URLhaus Database

You are currently viewing the URLhaus database entry for http://dulichdichvu.net/libraries/63lx8/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120212
URL:	http://dulichdichvu.net/libraries/63lx8/?i=1
URL Status:	Offline
Host:	dulichdichvu.net
Date added:	2022-03-29 18:20:09 UTC
Last online:	2022-07-03 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 18:21:15 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	3 months, 5 days, 21 hours, 40 minutes (down since 2022-07-03 16:01:26 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-31	YC-104999416328.xlsm	xlsm	0e92cfd04405b8b597562761080285f19807c04c48c7278fe7632271ded41c3d	40.00%	Heodo
2022-03-31	NA-8291067.xlsm	xlsm	896ef5fb12bd10c84fa96213d6a86aa368388e4806b9c882fd601a113482ff74	n/a	Heodo
2022-03-31	VXE-61962900867240.xlsm	xlsm	36828e7a04990e1d0b2b67ccfa64ea170ff92c77cf92107d904f1e106c1d676b	n/a	Heodo
2022-03-31	NO-6485666090.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	NV-380783709911376.xlsm	xlsm	b034cfc88c6603dc0f5519ecba2dbba8c5382b26b8c25da23f8d40368ce8e7b5	33.87%	Heodo
2022-03-31	NG-5129259660.xlsm	xlsm	4d68481027dc3987acbc7b6e5a8e958cfdcee70287facb9764a512bcf99b1798	n/a	Heodo
2022-03-31	SK-612104993627.xlsm	xlsm	54bb2433c32ae91e6033d49276536fd303652e555e7d1cdf5e1aa0bf9f483d18	40.32%	Heodo
2022-03-31	WYP-5943264.xlsm	xlsm	eb39b29661d81cbcd7a00f191c61ce9902b80b68e1e03215e56221bfc85863ef	39.68%	Heodo
2022-03-31	CLB-510631435.xlsm	xlsm	41a73a914406df97e2944f7742f48272bab7d25486c9c2a5084a7f158fdb2aaf	n/a	Heodo
2022-03-31	AQ-9085905005899.xlsm	xlsm	00ea616ce33ef49268a2d6046f588bb73c80b7a90ae6e5e5067938d72e858564	n/a	Heodo
2022-03-31	WP-86000860826.xlsm	xlsm	162637428037d1f8f3bd675b122e5b830107b9ea7352c8c765e97a3afbce1231	n/a	Heodo
2022-03-31	UK-63262474898.xlsm	xlsm	355981d4c8400968deaa8a13a04a79c90bf9aab795af2ff1b3273b825a477968	38.10%	Heodo
2022-03-30	NTN-98750819906.xlsm	xlsm	3bfd193ea92a687030d7b2fb3354e52980ad28ba1cae92579b53f5473b44f37a	n/a	Heodo
2022-03-30	PL-6201731.xlsm	xlsm	ae3937925f18c7db77b2fd19394cb114cb460741dfa2b7c5bd10de9c5c2e35fd	33.87%	Heodo
2022-03-30	AOP-28080935948891.xlsm	xlsm	62d1d7ac5dc3614c29d2cfb29770606387b67506cab5b3e5996c44638a8897e1	n/a	Heodo
2022-03-30	AI-7739643819.xlsm	xlsm	93629f0e94046fc0c1c1a2779a8e58d101136842695fc4ad3addbde6c7757dcd	31.67%	Heodo
2022-03-30	BMG-8797013025.xls	xls	02dcdf42ff1966a5e9b02308ee87de554cecdeb8e8bd8d58b6f95dccc8cd7e79	n/a	Heodo
2022-03-30	808087648766.xls	xls	fab59013420b775b3fd0ec46d35267784ccda6fd2c7b8479f2fa578cdc8d45dd	n/a	SilentBuilder
2022-03-30	13643195055750.xls	xls	e6816092d6eb5bec7ab8d5463c45994379e212925e29994c9a28a826b9f0ee92	n/a	SilentBuilder
2022-03-30	6796475583.xls	xls	8e9fb85ebb086fea213c227c680f15a2a7de9341306b5e10f593744e696b05be	n/a	SilentBuilder
2022-03-30	659511497939408257.xls	xls	4609576ebe318d7f78f3afabd1dc9fa8228b2a4926a14173363c59bb47840ef1	n/a	SilentBuilder
2022-03-30	856762198313415741.xls	xls	4a8dc45ea58de4b92ed3dc2761d4afd8cf1889bfe5d9e9a48ed44f7044d764de	25.00%	SilentBuilder
2022-03-30	2476984220261728.xls	xls	4adccfb55e1dbaf4bc348399dba97bef41a32d54b914f06c7b838930663f2130	n/a	SilentBuilder
