URLhaus Database

You are currently viewing the URLhaus database entry for https://hiclic.com/__MACOSX/docs/ze6KNlYVwGgcYBvUPHM/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	761658
URL:	https://hiclic.com/__MACOSX/docs/ze6KNlYVwGgcYBvUPHM/
URL Status:	Offline
Host:	hiclic.com
Date added:	2020-10-28 16:45:04 UTC
Last online:	2020-10-29 03:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-28 16:46:02 UTC to abuse{at}privatesystems[dot]net)
Takedown time:	10 hours, 43 minutes (down since 2020-10-29 03:29:31 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-29	11680841-20201029-PVJ745.doc	doc	01832091bf1c1ecee3623274c0a9d173d305fb1b0f1059cafa86eab41961f498	n/a	Heodo
2020-10-29	file_ISW82127.doc	doc	7ef43d002962412af376282a6cf98344219f97bc5ae5ab70b03204fdea131fc9	n/a	Heodo
2020-10-29	arc_20201029_B863870.doc	doc	d14723eb50af0341b72c28a3c747940042ecd0795e40dd42a5a85ab0ac49ba7f	n/a	Heodo
2020-10-29	221890 B12167.doc	doc	1057624fd741f170fc4a05bb538ab9a3d863abf1ca31d713b1d13cd57a03e8c4	26.98%	Heodo
2020-10-29	ARC_2020_10_29_YP354.doc	doc	697d945ff47046f421017a4ececab19494f8ec8b9d59abc54fd159fdaf1bfcaf	25.40%	Heodo
2020-10-29	mes_2020_10_29_JCS337486.doc	doc	9f69df62156f924a3ebb07f523ae55f5b4df5682fbb6a211b5b71efa94a8766a	n/a	Heodo
2020-10-29	dat-2020_10_29-07571.doc	doc	c59b1b726a72aa7b4df2f72a8eb97bca6345ce1d1400b6cbb7896bd8bf41a27c	26.67%	Heodo
2020-10-28	file-1743.doc	doc	5a6a4927f340368b10fa8089d2082279e5726513b1ccee1baac0516e5092a242	n/a	Heodo
2020-10-28	Mes-20201029-PZY996.doc	doc	c05fb70a40c0550356929b11d569b80527b930845a011f0e564e9b3f6bb03ffd	n/a	Heodo
2020-10-28	File-3183670.doc	doc	48a76d85d2eb93ee3fa58f3b1ef6a80e17e824cef265353c9cb804874809063a	n/a	Heodo
2020-10-28	Doc_2020_10_29_P64048.doc	doc	c47e2824a0c7956c6d3e86bc3b599b19f2eb9c2136949bda71de8e4a5009b49d	n/a	Heodo
2020-10-28	Doc_20201029_J4951.doc	doc	0141fc68f8d61f3c6ab01420927eb224eb83af6d701944e66d37f19898cf1b4e	n/a	Heodo
2020-10-28	MES 2020_10_29.doc	doc	283e6d40d0814da95cb0ec7fe6dc4e4ccdfa1dcaaaf61646c01bc0f0250d62b1	n/a	Heodo
2020-10-28	mes.doc	doc	76029e7fcd2020aae7857b746d85ce4b9e91d196221d3b731060c7908f45bdd5	n/a	Heodo
2020-10-28	DAT_2020_10_29_JX148738.doc	doc	45b34d3ea4ae8a23f30f20ae157a3860942a0185a3f8132ce4b474da2f862997	n/a	Heodo
2020-10-28	Doc-2020_10_28-2727580.doc	doc	bfdb8171decc8e7ad5149341f75743afdb39ade60e09e7afc3d3f8f4daa057bc	23.81%	Heodo
2020-10-28	054408_P976831.doc	doc	bd17ceae08c87f45c042d5893ecd4547b333d49f07e732df28e2000b4b52c46b	n/a	Heodo
2020-10-28	rep 2020_10_28 91441.doc	doc	8f43c8b43810e2ccbb80a555c115fbc81e758e2b687ab205b92ea93bb0544a51	n/a	Heodo
2020-10-28	list_2020_10_28_599.doc	doc	e16ff7cfe983a96aa9baabd56c3f8ee53b910bfbcd8c69c062417cfad241e2dd	n/a	Heodo
2020-10-28	HO616_PP5968.doc	doc	e3a9e508c613147446da86b994ce780c55edd7287415439f759ca4160071c17f	n/a	Heodo
2020-10-28	T8206 2020_10_28 857.doc	doc	1beec5bb24132a128d8578e0a58f3f03deebe026ca66c2066aa03d598ce48959	n/a	Heodo
2020-10-28	INF_2020_10_28_867.doc	doc	c52d7a70e6ae1edec10a02951f1668f6442e8837619245733d206aa4f669bb2f	15.87%	Heodo
2020-10-28	inf_2020_10_28_858656.doc	doc	8ff6258aa02f76f35f8a2a22164c938e0c28b2b8b906c2e1530d70d2675ce356	15.87%	Heodo
2020-10-28	REP_2020_10_28_01497.doc	doc	996ee4dd4b97188a5f14ce28fc3f8752d151af3647abd9e2fe7363e36ee79501	n/a	Heodo
2020-10-28	file_2020_10_28_BOB18146.doc	doc	3d531db12abce6a6b59476d4c5816866bed03126306e1c2042a0406618ec2653	15.87%	Heodo
2020-10-28	FILE-1394.doc	doc	4e3ea1f4f816b37d16d5c9ffec4e403b581d1582352586740f3e93e09d25ed56	n/a	Heodo
2020-10-28	Arc_2020_10_28_61315.doc	doc	1982b6c4036286ba47a27de309abefb7b8e542dafc43448ef6437f504191143c	n/a	Heodo