############################################################################## # URLhaus ASN CSV Feed # # Generated on 2025-11-18 18:47:55 UTC # # # # For questions please refer to: # # https://urlhaus.abuse.ch/feeds/ # ############################################################################## # # Feed generated for AS53107 # # Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country "2025-06-20 15:00:17","https://88420000.celulafranquias.com.br/?u=script","offline","malware_download","js|strelastealer|svg","88420000.celulafranquias.com.br","177.136.254.69","53107","BR" "2025-04-03 15:09:15","https://educacom.com.br/wp-admin/tmp/bloodengineer.hta","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:14","https://educacom.com.br/wp-admin/tmp/radiat.ion","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:09","https://educacom.com.br/wp-admin/tmp/7d.jpg","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:08","https://educacom.com.br/wp-admin/tmp/classcomputer.hta","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:08","https://educacom.com.br/wp-admin/tmp/programfunct.ion","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:08","https://educacom.com.br/wp-admin/tmp/propertyconcentr.ate","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:08","https://educacom.com.br/wp-admin/tmp/teach.hta","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:08","https://educacom.com.br/wp-admin/tmp/temp.hta","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2025-04-03 15:09:07","https://educacom.com.br/wp-admin/tmp/diseasedesign.ere","offline","malware_download","","educacom.com.br","177.136.254.34","53107","BR" "2024-12-07 05:36:09","https://www.casacrescer.com/wp-content/plugins/wats/openfl.php?id=","offline","malware_download","Matanbuchus","www.casacrescer.com","177.136.254.69","53107","BR" "2024-11-13 15:51:14","http://141.11.128.154/venonbase.txt","offline","malware_download","br|trojan","141.11.128.154","141.11.128.154","53107","BR" "2024-11-13 15:51:11","http://141.11.128.154/run.txt","offline","malware_download","br|trojan","141.11.128.154","141.11.128.154","53107","BR" "2024-11-11 07:47:19","http://89.213.134.246/PhotoBase64.dll","offline","malware_download","donutloader","89.213.134.246","89.213.134.246","53107","BR" "2024-02-05 14:12:36","https://stefanostore.com.br/ne.php?file=nota.zip","offline","malware_download","msi|ousaban|zip","stefanostore.com.br","187.110.161.72","53107","BR" "2023-12-19 15:06:11","https://portaldeuniao.com.br/wthlde/","offline","malware_download","TR","portaldeuniao.com.br","186.209.113.130","53107","BR" "2023-06-22 06:46:25","https://cmpocodejosedemoura.pb.gov.br/cst/?1","offline","malware_download","BB33|geofenced|js|Qakbot|USA","cmpocodejosedemoura.pb.gov.br","186.209.113.142","53107","BR" "2023-06-20 11:48:58","https://jrbaterias.com.br/laco/?1","offline","malware_download","BB33|geofenced|js|Qakbot|USA","jrbaterias.com.br","187.108.196.90","53107","BR" "2023-06-16 15:24:43","https://jornaldoplanalto.com.br/tu/?1","offline","malware_download","BB32|geofenced|js|Qakbot|Qbot|Quakbot|TR|USA","jornaldoplanalto.com.br","177.136.254.67","53107","BR" "2023-06-16 13:21:20","https://jornaldoplanalto.com.br/tu/","offline","malware_download","BB32|geofenced|js|Qakbot|Qbot|Quakbot|USA","jornaldoplanalto.com.br","177.136.254.67","53107","BR" "2023-06-15 16:14:31","https://jornaldoplanalto.com.br/cus/?1","offline","malware_download","BB32|geofenced|js|Qakbot|USA","jornaldoplanalto.com.br","177.136.254.67","53107","BR" "2023-06-15 11:04:23","https://jornaldoplanalto.com.br/cus/?","offline","malware_download","BB32|geofenced|js|Qakbot|Quakbot|USA","jornaldoplanalto.com.br","177.136.254.67","53107","BR" "2023-05-18 15:37:11","https://minertecnologia.com/li/?1","offline","malware_download","BB28|geofenced|js|Qakbot|USA","minertecnologia.com","177.53.151.10","53107","BR" "2023-05-17 13:06:28","https://minertecnologia.com/apol/?1","offline","malware_download","BB28|geofenced|js|Qakbot|Quakbot|USA","minertecnologia.com","177.53.151.10","53107","BR" "2023-05-16 13:14:39","https://sushibistrot.com/at/?1","offline","malware_download","BB28|geofenced|js|Qakbot|Quakbot|USA","sushibistrot.com","187.110.162.186","53107","BR" "2023-05-16 11:25:14","https://oculoplasticsacademy.com/qo/?1","offline","malware_download","BB28|geofenced|js|Qakbot|Quakbot|USA","oculoplasticsacademy.com","187.108.207.21","53107","BR" "2023-05-15 17:22:17","https://minertecnologia.com/qas/?1","offline","malware_download","BB28|geofenced|js|Qakbot|Quakbot|USA","minertecnologia.com","177.53.151.10","53107","BR" "2023-05-10 15:37:34","https://porquinhogordo.com.br/tmie/","offline","malware_download","BB27|geofenced|js|Qakbot|Quakbot|USA","porquinhogordo.com.br","186.209.113.111","53107","BR" "2023-04-26 12:08:06","https://duosys.net/at/sequisint.php?mgg=92","offline","malware_download","qakbot|qbot|Quakbot|zip","duosys.net","186.209.113.104","53107","BR" "2023-04-25 12:58:16","https://duosys.net/at/sequisint.php","offline","malware_download","BB25|geofenced|Qakbot|Qbot|Quakbot|tr|USA|wsf|zip","duosys.net","186.209.113.104","53107","BR" "2022-12-22 21:15:36","https://contatovistoria.com.br/IEE.php","offline","malware_download","B1|BB11|ISO|Qakbot|Qbot|Quakbot|TR|U22|zip","contatovistoria.com.br","177.93.106.42","53107","BR" "2022-12-22 20:03:26","https://mulherespretasfinancas.com.br/OMP.php","offline","malware_download","B1|BB11|ISO|Qakbot|Qbot|Quakbot|TR|U22|zip","mulherespretasfinancas.com.br","187.108.200.229","53107","BR" "2022-12-22 