URLhaus Database

You are currently viewing the URLhaus database entry for https://wordpressdes.vanzolini-gte.org.br/fundacaotelefonica.org.br/gAbC4QpJYI/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1964728
URL: https://wordpressdes.vanzolini-gte.org.br/fundacaotelefonica.org.br/gAbC4QpJYI/
URL Status:Offline
Host: wordpressdes.vanzolini-gte.org.br
Date added:2022-01-11 10:14:06 UTC
Last online:2022-01-20 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: waga_tw
Abuse complaint sent (?): Yes (2022-01-11 10:15:09 UTC to abuse[dot]br{at}telefonica[dot]com,abuse[dot]tgsolutions{at}telefonica[dot]com)
Takedown time:8 days, 14 hours, 26 minutes Bad (down since 2022-01-20 00:42:01 UTC)
Tags:dll emotet link epoch4 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-12KyawzUU4ZM8X5z.dlldll a09dc34b1552b16f21c6c3d2058d4bf524dc8c37c68d30069642e9ba665fe6eaVirustotal results 25.76%Heodo
2022-01-12NA0.dlldll 10640f481001199d682020101946ff20a103319681d6d00f55cedce017e51cb4n/a Heodo
2022-01-12YI4GAIaJf6vw.dlldll 51faf9116c76ef799bf376546ad83ec132a14a380306ff51df0d4b2ed8f937c2Virustotal results 27.69% Heodo
2022-01-12sM2nxE5Q7c.dlldll df45f2ce05c5c8a25973b6a199cb5247730b5ffefa78abaeed920042e978857dn/a Heodo
2022-01-12GgjGx3JBhGf5s23d6M.dlldll b31526f08536b7b694829966e2d3f1075c5d419cead1adc18f8d1033e1df71a3n/a Heodo
2022-01-12oWODZ.dlldll 72729bcce1284e978f907452d772df9424667b5ef167f8f9f4b24d17c0f120ffn/a Heodo
2022-01-12Zds.dlldll a1499f97ba23bf03e5c9453461279bbadf3b0742b439369cec4c057b3ef320ean/a Heodo
2022-01-12jK2fLpMRq8N.dlldll a46e87be6bc695fdb094ebff400dbba852fdba6f27e58292d68db6c610357a78n/a Heodo
2022-01-12fttM8FGErFBoQY.dlldll 0091f3d15d109806f3a58a3b44910c54101979ff76b76835442daeb062829f5bn/a Heodo
2022-01-12y7VfE24BOJInam.dlldll b925d6988af836ab739c7092be6cf24274c3636fe6242773f0836d7af2491b07Virustotal results 25.37% Heodo
2022-01-12qqC6M5vmTUiUe.dlldll d3cd9a07c0cf3ab2fe8b5f19edd4acb3b8990ad90c9b5e84b5a4e6f0f0546e69n/a Heodo
2022-01-128u6Lf.dlldll 965d0bbcb4123209e2d17182715eeb5f35088f94e5bb88346f53c50af2e4d76fn/a Heodo
2022-01-12vGGWcJ4jS1sZOS0X44.dlldll 0a3c73386940d70476ce74bc3ebc643a87bcd01646884ebc39ac82703737e774n/a Heodo
2022-01-12LlgQySWtEIN.dlldll cb2fc6295faec9982f1ae9ed4e98c900a39e258a8667c2c028030b90b7dd8203Virustotal results 17.91% Heodo
2022-01-12R45IA9Ferwh0.dlldll fe631f3db09004ddd5afaa2ec4bbae2518799bddf6d6f135fc2ef548585d1037Virustotal results 19.12% Heodo
2022-01-12bZOLo.dlldll d043e275f5a69f247af5bbccebfcfc0a84af160ec490f27c3af3eea4a923bf3bn/a Heodo
2022-01-12S4EKN2YZTPB2M.dlldll 04e8550db38ec0b7806edd690252d754dfce2cc1e1d96a400611467ce119f9a2n/a Heodo
2022-01-12i3Isb8z.dlldll ae10482637df4b2ec16af9dcd0ff223a77b43f394881c3f0879aa4814c276c4bn/a Heodo
2022-01-12PhQXJGZgaQZF.dlldll dc3c54808c4ddc2722c815a6e55adecc1c77dd547b0871edff037ae9fa01d41en/a Heodo
2022-01-12TSM.dlldll 259f13b622feaccd2148fe7f1df1afac83e525cc8674a72454accf12cb61670dn/a Heodo
2022-01-11b3yyTzKf.dlldll 017db5decfa2c72091079ea2796a59449853b469119f78e2f7402e74c42f633fn/a Heodo
2022-01-11vDwAAqiJFDIhHG.dlldll a9cd1854045faf5a843d787dd8cac151063a3232a38ebbf480836d4022151131n/a Heodo
2022-01-11yRnUx0sjO5XP.dlldll c2c3cad50ea72450cb2b981c63dddb7192efd88b462affd6298323f7c191153aVirustotal results 15.62% Heodo
2022-01-11OhMFi4PunKnHX97.dlldll 5ac7499dba654a13c558515e8fed37f6b2fd1fde9784b0c0c2d01ee38a6ef558n/a Heodo
2022-01-11pT1YrLZDljvQbSG.dlldll 98ec3d37476bfb5170b542b8914220c9aa3acb448cb0c9ad5c17ba05e5b7c4b1n/a Heodo
2022-01-11zZG84mOB.dlldll 52362c190085c95405763f8ec302a022bc6d6604d3b085262842cdce6e43a19en/a Heodo
