URLhaus Database

You are currently viewing the URLhaus database entry for http://www.chemsky.tn/64prPlDhbugztyb2Zl/xjvFXPUX7XeoPWTqSQ2/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2120576
URL: http://www.chemsky.tn/64prPlDhbugztyb2Zl/xjvFXPUX7XeoPWTqSQ2/?i=1
URL Status:Offline
Host: www.chemsky.tn
Date added:2022-03-29 21:21:04 UTC
Last online:2024-12-20 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2024-12-20 07:38:59 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:2 years, 10 months, 13 days, 17 hours, 22 minutes Bad (down since 2025-01-26 14:45:04 UTC)
Tags:doc emotet link epoch4 heodo link SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-03-31EEO-8053211.xlsmxlsm 64d92f79a2d87571d428b7b19ef4f5c1680c24c8952a2f46b84f217cfba19766Virustotal results 39.68% Heodo
2022-03-31MH-42345924833193.xlsmxlsm a395d2ca627270c1b53481050d39c6395c778682e98aeedcb00d1f68fd1ec23fn/a Heodo
2022-03-31LY-418547602746.xlsmxlsm 522056ad088097c5c827ddabc4a8e7ad95b16563043dcfde8aa2fc4b0df81a1fVirustotal results 41.94% Heodo
2022-03-31MPQ-332846656157093.xlsmxlsm e59276e130a11d91bdcec998cec6de7401536612687c58e70cae7763d17b7726n/a Heodo
2022-03-31TH-27296344944.xlsmxlsm d17f996f89de5c8c22e600186d7d54a2e0172758ad5cd4d2accbf22b58848bbfn/a Heodo
2022-03-31NKQ-60096724.xlsmxlsm 838aaff9e0b3ff967eb4e3ed2461109e68a0d8273f496f447224e1ae3c55d8ban/a Heodo
2022-03-31UJR-37222188150753.xlsmxlsm 894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7Virustotal results 36.51% Heodo
2022-03-31NNY-40435129808.xlsmxlsm a7ae8fb40c5d93e9ddbfc68b000b65ba19b085e7a19d3a5d9bef1c243a6add91Virustotal results 43.55% Heodo
2022-03-31DSN-94365828440.xlsmxlsm ccf8147ef96ae47288019a25336c2935e73d2e06b8fe73823e3596fb1596ba8dVirustotal results 43.55% Heodo
2022-03-31SRD-5237932394.xlsmxlsm b5df411a9037fcd4dc6b3e92145aae14064c20edf7476a543c778bdb8af22600Virustotal results 36.51% Heodo
2022-03-31DCN-87864211177081.xlsmxlsm 30deb7a7086f74317285271a2e26e40dc43b461a1a77c77480ea742b02cbe51fn/a Heodo
2022-03-31VN-9825584604.xlsmxlsm a43da1637de01a06d72a9d09981de5132b8bd971844704ee9fc7c5e07450a49dn/a Heodo
2022-03-31JJK-5283830124279.xlsmxlsm 61ad9b2b8c9707a14412bf30d2e17c11d75dd548e841d9b4eb6299ca1e0456d5Virustotal results 34.92%Heodo
2022-03-31PVY-878891277910758.xlsmxlsm 70c7353a1e172d428b42bed59b7ddb9a6d1b60c368ec7ae5eb64c0eeed368080Virustotal results 43.55% Heodo
2022-03-31LV-68731925546651.xlsmxlsm b73f04d9f7a2ce5624249871b7f1277fcc2959bfe5abcaa33e1da19e0da9cb08Virustotal results 38.10% Heodo
2022-03-30SIC-10413795.xlsmxlsm 2909468da77be7c90d3c57fa66be2e6250afde34bd400f2c815be9bfd89be7ddn/a Heodo
2022-03-30AZZ-149469348178.xlsmxlsm 8eb161bd22ea52d987b19953ebebe364df8a0779ed9f42ad96c6dec32f8cce52n/a Heodo
2022-03-30RU-3946813687.xlsxls a14fb7f51582ec1f9af65f4300ff4dde6a99d12bd2b08f70863ca16d508c72baVirustotal results 28.33% Heodo