19:58:53","https://genesebusiness.com.br/ISQI.php","offline","malware_download","B1|BB11|ISO|Qakbot|Qbot|Quakbot|TR|U22|zip","genesebusiness.com.br","187.108.207.21","53107","BR" "2022-11-02 01:57:51","https://mundihost.com.br/srt/qbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","mundihost.com.br","186.209.113.153","53107","BR" "2022-11-02 01:53:48","https://igrejarelevante.com/eq/qbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","igrejarelevante.com","186.209.113.153","53107","BR" "2022-11-02 01:51:17","https://awacorretora.com.br/ace/qbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","awacorretora.com.br","186.209.113.109","53107","BR" "2022-11-01 13:09:18","https://mundihost.com.br/srt/qakbot.zip","offline","malware_download","qbot","mundihost.com.br","186.209.113.153","53107","BR" "2022-11-01 13:08:48","https://igrejarelevante.com/eq/qakbot.zip","offline","malware_download","qbot","igrejarelevante.com","186.209.113.153","53107","BR" "2022-11-01 13:08:42","https://awacorretora.com.br/ace/qakbot.zip","offline","malware_download","qbot","awacorretora.com.br","186.209.113.109","53107","BR" "2022-11-01 10:07:33","https://mundihost.com.br/srt/eltenedor","offline","malware_download","bb|qbot|tr","mundihost.com.br","186.209.113.153","53107","BR" "2022-11-01 10:07:17","https://mundihost.com.br/srt/tedi","offline","malware_download","bb|qbot|tr","mundihost.com.br","186.209.113.153","53107","BR" "2022-11-01 10:07:13","https://igrejarelevante.com/eq/costco","offline","malware_download","bb|qbot|tr","igrejarelevante.com","186.209.113.153","53107","BR" "2022-11-01 10:06:51","https://igrejarelevante.com/eq/breizhberry","offline","malware_download","bb|qbot|tr","igrejarelevante.com","186.209.113.153","53107","BR" "2022-11-01 10:06:51","https://igrejarelevante.com/eq/menziesaviation","offline","malware_download","bb|qbot|tr","igrejarelevante.com","186.209.113.153","53107","BR" "2022-11-01 10:06:43","https://mundihost.com.br/srt/aveda","offline","malware_download","bb|qbot|tr","mundihost.com.br","186.209.113.153","53107","BR" "2022-11-01 10:06:35","https://igrejarelevante.com/eq/bulgari","offline","malware_download","bb|qbot|tr","igrejarelevante.com","186.209.113.153","53107","BR" "2022-11-01 10:04:58","https://awacorretora.com.br/ace/audatex","offline","malware_download","bb|qbot|tr","awacorretora.com.br","186.209.113.109","53107","BR" "2022-11-01 10:04:44","https://awacorretora.com.br/ace/baywa","offline","malware_download","bb|qbot|tr","awacorretora.com.br","186.209.113.109","53107","BR" "2022-11-01 10:04:28","https://awacorretora.com.br/ace/asklepios","offline","malware_download","bb|qbot|tr","awacorretora.com.br","186.209.113.109","53107","BR" "2022-11-01 10:04:14","https://awacorretora.com.br/ace/apleona","offline","malware_download","bb|qbot|tr","awacorretora.com.br","186.209.113.109","53107","BR" "2022-11-01 10:04:11","https://awacorretora.com.br/ace/imst","offline","malware_download","bb|qbot|tr","awacorretora.com.br","186.209.113.109","53107","BR" "2022-10-20 20:44:27","https://lucianacortesadvogados.com.br/oa/aeueitrmloesi","offline","malware_download","BB04|iso|NH833|qakbot|qbot|quakbot|TR|zip","lucianacortesadvogados.com.br","149.18.50.166","53107","BR" "2022-09-28 10:28:37","https://kikio360.com.br/qdt/atoumberl","offline","malware_download","bb|qbot","kikio360.com.br","186.209.113.149","53107","BR" "2022-09-28 10:28:37","https://kikio360.com.br/qdt/ehorlicbi","offline","malware_download","bb|qbot","kikio360.com.br","186.209.113.149","53107","BR" "2022-09-28 10:28:31","https://kikio360.com.br/qdt/sttuna","offline","malware_download","bb|qbot","kikio360.com.br","186.209.113.149","53107","BR" "2022-09-28 10:28:30","https://kikio360.com.br/qdt/asiitropnae","offline","malware_download","bb|qbot","kikio360.com.br","186.209.113.149","53107","BR" "2022-09-28 10:28:16","https://kikio360.com.br/qdt/osiedsem","offline","malware_download","bb|qbot","kikio360.com.br","186.209.113.149","53107","BR" "2022-09-28 10:28:10","https://kikio360.com.br/qdt/ani","offline","malware_download","bb|qbot","kikio360.com.br","186.209.113.149","53107","BR" "2022-06-16 20:57:07","https://re9cred.com/N9tIgZB/Wq.png","offline","malware_download","Beacon|CobaltStrike|via-lnk","re9cred.com","45.148.96.51","53107","BR" "2022-06-07 11:03:11","http://moveisplanejados.art.br/wp-admin/EBxbU7MlIhOM/","offline","malware_download","dll|emotet|epoch4|Heodo","moveisplanejados.art.br","186.209.113.135","53107","BR" "2022-03-14 14:42:11","http://hitmidia.com.br/hitcardmodelos/BZC3LBLANRJKXD6bqI/","offline","malware_download","dll|emotet|epoch5|Heodo","hitmidia.com.br","186.209.113.152","53107","BR" "2022-01-20 20:23:05","http://portocenterhotel.com.br/lem/33233788583/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-20 20:23:04","http://portocenterhotel.com.br/lem/33233788583/","offline","malware_download","emotet|epoch5|redir-doc|xls","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-17 22:37:05","http://portocenterhotel.com.br/lem/6EeTqYE8ESLQ8Lx08XmR/","offline","malware_download","emotet|epoch4|redir-doc|xls","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-17 22:37:04","http://portocenterhotel.com.br/lem/6EeTqYE8ESLQ8Lx08XmR/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-15 00:24:05","http://portocenterhotel.com.br/lem/386439354_5027654/","offline","malware_download","emotet|epoch5|redir-doc|xls","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-15 