URLhaus Database

You are currently viewing the URLhaus database entry for https://galaxy-catering.com.vn/galxy/cX9eVP/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2123168
URL:	https://galaxy-catering.com.vn/galxy/cX9eVP/
URL Status:	Offline
Host:	galaxy-catering.com.vn
Date added:	2022-03-30 19:47:12 UTC
Last online:	2022-08-10 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-30 19:48:05 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	4 months, 12 days, 11 hours, 2 minutes (down since 2022-08-10 06:50:35 UTC)
Tags:	emotet epoch4 heodo redir-doc SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	GZF-68060283063.xlsm	xlsm	1cb0214ebc21c13015d927c504acfbe080983909d8839ef9b28c5e270d1f4f1c	46.77%	Heodo
2022-04-01	YBS-5912816222.xlsm	xlsm	97fc1c969103278fd6fddd2f117d3b418d3f7925a9971bafa8bafd8b2d3df632	36.51%	Heodo
2022-04-01	BPJ-295155947804054.xlsm	xlsm	2cd047043da3c815bb5554f75749f89f6b7f44bf302c395f9685e485e7cf3d77	n/a	Heodo
2022-04-01	OP-0709415330272.xlsm	xlsm	178e56af34b8983297784e7e795578c7567350c8ef3be2b30a43a05de59b9e8b	47.62%	Heodo
2022-04-01	VKB-7432996632.xlsm	xlsm	d058072d305f952c54981e50bbd34cf23dd0386a4924a4bdb8a91f46e0498d4f	45.16%	Heodo
2022-04-01	RXI-5431334044372.xlsm	xlsm	b67f378396a813307cf0d9d7c4f272be83010272fcfa9af1791b517cf4f1ba05	42.62%	Heodo
2022-04-01	FU-830727528800697.xlsm	xlsm	d5e9766c94d91e4da90999a0ea0d9a7b3918973c857c7f9faca5686288b53db2	n/a	Heodo
2022-04-01	JD-559557847622611.xlsm	xlsm	534f4ab246459c91599d4d14e916a2f16707134075a5a88d897105a0e782632b	n/a	Heodo
2022-04-01	JH-027654762879751.xlsm	xlsm	f29f0ba02cb498dad7d65453ecc558f159db3694f8f5cdba8d96fe63fb61d986	41.94%	Heodo
2022-04-01	XTB-26649724151.xlsm	xlsm	606cbdc0ecdc8c68efea96696850b401a2f42925109a960adc15b100ad3c8175	n/a	Heodo
2022-04-01	INI-48891079.xlsm	xlsm	b25b9d420c3585bd014abd2e590a74feab98bbb0ee612c465a5e152b28c67e0b	n/a	Heodo
2022-04-01	ZFP-818183313619889.xlsm	xlsm	8cfdb13bd3fba245b5e3c5a06b90cdab4f8970b13e3ea5262aeb7bd089474bb3	36.67%	Heodo
2022-04-01	FH-5711394029470.xlsm	xlsm	1a8adefa7d083432f592ddc3797611b4e8076869a11177ebbdc1b5b6bc22982f	n/a	Heodo
2022-04-01	KCG-0740377645.xlsm	xlsm	7fb7f42e37addbbb2765549460c94f9747dba7a15365f6621d0e9fb2d80ae701	40.32%	Heodo
2022-04-01	OD-9868641149.xlsm	xlsm	525f6667c0439d7c21905eb0aec33c64c4b4ee34d0f3896f67f5140927b44d90	42.62%	Heodo
2022-04-01	BU-8429919835.xlsm	xlsm	5118b85e7ffcf61644564e2660990ff4e6becc430b13aca19a931d25f3d4c1d9	38.10%	Heodo
2022-04-01	SDM-35363757609.xlsm	xlsm	f3c06e72e6b0cddb3d66545d59bef1288458f9c106ede60b0507f095971e7067	n/a	Heodo
2022-04-01	VY-686523257002.xlsm	xlsm	c201ae0ab0516a27d14400b4af28d4189bb2c6d8b589c4fadb025c26645f19bf	48.39%	Heodo
2022-04-01	LP-2312521583.xlsm	xlsm	41169580013c884c968404a805765bab464032270676b792b39ae2b521a64dfe	40.32%	Heodo
2022-04-01	HJN-285135919718.xlsm	xlsm	45a99040aab95ccb6eae75a169ae10f79883e11c53c29bc41ffffd0a329940ce	n/a	Heodo
2022-04-01	AVE-824179747.xlsm	xlsm	4c7b060bb7b1693ef3943692ce9c62204426393f9af92ca39c4c57e09b03cc25	n/a	c8fc17ff030feb3383d8889f69abbb
2022-04-01	ZJ-8436639.xlsm	xlsm	a4653047d35b63e4cfb6020be4149b484aa5e68354d53a9da860dcc3cdeef038	n/a	c8fc17ff030feb3383d8889f69abbb
