URLhaus Database

You are currently viewing the URLhaus database entry for https://nicetelecom.us/vsr/81CqdFelyiUdYH4cxNWZGPBnWFEhI3yXPjkGDGJhMZzv6Idk8iSNYm/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	937972
URL:	https://nicetelecom.us/vsr/81CqdFelyiUdYH4cxNWZGPBnWFEhI3yXPjkGDGJhMZzv6Idk8iSNYm/
URL Status:	Offline
Host:	nicetelecom.us
Date added:	2020-12-22 11:18:04 UTC
Last online:	2020-12-22 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-12-22 11:20:13 UTC to abuse{at}contabo[dot]de)
Takedown time:	5 hours, 56 minutes (down since 2020-12-22 17:16:27 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-12-22	0PWXVL9.doc	doc	258bf32591a0ac34fc68c8d36075c55b6f45b79eaaf16e3e853ba48e90a3a220	41.27%	Heodo
2020-12-22	W9NY7VNAG.doc	doc	a447c84f7560c4f1edf551724e02c90c1b0ad6b1e96e42db4020d2a749940e80	n/a	Heodo
2020-12-22	EG8H1NYH28FWG.doc	doc	ca93317d1d526ec7ad19a487cfff9df808e5ca37aefd09b481f17cb982adf0be	n/a	Heodo
2020-12-22	9H9ODVC.doc	doc	be0dbaaec3415c76acd2fa6e9c3969d8bf86f058be7e69e357518e173ba4d246	n/a	Heodo
2020-12-22	FRUW66P3.doc	doc	02da530f198d747d124f0554938c6718e94f78528286171a3a3298e4eee488a4	36.07%	Heodo
2020-12-22	1IVDVF8SSMW7J.doc	doc	72526ea70462d80cfb3edea310592329d47c4081c3ee6df1184a219a17b1a731	33.87%	Heodo
2020-12-22	CCEGBF.doc	doc	30fcb0b638fa78c9ec712cfdde89641c5d6a6ae28c3bd1fa75b29f9b78855721	34.92%	Heodo
2020-12-22	6EKVLFX02.doc	doc	110c702523b61a449c85889be0f1f3a8b2c0375bc3de47eb9051189eabd03445	n/a	Heodo
2020-12-22	T4IMMB.doc	doc	7ec200a834392208ae8521c4804d11ff669137b4265b732a17660527ccf3cf36	36.51%	Heodo
2020-12-22	P6HF7EXNQRJH7.doc	doc	0ebdff0201647a1df0ad578dcdfff8ca9e91c379b6183c53845de8e226b95c39	36.51%	Heodo
2020-12-22	AHUIVLVCR6SIW2.doc	doc	d75b0d66078627d8cf65aad41048ad00049bac791f122b3946f0119aa758273a	36.51%	Heodo
2020-12-22	P3RYP6Z4TENVA.doc	doc	bf71d36b2ba7d0198a2bebd6c351f932fba9da682a76a354de6b798db426a9e9	n/a	Heodo
2020-12-22	3GZAAQXX9AN.doc	doc	7be2388880d2ad20b0cfa616a726d7c91d2904da8f3f8ad4d2236d3c79e935fc	36.51%	Heodo