00:24:04","http://portocenterhotel.com.br/lem/386439354_5027654/?i=1","offline","malware_download","ArkeiStealer|doc|emotet|epoch5|Heodo","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-14 00:20:05","http://portocenterhotel.com.br/lem/80830-57276/","offline","malware_download","emotet|epoch5|redir-doc|xls","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-14 00:20:05","http://portocenterhotel.com.br/lem/80830-57276/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-12 03:54:10","http://portocenterhotel.com.br/lem/00324479_757257/","offline","malware_download","emotet|epoch5|redir-doc","portocenterhotel.com.br","187.108.196.90","53107","BR" "2022-01-12 03:54:10","http://portocenterhotel.com.br/lem/00324479_757257/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-12-24 05:43:16","http://portocenterhotel.com.br/formosadoriopreto-backup/4PHEjxTNxdtjRicZ3O/","offline","malware_download","emotet|epoch4|redir-doc|xls","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-12-08 22:54:10","http://portocenterhotel.com.br/img/oI7ddMS4NHl6GDc9wqLOEnK/","offline","malware_download","doc|emotet|epoch4|Heodo","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-12-01 07:31:10","http://portocenterhotel.com.br/img/EcLk/","offline","malware_download","doc|emotet|epoch4|redir-appinstaller","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-12-01 07:28:32","http://portocenterhotel.com.br/img/ajaykfiB2Lh/","offline","malware_download","emotet|epoch4|redir-appinstaller","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-12-01 07:27:12","https://portocenterhotel.com.br/img/EcLk/","offline","malware_download","doc|emotet|epoch4|redir-appinstaller","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-12-01 01:31:10","http://portocenterhotel.com.br/img/ajaykfiB2Lh","offline","malware_download","emotet|epoch4|redir-appinstaller","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-11-30 21:57:12","http://portocenterhotel.com.br/img/RHf4WaoBUXUib9n6","offline","malware_download","emotet|epoch4|redir-appinstaller","portocenterhotel.com.br","187.108.196.90","53107","BR" "2021-05-19 13:23:28","http://milanodesignbr.com.br/TDM/randihovey-66.zip","offline","malware_download","qbot","milanodesignbr.com.br","177.136.251.242","53107","BR" "2021-05-19 13:20:21","http://milanodesignbr.com.br/TDM/dreardon-83.zip","offline","malware_download","qbot","milanodesignbr.com.br","177.136.251.242","53107","BR" "2021-05-19 13:20:20","http://milanodesignbr.com.br/TDM/brittanie_kelly-98.zip","offline","malware_download","qbot","milanodesignbr.com.br","177.136.251.242","53107","BR" "2021-05-19 13:20:18","http://milanodesignbr.com.br/TDM/adouglass-32.zip","offline","malware_download","qbot","milanodesignbr.com.br","177.136.251.242","53107","BR" "2021-05-19 13:19:04","http://milanodesignbr.com.br/TDM/aespelosin-24.zip","offline","malware_download","qbot","milanodesignbr.com.br","177.136.251.242","53107","BR" "2021-05-19 13:17:12","https://milanodesignbr.com.br/TDM/Emma.Smith-4.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","milanodesignbr.com.br","177.136.251.242","53107","BR" "2021-04-28 20:07:06","https://www.bluhome.com.br/media/vendor/validation/test/additional/7ngcFscA4tK.php","offline","malware_download","Dridex","www.bluhome.com.br","187.108.200.83","53107","BR" "2021-03-10 17:52:11","https://despertaresi.com.br/junya1n.tar","offline","malware_download","Dridex","despertaresi.com.br","45.148.96.13","53107","BR" "2021-02-22 19:10:13","https://denusa.com.br/op/janomo_sVWImLsfeU220.bin","offline","malware_download","encrypted|GuLoader","denusa.com.br","45.148.96.46","53107","BR" "2020-12-21 09:57:05","http://megasolucoesti.com/R9KDq0O8w/Microsoft.NET/","offline","malware_download","emotet|epoch3|exe|heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-10-27 13:05:05","http://megasolucoesti.com/R9KDq0O8w/pY3Yw5xNqjDYen9ORJ3wXViJf4Q8A98itqFFKjLkY/","offline","malware_download","doc|emotet|epoch2|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-10-21 15:24:05","http://megasolucoesti.com/R9KDq0O8w/parts_service/WAzhAffbm/","offline","malware_download","doc|emotet|epoch3|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-10-19 18:06:08","http://mpsync.com.br/tcgicbzy/3415201.png","offline","malware_download","qbot|quakbot","mpsync.com.br","186.209.113.112","53107","BR" "2020-10-14 21:15:05","https://columbiasaude.com.br/sys-cache/INC/5r2ics0dgwv1n43zgmrpwbo/","offline","malware_download","doc|Emotet|epoch2|Heodo","columbiasaude.com.br","186.209.113.99","53107","BR" "2020-09-30 11:08:11","http://megasolucoesti.com/R9KDq0O8w/payment/","offline","malware_download","doc|emotet|epoch2|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-09-25 23:12:06","http://megasolucoesti.com/R9KDq0O8w/2thFB1Io/","offline","malware_download","emotet|epoch3|exe|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-09-24 18:25:35","http://contatopericia.com.br/chat/sites/zNAj5UrnVTE65KTBioD/","offline","malware_download","doc|Emotet|epoch1|Heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-09-24 16:44:04","https://smartlogo.com.br/nova/browse/liD2rNmmtP6w0E/","offline","malware_download","doc|emotet|epoch1|Heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-09-24 12:39:07","http://agenciatabletshouse.com.br/erros/Overview/","offline","malware_download","doc|emotet|epoch2|Heodo","agenciatabletshouse.com.br","45.148.96.51","53107","BR" "2020-09-23 