URLhaus Database

You are currently viewing the URLhaus database entry for http://dn000893.ferozo.com/agenda/y6Yz4Jv1kBEcbpMyDR3Rvb/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120516
URL:	http://dn000893.ferozo.com/agenda/y6Yz4Jv1kBEcbpMyDR3Rvb/?i=1
URL Status:	Offline
Host:	dn000893.ferozo.com
Date added:	2022-03-29 20:29:07 UTC
Last online:	2022-04-30 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 20:30:07 UTC to abuse{at}hostmar[dot]com,abuse{at}dattatec[dot]com,pablo[dot]pepe{at}adinet[dot]com[dot]uy)
Takedown time:	1 month, 1 days, 4 hours, 54 minutes (down since 2022-04-30 01:24:27 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-31	YZ-749513542.xlsm	xlsm	83a8039af1534f4fc93efcdb7e429c799f144ace1f33b37ca42a57ee7a559499	45.90%	Heodo
2022-03-31	BWY-968071320177660.xlsm	xlsm	0a23b203754e6a043fa99f6cf518c8ffa19a34557a7471edad072d54c4a76dac	42.86%	Heodo
2022-03-31	HII-64329096881.xlsm	xlsm	75f0362196443080531377973dbab9153eecc5ae78da6a2e94b492580d2bdf7a	n/a	Heodo
2022-03-31	FO-976596712.xlsm	xlsm	fcefa2ebaa9e5cce06f5519640eab5413a9b9f6a53ed3fe2f3754c9a610418ba	n/a	Heodo
2022-03-31	LG-23072065.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	KG-23820655235066.xlsm	xlsm	a7ae8fb40c5d93e9ddbfc68b000b65ba19b085e7a19d3a5d9bef1c243a6add91	43.55%	Heodo
2022-03-31	QKI-381396038213250.xlsm	xlsm	2e1db4578a7534abbaeb0e65b01b0da5024a9e27d99c3a9b29b03cca35b3a096	n/a	Heodo
2022-03-31	HH-2644313.xlsm	xlsm	409e55effd488af9a3d098060e33fe5d66743135fc711a07d6ce4c57e2f2c2bb	n/a	Heodo
2022-03-31	HTL-042639739531.xlsm	xlsm	c3a5d5bc890f935056c127bdeda35cfcfbb8e292e59774a24ca5611e94430907	37.70%	Heodo
2022-03-31	ZF-180099258858.xlsm	xlsm	41a73a914406df97e2944f7742f48272bab7d25486c9c2a5084a7f158fdb2aaf	n/a	Heodo
2022-03-31	KGT-5816882.xlsm	xlsm	4409b097292f1ed1adedbae38fcecf71370a64209f9bb5ffff019b71e8a88533	n/a	Heodo
2022-03-31	DY-46650442033.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	n/a	Heodo
2022-03-31	YHX-30432770331510.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	ZA-5843727399737.xlsm	xlsm	f6d9028f6903f57570a969a97a510120fa11d93ce778cfeac61862c36d6b6bd2	38.98%	Heodo
2022-03-30	ME-8454305549631.xlsm	xlsm	51be5ff843565b3e8fe56f303452e018d305cc846181d2d79d435509b2dc578c	35.00%	Heodo
2022-03-30	LM-3353848399798.xlsm	xlsm	168a9aa1b5fa37a354fd6ccba71dcd29cbcd503a578504c69feb38bd84a8a691	30.65%	Heodo
2022-03-30	TKT-8544414.xls	xls	403c28ce1df56f185d0824575299bea20d7d1738e6a9688c551d039b6d1aaea2	28.33%	Heodo
2022-03-30	8012405505124297.xls	xls	3493b3210a3ce325a05cc7da5ffc69d323e0a0a645d8bdfaf1016a2de52ee1b5	26.67%	SilentBuilder
2022-03-30	013247083402237.xls	xls	e6816092d6eb5bec7ab8d5463c45994379e212925e29994c9a28a826b9f0ee92	26.67%	SilentBuilder
2022-03-30	9915916463.xls	xls	8a6effb1430c591fa0e6e8ac6f84b1991bf8cc18f70a432ae63e6bda131914c6	28.33%	Heodo
2022-03-30	1565617168.xls	xls	517ad9640522ddd6180f39e1bdf5dff22b469b04cba6c10f4c0d6e3bcca16b19	n/a	SilentBuilder
2022-03-30	0924910570718764.xls	xls	aa86d1be623622ae373fc9dcfb7365d513d0e273891e34b480ab2d7b10d6a7bb	n/a	Heodo
