URLhaus Database

You are currently viewing the URLhaus database entry for https://cliniquepourenfants.com/css/FJDOzKSNeqzHFJn/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2122575
URL:	https://cliniquepourenfants.com/css/FJDOzKSNeqzHFJn/?i=1
URL Status:	Offline
Host:	cliniquepourenfants.com
Date added:	2022-03-30 13:55:07 UTC
Last online:	2022-04-28 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-30 13:56:05 UTC to abuse{at}hostgator[dot]com)
Takedown time:	29 days, 6 hours, 23 minutes (down since 2022-04-28 20:19:32 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	VBA-74903299132438.xlsm	xlsm	dcc6409e704780116523a3e6ca35edf1399b381568d26b6d0373d1d9e00be491	40.32%	Heodo
2022-04-01	YD-554110692.xlsm	xlsm	60833a18e14a8b4eb21cec280bdac63e8a03eeda78c1c5e0e641624b72000be8	n/a	Heodo
2022-04-01	IXW-49921620.xlsm	xlsm	606cbdc0ecdc8c68efea96696850b401a2f42925109a960adc15b100ad3c8175	n/a	Heodo
2022-04-01	TD-0804901.xlsm	xlsm	82484ebe66d4a702e915f98b23d90b6cae0c2a0eedf9de279b5dfe5f18b4ef32	n/a	Heodo
2022-04-01	WR-409414927453.xlsm	xlsm	fa9f8c915e7e2c8f789e6e390d3b655689e5cb9e29f1b971fb833bad6cfdb0c9	41.27%	Heodo
2022-04-01	XOL-56113752484.xlsm	xlsm	81b6929fa5ca90e9e08f68e7aa10eeb6a557a65880ce71b3c4976a67f4e5aebc	n/a	Heodo
2022-04-01	MS-6416019116099.xlsm	xlsm	8c3a1df0298f1bddbc6946c5ab191ef80476cf4a3a8cefe7493c189035d2f0cb	n/a	Heodo
2022-04-01	UY-94917139359.xlsm	xlsm	09e3e96e0e415868e1458e08a45745eefd6455c7bc1d978a1dc345c4274c15d2	n/a	Heodo
2022-04-01	DAG-467152597458850.xlsm	xlsm	bba184efb454972191ec837362eddc4ef35f60b616033ef54cbd77d1a70f8f3f	n/a	Heodo
2022-04-01	ALY-42031971.xlsm	xlsm	f3c06e72e6b0cddb3d66545d59bef1288458f9c106ede60b0507f095971e7067	n/a	Heodo
2022-04-01	GCK-5189106830899.xlsm	xlsm	7347e4cf31a837aec00dd4d093a63e3f2b67a89b6af8965707c47717e8075482	n/a	Heodo
2022-04-01	XI-461915263142.xlsm	xlsm	9ae3ff917d99c0e0ba1f6dde3bcfebd781ab332d65552b032855ca627606cccb	n/a	Heodo
2022-04-01	DJ-2981412006.xlsm	xlsm	83e4fb679d6d1c0567ea98f4800afcb2f1b36a3d0515fa429f17ba52984f6cbd	n/a	Heodo
2022-04-01	FG-826985223740.xlsm	xlsm	57a73cab7fb65bf97b094b8ea188937cff862e7e55cb179ad32cc6d9200d8855	36.51%	Heodo
2022-04-01	TJQ-798101112118.xlsm	xlsm	0538bcee2adf50950c6ed356931376cc8f6d9d80b7b34b4a3ca39aa2ad7202d7	n/a	Heodo
2022-04-01	CV-40317438.xlsm	xlsm	d32c4d0a8c9ac509e3acbd4b041b2d01cc771c0e20828ebd64d2d8fbf49fba7a	n/a	Heodo
2022-04-01	EA-1889052663.xlsm	xlsm	d17e95fb87ae8a3011b050d5c9c089f3bc06fddd1a61feb4812380e96b541e73	46.77%	Heodo
2022-03-31	YH-5617936.xlsm	xlsm	525f6667c0439d7c21905eb0aec33c64c4b4ee34d0f3896f67f5140927b44d90	n/a	Heodo
2022-03-31	VL-8201012899235.xlsm	xlsm	5144b4176d2f9e56ad483565884642378be09039de1f2a353cb355c00dfa1894	n/a	Heodo
2022-03-31	PU-8096105046.xlsm	xlsm	64d92f79a2d87571d428b7b19ef4f5c1680c24c8952a2f46b84f217cfba19766	39.68%	Heodo
2022-03-31	TU-1598379972.xlsm	xlsm	83a8039af1534f4fc93efcdb7e429c799f144ace1f33b37ca42a57ee7a559499	45.90%	Heodo
