URLhaus Database

You are currently viewing the URLhaus database entry for http://greycoconut.com/edm/Jc3LJXQ6wEemK7g876/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2122876
URL:	http://greycoconut.com/edm/Jc3LJXQ6wEemK7g876/?i=1
URL Status:	Offline
Host:	greycoconut.com
Date added:	2022-03-30 16:51:08 UTC
Last online:	2023-01-21 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-30 16:52:10 UTC to netops{at}webwerks[dot]com)
Takedown time:	9 months, 26 days, 17 hours, 19 minutes (down since 2023-01-21 10:11:57 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	HJ-905098534.xlsm	xlsm	3cea415c72cf99f730ca00ed40940ba35c82dd2582786d91fb329459f88328ef	43.55%	Heodo
2022-04-01	XNG-7255903051.xlsm	xlsm	e60bc99d183be33a1787fa2d49cf9ffa132e958a48f6c9f44ae73df878d51cee	n/a	Heodo
2022-04-01	BH-40603482836.xlsm	xlsm	64d236fdcb188d517ddb0fd6ffcaf1759dddd828de26d1cf6b605031589da663	n/a	Heodo
2022-04-01	HZ-0816651032285.xlsm	xlsm	534f4ab246459c91599d4d14e916a2f16707134075a5a88d897105a0e782632b	n/a	Heodo
2022-04-01	DK-9014711.xlsm	xlsm	67761263609b4bd35b14d39f6eddb7e7554a73b9d317d53d533dac64ce3f30d4	44.44%	Heodo
2022-04-01	UV-08814809.xlsm	xlsm	e503bdfaa287dcd3634ddd3c3b00f7c0a162768c200e6739e356328e6c8c1ed1	n/a	Heodo
2022-04-01	LM-45262981091085.xlsm	xlsm	5a5c8a3d5de13a95ffc29d40c54fe8440d1c84f706e59960f5f1621715b8a1dc	n/a	Heodo
2022-04-01	MG-13644551668513.xlsm	xlsm	a2088f01e4a3b55cfbccaa117ef5c9ea67bf766a15d6beec4095f966a9fcc4dd	43.33%	Heodo
2022-04-01	CAF-070249077011.xlsm	xlsm	fa9f8c915e7e2c8f789e6e390d3b655689e5cb9e29f1b971fb833bad6cfdb0c9	41.27%	Heodo
2022-04-01	US-7764807640656.xlsm	xlsm	81b6929fa5ca90e9e08f68e7aa10eeb6a557a65880ce71b3c4976a67f4e5aebc	n/a	Heodo
2022-04-01	IML-16452685837762.xlsm	xlsm	4fe9cdc6b35e9992d206f5a0bb6ebcb063618ed502e651ba2f5c014a2aea5776	n/a	Heodo
2022-04-01	LO-715080557.xlsm	xlsm	525f6667c0439d7c21905eb0aec33c64c4b4ee34d0f3896f67f5140927b44d90	42.62%	Heodo
2022-04-01	VQ-76299043810.xlsm	xlsm	b42ac7850efc6c39b4c7db61d4be9a131d78b545eaaa868dab373c45bff2fd72	n/a	Heodo
2022-04-01	VNJ-8542702.xlsm	xlsm	2a6631c9dcb2385c65248a43d84d9d2063d4c0bec3ef9325c437a5ee31ef4dd6	39.68%	Heodo
2022-04-01	IEV-334371513.xlsm	xlsm	a64bc6ebec8276ca2d7c4f93924435aa5bb8f8cdf0f71601d6640108157a126b	n/a	Heodo
2022-04-01	TAN-740400286.xlsm	xlsm	9ae3ff917d99c0e0ba1f6dde3bcfebd781ab332d65552b032855ca627606cccb	38.10%	Heodo
2022-04-01	PDC-4519761480.xlsm	xlsm	b67f378396a813307cf0d9d7c4f272be83010272fcfa9af1791b517cf4f1ba05	n/a	Heodo
2022-04-01	EA-0046126.xlsm	xlsm	441ae7dcf7d20f39dce4201542202d7c62c067457d1476c2bda9c819979879eb	45.90%	Heodo
2022-04-01	SG-5512061949357.xlsm	xlsm	dffd85c80b8f8ac8e608958d4821164a86000b4437d9012e20aecc7ca841bd42	39.68%	Heodo
2022-04-01	FZ-64745661706.xlsm	xlsm	2cbe77b879d18d1912fc160e101f3ec30a74eebfb2d138b01259a14979f15060	n/a	Heodo
2022-04-01	DCA-367652478138698.xlsm	xlsm	57a73cab7fb65bf97b094b8ea188937cff862e7e55cb179ad32cc6d9200d8855	36.51%	Heodo
2022-04-01	XAC-823007880.xlsm	xlsm	63a772f7b80157698557665066c82cd930d3b1c75cbe50b72fedce8da477c193	43.55%	Heodo
