URLhaus Database

You are currently viewing the URLhaus database entry for https://galaxy-catering.com.vn/galxy/cX9eVP/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2123166
URL:	https://galaxy-catering.com.vn/galxy/cX9eVP/?i=1
URL Status:	Offline
Host:	galaxy-catering.com.vn
Date added:	2022-03-30 19:47:07 UTC
Last online:	2022-08-09 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-30 19:48:05 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	4 months, 12 days, 0 hours, 33 minutes (down since 2022-08-09 20:22:02 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	GZF-68060283063.xlsm	xlsm	1cb0214ebc21c13015d927c504acfbe080983909d8839ef9b28c5e270d1f4f1c	46.77%	Heodo
2022-04-01	YBS-5912816222.xlsm	xlsm	97fc1c969103278fd6fddd2f117d3b418d3f7925a9971bafa8bafd8b2d3df632	36.51%	Heodo
2022-04-01	TGU-74158417311199.xlsm	xlsm	ed0f2b25cb3cf7567e560afcce0dbe163122a48f317ee5c28d2f6ee259898758	n/a	Heodo
2022-04-01	OOX-558925903.xlsm	xlsm	7e96bc74f1eb792d13f6c2f4d32b219833ea235a0ef4802178b44ebd18ef7ce3	47.54%	Heodo
2022-04-01	YWG-9946454572263.xlsm	xlsm	d058072d305f952c54981e50bbd34cf23dd0386a4924a4bdb8a91f46e0498d4f	n/a	Heodo
2022-04-01	GA-5461516728.xlsm	xlsm	64d236fdcb188d517ddb0fd6ffcaf1759dddd828de26d1cf6b605031589da663	n/a	Heodo
2022-04-01	JD-559557847622611.xlsm	xlsm	534f4ab246459c91599d4d14e916a2f16707134075a5a88d897105a0e782632b	n/a	Heodo
2022-04-01	BBH-9160087995.xlsm	xlsm	178e56af34b8983297784e7e795578c7567350c8ef3be2b30a43a05de59b9e8b	n/a	Heodo
2022-04-01	SRQ-3694452699178.xlsm	xlsm	60833a18e14a8b4eb21cec280bdac63e8a03eeda78c1c5e0e641624b72000be8	n/a	Heodo
2022-04-01	ZEL-442883150445.xlsm	xlsm	5270afd30069d36cee5d2bb013f3d1d7765e90cce7cb4d7244c92a62596f108d	n/a	Heodo
2022-04-01	INI-48891079.xlsm	xlsm	b25b9d420c3585bd014abd2e590a74feab98bbb0ee612c465a5e152b28c67e0b	n/a	Heodo
2022-04-01	KV-7789297.xlsm	xlsm	3390185d81ea6becb7bb5c59f26400a3c75b99da77bd95eb76e9417ca984b4df	n/a	Heodo
2022-04-01	RV-201038198.xlsm	xlsm	63e1baa16341383969467beb7fd04519776f8283306f3982a330fc81b9931902	n/a	Heodo
2022-04-01	HR-018400023711.xlsm	xlsm	4fe9cdc6b35e9992d206f5a0bb6ebcb063618ed502e651ba2f5c014a2aea5776	n/a	Heodo
2022-04-01	OD-9868641149.xlsm	xlsm	525f6667c0439d7c21905eb0aec33c64c4b4ee34d0f3896f67f5140927b44d90	42.62%	Heodo
2022-04-01	BU-8429919835.xlsm	xlsm	5118b85e7ffcf61644564e2660990ff4e6becc430b13aca19a931d25f3d4c1d9	38.10%	Heodo
2022-04-01	SDM-35363757609.xlsm	xlsm	f3c06e72e6b0cddb3d66545d59bef1288458f9c106ede60b0507f095971e7067	n/a	Heodo
2022-04-01	XA-4043226682614.xlsm	xlsm	bae96f9a32122e9edb5b64e650dad2249b1dae898540a74641fdd9a4fe860edf	n/a	Heodo
2022-04-01	QGM-525193000.xlsm	xlsm	c0e952a6f3524c6ad386d70392deb83c2e0677409d38454d38759abb44e2058c	41.94%	Heodo
2022-04-01	HJN-285135919718.xlsm	xlsm	45a99040aab95ccb6eae75a169ae10f79883e11c53c29bc41ffffd0a329940ce	n/a	Heodo
2022-04-01	DVY-8914635.xlsm	xlsm	441ae7dcf7d20f39dce4201542202d7c62c067457d1476c2bda9c819979879eb	45.90%	Heodo
