URLhaus Database

You are currently viewing the URLhaus database entry for http://cipro.mx/prensa/B/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2122595
URL:	http://cipro.mx/prensa/B/?i=1
URL Status:	Offline
Host:	cipro.mx
Date added:	2022-03-30 14:08:05 UTC
Last online:	2022-05-13 03:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-05-13 01:25:07 UTC to abuse{at}stackpath[dot]com)
Takedown time:	1 month, 13 days, 13 hours, 41 minutes (down since 2022-05-13 03:50:57 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	BH-153891278937398.xlsm	xlsm	f2d7aece897d8518193fd7faf45a6d42d94d8552d5a6fa0801e12555519cb4ea	42.86%	Heodo
2022-04-01	ONE-51699539.xlsm	xlsm	f316a9b48040c007a792f5b99f7367b7d6996c7db03a377dd159a22db01e6546	n/a	Heodo
2022-04-01	RCP-50734772.xlsm	xlsm	151bebbe36787d4fa1411ea5ea657240e196378969813eb1c1e09d0e4e647ee8	n/a	Heodo
2022-04-01	SX-865059967559253.xlsm	xlsm	4d5891a8799ca8ad0a40792a913ff4629f31cae6f214dce8eba8590e9501e72a	n/a	Heodo
2022-04-01	JO-54448739.xlsm	xlsm	fa9f8c915e7e2c8f789e6e390d3b655689e5cb9e29f1b971fb833bad6cfdb0c9	41.27%	Heodo
2022-04-01	OB-1502413.xlsm	xlsm	746ca2a4adcb9b5a0ac766ee8711d351d4157ac48ae49d05ff043f9449ed6d1e	n/a	Heodo
2022-04-01	TI-174716995.xlsm	xlsm	62c189060c43573eb24597cf25c683c10baa2d25165f5de393f846864ecefc46	48.33%	Heodo
2022-04-01	ED-54213723850.xlsm	xlsm	525f6667c0439d7c21905eb0aec33c64c4b4ee34d0f3896f67f5140927b44d90	42.62%	Heodo
2022-04-01	ZE-55311005486640.xlsm	xlsm	b42ac7850efc6c39b4c7db61d4be9a131d78b545eaaa868dab373c45bff2fd72	n/a	Heodo
2022-04-01	LQR-049112348423.xlsm	xlsm	05aecb805762b1c7cae04f8f46d0d43392d1b6e4880c93d82f69ef52d8dd2660	n/a	Heodo
2022-04-01	WJA-3112204174975.xlsm	xlsm	c0e952a6f3524c6ad386d70392deb83c2e0677409d38454d38759abb44e2058c	41.94%	Heodo
2022-04-01	XYN-7129879146.xlsm	xlsm	45a99040aab95ccb6eae75a169ae10f79883e11c53c29bc41ffffd0a329940ce	n/a	Heodo
2022-04-01	MC-620806559883.xlsm	xlsm	441ae7dcf7d20f39dce4201542202d7c62c067457d1476c2bda9c819979879eb	45.90%	Heodo
2022-04-01	SJ-7558253761.xlsm	xlsm	73dc0a16c8430b50b28054c9e0b1e54cc8174554e7b63b4e2fa4be17c3cac1d6	n/a	Heodo
2022-04-01	LE-187833947279575.xlsm	xlsm	7fb7f42e37addbbb2765549460c94f9747dba7a15365f6621d0e9fb2d80ae701	n/a	Heodo
2022-04-01	RJZ-64795381712833.xlsm	xlsm	183a6d5a3ef111869776ad189768e9388b9c069c9da1ba02ff7fe00068819894	n/a	Heodo
2022-04-01	VYB-91440089547042.xlsm	xlsm	d17e95fb87ae8a3011b050d5c9c089f3bc06fddd1a61feb4812380e96b541e73	46.77%	Heodo
2022-03-31	GO-20828043747144.xlsm	xlsm	f18597d133d32b346f94d05eb9a0865b4ed9a863e7dbcd4cbf10bb847803c37c	n/a	Heodo
2022-03-31	MRW-628046730842.xlsm	xlsm	1bdada6954ab20722dfb51b2ace2e6fcdfb556210c74bb059752552f5fa8f78f	42.86%	Heodo
2022-03-31	II-99364792.xlsm	xlsm	73a1d60faa31200f09f2567671137d6b5f9be02a97eec33fc20971d151d5c8f1	n/a	Heodo
2022-03-31	VLG-9381553.xlsm	xlsm	10281dd74601704b43cbce7093951762bfb6cc0402f747ba01250b2ebc438c27	35.48%	Heodo
2022-03-31	BHG-0540334.xlsm	xlsm	c201ae0ab0516a27d14400b4af28d4189bb2c6d8b589c4fadb025c26645f19bf	38.10%	Heodo