13:02:34","http://megasolucoesti.com/R9KDq0O8w/Y/","offline","malware_download","emotet|epoch1|exe|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-09-22 12:37:12","https://smartlogo.com.br/nova/DOC/EzEzMusT53/","offline","malware_download","doc|Emotet|epoch1|Heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-09-22 11:09:14","https://agenciatabletshouse.com.br/erros/Scan/4Q5eoea8G0oEwwieOQ/","offline","malware_download","doc|emotet|epoch1|Heodo","agenciatabletshouse.com.br","45.148.96.51","53107","BR" "2020-09-22 08:44:05","http://agenciatabletshouse.com.br/erros/Scan/4Q5eoea8G0oEwwieOQ/","offline","malware_download","doc|emotet|epoch1|Heodo","agenciatabletshouse.com.br","45.148.96.51","53107","BR" "2020-09-21 08:18:34","http://megasolucoesti.com/R9KDq0O8w/s3/","offline","malware_download","emotet|epoch2|exe|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-09-18 15:39:10","http://agenciatabletshouse.com.br/erros/FILE/lNSRKvTPVwrsfy3UCM/","offline","malware_download","doc|emotet|epoch1|Heodo","agenciatabletshouse.com.br","45.148.96.51","53107","BR" "2020-09-17 20:35:11","http://megasolucoesti.com/R9KDq0O8w/B3KqPpe/","offline","malware_download","emotet|epoch2|exe|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-09-17 19:20:34","https://intensityisoinercial.com.br/tmp/Overview/VKhvbvZEZ643JY62DB/","offline","malware_download","doc|emotet|epoch1|Heodo","intensityisoinercial.com.br","177.93.106.144","53107","BR" "2020-09-17 19:20:21","https://smartlogo.com.br/nova/public/zFwVCYDqcvtADfS/","offline","malware_download","doc|emotet|epoch1|Heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-09-16 15:22:34","http://agenciatabletshouse.com.br/erros/sites/p8fmh5sn/i459022391699694162e0gohc6lvxd8luor1hz6y/","offline","malware_download","doc|emotet|epoch2|heodo","agenciatabletshouse.com.br","45.148.96.51","53107","BR" "2020-09-14 18:38:07","http://contatopericia.com.br/chat/invoice/8bgw1u/","offline","malware_download","doc|emotet|epoch2|Heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-09-14 07:50:08","http://agenciatabletshouse.com.br/erros/1PM/","offline","malware_download","emotet|epoch2|exe|Heodo","agenciatabletshouse.com.br","45.148.96.51","53107","BR" "2020-09-05 01:28:04","https://smartlogo.com.br/nova/swift/","offline","malware_download","doc|emotet|epoch2|Heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-09-04 11:52:06","http://mexcorp.net/pubs/R0CFNIJD/264zace2ybfo/","offline","malware_download","doc|emotet|epoch2|heodo","mexcorp.net","186.194.52.218","53107","BR" "2020-09-03 21:34:33","http://converteideias.com.br/wp-content/http://Reporting/AlYuez6pjBcFccjsaQm/","offline","malware_download","doc|emotet|epoch1|Heodo","converteideias.com.br","131.100.231.34","53107","BR" "2020-09-03 18:17:06","http://converteideias.com.br/wp-content/http:/Reporting/AlYuez6pjBcFccjsaQm/","offline","malware_download","doc|emotet|epoch1","converteideias.com.br","131.100.231.34","53107","BR" "2020-09-03 13:03:08","http://ferroligasbrasil.com.br/novo/https:/2591578120911790/r9M15VuUiOFqUy/","offline","malware_download","doc|emotet|epoch1|Heodo","ferroligasbrasil.com.br","200.162.188.16","53107","BR" "2020-09-03 12:00:06","http://ferroligasbrasil.com.br/novo/https://2591578120911790/r9M15VuUiOFqUy/","offline","malware_download","doc|emotet|epoch1|Heodo","ferroligasbrasil.com.br","200.162.188.16","53107","BR" "2020-09-03 11:31:07","http://agenciatabletshouse.com.br/erros/docs/","offline","malware_download","doc|emotet|epoch2|heodo","agenciatabletshouse.com.br","45.148.96.51","53107","BR" "2020-08-28 20:12:17","http://www.brunobastos.com.br/files/browse/MDJZK/","offline","malware_download","doc|emotet|epoch3|Heodo","www.brunobastos.com.br","187.108.195.38","53107","BR" "2020-08-27 20:36:34","http://converteideias.com.br/wp-content/public/pngr7tcnnnt-0092/","offline","malware_download","doc|emotet|epoch3|Heodo","converteideias.com.br","131.100.231.34","53107","BR" "2020-08-27 17:30:10","http://mexcorp.net/pubs/LLC/rlcdp71yxb/","offline","malware_download","doc|emotet|epoch2|heodo","mexcorp.net","186.194.52.218","53107","BR" "2020-08-27 11:42:08","http://contatopericia.com.br/chat/statement/9uvxrzxgo2x/","offline","malware_download","doc|emotet|epoch2|heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-08-26 12:27:19","http://softpark.com.br/administrator/xwFvil6rzzki0254/","offline","malware_download","emotet|epoch3|exe|Heodo","softpark.com.br","168.195.13.12","53107","BR" "2020-08-26 07:25:37","https://smartlogo.com.br/nova/lm/xozm0x7/","offline","malware_download","doc|emotet|epoch2|heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-08-25 15:59:05","http://mexcorp.net/pubs/paclm/aqex8ty/ef9356835519281776513cs0ryc56ic8k1mpvb2c0/","offline","malware_download","doc|emotet|epoch2|heodo","mexcorp.net","186.194.52.218","53107","BR" "2020-08-25 07:55:34","http://contatopericia.com.br/chat/86f6xfszl/","offline","malware_download","doc|emotet|epoch2|heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-08-24 07:44:00","http://megasolucoesti.com/R9KDq0O8w/mg7e129370/","offline","malware_download","emotet|epoch3|exe|heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-08-21 21:41:15","http://contatopericia.com.br/chat/personal-section/guarded-cljpn1u3owj-06g7h/51igy2dodmzlt-7u0x410ut/","offline","malware_download","doc|emotet|epoch1|heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-08-20 