2022-03-30	4724141072252.xls	xls	d98dd9a82151e75194671730ccd38081a04c9a54e596394dd332c12c8723439b	25.00%	SilentBuilder
2022-03-30	56836264710.xls	xls	ef3d086b10d8ff1a6b4e0e8d2b12a320f6c5c03623b0cb931acf667cdc77a6b3	23.33%	SilentBuilder
2022-03-30	068656843088552903.xls	xls	7143175fc3b45a138566f093a1985efc2564810ae4d8b541b63ec7570f121339	n/a	Heodo
2022-03-30	5719626118187.xls	xls	28c1994bc596421a111c75b795d98b2192edc5aa92b6d1e3adcefd40bd9d0bdf	n/a	SilentBuilder
2022-03-30	103737415272.xls	xls	d4cfb0c8440f63b52a9a6506210f17aa2cbdeac594081472fa3f4c8440fbbc1d	n/a	SilentBuilder
2022-03-30	8301432243.xls	xls	bcef9c934fe5112b2ca48f5a9ea696c33d3114b345c63d7c331254037faff1a0	n/a	SilentBuilder
2022-03-30	192144816895901133.xls	xls	9b3c07ec8e135d5706a87f86ddac9da3702a1913064f7982abee3545039bc251	25.42%	SilentBuilder
2022-03-30	34973884038463657.xls	xls	0ed4a61da5b83e2f6e1f179296534712391f653cad49956df89b1f9af2651d26	25.00%	SilentBuilder
2022-03-30	83168484864897.xls	xls	553da5e4c71464540693e53e16cdb2c9285cfe93168bcc63cddabadaef5504e5	n/a	SilentBuilder
2022-03-30	948823759552.xls	xls	84e8a5c9e678935ebb0022e67a2160105d3f416ac8ff9118d76b0183acc1e233	n/a	SilentBuilder
2022-03-30	67175363679252692043.xls	xls	17ecc742902925465369b5dc8bb6c8c87d9e16a1cdde0c38c3b4264f73029cd6	n/a	SilentBuilder
2022-03-30	973304405541157.xls	xls	a612e9a7b8f4a08f1b73f5a7e07b586913f327d8bd789ca7ce7c1e6e80883f91	n/a	SilentBuilder
2022-03-30	11340014826764721761.xls	xls	385fc2720a678cc5b53d3d58caa225e7fa24e29c86ff6acecb609afb7659caa4	n/a	SilentBuilder
2022-03-30	87051815844.xls	xls	572f3c796c65fbb9a53d51fc20f4956df1f7b10b0bafe869f5dd6d6f4182a75a	n/a	SilentBuilder
2022-03-30	8169810989331118.xls	xls	188aa320f747429f44c222eb0cc80229ee39b8452b8f119c3553f66b9e9d200d	n/a	SilentBuilder
2022-03-30	395286684830.xls	xls	3104d47a09c86d04fa246fcabdc6ef69732755446d66d42f19dec29a33d057ac	n/a	SilentBuilder
2022-03-30	3281909479.xls	xls	de1dce37963bd312b3353cd23393b5c9603ab5a2c969ac420447e9183ad18a47	21.67%	SilentBuilder
2022-03-30	28890329164.xls	xls	58f090cb119c9ac6f5b30396969a52b3829324dc178e34ee76b9b9ff99da7c1a	n/a	SilentBuilder
2022-03-30	42350759388025653.xls	xls	c014caec272f00448f32115b18b4c88c92ee9e4601ba0e8a8b6912d62c76ef70	n/a	SilentBuilder
2022-03-30	3961781800442.xls	xls	b8d670ca1984f7ecc9e90c4bc0c4c4d96172690aead7080171735f96c11ba21f	n/a	SilentBuilder
2022-03-29	8077497164022222148.xls	xls	6eb16e0690e24c1b65d09c39133e26dee115930191fbb0b6a2a6bbf2963962c1	23.33%	SilentBuilder
2022-03-29	48047077185.xls	xls	1dbea40fcbd816ab601a760ef3a43708219096749c335057165212872cf8833d	n/a	Heodo
2022-03-29	707578297492900603.xls	xls	82849ce6e855720fb0463e024aca7d74a5adf9e7dafaeef5b1422982a12d26d8	n/a	SilentBuilder
2022-03-29	7699168122974.xls	xls	6741b0effa1844c85e25015d8c01ab0330e793dc563cfe2977746f5eb7a37fd3	n/a	SilentBuilder
2022-03-29	1889310432043733061.xls	xls	5facd7e6e06801b2f98d8622d9dfa7549dc7fbcc4d2f1cd957f193d81a1e7e31	n/a	Heodo
2022-03-29	5105777438.xls	xls	fabda0d0f97680a912e83455895d68881d3cca4d9f51615a6969bf08f6f9ff36	n/a	Heodo