URLhaus Database

You are currently viewing the URLhaus database entry for http://rogerfleck.com/heldt.adv.br/FILE/ekQbFjItjC/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	192511
URL:	http://rogerfleck.com/heldt.adv.br/FILE/ekQbFjItjC/
URL Status:	Offline
Host:	rogerfleck.com
Date added:	2019-05-07 18:51:30 UTC
Last online:	2019-05-13 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-05-07 18:52:14 UTC to abuse{at}ovh[dot]net)
Takedown time:	5 days, 21 hours, 40 minutes (down since 2019-05-13 16:32:54 UTC)
Tags:	emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-05-09	FILE_740655768568US_May_09_2019.zip	zip	1c10ff668ff83cb7a479c111fa7d56b633f5481b95fd25a4b822754d0b42c479	n/a
2019-05-09	INC_9535515361US_May_09_2019.zip	zip	b22e9b24008bbdcf892d5a3159205a39ec4e32453dd1f597166f2cadd78bcf99	n/a
2019-05-09	DOC_599342713932US_May_09_2019.zip	zip	47e18f5929d348c1b771c47fcba411fee4babc7deecbcb8f36b2b2186c71c353	n/a
2019-05-09	LLC_677637554214US_May_09_2019.zip	zip	f3d61ec3cec65c68a0deffefc182de115500c5db4f3e37a0a817d4f6c20826a9	n/a
2019-05-09	SCAN_18678472134US_May_09_2019.zip	zip	c4983504b73871385f280fe178e099b4d502fdccd9e3f089b6eb3b38ecbe3e87	n/a
2019-05-09	FILE_6409647262US_May_09_2019.zip	zip	2b4eff31b1ed0e76e36f06b0825f8e490d40abeefd5c847370704f6124fabcc9	n/a
2019-05-09	INC_266859702719US_May_09_2019.zip	zip	3c9ec8080bb114430fdeb379548514399804cbf4e951d336d72ac6c230d0ddf9	n/a
2019-05-09	INC_06525012690US_May_09_2019.zip	zip	705fa3f1fa89ca643983ed261bec979f1867b62986b22f3c715985f82d136150	n/a
2019-05-09	DOC_0738895956US_May_09_2019.zip	zip	b17fc89481b668e896fbc084b0971c42baa8cfec7ca0efb16f637e83b27266be	n/a
2019-05-09	FILE_9760372132US_May_09_2019.zip	zip	8cd1dfaf120fa1599a2321a13a41e6f06677ca226eb2959795b74588dc647ebf	n/a
2019-05-09	LLC_941448380588US_May_09_2019.zip	zip	e115553871d0241a82521b2fd2b0d4bfebd472a4e3627e66e9b7497ca5b0b402	n/a
2019-05-09	Document_9933848213US_May_09_2019.zip	zip	a20953e10d52b3ef16da464f72e454ba24a43353dfe3f5b0e88c65ecb4aabc4b	n/a
2019-05-09	INC_03224558420US_May_09_2019.zip	zip	d15c1c82764e0c88f7ae5780fa7434c552e0aa399484f1face4dee03c841b1b6	n/a
2019-05-09	SCAN_00850401580US_May_09_2019.zip	zip	0f5478a28fb1b0eb7ba92ec133e14acee90a3e9d8d42638cc3b3e9896511a85e	n/a
2019-05-09	Document_38221517212US_May_09_2019.zip	zip	040dfa9ca5f5ec013cfaa9aa9b6260b6b8b793c8b4a964169b76f1e81f74d861	n/a
2019-05-09	DOC_46221613680US_May_09_2019.zip	zip	887b2ae95f2affde858ac29ac5249556584cb3b95efa6079a6c0b66741c6cc77	n/a
2019-05-09	SCAN_2065102353US_May_09_2019.zip	zip	7fc3dd2d2228d4b8153737edc318a0b72a47dea6e48f8e0e1ff5bf04a03ac021	n/a
2019-05-09	Document_56905631804US_May_09_2019.zip	zip	b5a1e6be17f97615be6a856a0c413f9d5305f2ba856ba7b8d07b79240ddeaa63	n/a
2019-05-09	DOC_317329343749US_May_09_2019.zip	zip	c6508f01303337b662583feb821fbfa0fe32c2255c941b729f8e101031644a0d	n/a
2019-05-09	INC_4232420536US_May_09_2019.zip	zip	8e0ea946dddc14d901fdd586bfff9ed914ca95c55157c055558af773f2c75dec	n/a
2019-05-09	LLC_23015996863US_May_09_2019.zip	zip	15b7e1b58a06e12af9a65b11f52da86b705de2739d8b530afedaa2faf53e5203	n/a
