URLhaus Database

You are currently viewing the URLhaus database entry for http://greycoconut.com/edm/Jc3LJXQ6wEemK7g876/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2122877
URL:	http://greycoconut.com/edm/Jc3LJXQ6wEemK7g876/
URL Status:	Offline
Host:	greycoconut.com
Date added:	2022-03-30 16:51:08 UTC
Last online:	2023-01-21 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-30 16:52:10 UTC to netops{at}webwerks[dot]com)
Takedown time:	9 months, 26 days, 20 hours, 45 minutes (down since 2023-01-21 13:37:34 UTC)
Tags:	emotet epoch4 heodo redir-doc SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	HJ-905098534.xlsm	xlsm	3cea415c72cf99f730ca00ed40940ba35c82dd2582786d91fb329459f88328ef	43.55%	Heodo
2022-04-01	RF-75261392424.xlsm	xlsm	d058072d305f952c54981e50bbd34cf23dd0386a4924a4bdb8a91f46e0498d4f	n/a	Heodo
2022-04-01	UC-563415330.xlsm	xlsm	7e16b96f674b1b3fa812fb1720851a37cb88e781ae92220bb858320fbe62c331	39.68%	Heodo
2022-04-01	PYS-103869869811.xlsm	xlsm	b2938e08838301bc90fa07151c54635d779bc503bf82962bf843781326e1de2f	43.55%	Heodo
2022-04-01	DMT-1108373.xlsm	xlsm	b95fe3657493ffd175dbb5086c90553ff09539498cc0f0f4d7964b6793dca099	38.71%	Heodo
2022-04-01	DVK-07008824247977.xlsm	xlsm	60833a18e14a8b4eb21cec280bdac63e8a03eeda78c1c5e0e641624b72000be8	n/a	Heodo
2022-04-01	IZU-88405011089.xlsm	xlsm	606cbdc0ecdc8c68efea96696850b401a2f42925109a960adc15b100ad3c8175	n/a	Heodo
2022-04-01	ZGH-05751196919343.xlsm	xlsm	b25b9d420c3585bd014abd2e590a74feab98bbb0ee612c465a5e152b28c67e0b	n/a	Heodo
2022-04-01	CAF-070249077011.xlsm	xlsm	fa9f8c915e7e2c8f789e6e390d3b655689e5cb9e29f1b971fb833bad6cfdb0c9	41.27%	Heodo
2022-04-01	US-7764807640656.xlsm	xlsm	81b6929fa5ca90e9e08f68e7aa10eeb6a557a65880ce71b3c4976a67f4e5aebc	n/a	Heodo
2022-04-01	PD-46966323490.xlsm	xlsm	8c3a1df0298f1bddbc6946c5ab191ef80476cf4a3a8cefe7493c189035d2f0cb	n/a	Heodo
2022-04-01	LO-715080557.xlsm	xlsm	525f6667c0439d7c21905eb0aec33c64c4b4ee34d0f3896f67f5140927b44d90	42.62%	Heodo
2022-04-01	TIO-758320720.xlsm	xlsm	fd9c7b2de5f9a936c9a16ba8ae8e5215dc92021e435a8285fb36ccadd20e871f	38.98%	Heodo
2022-04-01	VNJ-8542702.xlsm	xlsm	2a6631c9dcb2385c65248a43d84d9d2063d4c0bec3ef9325c437a5ee31ef4dd6	39.68%	Heodo
2022-04-01	PL-402786471810.xlsm	xlsm	6435ccf53c38ab6c7a6372fd1e55864d17a33f9445d5392186f3a4a4430f0476	n/a	Heodo
2022-04-01	TAN-740400286.xlsm	xlsm	9ae3ff917d99c0e0ba1f6dde3bcfebd781ab332d65552b032855ca627606cccb	38.10%	Heodo
2022-04-01	BMV-409650511361.xlsm	xlsm	45a99040aab95ccb6eae75a169ae10f79883e11c53c29bc41ffffd0a329940ce	n/a	Heodo
2022-04-01	OAR-748234539.xlsm	xlsm	b9a82fa6fb67d3ca785a7d8d842c76b3beecd65c9789af664049e029ce4e9a7a	n/a	Heodo
2022-04-01	ZD-6761683330.xlsm	xlsm	7865998de760d97246decb7fc619579d9389e6c2cdf72097738e48a74a0bafe2	n/a	Heodo
2022-04-01	UZ-0468737803862.xlsm	xlsm	95ef55ebe10de62e86f04fbe1ade582e008dfa6d36bdc7207146525626b6638b	n/a	Heodo