2022-03-30798501802774195592.xlsxls 6edf2bbc238af34d4d9a013d6ae99ec1a1df41d15caa4bf4e90ec5fd50ac19eeVirustotal results 28.33%SilentBuilder
2022-03-3013371471954496823.xlsxls 8bfc93fd8fca203b767fe8a42772096296b844cc0d17a204f588c992e6fe7cfeVirustotal results 28.33% SilentBuilder
2022-03-304638698293517635747.xlsxls 248cd85fd7e892435c33370e5ac93d3fe53595ae7358e2e12af1e9f453697513n/a SilentBuilder
2022-03-3085337639187909032.xlsxls 8186be5fa976f907436db906f0bfefaf35666e3b7e548beef7727c8206a7312an/aSilentBuilder
2022-03-3035205039349774652399.xlsxls 0ca97e0da60bdc40cac1f0c63b6916e0976650209ca917398fa40999f7783073n/a SilentBuilder
2022-03-303311877837676046.xlsxls 04cdfe9e58149596ddbb11b8d45ff045e84b52f185f1b7f02ae6713e3a4a8370Virustotal results 23.33%SilentBuilder
2022-03-3036164458034138.xlsxls e4b3720702c9e2904b9acc83e65446087d22bc3011dc99987f2f4a373cfc4fe8n/a Heodo
2022-03-302568524965.xlsxls 4c11e21253fecf68a6116f5381452e801b0edf62fceac13394d7366685545a9an/a SilentBuilder
2022-03-306785320781.xlsxls 48475d10f79157c83f93a9c761852fbdcf593525eda48c7a8b8806b9314bd1afn/a SilentBuilder
2022-03-3069315527476372368549.xlsxls 5c5982e66d129ffc81e2afdc277b205739de990caaa2fa12443b155bb16d7ef1n/a SilentBuilder
2022-03-3015707687942.xlsxls 0dc5fa042e539195dcbb04e6c1655104e9538a9e293e532aed1b9d28e18cfd69Virustotal results 25.00% SilentBuilder
2022-03-3049580889645010666.xlsxls fc11990e224dccd621a3e096de9d3ba9ea970ea8434a56a20ff5dbf00ac1bd90Virustotal results 25.00% SilentBuilder
2022-03-3090549412712.xlsxls 905937ee43f2fc5221d18f42e0e1b2514bd1059016ddac70a5fe00c2092cf34an/a SilentBuilder
2022-03-300021109831501.xlsxls 385fc2720a678cc5b53d3d58caa225e7fa24e29c86ff6acecb609afb7659caa4n/a SilentBuilder
2022-03-305363733523440792957.xlsxls 51a8819534ed48bd71579b6e79307358b76ceaae81aafc73cbb8e8b77e977061n/a SilentBuilder
2022-03-30551378679379089.xlsxls c7a30f982cf0763c857f2e0e5b13267783a2764655f5addb8b79305c04db0413Virustotal results 23.33% SilentBuilder
2022-03-3056142753597.xlsxls de1dce37963bd312b3353cd23393b5c9603ab5a2c969ac420447e9183ad18a47Virustotal results 21.67% SilentBuilder
2022-03-30693811102851992.xlsxls 795d1cb7302f7f2d226a7a50f9a1dfaca81c320aabc71f47113736bc0712a6a7n/a SilentBuilder
2022-03-309956025528329.xlsxls 4b1bbda0a79f94fcfb3e365b20d67277bf11d406f08d6a6417636af0142eea75Virustotal results 22.41% SilentBuilder
2022-03-30828926637671141207.xlsxls a56628e11427302cf9c1e055c0f2805f421f37e63633e05f39a7a67cc3a719cen/a SilentBuilder
2022-03-30734198705145147.xlsxls fe7634683727f4e2c4ddaf2eea56dd2291955ef5396c96bb353ccbc080e996d7n/a SilentBuilder
2022-03-2962118480985567602.xlsxls 9f43e61214b1805566e5b0b66b14acb9e5416f24bfebbe353be48ebfd5658581n/aHeodo
2022-03-29727887635247492548.xlsxls 81258b52123bda431ad827bf686e46b3e10a0d1cc1649e9019d963f38f1fbb2cn/a Heodo
2022-03-294313224358721.xlsxls 0d459aa7c1a588a576c7017f7707f991abecb6756d0575dd98a104f900218e31Virustotal results 21.67% SilentBuilder