URLhaus Database

You are currently viewing the URLhaus database entry for http://cloud.contec.pt/ljf3eS/Z53HvyFQaoQwZam1qPJf0/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2122580
URL:	http://cloud.contec.pt/ljf3eS/Z53HvyFQaoQwZam1qPJf0/?i=1
URL Status:	Offline
Host:	cloud.contec.pt
Date added:	2022-03-30 14:00:04 UTC
Last online:	2022-04-02 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-30 14:01:06 UTC to abuse{at}contabo[dot]de)
Takedown time:	2 days, 19 hours, 43 minutes (down since 2022-04-02 09:44:16 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	GDI-20030753227627.xlsm	xlsm	2efeae28ad35e91b7abb28eec555e20e394693d8454514a43fc119fde473348e	42.86%	Heodo
2022-04-01	UB-80887913408462.xlsm	xlsm	4ae4ca72fe760544514f37bb851baa845776b0dd55a78172d28a1d9ad185bed9	39.68%	Heodo
2022-04-01	MNS-2367248492098.xlsm	xlsm	5270afd30069d36cee5d2bb013f3d1d7765e90cce7cb4d7244c92a62596f108d	n/a	Heodo
2022-04-01	QFV-9275355324311.xlsm	xlsm	fb304773b9bf33fc45eb1fb816a5bc5ce0e481528f81868e4fc5a81608fbad6d	n/a	Heodo
2022-04-01	OY-153316127246984.xlsm	xlsm	8cfdb13bd3fba245b5e3c5a06b90cdab4f8970b13e3ea5262aeb7bd089474bb3	36.67%	Heodo
2022-04-01	NSW-4226175092.xlsm	xlsm	746ca2a4adcb9b5a0ac766ee8711d351d4157ac48ae49d05ff043f9449ed6d1e	n/a	Heodo
2022-04-01	SPL-91368874032.xlsm	xlsm	fdaef695835e1a9e056fe2496ef611e4250388f7712102116b6717894e578f50	n/a	Heodo
2022-04-01	EG-4223143844252.xlsm	xlsm	bad29f90618ce3abdf8296b3212e2b256d0ba9047f64c50681339f93fdc7a729	41.94%	Heodo
2022-04-01	CX-54410652693.xlsm	xlsm	b42ac7850efc6c39b4c7db61d4be9a131d78b545eaaa868dab373c45bff2fd72	n/a	Heodo
2022-04-01	UY-8241181623.xlsm	xlsm	e407f7217907368560ef28caf164f34190a5295c4c75afaaeea21386e8bed99c	n/a	Heodo
2022-04-01	YID-87251036.xlsm	xlsm	004f6c9fad398f8dda13f421a6faa1a78916ba04c3eabe988acd669f8cb1b112	n/a	Heodo
2022-04-01	FG-30501213616.xlsm	xlsm	41169580013c884c968404a805765bab464032270676b792b39ae2b521a64dfe	40.32%	Heodo
2022-04-01	IE-3164892786.xlsm	xlsm	764dc9c37da82215bfa8dce451fc0946c901984084015a98478a65bd670835c2	46.77%	Heodo
2022-04-01	DM-941219877841267.xlsm	xlsm	9ca7e881cd1e46ca3a73efbad250390fbb3fbc92c6d90d0f25c6a218055f323b	n/a	Heodo
2022-04-01	CO-477182995.xlsm	xlsm	2cbe77b879d18d1912fc160e101f3ec30a74eebfb2d138b01259a14979f15060	n/a	Heodo
2022-04-01	ZZ-084184755560486.xlsm	xlsm	3005686dd6b770a4a0af0ba70ec91ea407d32838aa2acea56c5ab75f2a47ff56	n/a	Heodo
2022-04-01	KCZ-11082864759.xlsm	xlsm	dec78675ed65ce3c282f1d9d3e4a1da9209c833b7aca7b14647e1a944b002400	n/a	Heodo
2022-04-01	WSS-234365034104.xlsm	xlsm	77bd6aa47a2c099f99f463a04c9f5bead9d13eae0ccdf1821a6cb755d8c70382	n/a	Heodo
2022-03-31	XB-457449737687510.xlsm	xlsm	10ce10aeef8f6d0f3daf5292f589879e748af9adc9d29ad0bf9143c2115cfa23	n/a	Heodo
2022-03-31	VM-82225795856.xlsm	xlsm	be738143f60cb6f52b7bb48b7a9b84e25571305dd32c5fddaefd80ad1dd80b27	42.62%	Heodo
2022-03-31	HRX-869520863171.xlsm	xlsm	dffde7ff06d4b4d38ae8f02750d5c59b2a1a293d05af04210b8e79d0b3fd4043	38.10%	Heodo
2022-03-31	UE-22418768.xlsm	xlsm	a395d2ca627270c1b53481050d39c6395c778682e98aeedcb00d1f68fd1ec23f	n/a	Heodo
