URLhaus Database

You are currently viewing the URLhaus database entry for http://omegaconsultoriacontabil.com.br/site/2azv-63m98r-tvatz/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:160398
URL: http://omegaconsultoriacontabil.com.br/site/2azv-63m98r-tvatz/
URL Status:Offline
Host: omegaconsultoriacontabil.com.br
Date added:2019-03-15 21:06:16 UTC
Last online:2019-11-19 02:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2019-03-15 21:08:02 UTC to abuse{at}limestonenetworks[dot]com)
Takedown time:8 months, 8 days, 5 hours, 28 minutes Bad (down since 2019-11-19 02:36:34 UTC)
Tags:emotet link heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2019-11-11464348669172475464.docdoc 0fd8aa94ac7f683f668fa5f94f09a9b0cb5561395227b3b5f85f4e1a7df26e35n/a 
2019-11-01464348669172475464.docdoc 0c804f824c16f9050eb36b1f481c5ad392c24fb8a50bcfa1a9b2b80e6b88e020n/a 
2019-10-02464348669172475464.docdoc 3c269e9cb578de514de068abac44d37935c6131d2cf337e9ea708b4e232e5e88n/a 
2019-09-30464348669172475464.docdoc d8337a2d5a045233ee98fb052dd409aca5c6972eaa3ea85961d94bc12c75d333n/a Heodo
2019-09-27464348669172475464.docdoc 8069a759b7d7c2d350c2aee8397eee7c52dbb85dd4f825a9dfea7bc6612d2a1fn/a 
2019-08-23464348669172475464.docdoc 7c7c6ee9e82b08c418c3147629a281ff81726b4ed3be9f8b2b221df2f51f0522n/a 
2019-08-18464348669172475464.docdoc 485c485ee2673b28a490043dabb29954efabab85570c4646e0b091f3c298d6e5n/a 
2019-07-07464348669172475464.docdoc bf7bf8dc1afaf0aea8c9496e2b588bb7a0b49f1e6ad952760d1ee78d0f6510b1n/a 
2019-06-22464348669172475464.docdoc 1d338f61c6c5ab433d2ac6746b5b01e76f23cb2eefafcbe5e2bbdfbf6517db4an/a 
2019-05-22464348669172475464.docdoc 76529fab63fcb39bbaa09d08e79d33ae15f75673d4922a3f8357448a424b1f9an/a 
2019-05-15464348669172475464.docdoc 0f811b5b16b55314e882bb402f97476b958b4bc87a82c32da85e4ff825232911n/a 
2019-05-12464348669172475464.docdoc 8cd5613bf2de28bf0e86dc3a87c6810731ee594e93a4d13053452865e3e4f9f9n/a 
2019-04-19464348669172475464.docdoc 772108fa7595cc3730f0f7306eb3f4a7c2099b0a41d1da123aa87837615c2980n/a 
2019-04-17464348669172475464.docdoc aae93d6bbac711c0f1731993b1816db918d17d4881defd8c8e493dc7653d968cn/a 
2019-04-15464348669172475464.docdoc ffcd8700fdc9d4bd42b48ca2d24170ffa7ab51b5f2afa7b6e645ef082c21b7fcn/a 
2019-04-15464348669172475464.docdoc 914afb21dad659e1289991c0cf11194b04d7b83b3e6397857d3310e41a75552cVirustotal results 67.80% Heodo
2019-03-15ACC72380550966241025.docdoc 39752866b4e0aab0bccc1d8a153619ab2e6b01d18802d2e0db2590576e85d263Virustotal results 25.00% Heodo
2019-03-15ACC5342215263.docdoc f350612cd869a24a2eda1831234957a0d039007e64060b0532960a9daaf76d03Virustotal results 41.07% Heodo
2019-03-15INSTR898015427.docdoc 37d1202eb265a09f8a50520c4d3709d0db0020c1f6700ab5fba2acd5bf8612daVirustotal results 40.35% Heodo
2019-03-15INSTR84069239578078.docdoc 553330a94c186826929df11dc1e7bac6afb2078a9dd4272b41f10b48ead75a12n/a Heodo
2019-03-15JF27047098259014.docdoc af8e2888bd64490a70b1309b3860118339130a019d32a57de1d95d8d73123d69n/a Heodo
2019-03-15INSTR15975153773.docdoc 72347ba8b7e6f89637b64f773655d9769c7f753188960d54f11978ad07b1f484Virustotal results 37.29% Heodo