	82336422373990036309.xls	xls	84e8a5c9e678935ebb0022e67a2160105d3f416ac8ff9118d76b0183acc1e233	n/a	SilentBuilder
2022-03-30	0269340708.xls	xls	9822c8d67fc1931f874b2f4e8677a6eb5492d20aa72d677e4d8309f37108668d	25.00%	SilentBuilder
2022-03-30	5197341767161263587.xls	xls	19f6caa7a30df844b400ba5f224bd75901e715d328ef9a38903900f0fa773946	n/a	SilentBuilder
2022-03-30	86220537928983347.xls	xls	fb148929566c49a708a683fdd6dc9abc331df812bc9379d7313ecff5fd7a85a0	n/a	SilentBuilder
2022-03-30	29970276356151712.xls	xls	0064a9e50d81734b02d6e46a0c7438caaac87d97c3a8d2e252d116c08094820b	n/a	SilentBuilder
2022-03-30	04718455074.xls	xls	153ed0822091516925dc6d0878a91cce7c48cf3015c7b66490832a19bd11eb4b	n/a	SilentBuilder
2022-03-30	13172724809866572605.xls	xls	1b3dcc87c329e9a704c55890eced55298a7fe31f93de0dcbf15924aa87d4b3af	21.67%	SilentBuilder
2022-03-30	15286957260497677.xls	xls	4c775dc66dd1e7eefeb86433444c9bbc877514e792cb453c194199333d0aba86	n/a	SilentBuilder
2022-03-30	437823028313609.xls	xls	7750729ac7ac67c70c2263d1795171a4181f7821da3efa5be8a41060489fe24c	n/a	SilentBuilder
2022-03-30	119620862904.xls	xls	795d1cb7302f7f2d226a7a50f9a1dfaca81c320aabc71f47113736bc0712a6a7	n/a	SilentBuilder
2022-03-30	690178524482314.xls	xls	50c3d5a37ccc9d63435cb5ed56e8a758234f55c42f3d8a90c12fdde81ae649bf	22.03%	SilentBuilder
2022-03-30	15762042409743702.xls	xls	b8d670ca1984f7ecc9e90c4bc0c4c4d96172690aead7080171735f96c11ba21f	n/a	SilentBuilder
2022-03-29	3513549041222464.xls	xls	97df6ceb1a63712a6b1bf8f40f12d8add7b3a4e7f8191734eaee45dc10aee3ec	n/a	Heodo
2022-03-29	199353069195099803.xls	xls	1dbea40fcbd816ab601a760ef3a43708219096749c335057165212872cf8833d	n/a	Heodo
2022-03-29	131532742306.xls	xls	b1607ec0f6786f359c81b5a083c3ba60a429a0cc7d89c5d7613b026afa3a1651	n/a	SilentBuilder
2022-03-29	8837921190144.xls	xls	62b094d107529f9d76b6884e278677c794df2144fe1bd7e595e0c4ad181729bb	22.03%	Heodo
2022-03-29	95381597994.xls	xls	414e74161e81d686fd65dfbe7c32d02dcf41a3fce80ff8a8e9200771eeb387c8	n/a	SilentBuilder
2022-03-29	43956706280.xls	xls	6ddbab092ea3334218e1a42e8c21dacd63db67a4c382a78095e0712c06d9a667	n/a	SilentBuilder
2022-03-29	07098864024952902.xls	xls	5f9d14758b5a858e2e6c71b2f0860e5fd81746643f97a8d765ae0ee314b3425b	23.33%	Heodo
2022-03-29	17024906890157759008.xls	xls	c3d26b7f053fe5f6cb1a65367e25bdb9206d0cfaf03cbaeea2133546673e5c0b	23.33%	SilentBuilder
2022-03-29	79675122834502729654.xls	xls	5bf968294acfaf7a22762b459f2d1e559de2c77dc3411007d146e8b0b0807399	25.00%	SilentBuilder
2022-03-29	73281839683797077960.xls	xls	86b13aa1fccdc55676730cebc42451a0b238f65af9d6c2b47d6f91508e4b626e	23.33%	SilentBuilder
2022-03-29	77809227557367527.xls	xls	5e52d5010670d0cc95397e4999bee49d0366f4267a3c41a3cd4df4c6217a8af2	23.33%	Heodo
2022-03-29	248016028064697341.xls	xls	902afb7f03df7e3f3edd6d2d4caa7a2ec9530afd4f2a720d9fe66a89b30b5970	23.33%	SilentBuilder