2022-04-01	XAC-823007880.xlsm	xlsm	63a772f7b80157698557665066c82cd930d3b1c75cbe50b72fedce8da477c193	43.55%	Heodo
2022-04-01	KC-9756320479.xlsm	xlsm	bad29f90618ce3abdf8296b3212e2b256d0ba9047f64c50681339f93fdc7a729	n/a	Heodo
2022-04-01	NQ-0181123.xlsm	xlsm	77bd6aa47a2c099f99f463a04c9f5bead9d13eae0ccdf1821a6cb755d8c70382	n/a	Heodo
2022-03-31	YWN-3811554919.xlsm	xlsm	bbf1ee7ac4c4ec95b8f5be027d6d0063d9067480f0bd4f7efcdbeeaa827dceef	n/a	Heodo
2022-03-31	PND-18477409.xlsm	xlsm	c7f63ce6becdd48402150d223d11b5fb003ec48c57f2d856c8d979e5b3da4254	n/a	Heodo
2022-03-31	AFZ-9042787.xlsm	xlsm	73a1d60faa31200f09f2567671137d6b5f9be02a97eec33fc20971d151d5c8f1	n/a	Heodo
2022-03-31	VBS-61925149303719.xlsm	xlsm	a395d2ca627270c1b53481050d39c6395c778682e98aeedcb00d1f68fd1ec23f	n/a	Heodo
2022-03-31	SG-58334417340.xlsm	xlsm	99bacd00ff714e00339dc64c1418b2c0c26ca69120e34bd32ba8e73d2044cd9c	n/a	Heodo
2022-03-31	NJK-45725875.xlsm	xlsm	0e92cfd04405b8b597562761080285f19807c04c48c7278fe7632271ded41c3d	40.00%	Heodo
2022-03-31	KC-2175599076262.xlsm	xlsm	c171d718d9aecb5ad1e27309660f8da7a568f9798e03d4c6683d7825b5a122c9	n/a	Heodo
2022-03-31	QFE-950275242730562.xlsm	xlsm	36828e7a04990e1d0b2b67ccfa64ea170ff92c77cf92107d904f1e106c1d676b	n/a	Heodo
2022-03-31	IEO-419617768.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	FCM-490167797267.xlsm	xlsm	fea58fae76c86e5f07c7f8b032f84174206bc489d92c49fe54a5b51d2658faf8	34.92%	Heodo
2022-03-31	BA-40408465757341.xlsm	xlsm	c91108a630fb89be6e53e693ea5240bc7be18d74be099b965d92647bd239c6bf	41.94%	Heodo
2022-03-31	FM-6107440405168.xlsm	xlsm	30966974e86a66616cc16777afa85aae655f75123db0418c503c03e389091e69	43.55%	Heodo
2022-03-31	GTZ-1417763.xlsm	xlsm	409e55effd488af9a3d098060e33fe5d66743135fc711a07d6ce4c57e2f2c2bb	n/a	Heodo
2022-03-31	NYC-91499331750.xlsm	xlsm	575cdc6658b85600efd2d3c07f461b8adaeb0b181dfacfd318c0806e4915c95b	n/a	Heodo
2022-03-31	WBZ-388895072571.xlsm	xlsm	d4f941f7232c98be2d39a4a97edcad5b4648430bb60ad5a21747b37e705ff2d2	n/a	Heodo
2022-03-31	KPH-449010941.xlsm	xlsm	f869263419a75a1350a78400b9e3dd186488c7c76d299e7984af7e5e0c91d75d	n/a	Heodo
2022-03-31	LA-32609533531.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	n/a	Heodo
2022-03-31	ND-9315150.xlsm	xlsm	638588dd97949a25ee7322aa73731204406054bf2db2043063ebfdc82d353f65	n/a	Heodo
2022-03-30	XN-84554885297.xlsm	xlsm	b4f7a7bd6f99c0ea09617160e6bf753419f6d731901828662049ac8abfed4959	36.51%	Heodo
2022-03-30	ZH-272214324747.xlsm	xlsm	39bbb570609ea300f9d959dcf23f2161043c6dedc230f97e7eab2388db651831	37.10%	Heodo
2022-03-30	RO-2897437857291.xlsm	xlsm	a635724502ddf792c6bc78f232c678f559b02ac1baa5cb61f924b6d2d7aeccd0	n/a	Heodo
2022-03-30	QA-88635817148488.xls	xls	f3101b6d16751623f8a025bfbf75ae9a32c68b534dccbab4452ee72a9fbe0f5f	28.33%	SilentBuilder
2022-03-30	n/a	html	e359fae69513d7c25de83f62d57654f6dda7f6309ff7d6fa10c67e2f47fe80a9	n/a