2022-03-31	FM-5904020950480.xlsm	xlsm	5255a810d7f6ce0a8c496654d7751b05993139ba23432677b64b01c9c44af0fd	n/a	Heodo
2022-03-31	OG-85595161.xlsm	xlsm	48f3f48c930933448b555efe67aa364e098504f2273ec2a4792803cb4a21b8bd	40.98%	Heodo
2022-03-31	QO-7024433846647.xlsm	xlsm	36828e7a04990e1d0b2b67ccfa64ea170ff92c77cf92107d904f1e106c1d676b	n/a	Heodo
2022-03-31	KIE-65284079.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	PEG-897659210.xlsm	xlsm	162637428037d1f8f3bd675b122e5b830107b9ea7352c8c765e97a3afbce1231	40.98%	Heodo
2022-03-31	QJ-2942776.xlsm	xlsm	b034cfc88c6603dc0f5519ecba2dbba8c5382b26b8c25da23f8d40368ce8e7b5	33.87%	Heodo
2022-03-31	NNA-92464474832475.xlsm	xlsm	ccf8147ef96ae47288019a25336c2935e73d2e06b8fe73823e3596fb1596ba8d	43.55%	Heodo
2022-03-31	QRE-5990238674.xlsm	xlsm	5285de9e0e5323564d48a5d9fc627190ed9bae90f9c0e818958768b0d7c856b1	36.51%	Heodo
2022-03-31	MH-219368872613.xlsm	xlsm	c3a5d5bc890f935056c127bdeda35cfcfbb8e292e59774a24ca5611e94430907	37.70%	Heodo
2022-03-31	MX-51132987.xlsm	xlsm	41a73a914406df97e2944f7742f48272bab7d25486c9c2a5084a7f158fdb2aaf	n/a	Heodo
2022-03-31	QOA-52992469968116.xlsm	xlsm	00ea616ce33ef49268a2d6046f588bb73c80b7a90ae6e5e5067938d72e858564	n/a	Heodo
2022-03-31	BK-734793497867024.xlsm	xlsm	a4e22b806505d549a037a67123efb6b397193d7d2ff28e32d8b73185438fb5ac	n/a	Heodo
2022-03-31	AX-30210502433.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	SJ-10174906944.xlsm	xlsm	41f790fa1e0f18e897bdad1de2c9452310c964ab0c50e831d9c1150af849edf4	40.98%	Heodo
2022-03-30	JVL-8360779891340.xlsm	xlsm	51be5ff843565b3e8fe56f303452e018d305cc846181d2d79d435509b2dc578c	35.00%	Heodo
2022-03-30	YV-8291000249924.xlsm	xlsm	70c7353a1e172d428b42bed59b7ddb9a6d1b60c368ec7ae5eb64c0eeed368080	33.90%	Heodo
2022-03-30	KWT-35639465716127.xls	xls	c83aefdafdc478ffff051002d1c7b4675c068648d57fca17f788d575ce297596	28.33%	SilentBuilder
2022-03-30	ZYG-5608613894.xls	xls	2fba5997186a1e4e2da7496bd7a1bca3eaf425971cc76dd7be878f3fd88add07	n/a	SilentBuilder
2022-03-30	7484401392.xls	xls	d50ff37a85433702c1107c3f20efde94efa785c44886033b550035b23d873ac1	27.12%	Heodo
2022-03-30	89723379834382900.xls	xls	fa9ff98be2b2014f3459f9e24865c2c062491b891fcf51b2a6b03e208256305c	n/a	SilentBuilder
2022-03-30	711596602184299050.xls	xls	50170893cb064a5653f663f14de07cdaa05f1dfaba665721d31fe98d70db6366	n/a	Heodo
2022-03-30	0431779263.xls	xls	7e23ee736d4dfb8a361e8867027e49d1cabadb8a99f76ee5afae043b5a4bffc4	n/a	Heodo
2022-03-30	9071517833809957194.xls	xls	7c15e18d1dba244cc6c87a0ffa3947175c8a36156c690b62ea571af5e36fa32c	n/a	SilentBuilder
2022-03-30	1499260438139.xls	xls	ef3d086b10d8ff1a6b4e0e8d2b12a320f6c5c03623b0cb931acf667cdc77a6b3	23.33%	SilentBuilder
2022-03-30	4950841584757815666.xls	xls	9516cec1ec1966ef048e5db73db64efa00188b43420a99551c9830768698b5d6	25.00%	SilentBuilder
2022-03-30	98409228535969033.xls	xls	95e9697e21cb8ea61d8cee430995961acbe5a567d59edce3d02940113d66fc39	n/a	SilentBuilder