2022-03-31	XVH-51645178822488.xlsm	xlsm	317b14af792a2e4b877fd65cd6dc1cdceaf3d9573dcc1cf673e5008d38f7b6ca	35.59%	Heodo
2022-03-31	ZM-475250552264.xlsm	xlsm	5255a810d7f6ce0a8c496654d7751b05993139ba23432677b64b01c9c44af0fd	n/a	Heodo
2022-03-31	VJ-1934492.xlsm	xlsm	764dc9c37da82215bfa8dce451fc0946c901984084015a98478a65bd670835c2	n/a	Heodo
2022-03-31	IR-40496510.xlsm	xlsm	36828e7a04990e1d0b2b67ccfa64ea170ff92c77cf92107d904f1e106c1d676b	n/a	Heodo
2022-03-31	NE-794712211724.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	HZN-7427460408.xlsm	xlsm	53ef2d3a553342c46f5d3011cb07634e1f02b36dae99808e47dd459dd384e388	34.92%	Heodo
2022-03-31	SQG-28862867694.xlsm	xlsm	5fe0d5c74d36af2db670ba08c72837740a66a82a2e8f0b206468474195578366	n/a	Heodo
2022-03-31	VUN-464605436.xlsm	xlsm	9098c46a233798193c0587711f5a9be2a4aa97567db08504452748dde516053a	n/a	Heodo
2022-03-31	MCQ-2610739.xlsm	xlsm	578e2f6c9e64cb4de6991bae88f0e1e8d38afce9fb954c64d9ed303053647d94	n/a	Heodo
2022-03-31	BOM-6336475.xlsm	xlsm	30deb7a7086f74317285271a2e26e40dc43b461a1a77c77480ea742b02cbe51f	38.10%	Heodo
2022-03-31	PSF-4740661011.xlsm	xlsm	a43da1637de01a06d72a9d09981de5132b8bd971844704ee9fc7c5e07450a49d	36.51%	Heodo
2022-03-31	DT-711278335673.xlsm	xlsm	52f73166b6afefeb75e3e2459eb3b8a48e0c9309f83620f4fdbcfcbedaff3f66	n/a	Heodo
2022-03-31	QVJ-1855482.xlsm	xlsm	70c7353a1e172d428b42bed59b7ddb9a6d1b60c368ec7ae5eb64c0eeed368080	43.55%	Heodo
2022-03-31	JRP-7823952837522.xlsm	xlsm	f93f882fe4bac2b1210512c64a2985c99282b49a95a2aaa3bfcf6865d6dd0056	n/a	Heodo
2022-03-30	PCB-569357674908.xlsm	xlsm	2909468da77be7c90d3c57fa66be2e6250afde34bd400f2c815be9bfd89be7dd	n/a	Heodo
2022-03-30	TZ-88474687389.xlsm	xlsm	8eb161bd22ea52d987b19953ebebe364df8a0779ed9f42ad96c6dec32f8cce52	36.51%	Heodo
2022-03-30	VZC-472457362.xlsm	xlsm	93629f0e94046fc0c1c1a2779a8e58d101136842695fc4ad3addbde6c7757dcd	31.67%	Heodo
2022-03-30	HM-344069220425.xls	xls	403c28ce1df56f185d0824575299bea20d7d1738e6a9688c551d039b6d1aaea2	n/a	Heodo
2022-03-30	4486314989725.xls	xls	3b7de1493be097dcb0cc89361c753b8f43f5de20b45e403c7f809ab2f7d2b03b	24.56%	SilentBuilder
2022-03-30	4955448873996.xls	xls	d50ff37a85433702c1107c3f20efde94efa785c44886033b550035b23d873ac1	27.12%	Heodo
2022-03-30	765978342238929344.xls	xls	a70944dc8486f8580125d6fc42dc181656aa83f9c9e1917512927e24fa13f69a	n/a	SilentBuilder
2022-03-30	9810847174.xls	xls	f9fb4d5914f4d35aadbdf779dafd269c3581ca7296e7d927d8acdb38b5bf5a2b	n/a	Heodo
2022-03-30	24437017434747149458.xls	xls	b7591b7a18cb144c1108bb4bf93c5fccf323fb6d211e1875fedca3717fdc59d9	n/a	Heodo
2022-03-30	49671483845396866864.xls	xls	5fe4e7f11aa7d5be05816c71b0d26a2445869bd63b3d10aa3281b9ba29aec52b	n/a	SilentBuilder
2022-03-30	995912431494.xls	xls	05b7de9ea6dc7fc6aa9bee8c26c08424ecb944f734630f2f5f708dd38c643200	25.42%	SilentBuilder
2022-03-30	49292314483322.xls	xls	69d8211fe32a1c511c6fd358005bceb8e19e01d9cc927c01b9f0760c13b75d6c	n/a	Heodo
2022-03-30	4865250324216370.xls	xls	9aae3a9d0d57dec1eb2e6151e4930c4624c95638ea038cfcd64436bf32abb39f	n/a	Heodo