URLhaus Database

You are currently viewing the URLhaus database entry for http://emiber.hu/cgi-bin/6DigFER8eUkoOTiMEWVmjgiK2uwh/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120113
URL:	http://emiber.hu/cgi-bin/6DigFER8eUkoOTiMEWVmjgiK2uwh/?i=1
URL Status:	Offline
Host:	emiber.hu
Date added:	2022-03-29 17:15:05 UTC
Last online:	2022-03-30 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 17:16:07 UTC to abuse{at}ezit[dot]hu)
Takedown time:	21 hours, 35 minutes (down since 2022-03-30 14:51:30 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-30	2922504697.xls	xls	7597defb4baf2b0e2bac5b71f4f2cce4b215b9269a11b07be5dd44e5a750956d	21.67%	SilentBuilder
2022-03-30	24864344134480082412.xls	xls	0064a9e50d81734b02d6e46a0c7438caaac87d97c3a8d2e252d116c08094820b	n/a	SilentBuilder
2022-03-30	94960136288497060451.xls	xls	51a8819534ed48bd71579b6e79307358b76ceaae81aafc73cbb8e8b77e977061	n/a	SilentBuilder
2022-03-30	9028904035123711176.xls	xls	a4206c582c5af97000782abf9ccf8ccafa231a34f5a74ac9b534286ef656d253	n/a	SilentBuilder
2022-03-30	105728281947340.xls	xls	b1f9a8c2b79e9e80247652fcb54a87ead4d7b32c51769ae1622b94d9af3edeec	n/a	SilentBuilder
2022-03-30	238553129707.xls	xls	a1c1f7785047048e4479c915a444f098c878a44e2a4496cfb20d84d6c2b17f8b	n/a	SilentBuilder
2022-03-30	05308837434.xls	xls	f37c6c8662785514f852d04f94ac6b2217b3c5244e84dae528f13c5b8b95daec	n/a	SilentBuilder
2022-03-30	82482704966022.xls	xls	8e9245a7ff1bf4c43cee8e3b568af8044010cbaa655b23ea98c86a5ac18ca472	n/a	SilentBuilder
2022-03-30	7054895013876.xls	xls	b8d670ca1984f7ecc9e90c4bc0c4c4d96172690aead7080171735f96c11ba21f	n/a	SilentBuilder
2022-03-29	40371934819242492927.xls	xls	3cd17e7df9642d09bd3d735e259ca8f9c4ff061f1070a601f3e638df5fbe1647	n/a	SilentBuilder
2022-03-29	057079178676451925.xls	xls	b1607ec0f6786f359c81b5a083c3ba60a429a0cc7d89c5d7613b026afa3a1651	21.67%	SilentBuilder
2022-03-29	19108277792075735518.xls	xls	877dbc6908c214d0a451b962f01dff21a6b87f149d7ddace0d2a408d39ecfd23	n/a	SilentBuilder
2022-03-29	1339554098.xls	xls	0d459aa7c1a588a576c7017f7707f991abecb6756d0575dd98a104f900218e31	n/a	SilentBuilder
2022-03-29	28809967573.xls	xls	5facd7e6e06801b2f98d8622d9dfa7549dc7fbcc4d2f1cd957f193d81a1e7e31	23.33%	Heodo
2022-03-29	36485185863530532607.xls	xls	d2d3ee44f59528659d087d1782d7d4f6c95c2c5e22fcdeb342fbfd95014f3869	n/a	Heodo
2022-03-29	6677494878642111770.xls	xls	4a1f67eac68a30b3e0d924a827eb976aebd1eca8f0cfdb68ca7d4adeb3d86abd	n/a	SilentBuilder
2022-03-29	25561414224018601643.xls	xls	6121550710d668a4b80ca4f056d91829e4a793dc1a04fd52c9ebd937b02fb685	n/a	SilentBuilder
2022-03-29	1262061082265.xls	xls	785f830ec42e6e6de3f29b1037818fa35ba3bf5bdcc06cff94a3bc582927086c	n/a	SilentBuilder
2022-03-29	0106649397523.xls	xls	4268dc47de4d11bc5cc3876e399602c2904c5903a08e1150763c0534a38a1ffa	23.33%	SilentBuilder