21:30:11","https://smartlogo.com.br/nova/Reporting/pcMmt/","offline","malware_download","doc|emotet|epoch3|Heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-08-20 15:06:42","http://softpark.com.br/administrator/eTrac/eGVp/","offline","malware_download","doc|emotet|epoch3|Heodo","softpark.com.br","168.195.13.12","53107","BR" "2020-08-19 20:49:40","http://contatopericia.com.br/chat/multifunctional-box/slc6aefvF-4ij6F7Kgmz1-warehouse/NpbUvcb-2bv8eJqNj730L/","offline","malware_download","doc|emotet|epoch1|Heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-08-19 20:43:09","http://contatopericia.com.br/chat/protected_box/kl8tu6ws9_5jqrqge9b_170nggvSo_4uCbb26QI/706508271157_djEtf/","offline","malware_download","doc|emotet|epoch1|Heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-08-19 07:01:12","http://megasolucoesti.com/R9KDq0O8w/esp/","offline","malware_download","doc|emotet|epoch2|heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-08-18 20:29:04","https://smartlogo.com.br/nova/balance/w3xe4zooq/dtaaee70089481439784rys6ysbb85v0qkkgo/","offline","malware_download","doc|emotet|epoch2|heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-08-18 07:47:09","http://saartecnologia.com.br/assinaturas/report/","offline","malware_download","doc|emotet|epoch2|heodo","saartecnologia.com.br","177.136.254.69","53107","BR" "2020-08-17 19:02:06","http://contatopericia.com.br/chat/protected_disk/additional_warehouse/z7563m7xt_62tyt437t/","offline","malware_download","doc|emotet|epoch1|heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-08-17 07:19:37","http://megasolucoesti.com/R9KDq0O8w/HBh300/","offline","malware_download","emotet|epoch1|exe|heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-08-13 21:52:09","http://contatopericia.com.br/chat/available-disk/individual-forum/xpuvtm98vvw-13v72/","offline","malware_download","doc|emotet|epoch1|Heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-08-12 22:05:26","http://megasolucoesti.com/UdgDD2851/","offline","malware_download","emotet|epoch1|exe|heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-08-11 21:20:06","http://contatopericia.com.br/chat/open-module/verified-cloud/72245304413-JjikM6Rd/","offline","malware_download","doc|emotet|epoch1|heodo","contatopericia.com.br","177.93.106.42","53107","BR" "2020-07-30 15:17:05","http://megasolucoesti.com/css/multifunctional-zone/6p6fz5872xavk-l6kkagnmmxx-yrjo5qol2oj7pb-9woqaqbj/qwbxe9tcbih-8swx728z44/","offline","malware_download","doc|emotet|epoch1|Heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-07-29 21:35:08","https://smartlogo.com.br/nova/balance/9v68wheh//","offline","malware_download","doc|emotet|epoch2|Heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-07-29 17:06:05","https://smartlogo.com.br/nova/balance/9v68wheh/","offline","malware_download","doc|emotet|epoch2|Heodo","smartlogo.com.br","186.209.113.149","53107","BR" "2020-07-28 14:54:11","http://megasolucoesti.com/css/8xbi/","offline","malware_download","emotet|epoch1|exe|heodo","megasolucoesti.com","186.209.113.101","53107","BR" "2020-06-16 15:46:56","http://comercialbel.com.br/wpitmm/17/jb/EPwoC44l.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-16 15:43:05","http://comercialbel.com.br/wpitmm/UH/6C/OoWit3RI.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-16 15:17:41","http://comercialbel.com.br/hejunm/O/wU3ahv9LA.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-16 15:03:28","http://comercialbel.com.br/hejunm/B/f5Xhga3IV.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-16 14:43:03","http://comercialbel.com.br/wpitmm/U/5tL5oXzTJ.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-16 13:55:46","http://comercialbel.com.br/wpitmm/i/Sk6XKAxFQ.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-16 13:54:03","http://comercialbel.com.br/hejunm/eTQrTCQyBq.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 18:06:45","http://comercialbel.com.br/dnweicqmgic/rA/lH/0yKkhXd7.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 16:56:46","http://comercialbel.com.br/rjylw/6/hVvVhfXhz.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 16:37:08","http://comercialbel.com.br/dnweicqmgic/zF/du/V3i4HpPm.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 16:33:12","http://comercialbel.com.br/rjylw/ki/iF/7LqWA62N.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 15:57:07","http://comercialbel.com.br/dnweicqmgic/0/sSIC0XzpG.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 15:52:17","http://comercialbel.com.br/dnweicqmgic/ZX/8F/VY3xbjNu.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 15:47:41","http://comercialbel.com.br/dnweicqmgic/E/B9WzMQhL5.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 15:47:10","http://comercialbel.com.br/rjylw/0c/YS/ccIP7jyN.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 15:46:40","http://comercialbel.com.br/rjylw/i/SzBYwpsAl.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 15:46:08","http://comercialbel.com.br/rjylw/xU/6X/dpVy1JNC.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 15:32:14","http://comercialbel.com.br/dnweicqmgic/qA/c1/UeDN1KsY.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 14:46:57","http://comercialbel.com.br/dnweicqmgic/0kxTfmFqWZ.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-15 14:34:34","http://comercialbel.com.br/rjylw/0y4pUDuJ8Y.zip","offline","malware_download","Qakbot|Quakbot|zip","comercialbel.com.br","177.136.251.226","53107","BR" "2020-06-10 18:02:05","http://ivobrandao.com/wp-admin/maint/files/obi.