URLhaus Database

You are currently viewing the URLhaus database entry for http://magnani.ind.br/wp-content/mwd_60/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1972105
URL: http://magnani.ind.br/wp-content/mwd_60/?i=1
URL Status:Offline
Host: magnani.ind.br
Date added:2022-01-12 23:19:05 UTC
Last online:2022-01-14 09:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-01-12 23:20:11 UTC to abuse{at}amazonaws[dot]com)
Takedown time:1 day, 10 hours, 0 minutes Poor (down since 2022-01-14 09:20:42 UTC)
Tags:doc emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-1350468848-45363496.xlsmxlsm b23d03b69fe38e5455c97081efdb773b4a1d55c44279acd32686a04ab1e70aaeVirustotal results 22.95% 
2022-01-13x_956329.xlsmxlsm 382027190f16994bc76a439e666be02710c43ee123e5bbf37e0394d1bd7e4a39n/a Heodo
2022-01-132134CUFJWLREG_4444.xlsmxlsm b92219911245e208dd5089a02ad54181c2646a905a59ef38fa3919bb0cda98a6n/a 
2022-01-1353699388.xlsmxlsm 39b981154bd3a541546bf640b85b6db0a61dc37faa825ec9661473c85ac14f86n/a Heodo
2022-01-13G-706199.xlsmxlsm 5beaacf0c6bee900893f52cff69c41a062fc684f58bf402487329402424c14b6n/a Heodo
2022-01-134101493245.xlsmxlsm 0a3e258bcd978e0bef0ad77f9a203e03f6b939e243ac9d04a3ca9224819a64ccn/a Heodo
2022-01-132716358_31232540.xlsmxlsm 965ba65b5f61878b8ae10148e82de812b432f517f3d45802be713ea45aefd0c9Virustotal results 24.59% Heodo
2022-01-13XS-70.xlsmxlsm 4f7ae9108fe7b9bc62139dacd02faddd64f16c1734f91d5f7f952393bcc84a71n/a Heodo
2022-01-13V_30185.xlsmxlsm b76e18e3aa77d8a35159a5b34f93940a933d206ef27896c6abca13c2686d24abn/a Heodo
2022-01-13WgZs-15.xlsmxlsm 0fdebd51c10306d56bd1555cc2467ae166b662318767f4913f57c930dfb4be05n/a 
2022-01-13136000_486157.xlsmxlsm accddc7c06e08cf3517f7277a5c299c85176cd7821220fcbc6681c3dfba5be01Virustotal results 32.20% Heodo
2022-01-13IZ_778043346.xlsmxlsm 890e54734498c0cf6c05a9678b66b29e3c38203ea61f83937a017ba7afed9809n/a 
2022-01-13VSFNT896375.xlsmxlsm 8186f82da42f9f07b405d280632e62d7632c4b472cbb489761bf400bc9ac2b74n/a Heodo
2022-01-13Y_46.xlsmxlsm 16a16ae0734ca9a2fc30199cc0c63a5839677da947c1d03f30e26802208f0c13n/a 
2022-01-137268_2906.xlsmxlsm e2053410b37647f1f7e190f99174fbe37bf5833edbc9801319f4443e1478eb7cn/a Heodo
2022-01-13BJZ_714.xlsmxlsm 55831e6466e727c6dc0efc619eefaf7ff2a89d4ccb2f770e34aa49cd4a9894b9n/a Heodo
2022-01-13p-924720.xlsmxlsm 8bbb676c7050da79e895b56bb776939362302b3c8b14612ddda54109563de801Virustotal results 28.57% Heodo
2022-01-13NSU_09.xlsmxlsm c04abc3378a389c7769ed89de8e5d82f4cb311647e4f363641a807fc6a399f39n/a Heodo
2022-01-13ancb090.xlsmxlsm 603fc4bf5e141be1b30fb64551545d7f757d7f508891d17256ffc5564f3ccfc8n/a Heodo