2019-05-09	SCAN_48477904562US_May_09_2019.zip	zip	83deb2e348dcd4dca3bb13218fb4620d6a4de607609b9dc3f34528e488b0a269	n/a
2019-05-09	FILE_2155339619US_May_09_2019.zip	zip	14495aa5fca879dec75dfb1c91fad8e30ea0985090233df6cb271beabe90d624	n/a
2019-05-09	LLC_826920931358US_May_09_2019.zip	zip	2389793448acc5b9bdd1fecf42c30cebef2bbb057a1c04a45949313c5c0daca0	n/a
2019-05-09	FILE_08312684686US_May_09_2019.zip	zip	3dab548bfe54ceb7446ae79b427391c29094bff3f5fa8d647594327d1e55e6cb	n/a
2019-05-09	SCAN_7617239884US_May_09_2019.zip	zip	50f368bd44cc9682b1d0eff58359f2d636dae4543cc1672e7e937df8c67d4652	n/a
2019-05-09	Document_3977943592US_May_09_2019.zip	zip	d5f308ce2aa4be0522ef2b700155f48bef5b44725502f322ea70480c5f214827	n/a
2019-05-09	Document_894063790082US_May_09_2019.zip	zip	6d41e753136386904ce7c04c1f348f7e03eee123c9d5ffedc62b4e2937c03c0b	n/a
2019-05-09	Document_356052688540US_May_09_2019.zip	zip	dbe2ac206d8942d597a1b85a6b889918f77ab7926fddcd27a7f564104960d45a	n/a
2019-05-08	Document_360156396608US_May_09_2019.zip	zip	a093f39687b502d748cd0020b60cc54b513b22b548c56fdd3b7dd257ecb6db5b	n/a
2019-05-08	Document_07284822918US_May_09_2019.zip	zip	6acbb0d72a29ff2ffb5ff09aaca93500ad0f829a6c5aaa407b7c1f2ca5434be5	n/a
2019-05-08	LLC_3254468796US_May_09_2019.zip	zip	4db19c9c63fc96fb61378de3763824fa7ca3c477328bf30e2e72a38ba470ee70	n/a
2019-05-08	SCAN_006861086928US_May_09_2019.zip	zip	876a119f0d58f185596d145425749b2590c88385f02358cdf89634e8e151e57b	n/a
2019-05-08	DOC_83030748944US_May_09_2019.zip	zip	a41ba184344066c3aafeed6ef186f2119f4dd60912e3bb639dd561cbcba84ac6	n/a
2019-05-08	Document_5670388899US_May_08_2019.zip	zip	312567bbc69289020495b8c425128263355e584c070432c593e193ec09001fa5	n/a
2019-05-08	SCAN_871203444071US_May_08_2019.zip	zip	78d20dfbe60f58839daf3f875b061bafc51cba557047174bc05df4d008452e84	n/a
2019-05-08	LLC_4263899261US_May_08_2019.zip	zip	1effa4fe79e8d33d550339569ef95211fa998450937809ef69d64af484050785	n/a
2019-05-08	INC_0897258868US_May_08_2019.doc	doc	4ba386fc55054b552861920518ad12c69e8d9879a3e8b2e7ec433f06f7c28d1d	31.15%
2019-05-08	SCAN_60458749778US_May_08_2019.doc	doc	8ea46d2e7b76e5d7298c7f8bfd87d9ae27ccc62f881caad23ff2bef3d898ed4d	32.26%	Heodo
2019-05-08	LLC_90345400361US_May_08_2019.doc	doc	9fca8a5a5331231d7c2e24f98c132be370fc4c1d314f6f0b674161bf086e32e2	34.43%	Heodo
2019-05-08	Document_45477895509US_May_08_2019.doc	doc	abb657219fa4293bdb3ea83eef9701a8a1b8db399122ac9b78988d2d7670f05b	32.26%
2019-05-08	FILE_8879776002US_May_08_2019.doc	doc	adfb40518e76da88b465cac35e6c32bb025e1f0188d96470a06ef516aef5d5ea	31.48%
2019-05-08	DOC_3835293370US_May_08_2019.doc	doc	50cdfcb1f7724fdab8da553f24f51686cb4835efef1d43f535ea00f220297ea7	32.20%	Heodo
2019-05-08	Document_765707440141US_May_08_2019.doc	doc	1e38f977023236a6846336944e69af0ec5c89016191720fb97d1aa7b8ca65768	33.33%	Heodo
2019-05-08	LLC_2100272728US_May_08_2019.doc	doc	e68497a4f031505d16b9c6c97077eafe011ca0b7a64f01baef10886dc8dbeabd	33.90%	Heodo
2019-05-08	LLC_02678185031US_May_08_2019.doc	doc	7569c44f5d04fef27c5b9be4b22eee2f5f81edb46857e077255f4d593cf09d33	32.79%	Heodo
