URLhaus Database

You are currently viewing the URLhaus database entry for http://facts-jo.com/init/I1kZedDNMqtRiFo83xv/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120501
URL:	http://facts-jo.com/init/I1kZedDNMqtRiFo83xv/?i=1
URL Status:	Offline
Host:	facts-jo.com
Date added:	2022-03-29 20:19:04 UTC
Last online:	2022-04-05 05:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 20:20:07 UTC to abuse{at}inmotionhosting[dot]com)
Takedown time:	6 days, 8 hours, 59 minutes (down since 2022-04-05 05:19:46 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-31	ZHV-6049142.xlsm	xlsm	522056ad088097c5c827ddabc4a8e7ad95b16563043dcfde8aa2fc4b0df81a1f	41.94%	Heodo
2022-03-31	BE-73717320.xlsm	xlsm	c201ae0ab0516a27d14400b4af28d4189bb2c6d8b589c4fadb025c26645f19bf	38.10%	Heodo
2022-03-31	GWA-856301526.xlsm	xlsm	75f0362196443080531377973dbab9153eecc5ae78da6a2e94b492580d2bdf7a	n/a	Heodo
2022-03-31	OWR-074632042540.xlsm	xlsm	0e92cfd04405b8b597562761080285f19807c04c48c7278fe7632271ded41c3d	40.00%	Heodo
2022-03-31	DR-7922196651.xlsm	xlsm	fcefa2ebaa9e5cce06f5519640eab5413a9b9f6a53ed3fe2f3754c9a610418ba	n/a	Heodo
2022-03-31	XTY-132871282092.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	HQ-5026840.xlsm	xlsm	b0fa5dda99558a54917cc9a5f6269d440cd8b30ed825f72c837d6e4044d9f628	42.62%	Heodo
2022-03-31	BCD-000139669.xlsm	xlsm	bc2b30e9969aa7dc11544b73955d47d12ec3d2febe998b5cef4b57c89dde7215	36.67%	Heodo
2022-03-31	ZI-0206971.xlsm	xlsm	4e313f9f3abefe7d2a05b2d9ce9dae1683f91278ec0ac7cff68b9f232ff656dc	n/a	Heodo
2022-03-31	PZG-3863458.xlsm	xlsm	9490224310276e55dea4f02cf1d9c3c81919929e8abc13c37b670025f1f7a3d0	n/a	Heodo
2022-03-31	GBD-17512641.xlsm	xlsm	00ea616ce33ef49268a2d6046f588bb73c80b7a90ae6e5e5067938d72e858564	n/a	Heodo
2022-03-31	SOH-711818066.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	n/a	Heodo
2022-03-31	NXD-4467785528132.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	NE-7123640.xlsm	xlsm	41f790fa1e0f18e897bdad1de2c9452310c964ab0c50e831d9c1150af849edf4	40.98%	Heodo
2022-03-30	AD-077732438.xlsm	xlsm	51be5ff843565b3e8fe56f303452e018d305cc846181d2d79d435509b2dc578c	35.00%	Heodo
2022-03-30	PRZ-82556102112281.xlsm	xlsm	b8a9c6cb2992b99ed3cc0c82c5cc63dc9a4a3c509e8c67399d2d7c864ed83c03	38.33%	Heodo
2022-03-30	KVT-35963914490520.xls	xls	2fb5d6b4684b1f180fd682f92fc346420c16376d64b8b8ec6b0564247000dc58	n/a	SilentBuilder
2022-03-30	487621726854.xls	xls	3493b3210a3ce325a05cc7da5ffc69d323e0a0a645d8bdfaf1016a2de52ee1b5	n/a	SilentBuilder
2022-03-30	24898228400307097349.xls	xls	d50ff37a85433702c1107c3f20efde94efa785c44886033b550035b23d873ac1	27.12%	Heodo
2022-03-30	98650512047735866691.xls	xls	6fc96a58c317377d9ff8276f95b48d0891d63dfae2c3ec8b8960037107578322	n/a	SilentBuilder
2022-03-30	450341676484.xls	xls	517ad9640522ddd6180f39e1bdf5dff22b469b04cba6c10f4c0d6e3bcca16b19	n/a	SilentBuilder
2022-03-30	96114613017.xls	xls	539de96d81ed4955f2d70a8c888ba181357736c83b1c56383797bb82f18abb52	n/a	SilentBuilder