2022-01-13szo_6117.xlsmxlsm 115b1bbc0363cd535f4336aac31bed3fa17e2c2a4ebcb15618e55c9dfc91896bn/a Heodo
2022-01-137743023.xlsmxlsm 4f9ce5c9c9dd88a6a01a3df3299e0aa43da3bad195036c22b141f28769708334Virustotal results 27.87% 
2022-01-1379804WZXFUNYIL3005.xlsmxlsm febd9978510715acb1f4bb87d04412fb1e3e6e2720329590b6b146de515d2d85Virustotal results 31.75% 
2022-01-13298832338-99444177.xlsmxlsm a9abb67d0afc58fc0b4d513805fbecde775e743e7d7922f1ec54e65e148dde5en/a Heodo
2022-01-13P531310.xlsmxlsm e6881b3140103136fda1da81065755e68de65df40faf02a6bb15ca329fde15aen/a Heodo
2022-01-13bgziyk_1488221.xlsmxlsm 6452605acbfd7439e825e954124dd53046c5f148daad80558e64ccf1887a2ccfn/a 
2022-01-13OWD_10442.xlsmxlsm 26b70659f75983434e092f76f7a14aed02f68ecd203b7a90cd1ed6ca1ef8bbd4n/a Heodo
2022-01-13EYSPF42282779.xlsmxlsm 650bbdbc87791034d76982f257174ba4504b95273cc4b6f2abaa4e361cb190e7n/a Heodo
2022-01-131932446_83574.xlsmxlsm 108af965a5786b36edd5ec9d0e920c8d98b75f69cb4c120fb10a2e6033f74c60n/a Heodo
2022-01-13091663209-82975.xlsmxlsm ec54edb8fa77d810e6deba4e6105fe4fa06c193915fbe03ddad082f3e24da369n/a Heodo
2022-01-13u090007634.xlsmxlsm 5ad7f42f07f5db39587cb7d2ead9bbc7e88e6a223eee99e1745617ad3e17f290n/a Heodo
2022-01-13jrv_753.xlsmxlsm 48d8ba8e0832a4ee318f4fb4653345ed1d8e48e2bd90b55648e18d541e534d92n/a Heodo
2022-01-132571847-01.xlsmxlsm cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46cVirustotal results 26.98% 
2022-01-13nf_947810.xlsmxlsm 13f975538e7e72ac755218c6a35604d36e0278e74fed8e2270476b89268a7f2cVirustotal results 23.33% Heodo
2022-01-13VY_7337.xlsmxlsm 9e443aedd2833d67bb9b858bd14abc6a235186f865e05497ac39ab8cd0185156n/a Heodo
2022-01-13tg_349774238.xlsmxlsm 6a8fc7cb880a404032161e81d67152873581b6614b238faebd731fb7fbd8cb92n/a Heodo
2022-01-13221380-50895663.xlsmxlsm f745757e79c9411ab969a3e2ab5ccff444e4542b87681828c091f595826410b5Virustotal results 22.95% Heodo
2022-01-13438EOCSK05.xlsmxlsm 1d8482afdb97aba866fc26b21eaa9f92f46ea841566bb0588150aecd4347cd45n/a Heodo
2022-01-13V-06333354.xlsmxlsm 6c5843f31e83acb3be71be737cb15c279df63ad2191db42d1687985925eee1c9Virustotal results 22.22% Heodo
2022-01-13U_20797161.xlsmxlsm 2cfe6cc60d786a8b94d9d3114d344fb74c21e5ce5391dea3d1550df17fee05b4n/a Heodo
2022-01-1349123_360.xlsmxlsm 80f7072eb1b894cec06813c3267356f693ff21d0d1f116d1cf53d5b8035277deVirustotal results 16.13% Heodo
2022-01-13FR455744.xlsmxlsm 1080082d0eec3c4e3583b6e259b0863c746d211af8a8b6b645b21059e60f1119n/a Heodo
2022-01-13ZDDQ453.xlsmxlsm c062d769449f6c74f82252e4215d23c83a360d97a7ed1b75001ba3250df330e7n/a Heodo