2019-05-08	Document_77230500240US_May_08_2019.doc	doc	a6654bf3a1dc1407b542532d1a9d11c30b84cdd9cc736abccfec742eb677b117	32.79%	Heodo
2019-05-08	FILE_50138265101US_May_08_2019.doc	doc	910b21b089dd8f21d37f4a08fb65efe7d20807abedda2a694bb1bc42dbbf4b90	39.34%	Heodo
2019-05-08	FILE_3059453585US_May_08_2019.doc	doc	56a81f054ec9d600f1085245e2cb9e6e88794c3c91069b4f088a764fa03e9021	37.70%
2019-05-08	FILE_68967113206US_May_08_2019.doc	doc	f0f86903255f88f4d0a80355d0dcc331e0f33f32b30505115fcd4727e91bbf33	36.67%	Heodo
2019-05-08	LLC_9555228355US_May_08_2019.doc	doc	0f13e41640e9281bb775ba53333af8c80f0ac73b5436fb497910b3cdd397aca0	31.67%	Heodo
2019-05-08	LLC_243448079285US_May_08_2019.doc	doc	9f1c7192efe5fd241d1df09e7705fafd9356fb2e03e08e0d82ee4a26535b4ab4	30.65%
2019-05-08	LLC_431098420706US_May_08_2019.doc	doc	713b34f0494e837eb6b50e34b67c944ca9b271f30fc81ae59ce8cecefb835f37	30.65%	Heodo
2019-05-08	Document_5276520282US_May_08_2019.doc	doc	3e7d6e2f8a0965f759788182fd17786fa9ba5ecafdca5b71b86c737d09ace85a	n/a	Heodo
2019-05-08	FILE_42048369494US_May_08_2019.doc	doc	9cb9e15e944c542fc3308e7b5c9108994bc6522efa562d3c89d5b20d232a260d	n/a	Heodo
2019-05-08	SCAN_391185335968US_May_08_2019.doc	doc	d7fc74cd2d6f34bcc7e02522812778a91bbc6591f4805164208847add84ecf2e	33.33%	Heodo
2019-05-08	Document_945369311428US_May_08_2019.doc	doc	f431544f9099b4f86cf43b676b6be9752436fc4773cf672f23f743b17c41eb9d	n/a	Heodo
2019-05-08	FILE_8350334937US_May_08_2019.doc	doc	d97f2899ee64066ec4a0e641b598c9203a52800de6f3bebe11edad394043add7	n/a	Heodo
2019-05-08	Document_945818580273US_May_08_2019.doc	doc	4199ac96a54a1125914dd6d442d3827273228153c600083f1ad4290c9dd2030b	n/a	Heodo
2019-05-08	Document_04734856066US_May_08_2019.doc	doc	28cd75af6569612c8dc642936de3a2680f75d49e1d38be1a3a782fcf11dedb31	26.67%	Heodo
2019-05-08	Document_02072290921US_May_08_2019.doc	doc	1667101838ea1804515221c8a6b6b55f2629605f5900e10f5ad9681d62659ab7	n/a	Heodo
2019-05-08	LLC_399772456429US_May_08_2019.doc	doc	f47066b0cc76015cc75de6b864de2d94048b07e5907d3aa8de1716050d655b22	28.33%
2019-05-07	SCAN_26743698038US_May_08_2019.doc	doc	cc5d88ce8bdcae9b0807e00ac25b8810061ef74875ce4c1e6de004b6bb42c594	27.12%	Heodo
2019-05-07	DOC_5137548706US_May_08_2019.doc	doc	e7b78b900c3b24784538e7a4c770d7287cf87e3fa2d6b3de7a8d0406f07b4ab7	25.00%	Heodo
2019-05-07	FILE_166222020831US_May_08_2019.doc	doc	eba293fdf7e66106538b72167c72639bf586a3fb1f104a7b8ecb720a858bd264	24.59%	Heodo
2019-05-07	LLC_25266478364US_May_08_2019.doc	doc	3ca3b11abd89194bed84645f9427a71ca200fb70aef0af93eb6e20511228f36f	26.67%	Heodo
2019-05-07	INC_314476590140US_May_08_2019.doc	doc	b1483f528d6f343065873260bd457abe6436aff1c7cb08d3df1f4a293028fc90	25.81%
2019-05-07	DOC_744905879248US_May_07_2019.doc	doc	9a4b3d0898fddc61f0f32ec6625a50040817f46c87e715b56ac1ba48cc17199c	25.81%	Heodo
2019-05-07	Document_22739021287US_May_07_2019.doc	doc	f0e05fcf22d473ad5eb79a73fc82818bdf3555325d04a54b965953de5bdc8c4b	25.00%	Heodo
2019-05-07	DOC_90525959534US_May_07_2019.doc	doc	d24af13e71c753092d182b549e9be0c54654f175f581ed439c8e826fbaa1e604	32.26%	Heodo