2022-03-30	5032393195916019020.xls	xls	ee62c21812ad75d0a17a1ddf79a52ee84205a1d7f1d63b74f396b80a4ac87c13	26.67%	SilentBuilder
2022-03-30	8948353931604.xls	xls	5206671cef156681bda1a374c1140c4dc8e4796b93d323161c15c6767afe3fcf	23.33%	SilentBuilder
2022-03-30	44571354726.xls	xls	d217d4620ec326b500ee3c5bf7d6a1e37058b93ab33672857f966bbb0c627c6c	25.00%	SilentBuilder
2022-03-30	9653020257763742312.xls	xls	28c1994bc596421a111c75b795d98b2192edc5aa92b6d1e3adcefd40bd9d0bdf	38.18%	SilentBuilder
2022-03-30	92271794168723.xls	xls	1f4abd57d6305167ea781e255bf801474d77d7415dc16bfa03bcd9c6afb8e977	35.00%	SilentBuilder
2022-03-30	0127256157662926.xls	xls	b77b0ef522691f56c326dbd8bfd07faa9b30f9426461ff385a1e744c3e469678	n/a	SilentBuilder
2022-03-30	09483769350524576.xls	xls	667216eb30cfe1aba7324cea583930673acf6e334b4c2c8221225677b35ef430	23.73%	SilentBuilder
2022-03-30	5072442885740.xls	xls	73a7d36de3e4f7ddc7f714ff205b0ccd1660020f04898ec79764150268cc31e5	n/a	SilentBuilder
2022-03-30	273871634888099990.xls	xls	c608ea84421874b786b035d63940ce5c0eb73d5ae08770bffa1fa700bca152da	n/a	SilentBuilder
2022-03-30	08843893564371440906.xls	xls	4148c2fcfeafb479b13ec8c2b305fd2ebf671b61fe044476575a5b2be2b929db	n/a	SilentBuilder
2022-03-30	4526209173144.xls	xls	19f6caa7a30df844b400ba5f224bd75901e715d328ef9a38903900f0fa773946	n/a	SilentBuilder
2022-03-30	1950972597803768.xls	xls	905937ee43f2fc5221d18f42e0e1b2514bd1059016ddac70a5fe00c2092cf34a	n/a	SilentBuilder
2022-03-30	5020005892671162.xls	xls	0064a9e50d81734b02d6e46a0c7438caaac87d97c3a8d2e252d116c08094820b	n/a	SilentBuilder
2022-03-30	1787550685.xls	xls	9b99b5267d749deddfae5b4090ea4c80afefc23d7379a09618857f7269837c51	n/a	Heodo
2022-03-30	837282893966403.xls	xls	b53e7fd809f9e654c0d9d6d4f0aa797529daadc82b205bcecc3b564b45892ac4	n/a	SilentBuilder
2022-03-30	4492409388.xls	xls	9e011d77b179dc3075654faa2f570ff83e31cb879ef14891e49805831790a329	25.00%	SilentBuilder
2022-03-30	12293266895.xls	xls	f736398345593d7694cc483eef6daa8b0530fe9ac5371d53d29f75e4ac5293fe	n/a	Heodo
2022-03-30	308075414662093461.xls	xls	f37c6c8662785514f852d04f94ac6b2217b3c5244e84dae528f13c5b8b95daec	n/a	SilentBuilder
2022-03-30	1407170505706304281.xls	xls	c014caec272f00448f32115b18b4c88c92ee9e4601ba0e8a8b6912d62c76ef70	n/a	SilentBuilder
2022-03-30	545950277479987430.xls	xls	f1b73fd1204e5bfa3f5278a6245d5b69398b19c90505606a6fb07444862ce2d3	n/a	SilentBuilder
2022-03-29	5322503790.xls	xls	06b7e588b68d71fcb7b846c7d529df9b5734df14d2059bc6470b9542c9e4360c	n/a	Heodo
2022-03-29	57814437825045944.xls	xls	77dfd2987cf0ee8e69322b8acfde50b12f8deb4b7c5d7ee754f98dbdc2b04bc1	22.03%	SilentBuilder
2022-03-29	09998054992.xls	xls	3e97f09fc53890ba2d5ae2539b5c8df372ed2506ed217d05ff2cf8899d15b8e6	n/a	SilentBuilder
2022-03-29	64678955860227.xls	xls	6741b0effa1844c85e25015d8c01ab0330e793dc563cfe2977746f5eb7a37fd3	n/a	SilentBuilder
2022-03-29	764007225796155628.xls	xls	bbc1337630f46853905e7fa804eb8bf2b3644f3a16a1911ea1fbd7fe1811c1ec	22.03%	SilentBuilder
2022-03-29	4611056402660.xls	xls	7afe6200950f155c027ed0e711a8400a4afdc11f99603506b75ffc757658d460	n/a	SilentBuilder