2022-03-31	OW-804564865.xlsm	xlsm	7ca9c48ab76e34256ebad65fa28f1eb8b3da601b413e19e03a1442046b3aefea	n/a	Heodo
2022-03-31	VWM-092387659.xlsm	xlsm	75f0362196443080531377973dbab9153eecc5ae78da6a2e94b492580d2bdf7a	n/a	Heodo
2022-03-31	EFI-7476876329.xlsm	xlsm	48f3f48c930933448b555efe67aa364e098504f2273ec2a4792803cb4a21b8bd	40.98%	Heodo
2022-03-31	JDZ-4833503.xlsm	xlsm	fcefa2ebaa9e5cce06f5519640eab5413a9b9f6a53ed3fe2f3754c9a610418ba	n/a	Heodo
2022-03-31	DJ-6487063643415.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	LTM-21176755479.xlsm	xlsm	fea58fae76c86e5f07c7f8b032f84174206bc489d92c49fe54a5b51d2658faf8	34.92%	Heodo
2022-03-31	GZ-6043320992291.xlsm	xlsm	53ef2d3a553342c46f5d3011cb07634e1f02b36dae99808e47dd459dd384e388	n/a	Heodo
2022-03-31	SXH-082118248883.xlsm	xlsm	97f11e4cd509aefb731d8b1a4b299c8ab4096e270f05f52d8e0eb6d2366fa501	38.71%	Heodo
2022-03-31	LII-526636752.xlsm	xlsm	a099f9c9c8eff7049da288a1205f1c0ccd52a4954930cabdd7a00dafbe8bbe6d	38.10%	Heodo
2022-03-31	EK-066485682929152.xlsm	xlsm	96fac13010c22cdd9510ed06c70ed29257b59aa3fc3be17a9515bdcf3596aa51	41.94%	Heodo
2022-03-31	TN-9719695962930.xlsm	xlsm	30deb7a7086f74317285271a2e26e40dc43b461a1a77c77480ea742b02cbe51f	38.10%	Heodo
2022-03-31	RS-9722203.xlsm	xlsm	f1a59459dc11d8edab701cdd7610dd6310993ddb1aa04ab43f8fc3536040700d	n/a	Heodo
2022-03-31	EL-788850428983076.xlsm	xlsm	6f7875f81192db87ffea6b495f10f68edb22a26f0cbc22b47cc1fbaf1b160cdd	n/a	Heodo
2022-03-31	URJ-275225591102.xlsm	xlsm	0c71f0ce426be3dfeacb36cfb08349362327fa6041d1669a1d2ef8b1110bfab3	36.51%	Heodo
2022-03-31	JZJ-0106895695561.xlsm	xlsm	08e924859a3a3f17c099cca75fbb3cfd7f8cd726fa2e89fb47ff02f9687143ba	38.10%	Heodo
2022-03-30	XKU-17951089.xlsm	xlsm	39bbb570609ea300f9d959dcf23f2161043c6dedc230f97e7eab2388db651831	37.10%	Heodo
2022-03-30	BCN-216961719114898.xlsm	xlsm	a9815663da2b9c41013ae43700ed39ce8476ee64cad443c5c40bccd91420efc7	30.65%	Heodo
2022-03-30	UBK-6757967682429.xls	xls	2fb5d6b4684b1f180fd682f92fc346420c16376d64b8b8ec6b0564247000dc58	28.81%	SilentBuilder
2022-03-30	NJA-89940732598405.xls	xls	1d74cb46d2219761b01e8425e6ec57120fdb867a48735edee3b9bfafd3706cae	n/a	Heodo
2022-03-30	72242225786706308.xls	xls	7e0fed83342cb9194e28095ab63cea9de221517ac891b52d151316e4a6b0647a	n/a	SilentBuilder
2022-03-30	4224959741672881049.xls	xls	fa9ff98be2b2014f3459f9e24865c2c062491b891fcf51b2a6b03e208256305c	n/a	SilentBuilder
2022-03-30	69404284085223789.xls	xls	ca7ae0768d8ec84c9636a4287b0924f63b6c34a876d90a1db949444a9f913e9e	n/a	SilentBuilder
2022-03-30	9803219853691566741.xls	xls	539de96d81ed4955f2d70a8c888ba181357736c83b1c56383797bb82f18abb52	n/a	SilentBuilder
2022-03-30	423523110527.xls	xls	833228f695721fa501cc076613c0302aa672817273f1ece83157a395d6c3358f	n/a	SilentBuilder
2022-03-30	9632976787.xls	xls	05b7de9ea6dc7fc6aa9bee8c26c08424ecb944f734630f2f5f708dd38c643200	25.42%	SilentBuilder
2022-03-30	93484726603.xls	xls	69d8211fe32a1c511c6fd358005bceb8e19e01d9cc927c01b9f0760c13b75d6c	n/a	Heodo
2022-03-30	4459576524.xls	xls	155c50c41b3ef4592c34808ba9f7ee42bab6e5b38dad42aa38bc3ce35dddc36b	21.67%	SilentBuilder