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 18:01:33","http://ivobrandao.com/wp-admin/maint/files/chb.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 17:58:33","http://ivobrandao.com/wp-admin/maint/files/jiz.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 17:18:33","http://ivobrandao.com/wp-admin/maint/files/sol.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 17:17:33","http://ivobrandao.com/wp-admin/maint/files/ag.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 13:09:30","http://ivobrandao.com/wp-admin/maint/files/buk.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:46:06","http://ivobrandao.com/wp-admin/images/files/eze.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:46:04","http://ivobrandao.com/wp-admin/images/files/sol.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:42:16","http://ivobrandao.com/wp-admin/images/files/coc.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:42:11","http://ivobrandao.com/wp-admin/images/files/obi1.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:42:09","http://ivobrandao.com/wp-admin/images/files/ago.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:42:06","http://ivobrandao.com/wp-admin/images/files/elb.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:42:03","http://ivobrandao.com/wp-admin/images/files/chib.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:38:06","http://ivobrandao.com/wp-admin/images/files/fr.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 08:38:03","http://ivobrandao.com/wp-admin/images/files/ali.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:09:18","http://ivobrandao.com/wp-admin/includes/files/tha.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:09:15","http://ivobrandao.com/wp-admin/includes/files/whe.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:09:13","http://ivobrandao.com/wp-admin/includes/files/Bin.exe","offline","malware_download","exe|MassLogger","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:09:08","http://ivobrandao.com/wp-admin/includes/files/sol.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:09:06","http://ivobrandao.com/wp-admin/includes/files/bun.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:09:03","http://ivobrandao.com/wp-admin/includes/files/fr.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:08:10","http://ivobrandao.com/wp-admin/includes/files/ali.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:08:07","http://ivobrandao.com/wp-admin/includes/files/ati.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:08:04","http://ivobrandao.com/wp-admin/includes/files/chib.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 07:05:14","http://ivobrandao.com/wp-admin/includes/files/jiz.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-10 05:35:16","http://ivobrandao.com/wp-admin/includes/files/ago.exe","offline","malware_download","AgentTesla|exe","ivobrandao.com","186.194.51.11","53107","BR" "2020-06-08 19:09:17","http://autoescolaciganos.com.br/qcwuhdesynb/E/Po0V7qFAM.zip","offline","malware_download","Qakbot|Quakbot|zip","autoescolaciganos.com.br","186.209.113.107","53107","BR" "2020-06-08 19:02:42","http://autoescolaciganos.com.br/qcwuhdesynb/Y/1otY6epbp.zip","offline","malware_download","Qakbot|Quakbot|zip","autoescolaciganos.com.br","186.209.113.107","53107","BR" "2020-06-08 18:58:51","http://autoescolaciganos.com.br/ohxwhablvqrz/U/rR1dxjVFE.zip","offline","malware_download","Qakbot|Quakbot|zip","autoescolaciganos.com.br","186.209.113.107","53107","BR" "2020-06-08 18:57:08","http://autoescolaciganos.com.br/ohxwhablvqrz/2pq0yRPt5b.zip","offline","malware_download","Qakbot|Quakbot|zip","autoescolaciganos.com.br","186.209.113.107","53107","BR" "2020-06-08 16:43:58","http://autoescolaciganos.com.br/ohxwhablvqrz/1/3CuwIy5Ig.zip","offline","malware_download","Qakbot|Quakbot|zip","autoescolaciganos.com.br","186.209.113.107","53107","BR" "2020-06-08 15:39:46","http://autoescolaciganos.com.br/ohxwhablvqrz/XkTxaVhWhw.zip","offline","malware_download","Qakbot|Quakbot|zip","autoescolaciganos.com.br","186.209.113.107","53107","BR" "2020-06-08 15:00:52","http://autoescolaciganos.com.br/gezzf/8888888.png","offline","malware_download","exe|Qakbot|Quakbot|spx135","autoescolaciganos.com.br","186.209.113.107","53107","BR" "2020-04-08 06:31:15","http://ponto50.com.br/js/libs/0456320I1l0O.sas","offline","malware_download","MetaMorfo","ponto50.com.br","177.136.254.34","53107","BR" "2020-02-07 07:35:12","https://agenciaeuro.com.br/saz/HSWBN0X/","offline","malware_download","doc|emotet|epoch2|heodo","agenciaeuro.com.br","186.209.113.112","53107","BR" "2020-01-30 06:46:08","http://enilegho.com.br/wp-admin/sdRXS/","offline","malware_download","doc|emotet|epoch3|heodo","enilegho.com.br","177.136.254.66","53107","BR" "2020-01-29 09:49:04","http://138.97.105.238/Backup/edre/personal-zone/guarded-yfh3ta4iox2wt-gd6653wkgf/z1hr-xt4t4uyz46/","offline","malware_download","doc|emotet|epoch1|Heodo","138.97.105.238","138.97.105.238","53107","BR" "2020-01-23 07:58:11","http://138.97.105.238/Backup/edre/closed_sector/individual_cloud/185576294474_2hjBjfBb/","offline","malware_download","doc|emotet|epoch1|Heodo","138.97.105.238","138.97.105.238","53107","BR" "2020-01-22 15:32:49","http://engenhariatb.com.br/site/wp-admin/CqloyGqHP/","offline","malware_download","emotet|epoch3|exe|Heodo","engenhariatb.com.br","186.209.113.109","53107","BR" "2020-01-18 