2022-04-01	VKZ-8849712499479.xlsm	xlsm	68696caf69e14a066ca54423f72a2e7693b03f5ce299e609265a3e72df925abc	39.68%	Heodo
2022-04-01	AZ-3936758.xlsm	xlsm	dcc6409e704780116523a3e6ca35edf1399b381568d26b6d0373d1d9e00be491	n/a	Heodo
2022-04-01	LVN-843388799254.xlsm	xlsm	d470a9368b15c6f1e3e1c49a452ab86e75500fc1585044f4c9dcdadaadd804d7	n/a	c8fc17ff030feb3383d8889f69abbb
2022-04-01	XT-297973501436078.xlsm	xlsm	77bd6aa47a2c099f99f463a04c9f5bead9d13eae0ccdf1821a6cb755d8c70382	n/a	Heodo
2022-03-31	QE-17006861268277.xlsm	xlsm	a3daf38a9efabc78999651c2b0f4afd47af19450cb0b3f4492221c20b7590c71	n/a	Heodo
2022-03-31	JP-52687164557.xlsm	xlsm	1bdada6954ab20722dfb51b2ace2e6fcdfb556210c74bb059752552f5fa8f78f	42.86%	Heodo
2022-03-31	SD-32930103114710.xlsm	xlsm	dffde7ff06d4b4d38ae8f02750d5c59b2a1a293d05af04210b8e79d0b3fd4043	38.10%	Heodo
2022-03-31	ZM-81769904999071.xlsm	xlsm	ab43f95f76dbd0bafc11d3af407297993a715790014ec2d550185c7eb75293ab	37.70%	Heodo
2022-03-31	EAY-37522503538256.xlsm	xlsm	c201ae0ab0516a27d14400b4af28d4189bb2c6d8b589c4fadb025c26645f19bf	38.10%	Heodo
2022-03-31	JOG-698714550946.xlsm	xlsm	2fa93c2dfef003816d473094a03ffe57ed6fd6cbbd21f22831af88634fc3287d	37.10%	Heodo
2022-03-31	VBQ-965153610579.xlsm	xlsm	9c234ce84ff77dfc1466c436eea9d46c50c3055c50f0029b81dba5052864f4ba	n/a	Heodo
2022-03-31	BX-942982649004259.xlsm	xlsm	838aaff9e0b3ff967eb4e3ed2461109e68a0d8273f496f447224e1ae3c55d8ba	n/a	Heodo
2022-03-31	QYX-078857134519.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	GV-242971566.xlsm	xlsm	b034cfc88c6603dc0f5519ecba2dbba8c5382b26b8c25da23f8d40368ce8e7b5	33.87%	Heodo
2022-03-31	TF-298467224588914.xlsm	xlsm	63ba5c63fa8f569c1870ab57faeeec2933a7bdb28c90458f6c5373f1a71dcef4	36.51%	Heodo
2022-03-31	JKB-39981683907236.xlsm	xlsm	2e1db4578a7534abbaeb0e65b01b0da5024a9e27d99c3a9b29b03cca35b3a096	n/a	Heodo
2022-03-31	DQ-622870617267303.xlsm	xlsm	c3a5d5bc890f935056c127bdeda35cfcfbb8e292e59774a24ca5611e94430907	37.70%	Heodo
2022-03-31	RIM-95889452847.xlsm	xlsm	65b87a95369159fb3d54556f3f316f9e13eadd8b95e9e13f6a8d9cc79f43a8e6	40.68%	Heodo
2022-03-31	UHQ-0406009260.xlsm	xlsm	f869263419a75a1350a78400b9e3dd186488c7c76d299e7984af7e5e0c91d75d	n/a	Heodo
2022-03-31	ZX-464015760.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	n/a	Heodo
2022-03-31	JCF-1369558.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	ZL-19110111.xlsm	xlsm	b4f7a7bd6f99c0ea09617160e6bf753419f6d731901828662049ac8abfed4959	n/a	Heodo
2022-03-30	ARP-123315759.xlsm	xlsm	08e64e582d9d42f5f3a21eaff52bcb72b4a3abfc761561ff28f40bf937dedb2c	35.48%	Heodo
2022-03-30	JH-4135631731037.xlsm	xlsm	2e8dfaff0039f7b69af5f699d0efff85cca1b5dbe2a50082b7ccc49503545053	n/a	Heodo
2022-03-30	TYG-6658433.xls	xls	a14fb7f51582ec1f9af65f4300ff4dde6a99d12bd2b08f70863ca16d508c72ba	28.33%	Heodo
2022-03-30	9318243200.xls	xls	3493b3210a3ce325a05cc7da5ffc69d323e0a0a645d8bdfaf1016a2de52ee1b5	26.67%	SilentBuilder
2022-03-30	27983395197.xls	xls	afab90f284e5f643a8fa8a6eafd154175a22394254db310f0dcddc607a5ed468	n/a	Heodo