2022-01-13T_5854.xlsmxlsm 6169a4500b717ca5de60b77b01c2c1ddf5dbe18bafd0af142248d5066eef19ecn/a Heodo
2022-01-13333-0307315.xlsmxlsm 152d0b25ca2f0f4066edf77906c112fe4e6d49c17f6fc35a039686276ad7686dVirustotal results 15.00% Heodo
2022-01-1378098_3.xlsmxlsm 259272a5032f537239c61ba1c8b5bdd26e8e6c4f1ec9b54ee52eaeeac5f5690cn/a Heodo
2022-01-13Jal-147544.xlsmxlsm 8e2712e45fb0cbdc5a565ba4f5582ef6b0d871a0159abaed0fb6c4d519382547Virustotal results 17.46% Heodo
2022-01-13ILC955634.xlsmxlsm 90d0f5a1133f995ef6280f0b82b5de6d04f94f727ee5842a0a36f6e4a0b4460cn/a Heodo
2022-01-13bSMK-16968756.xlsmxlsm c14e76a48aa71dbc135baf60cb71367b03353dfd7e1e256ec9158c9ab9566677n/a Heodo
2022-01-13ED9540990.xlsmxlsm 37bb74fcd5b1ff6bbd323163e21277b3ed80d124cc4d727f4ec64d1048a2c85en/a Heodo
2022-01-13n_846.xlsmxlsm 89136b644b6aa4c447540dd585039676d3308c0a434bc3f72322a45bc35df7acVirustotal results 11.29%Heodo
2022-01-13LQFV_241469.xlsmxlsm cffc89330574a0b7d5096c64bff0483e4dbc38d09be06dd3fd4cafca0a4e99edn/a Heodo
2022-01-13TYF-757994.xlsmxlsm 869b3e37539d37f91353d70a91951ea1da88ee298ed6992b06315984bfb23247n/a Heodo
2022-01-13PMSYM_069526.xlsmxlsm d9d0e65da97a353a9cc189af41082ae0bf1dff0acb39bb620a34ddb0c642ac79n/aHeodo
2022-01-13OJTB_3209999.xlsmxlsm 0f3edf4e46a263ca74e1089aaebc8b85db3e80677f8f4606e5f9a09fecec3903n/a Heodo
2022-01-13114666194.xlsmxlsm 4e334f1e7d8c85ec0ef565959898a1ddbe225377df8590e806143832bc768320n/a Heodo
2022-01-130600120-82919333.xlsmxlsm ad80a159607095ce60f84198a537f9ed0bc3b5205b2a84a49c8173d53d942e60n/a Heodo
2022-01-139437363-1987563.xlsmxlsm 1d9de75895fb5076dfa112538287f13f40512cff9fdea541f4481c5e0d64137bn/a Heodo
2022-01-1363551505-860480.xlsmxlsm bfc5772205c81262f1c0e3bd7742f6aa7d2f41e03cbdd43729f2376a9b96ea16n/a Heodo
2022-01-133205910_156866.xlsmxlsm e479adbf5f0acc27094c482523f9ae3ad97b43f50f4df328d126ab9e98f0bbf0n/a Heodo
2022-01-13HKP71424385.xlsmxlsm 00714061c46c2698b29d0f88c92096cc433a3b26acac70825717dde40e0ff407Virustotal results 8.47% Heodo
2022-01-13ACSBV5224335.xlsmxlsm 47171e7e88ede748460af600d64eaf005c1f606df64bca51bcabb9e3a4e872d9Virustotal results 20.00% Heodo
2022-01-13RD_25.xlsmxlsm ae3ac0659210f9f66b73bb14858d53a215ed91ef3c5b812c671fd4e824ee150aVirustotal results 8.06%Heodo
2022-01-13516_8.xlsmxlsm 1463c17a7f06236bf5e8cf4ce7964cc17b2eabaedf00822387824b45f83021b5n/aHeodo
2022-01-120150_6321.xlsmxlsm 2ece719378f63a328fbf4fcb4a059dea6cbb9a7d2be5481ec168f1e681fc7c56Virustotal results 8.06% Heodo
2022-01-12191188385_03360767.xlsmxlsm c2ddab3e04d60aef6cc2b227982e2701eeb4fb51f6a76c1f3047dffe536fccaaVirustotal results 8.47% Heodo