URLhaus Database

You are currently viewing the URLhaus database entry for http://vintres.com.br/wp-includes/0692BRJRSSUYSM_31152/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1984643
URL:	http://vintres.com.br/wp-includes/0692BRJRSSUYSM_31152/?i=1
URL Status:	Offline
Host:	vintres.com.br
Date added:	2022-01-17 21:40:04 UTC
Last online:	2022-01-26 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-01-17 21:41:08 UTC to abuse{at}ovh[dot]net)
Takedown time:	8 days, 16 hours, 33 minutes (down since 2022-01-26 14:14:23 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-01-18	9338466808584.xls	xls	59cb2552a34b231acb92fcee121b13d662ca7f0049a70aae86fe312270f548e5	15.25%	SilentBuilder
2022-01-18	1988368443495412.xls	xls	32151a8459b973e9f407a6baf3722a9a1eb6fb27a7db9f9693fc033b64e30219	n/a	Heodo
2022-01-18	29501020834685.xls	xls	b463abec1dfc612e1ea59fa20ed07f468fbdc69e8694a5af639fa79435ce4f58	n/a	Heodo
2022-01-18	444772560036309940.xls	xls	6cff0fc7ee4e1c70b0fb94ffc68d8939a2c5afc238ecaf0dc9e2a829baa2aaa9	n/a	SilentBuilder
2022-01-18	06874735445663.xls	xls	b4a49e89e7852d569ea4a0d6abbfb489a53b392e38fb16270343b54b2cc34b00	n/a	SilentBuilder
2022-01-18	03006438276.xls	xls	96fb18491f6cf868e63171c4ba461b95b4b74d39b1ce4ea5e4e96373f97dde26	n/a	Heodo
2022-01-18	8555216181926.xls	xls	35da04ff2a62f8c0275a0e10151c69d9cfd7fd35dfc2ef154105492a517023d3	n/a	Heodo
2022-01-18	6143489672089467.xls	xls	c1a761edd3badd0226e48b8622372de2feddd9d4ced41445685022600816aa7c	n/a	Heodo
2022-01-18	207102806016.xls	xls	0462fb1b5a8a7784bb9b1dc90185c6b031d6dbc1ca9256bc59a34bab1c87ab49	n/a	SilentBuilder
2022-01-18	5323624085.xls	xls	fef50521b3110b6efcd1210d87cffcc0912c24b496de185199e0ccd5b5a5c88e	n/a	SilentBuilder
2022-01-18	16642086362999443.xls	xls	272eb969b7ec9701081101f3a3cc5c1f30907a1b1c46700c2bca288edc9dc15c	n/a	SilentBuilder
2022-01-18	36194176036246160.xls	xls	14e06e9395a20e63635c321d4e8f23e03da439bfd81766dab0a621ec1c4627ae	n/a	SilentBuilder
2022-01-18	317896700403593935.xls	xls	32eaa4ec7dce492883fce25e20778b8c6b36c2d269d3e55f713977f4ab0618b8	n/a	SilentBuilder
2022-01-18	61444146039.xls	xls	909cae6e044629c7d0356bc96ced029549d3a1572031da350ee6b96489664f31	n/a	SilentBuilder
2022-01-18	960805723592186148.xls	xls	e07cb07d8a2b296d0f506a805e5721233820e0f8d4c9d552940f71fca7be7a8c	n/a	SilentBuilder
2022-01-18	95714818298.xls	xls	78edafc9ef5c586ac250ab33c4670eb0777e862160498429f24acbb551b6f3e4	n/a	Heodo
2022-01-18	77806363621.xls	xls	eb7193559a0f423ea0f4c9d50884ff6e053a6cd4b1a81563ac619e72595779ec	n/a	SilentBuilder
2022-01-18	6505576461365840960.xls	xls	cce8350caeca1753a8904e4cbaaf763ceb8eac0445b3235b74a9635727d39118	n/a	SilentBuilder
2022-01-18	315584146082828.xls	xls	6627edac0e7bcc8f7615afe466232eeb380497a02666fed395e330d866dba379	n/a	SilentBuilder
2022-01-18	19903249450.xls	xls	92bf6d722708e0e9428275c7d0789a52e3fefca383f020e0b8a9cf32e01fb954	16.95%	Heodo
2022-01-18	61334904212119303.xls	xls	853bf53e1de361a8c42c16b3a74dd673f990ca41f7f540ab98004a9a39e60725	n/a	SilentBuilder
2022-01-18	6071854130564093407.xls	xls	321d80f76297387803acdb4fd4e6a4dc6073d515955445752390767e95884b67	n/a	SilentBuilder
2022-01-18	5114924231044937.xls	xls	b933c6fc1ce4b9df0d65fae6724a3053c183cbdf921053873252181bf50ed7a0	n/a	SilentBuilder
2022-01-18	6041869071827610244.xls	xls	6d894e2cd1eaad5f13a55f94de79b6dc01a1f37c48b884d488e46003c054eb8b	n/a	Heodo
2022-01-17	275198731500383926.xls	xls	b9cf7499338b7ce6d879b0093cddd093f329e54f080335bc602f3b30f055978a	n/a	SilentBuilder
2022-01-17	536248581404.xls	xls	d90276f1e57f91966cccef797f36ba18dfdc19cf92a4505d0f59f2421f4eb2ba	n/a	SilentBuilder
2022-01-17	48213865477.xls	xls	6c45d08768b929c1e9e51c06e8e11e0f679c9a66a33415a427417ee1a3391ee0	n/a	Heodo
2022-01-17	250366631654.xls	xls	24c794c4bff6d31e618de4a6fab59f41d7f55dc7cfaaf520728bdaa54cd4c0d3	n/a	SilentBuilder
2022-01-17	05879853987.xls	xls	63ca712aa3ded137254262b9946785369c094b3e58b186e4ddaf34ba8b5d9e85	n/a	Heodo
2022-01-17	36150417397919381398.xls	xls	60bfb92cf2f86b683b04d1917c4eccb0529dd8c401d77e0aeef0793e82f78717	n/a	SilentBuilder
2022-01-17	97_972343.xls	xls	dbb52b7d676d81751c83f7d43e59bd1e90425b2c2abc11cd6af1dd99199ed27d	20.34%	Heodo
2022-01-17	383263-68013088.xls	xls	517f2f449191f150f1ec1c0a79f2a34522586643b087148b5066451744bf20c5	18.97%	SilentBuilder
2022-01-17	1630-32.xls	xls	38e5a716ce7bad027b111da8a3c279340203016b07bea370d80a20554eb18930	n/a	SilentBuilder
2022-01-17	0692BRJRSSUYSM_31152.xls	xls	79898684a6ed1b1f8c85e4e22f8b69099e0db3e80f1776656b5cc9d6d2022317	n/a	Heodo