2022-04-01	NQ-0181123.xlsm	xlsm	77bd6aa47a2c099f99f463a04c9f5bead9d13eae0ccdf1821a6cb755d8c70382	n/a	Heodo
2022-03-31	RG-70799290284.xlsm	xlsm	a3daf38a9efabc78999651c2b0f4afd47af19450cb0b3f4492221c20b7590c71	n/a	Heodo
2022-03-31	ZGL-619494279320158.xlsm	xlsm	65d9f4ae7d90232314fd04917e53e9f4e2a214ec3670daad35bd2f51fe9a45d7	n/a	Heodo
2022-03-31	VYB-90321812.xlsm	xlsm	ccd9dcb6dc115061ff6e011cb77ac0c73d785a23c2019aabe11eba9b7500b118	38.10%	Heodo
2022-03-31	YX-487521831433.xlsm	xlsm	83a8039af1534f4fc93efcdb7e429c799f144ace1f33b37ca42a57ee7a559499	45.90%	Heodo
2022-03-31	FSR-047034981595.xlsm	xlsm	317b14af792a2e4b877fd65cd6dc1cdceaf3d9573dcc1cf673e5008d38f7b6ca	35.59%	Heodo
2022-03-31	WX-176030592.xlsm	xlsm	5255a810d7f6ce0a8c496654d7751b05993139ba23432677b64b01c9c44af0fd	n/a	Heodo
2022-03-31	KC-2175599076262.xlsm	xlsm	c171d718d9aecb5ad1e27309660f8da7a568f9798e03d4c6683d7825b5a122c9	n/a	Heodo
2022-03-31	JV-418072614199212.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	FCM-490167797267.xlsm	xlsm	fea58fae76c86e5f07c7f8b032f84174206bc489d92c49fe54a5b51d2658faf8	34.92%	Heodo
2022-03-31	BVM-24371048024492.xlsm	xlsm	a7ae8fb40c5d93e9ddbfc68b000b65ba19b085e7a19d3a5d9bef1c243a6add91	43.55%	Heodo
2022-03-31	GN-30512675719.xlsm	xlsm	63ba5c63fa8f569c1870ab57faeeec2933a7bdb28c90458f6c5373f1a71dcef4	n/a	Heodo
2022-03-31	GTZ-1417763.xlsm	xlsm	409e55effd488af9a3d098060e33fe5d66743135fc711a07d6ce4c57e2f2c2bb	33.33%	Heodo
2022-03-31	LX-83403723389234.xlsm	xlsm	c3a5d5bc890f935056c127bdeda35cfcfbb8e292e59774a24ca5611e94430907	37.70%	Heodo
2022-03-31	WBZ-388895072571.xlsm	xlsm	d4f941f7232c98be2d39a4a97edcad5b4648430bb60ad5a21747b37e705ff2d2	n/a	Heodo
2022-03-31	XMA-919986441.xlsm	xlsm	02830d05c8978247bcf9d67de7de69472a79c9f8c2a34c6e19174da73f50f627	n/a	Heodo
2022-03-31	LA-32609533531.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	n/a	Heodo
2022-03-31	VIK-5807180318592.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	KIN-3103352.xlsm	xlsm	f6d9028f6903f57570a969a97a510120fa11d93ce778cfeac61862c36d6b6bd2	38.98%	Heodo
2022-03-30	LAH-7010271614.xlsm	xlsm	08e64e582d9d42f5f3a21eaff52bcb72b4a3abfc761561ff28f40bf937dedb2c	35.48%	Heodo
2022-03-30	OS-626564157587200.xlsm	xlsm	93629f0e94046fc0c1c1a2779a8e58d101136842695fc4ad3addbde6c7757dcd	n/a	Heodo
2022-03-30	KBL-1873029.xlsm	xlsm	168a9aa1b5fa37a354fd6ccba71dcd29cbcd503a578504c69feb38bd84a8a691	n/a	Heodo
2022-03-30	ZLC-13311584676.xls	xls	31ad327541ee0627096151e901dee22241e584b78b52c17eee5a1c40a6f25490	n/a	SilentBuilder
2022-03-30	7982744341718004.xls	xls	351b340794aa53151cbfc28a0915520349e8d2d2d33a41efd0c82e71dffcc9b2	n/a	Heodo
2022-03-30	98069072399003.xls	xls	f66f9fb42cce10ab6175024704c94743356874efa1104264bb75a0b4ef028618	n/a	SilentBuilder
2022-03-30	55972777328769607.xls	xls	ca7ae0768d8ec84c9636a4287b0924f63b6c34a876d90a1db949444a9f913e9e	25.00%	SilentBuilder
2022-03-30	3084719557480987674.xls	xls	b7591b7a18cb144c1108bb4bf93c5fccf323fb6d211e1875fedca3717fdc59d9	n/a	Heodo