2022-03-30	540604396585.xls	xls	82dd13809bbcd68f4c4cb0b98c2c979c8275fd86dfaaeb01eb3c1e17d6a3d990	21.67%	Heodo
2022-03-30	305935683017792.xls	xls	0629ed421025185f6d11af39101c88cc6d6c1b3d6bf659238b5fb82af185a9e3	n/a	Heodo
2022-03-30	15878438637.xls	xls	e4b3720702c9e2904b9acc83e65446087d22bc3011dc99987f2f4a373cfc4fe8	n/a	Heodo
2022-03-30	2621958262567.xls	xls	94572bba7488c332400063524bfc88171b7996d51e066f58d4edbb620d5ead70	n/a	SilentBuilder
2022-03-30	1557906655377844.xls	xls	b4eaeacc2e88877f2ed945d286fb3e537a6aef17314fc0182e7467c4daae0141	n/a	SilentBuilder
2022-03-30	2213303733655144285.xls	xls	60e88edf882041b4b5d3d2d44bef62b53fc478dc719df2d61ce6f55771cda593	n/a	SilentBuilder
2022-03-30	77690903388918417.xls	xls	9580b70ecd826b21ad9e0ff4e1a49b40e9f1412b2793d1c838a8dbed34112bf8	n/a	SilentBuilder
2022-03-30	56588343666275019417.xls	xls	be30c324bc85d3aa1be2048f89f1cec9c904743add5112f737b689d9f56c1820	n/a	SilentBuilder
2022-03-30	0418471807475014.xls	xls	5e42f72b6f48384d2369d13cce199bc20da44c757705ba69765152d0d1d02f96	n/a	SilentBuilder
2022-03-30	444142211827.xls	xls	fc11990e224dccd621a3e096de9d3ba9ea970ea8434a56a20ff5dbf00ac1bd90	25.00%	SilentBuilder
2022-03-30	983433081060.xls	xls	905937ee43f2fc5221d18f42e0e1b2514bd1059016ddac70a5fe00c2092cf34a	n/a	SilentBuilder
2022-03-30	69554707455897695.xls	xls	7d9969135b930be92c93aac7e3057b98410a43fd0af360ee02b88b9ad570d116	n/a	SilentBuilder
2022-03-30	433595019595122044.xls	xls	562cb8922d82b50caf2e7452a6db106849432c9577c62aca3f1fd5fe90cd5308	n/a	SilentBuilder
2022-03-30	2817341988.xls	xls	8268e3b187b04e9310ead1910af5d33341941f04739fe068e06eb341969b71af	n/a	SilentBuilder
2022-03-30	0479495237728429.xls	xls	8afc3601bdf149acb399f6b30fe3188535845cbd8af7c0cf469d02e7524b2b6a	n/a	SilentBuilder
2022-03-30	569453081619261004.xls	xls	0ef1d87a8603f19dbb5c1e6352e3668afad3b3c384b0d5b3dc198a3b9786a318	n/a	SilentBuilder
2022-03-30	1998279339647254.xls	xls	795d1cb7302f7f2d226a7a50f9a1dfaca81c320aabc71f47113736bc0712a6a7	n/a	SilentBuilder
2022-03-30	34868792068808135.xls	xls	805ea337e3e761a017b54b6a0dd8dacc8e1e05f20f2b5ae129fa1882c4e2ecf4	23.33%	SilentBuilder
2022-03-30	83050320198196935.xls	xls	02b5337bcb296ecdfcfb246bb1bcb172c23ed58f92126db52f8c135d6eaed416	23.73%	SilentBuilder
2022-03-30	36721508809713.xls	xls	0d02c7086648aa7d020cc5a5ed181f99f3d51c2c9a2522726d0bf1cc14b9110f	23.33%	Heodo
2022-03-29	9602364877.xls	xls	1dbea40fcbd816ab601a760ef3a43708219096749c335057165212872cf8833d	23.33%	Heodo
2022-03-29	792231532265.xls	xls	82849ce6e855720fb0463e024aca7d74a5adf9e7dafaeef5b1422982a12d26d8	n/a	SilentBuilder
2022-03-29	028957854925558553.xls	xls	cad159477bdcc1a893cefc1b3c89fb0108c077f05f516817b1d9b1c226df132b	21.67%	SilentBuilder
2022-03-29	238352588440201671.xls	xls	5facd7e6e06801b2f98d8622d9dfa7549dc7fbcc4d2f1cd957f193d81a1e7e31	23.33%	Heodo
2022-03-29	417627448273690300.xls	xls	aa7f8032eea8a66f2a2fcb725bfc16899f61552dfb4e2e7b9c6a4d1bfad9d604	n/a	SilentBuilder
2022-03-29	8842105153588467918.xls	xls	912ef80d96550207598474c59820892d1bf52be76ac1c04f833228027a222f0c	n/a	SilentBuilder
2022-03-29	64132837556572835.xls	xls	a547aed1d65611b428003c7e43a76e655c5d49d41f62c42f041744d7700922fb	21.67%	Heodo