08:53:03","http://138.97.105.238/Backup/edre/q87-y3zu9-94068/","offline","malware_download","doc|emotet|epoch3|heodo","138.97.105.238","138.97.105.238","53107","BR" "2020-01-16 02:30:05","http://138.97.105.238/Backup/edre/bSwy-B3BJ88C4nAUbWM-array/external-cloud/y7jIcLWdLREl-e07pk8spI0G/","offline","malware_download","doc|emotet|epoch1|Heodo","138.97.105.238","138.97.105.238","53107","BR" "2020-01-13 23:47:11","http://138.97.105.238/Backup/edre/closed_section/lNGUzroo_34gEpycq2B_profile/254579057_7wm0aU7hyQhc/","offline","malware_download","doc|emotet|epoch1|Heodo","138.97.105.238","138.97.105.238","53107","BR" "2019-12-19 21:34:04","http://agro10x.com.br/Backup/payment/c8qouqvlcubw/5qjjegj-686-041-s28afzles6u-f4fqzu/","offline","malware_download","doc|emotet|epoch2|heodo","agro10x.com.br","187.108.194.90","53107","BR" "2019-12-17 21:17:04","http://agro10x.com.br/Backup/common-resource/special-cloud/GtDeF1naESb-J5b5hr5LfuHHb1/","offline","malware_download","doc|emotet|epoch1|Heodo","agro10x.com.br","187.108.194.90","53107","BR" "2019-12-13 05:53:05","http://arandaweb.com.br/PagSeguro/coZED/","offline","malware_download","doc|emotet|epoch3|heodo","arandaweb.com.br","177.136.254.69","53107","BR" "2019-12-12 16:19:04","http://resenderocha.com.br/wp-content/uploads/lGDt/","offline","malware_download","doc|emotet|epoch3|heodo","resenderocha.com.br","200.162.188.16","53107","BR" "2019-11-26 07:53:17","http://tesla.rec.br/novo/wKuEDz/","offline","malware_download","emotet|epoch2|exe|Heodo","tesla.rec.br","45.148.96.44","53107","BR" "2019-11-13 06:16:12","http://resenderocha.com.br/Antigo/bkp_resenderocha.com.br/httpdocs-19-09-14/Data/ccv/","offline","malware_download","emotet|epoch2|exe|Heodo","resenderocha.com.br","200.162.188.16","53107","BR" "2019-10-17 03:10:09","http://resenderocha.com.br/Antigo/bkp_resenderocha.com.br/httpdocs-19-09-14/Backup/sstmj3ki3ay3q623mz/","offline","malware_download","doc|emotet|epoch2|Heodo","resenderocha.com.br","200.162.188.16","53107","BR" "2019-10-09 04:36:08","http://decisaoengenharia.com.br/noticias/wp-includes/SimplePie/XML/highest.function/rrdemLjXaqfAnzuMY/","offline","malware_download","doc|emotet|epoch2|Heodo","decisaoengenharia.com.br","200.162.188.17","53107","BR" "2019-05-30 21:53:03","http://triptur.com.br/jjrtf/qJxlZIXtIqkrffnURy/","offline","malware_download","doc|emotet|epoch2|Heodo","triptur.com.br","186.209.113.105","53107","BR" "2019-05-28 11:50:05","http://luteranosblumenau.com.br/cgi-bin/esp/7t6vv50yrw705dqpxub7fwd2_bzykgo-443407317214052/","offline","malware_download","doc|emotet|epoch2|Heodo","luteranosblumenau.com.br","186.209.113.106","53107","BR" "2019-05-13 16:46:07","http://alistanegra.com.br/cgi-bin/ix1jc21-at6z6-qzgbh/","offline","malware_download","doc|emotet|epoch2|Heodo","alistanegra.com.br","187.110.162.186","53107","BR" "2019-05-03 22:07:06","http://embalagenscardozo.com.br/wp-includes/lm/JaNXgEKxMsGToXeJhm/","offline","malware_download","Emotet|Heodo","embalagenscardozo.com.br","177.53.151.10","53107","BR" "2019-05-03 11:15:05","http://chalesmontanha.com/doc/En_us/Payment-and-address/Past-Due-invoice","offline","malware_download","doc","chalesmontanha.com","186.209.113.112","53107","BR" "2019-05-03 09:09:08","http://cristalandia.to.gov.br/wp-includes/Document/tkgpy8cxbmh3lur43fzqoqjpkr_zvajv8r9cv-4804638209/","offline","malware_download","Emotet|Heodo","cristalandia.to.gov.br","141.11.72.91","53107","BR" "2019-05-03 06:25:21","http://chalesmontanha.com/newsletter/En/Client/Customer-Invoice-EY-0944105/","offline","malware_download","doc|Emotet|Heodo","chalesmontanha.com","186.209.113.112","53107","BR" "2019-05-03 06:01:15","http://www.chalesmontanha.com/doc/En_us/Payment-and-address/Past-Due-invoice/","offline","malware_download","doc|Emotet|Heodo","www.chalesmontanha.com","186.209.113.112","53107","BR" "2019-05-02 14:13:06","http://pontesgestal.sp.leg.br/antigo/DOC/JhfJgoVQyaWOHkaP/","offline","malware_download","Emotet|Heodo","pontesgestal.sp.leg.br","177.136.240.10","53107","BR" "2019-04-18 17:01:29","http://inotech.com.br/cnpj/Document/Sz0LJalFSmTw/","offline","malware_download","","inotech.com.br","177.136.230.33","53107","BR" "2019-04-15 17:06:05","http://inotech.com.br/cnpj/BnpC-o07Y54sAd9xrRW_bYIstnMr-C9E/","offline","malware_download","Emotet|Heodo","inotech.com.br","177.136.230.33","53107","BR" "2019-04-12 20:38:37","http://inotech.com.br/cnpj/QXEh-N57ClxyttZiOe6V_vohuCpEA-y9A/","offline","malware_download","Emotet|Heodo","inotech.com.br","177.136.230.33","53107","BR" "2019-04-11 12:43:19","http://bonsaver.com.br/sendinc/HBHOs-Yb6WNN5L5YBEbDV_TpgeAPpge-2p/","offline","malware_download","Emotet|Heodo","bonsaver.com.br","177.136.251.226","53107","BR" "2019-04-09 12:58:21","http://triptur.com.br/zxc/update_25-3.exe","offline","malware_download","Qbot|Quakbot","triptur.com.br","186.209.113.105","53107","BR" "2019-03-22 18:26:03","http://gazetadorn.com.br/wp-admin/verif.accs.send.