2022-04-01	QG-548444819.xlsm	xlsm	dbdb99093276ddabe9897f83028bb608b9fafa75d7e53cc2953aa00fa13fe78c	n/a	Heodo
2022-04-01	AZ-3936758.xlsm	xlsm	dcc6409e704780116523a3e6ca35edf1399b381568d26b6d0373d1d9e00be491	n/a	Heodo
2022-04-01	GZ-799914359.xlsm	xlsm	55af29e8285944f573d931d856bd099dac92ab1868000f8346d13a0bce7f1e3d	n/a	Heodo
2022-04-01	HC-6100220.xlsm	xlsm	d17e95fb87ae8a3011b050d5c9c089f3bc06fddd1a61feb4812380e96b541e73	46.77%	Heodo
2022-03-31	ZY-488854670513322.xlsm	xlsm	bbf1ee7ac4c4ec95b8f5be027d6d0063d9067480f0bd4f7efcdbeeaa827dceef	n/a	Heodo
2022-03-31	EKM-8252725761236.xlsm	xlsm	b240ff1edec81e1d31562cbd34499c1f2085346a7de34e51016cb82e3cb85716	n/a	Heodo
2022-03-31	MYV-463692248.xlsm	xlsm	64d92f79a2d87571d428b7b19ef4f5c1680c24c8952a2f46b84f217cfba19766	39.68%	Heodo
2022-03-31	ZRB-11471510999890.xlsm	xlsm	10281dd74601704b43cbce7093951762bfb6cc0402f747ba01250b2ebc438c27	35.48%	Heodo
2022-03-31	FX-168803274888.xlsm	xlsm	99bacd00ff714e00339dc64c1418b2c0c26ca69120e34bd32ba8e73d2044cd9c	n/a	Heodo
2022-03-31	KPQ-036553219805436.xlsm	xlsm	5255a810d7f6ce0a8c496654d7751b05993139ba23432677b64b01c9c44af0fd	n/a	Heodo
2022-03-31	VBQ-965153610579.xlsm	xlsm	9c234ce84ff77dfc1466c436eea9d46c50c3055c50f0029b81dba5052864f4ba	n/a	Heodo
2022-03-31	BX-942982649004259.xlsm	xlsm	838aaff9e0b3ff967eb4e3ed2461109e68a0d8273f496f447224e1ae3c55d8ba	n/a	Heodo
2022-03-31	HW-36409080.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	WGB-99779314386977.xlsm	xlsm	fea58fae76c86e5f07c7f8b032f84174206bc489d92c49fe54a5b51d2658faf8	34.92%	Heodo
2022-03-31	GV-242971566.xlsm	xlsm	b034cfc88c6603dc0f5519ecba2dbba8c5382b26b8c25da23f8d40368ce8e7b5	33.87%	Heodo
2022-03-31	GEK-1909007163836.xlsm	xlsm	ccf8147ef96ae47288019a25336c2935e73d2e06b8fe73823e3596fb1596ba8d	43.55%	Heodo
2022-03-31	EI-9061336.xlsm	xlsm	b5df411a9037fcd4dc6b3e92145aae14064c20edf7476a543c778bdb8af22600	36.51%	Heodo
2022-03-31	DFY-70908421636907.xlsm	xlsm	575cdc6658b85600efd2d3c07f461b8adaeb0b181dfacfd318c0806e4915c95b	n/a	Heodo
2022-03-31	QJK-475342173.xlsm	xlsm	41a73a914406df97e2944f7742f48272bab7d25486c9c2a5084a7f158fdb2aaf	n/a	Heodo
2022-03-31	OKO-235478749133510.xlsm	xlsm	00ea616ce33ef49268a2d6046f588bb73c80b7a90ae6e5e5067938d72e858564	n/a	Heodo
2022-03-31	ZX-464015760.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	n/a	Heodo
2022-03-31	ARF-10078511.xlsm	xlsm	638588dd97949a25ee7322aa73731204406054bf2db2043063ebfdc82d353f65	n/a	Heodo
2022-03-30	ZL-19110111.xlsm	xlsm	b4f7a7bd6f99c0ea09617160e6bf753419f6d731901828662049ac8abfed4959	36.51%	Heodo
2022-03-30	JOV-82703774770.xlsm	xlsm	39bbb570609ea300f9d959dcf23f2161043c6dedc230f97e7eab2388db651831	37.10%	Heodo
2022-03-30	FNI-8956052.xlsm	xlsm	b8a9c6cb2992b99ed3cc0c82c5cc63dc9a4a3c509e8c67399d2d7c864ed83c03	38.33%	Heodo
2022-03-30	PE-1524563.xls	xls	46218e7a1f860f4758adfd19dc3b12e27771a613ca00f687ccbe48a0c275f83e	n/a	Heodo
2022-03-30	XV-912792672352159.xls	xls	fcd24781c23e7b39616725080ede580a017e3f9bfaafe8bbda972a4f40297bb8	n/a	SilentBuilder
2022-03-30	n/a	html	66f382cc5e80ae17c56e58c815a270c904be6226b07e4bb80b76462b6037aca0	n/a