2022-01-11Bof.dlldll f4d8ea174a78c0d552dd1dca13f28d384fdc483f9009b37759c7f03c04da3bdbVirustotal results 13.64% Heodo
2022-01-118wVmvHNJ.dlldll cde9f6716d25f8e7a78716dbf0b66c3fec5a78dfd7846f33367bec75a7c46cecVirustotal results 13.85% Heodo
2022-01-11zkyd.dlldll d042fcefd49b251ef057c7b2626317da220b82b781c69c41e17e629600bb3715n/a Heodo
2022-01-11If4rcS4ZV.dlldll f72e661dd078da92e60906cab150a17af209c94bd05e3aef839bcdcbbe3ad0f5Virustotal results 12.12% Heodo
2022-01-11zZGDza3x.dlldll 0f58479623d2c5c3358de58b457cac7c6f0c5ee51854dc1594e855ef8d494133n/a Heodo
2022-01-11ErQOQ.dlldll dbcdff0da56ae9c0923035dc6ce00b4457d133cd3fbb71fe40f801023795375fn/a Heodo
2022-01-1174ygRwgc.dlldll 110427319f90538d6d2b1c7fb257efbb2f0ffe562d723128e889959a18d26b85Virustotal results 23.88% Heodo
2022-01-11C7gFXioU78FX.dlldll 13ea3ba684862553185d88b3f20f64e603904941bf54e87909810e7d6091bca7n/a Heodo
2022-01-1113xNzS1VDu3TQOh6h.dlldll f123f0e01b491922dfe2bfaef7149324e63adba580b3b034d1bfa3315cf4d3e1n/a Heodo
2022-01-11CF5.dlldll e467aa960cdbc867b456e4236f6ca77bf07c0a6e202aae2a2d6c44ff3a598119n/a Heodo
2022-01-11v7Pkr5BhE.dlldll 50342b2b6c1edd5dbe7a4c1c5279bc03a274e1aa235a4e3754d1c9e8af40f8f3n/a Heodo
2022-01-112E0OV.dlldll 561785fba130884138885ac5c1822ec163d469d09c7c6fe316470b966f49a8d3Virustotal results 10.77% Heodo
2022-01-11f9c2noPfA4k.dlldll cab92d07bc3a01208b3bbbccdfc48b478aa4c6366c1de862ea49fee8cbb98e4dn/a Heodo
2022-01-11CwYz.dlldll 08c433cb5f82d1ee7e2475d2f7eb1092355327c574aad99f7954bc807ea313b2n/a Heodo
2022-01-11AuoLCZkNXdm.dlldll 37e2419a535f4866f41cde2e9311cf52f7b6211a3144ec146568c4f8269d71b5Virustotal results 11.94% Heodo
2022-01-11sNzuGDZ112dc.dlldll dd76c1b576ce62f499369a6dc99de56c9728c47851679bd6bcd928fa9dd91480Virustotal results 11.94% Heodo
2022-01-11tYrSwpkcv0MIXCB.dlldll ec84334055be15cc3014555be41de6ad683097fb7c8eeb7db5f645857f0ed7b4n/aHeodo
2022-01-118TsDoRCbL9S.dlldll 23766e166a8594fcf37108ee7b4ea58385d64cca60327a606003f8375f762362n/a Heodo
2022-01-11bAiww.dlldll 4d18c14b710c46e88268db6c38187d3300033716ac5fb39b010c68b7ca0dea3eVirustotal results 10.29% Heodo
2022-01-11Y4CohnUArUFrsgim.dlldll 90ed647fe03d4f5e4050db5bf8e2bad12ba9dbffb9c19f2565573a73d657c0c9Virustotal results 10.29% Heodo
2022-01-11GPusNWky0O.dlldll 8e7e0ffa0ed81c467e3e68f46ddc9e9b7afa1ab1d32291f18507db90f1093351n/a Heodo
2022-01-118JkXGxkmO5IZ92eRIO.dlldll 0865df6af3c2f81bd141d01b3b24f0247a0c45a85c9be917f5d95bd6a8014949n/a Heodo
2022-01-11u3M3mlDheF.dlldll 6ec778f0a4eb62a080f40106c8a5a9cded395546532a23368bff5680209d8aabn/a Heodo
2022-01-11DX2fDsr8NROT.dlldll fa965c63353fca5d6a843172b4c4e9ad0bc295bfe647e8b317a622726a14d882n/a Heodo
2022-01-111.dlldll 7ba607c18258d77278ce64a954d2ff4817844ecf6b95214c5024f081d26c13e9Virustotal results 7.46% Heodo
2022-01-11M.dlldll 256f20f1a4795b5c794eefdd5d9e09e149721066c00636c8b1660dad5a8deafdn/a Heodo
2022-01-11onpI22Aqq2DSc.dlldll 681a4dc2ba9bd36abf503a97bc6213c1d7930b3c736f6db5d6e50e54a201170en/a Heodo
2022-01-11qmv23FggmfM.dlldll b64825f7105c6da93f03cd59fbe032969454ca71698aa1b3fb1e935da454f24en/a Heodo
2022-01-11Re.dlldll edb1fc053748eb9a90caf753d1291679ac2599586abae4110e9f4a1fbc86c97fVirustotal results 5.97% Heodo
2022-01-116IGUDcM1zvxYBIk.dlldll 32f1607130a5f25cd52b3ea31c5f346389f33361d115b78efc1af27334dbd921n/a Heodo
2022-01-11e6.dlldll 1bc53bd80489c2a0200731007331c51ce32c8d7f96e9d905602f000ade2fc920Virustotal results 21.21% Heodo
2022-01-11A3eOZ67.dlldll fc8c55b6a7e9330b29e3be2e323952e17fb3e25251148d1d58c34886df4d395fn/a Heodo