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","gazetadorn.com.br","177.136.231.55","53107","BR" "2019-03-20 09:34:13","http://bonsaver.com.br/sendinc/legal/trust/En_en/032019/","offline","malware_download","doc|emotet|heodo","bonsaver.com.br","177.136.251.226","53107","BR" "2019-02-06 13:47:14","http://hchost.net/En_us/company/Inv/87719081303483/JIPzr-plKtj_DvT-8b/","offline","malware_download","Emotet|Heodo","hchost.net","186.209.113.134","53107","BR" "2018-12-13 14:25:13","http://andreiarocha.com.br/default/US/Outstanding-Invoices/","offline","malware_download","emotet|Heodo","andreiarocha.com.br","187.110.162.234","53107","BR" "2018-12-12 19:37:37","http://radiocorfm.com.br/EN_US/ACH/122018/","offline","malware_download","emotet|epoch1|Heodo","radiocorfm.com.br","131.100.231.34","53107","BR" "2018-12-12 03:37:22","http://radiocorfm.com.br/INV/554140FORPO/260837364306/sites/US/Inv-01197-PO-0Q225462/","offline","malware_download","emotet|epoch2|Heodo","radiocorfm.com.br","131.100.231.34","53107","BR" "2018-11-19 19:59:52","http://thalesbrandao.com.br/DOC/US/Document-needed/","offline","malware_download","emotet|heodo","thalesbrandao.com.br","187.108.203.186","53107","BR" "2018-10-15 18:36:48","https://guiaperto.com/manageaccount/46GKT7348-order-status-fulfilled","offline","malware_download","lnk|sload|zip","guiaperto.com","177.136.254.36","53107","BR" "2018-10-12 10:39:57","https://guiaperto.com/manageaccount/6M8496-order-status-fulfilled","offline","malware_download","GBR|geofenced|sLoad|zipped-lnk","guiaperto.com","177.136.254.36","53107","BR" "2018-10-12 08:31:57","https://guiaperto.com/manageaccount/9531963-order-status-fulfilled","offline","malware_download","lnk|sload|zip","guiaperto.com","177.136.254.36","53107","BR" "2018-10-12 08:31:55","https://guiaperto.com/manageaccount/73C1244-order-status-fulfilled","offline","malware_download","lnk|sload|zip","guiaperto.com","177.136.254.36","53107","BR" "2018-10-12 08:31:54","https://guiaperto.com/manageaccount/1UR401-order-status-fulfilled","offline","malware_download","lnk|sload|zip","guiaperto.com","177.136.254.36","53107","BR" "2018-10-02 14:01:06","http://www.expressarsetelagoas.com.br/8tr1wP/","offline","malware_download","Emotet|exe|Heodo","www.expressarsetelagoas.com.br","177.136.251.242","53107","BR" "2018-10-01 12:26:31","http://www.expressarsetelagoas.com.br/8tr1wP","offline","malware_download","emotet|exe|Heodo","www.expressarsetelagoas.com.br","177.136.251.242","53107","BR" "2018-09-28 09:19:05","http://registermedicalgroup.com/CLQJu1x","offline","malware_download","emotet|exe|Heodo","registermedicalgroup.com","177.136.254.36","53107","BR" "2018-09-11 05:06:18","http://hitmidia.com.br/953716SMLABXFR/biz/Personal/","offline","malware_download","doc|emotet|epoch2|Heodo","hitmidia.com.br","186.209.113.152","53107","BR" "2018-09-10 20:55:57","http://hitmidia.com.br/953716SMLABXFR/biz/Personal","offline","malware_download","doc|emotet|Heodo","hitmidia.com.br","186.209.113.152","53107","BR" "2018-08-17 03:38:01","http://triptur.com.br/WellsFargo/Personal/Aug-15-2018/","offline","malware_download","doc|emotet|Heodo","triptur.com.br","186.209.113.105","53107","BR" "2018-08-16 12:31:41","http://triptur.com.br/WellsFargo/Personal/Aug-15-2018","offline","malware_download","doc|emotet|Heodo","triptur.com.br","186.209.113.105","53107","BR" "2018-08-13 22:21:15","http://triptur.com.br/sites/EN_en/INVOICE-STATUS/Invoice-7515969/","offline","malware_download","doc|emotet|Heodo","triptur.com.br","186.209.113.105","53107","BR" "2018-08-13 19:31:51","http://triptur.com.br/sites/EN_en/INVOICE-STATUS/Invoice-7515969","offline","malware_download","doc|emotet|Heodo","triptur.com.br","186.209.113.105","53107","BR" "2018-08-10 04:18:41","http://hitmidia.com.br/PAY/QVRD35174148351ZUJJW/5216899/CP-MRFW/","offline","malware_download","doc|emotet|Heodo","hitmidia.com.br","186.209.113.152","53107","BR" "2018-08-08 05:09:04","http://triptur.com.br/NN6kiyX/","offline","malware_download","Heodo","triptur.com.br","186.209.113.105","53107","BR" "2018-08-07 20:58:12","http://triptur.com.br/NN6kiyX","offline","malware_download","emotet|Heodo|payload","triptur.com.br","186.209.113.105","53107","BR" "2018-08-03 05:17:09","http://triptur.com.br/doc/En/Address-and-payment-info","offline","malware_download","doc|emotet|Heodo","triptur.com.br","186.209.113.105","53107","BR" "2018-08-01 21:03:32","http://triptur.com.br/doc/En/Address-and-payment-info/","offline","malware_download","doc|emotet|epoch2|Heodo","triptur.com.br","186.209.113.105","53107","BR" "2018-07-20 03:45:16","http://www.chalesmontanha.com/newsletter/En/Client/Customer-Invoice-EY-0944105/","offline","malware_download","doc|emotet|epoch2|Heodo","www.chalesmontanha.com","186.209.113.112","53107","BR" "2018-06-30 06:02:59","http://cnctechservicos.com.br/FILE/HRI-Monthly-Invoice","offline","malware_download","emotet|heodo","cnctechservicos.com.br","186.209.113.101","53107","BR" "2018-06-26 04:47:48","http://cnctechservicos.com.br/FILE/HRI-Monthly-Invoice/","offline","malware_download","emotet|heodo","cnctechservicos.com.br","186.209.113.101","53107","BR" "2018-06-22 18:07:05","http://cnctechservicos.com.br/INVOICE-STATUS/Invoice/","offline","malware_download","doc|emotet|Heodo","cnctechservicos.com.br","186.209.113.101","53107","BR" "2018-05-31 15:19:25","http://joelfreire.com.br/YbApf08","offline","malware_download","#emotet|#payload","joelfreire.com.br","186.209.113.109","53107","BR" "2018-04-10 14:58:50","http://joelfreire.com.br/YbApf08/","offline","malware_download","emotet|exe|heodo","joelfreire.com.br","186.209.113.109","53107","BR" "2018-04-03 19:12:17","http://bonsaver.com.br/FGIf/","offline","malware_download","emotet|exe|heodo","bonsaver.com.br","177.136.251.226","53107","BR" "2018-03-29 15:00:10","http://softmag.com.br/INV/UN-0942396422/","offline","malware_download","doc|emotet|heodo","softmag.com.br","177.136.254.67","53107","BR" # of entries: 260