URLhaus Database

You are currently viewing the URLhaus database entry for http://ricardob.eti.br/cgi-bin/kv2c69-a7v7ch-xukd/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	183660
URL:	http://ricardob.eti.br/cgi-bin/kv2c69-a7v7ch-xukd/
URL Status:	Offline
Host:	ricardob.eti.br
Date added:	2019-04-24 06:41:11 UTC
Last online:	2019-08-29 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-04-24 06:42:02 UTC to abuse{at}uol[dot]com[dot]br,security{at}uol[dot]com[dot]br)
Takedown time:	4 months, 7 days, 16 hours, 8 minutes (down since 2019-08-29 22:50:45 UTC)
Tags:	doc emotet epoch2

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2019-04-24	Rechnungs_Details_388947631407DE_April_24_2019.zip	zip	db8390353a9ee6930767943f0086b2379423b1292a529ee9e30ec56c8d8d9292	n/a
2019-04-24	Scan_51515495640DE_April_24_2019.zip	zip	32fb630917eb6f5f23f97765ef2503288f9f72e3f0b60b61cf444fb301964efc	n/a
2019-04-24	Rechnung_97614472701DE_April_24_2019.zip	zip	3176a0f29bf254e6e70d4fa6fe166e2a6ca779deb1a062e8cef8f0df33783ccc	n/a
2019-04-24	Rechnungs_Details_2517097007DE_April_24_2019.zip	zip	104ff6616cf6b9ac4ad4fde11f6ef70fe4868bfbcccebad2dfd28660464ee5fd	n/a
2019-04-24	Scan_0787796618DE_April_24_2019.zip	zip	6be69b3edd1a0e3fb4d80d2f9bb575753d75fc75bee860013e9cbbe8ff347f07	n/a
2019-04-24	Rechnung_58694845200DE_April_24_2019.zip	zip	4f27456072f297192c8fcff24b7f99e7a9ce85444fbd2b6fe4396469e4df79df	n/a
2019-04-24	Rech_5447967668DE_April_24_2019.zip	zip	9571249bbbc0998b8499a105bf496d30e5695b77de4b826f9b3bcb13d245d978	n/a
2019-04-24	5323404293DE_April_24_2019.zip	zip	dafc2445cf7e92ee168ffb8549870b6518628528b6a7c7321c7496e8c7fee2a5	n/a
2019-04-24	Rechnungs_Details_621061856346DE_April_24_2019.zip	zip	4ed8f46786f9cc4126eb99b9de74db7635b5cb8f4c20accc9034512000c99a1e	n/a
2019-04-24	Rechnungs_Details_33624520311DE_April_24_2019.zip	zip	589c0563babfee1df5cd81acf19b9588448f1557b94c20efde3599fb5532de34	n/a
2019-04-24	Rech_34769082678DE_April_24_2019.zip	zip	bcb4a9246437c708d218f15d6af16ba5002f5b78f1d5dfdbf8ed44e69ce964ac	n/a
2019-04-24	Rech_4485988899DE_April_24_2019.zip	zip	8d57e918e20e047b71462f531704a180cf9a83a7acc67c1558cd4208847e428a	n/a
2019-04-24	Scan_76408099553DE_April_24_2019.zip	zip	146b70049309584d7231234876a39c33ed442d73e326ef6f87e02b823824d7e1	n/a
2019-04-24	Rechnung_42816416898DE_April_24_2019.zip	zip	c335bd875b95aca9b964db9b0ffa43dfd7650d4e2fa90afc987ae54c75c8e684	n/a
2019-04-24	Dokument_7751621887DE_April_24_2019.zip	zip	b9c7eb0edecc1e0ca2745d583a1455acc40dcad148807deba576f114fa373f3e	n/a
2019-04-24	Rech_40743041279DE_April_24_2019.zip	zip	c3efb58e68bebb0924602fede3692f0c151cf962457159c33c6e0a2097870057	n/a