URLhaus Database

You are currently viewing the URLhaus database entry for http://empowercampus.com.br/wp-includes/nN1BLa70Fo8ZJ590P/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120094
URL:	http://empowercampus.com.br/wp-includes/nN1BLa70Fo8ZJ590P/?i=1
URL Status:	Offline
Host:	empowercampus.com.br
Date added:	2022-03-29 17:03:05 UTC
Last online:	2022-04-05 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 17:04:05 UTC to abuse{at}bluehost[dot]com)
Takedown time:	6 days, 8 hours, 52 minutes (down since 2022-04-05 01:56:18 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-31	GZ-78293066073974.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	IY-33773584439640.xlsm	xlsm	a1057f814e603d7b7ff7b711305cac0ef15e48b78499802d411424a19ee235f8	40.98%	Heodo
2022-03-31	ATK-253376517897787.xlsm	xlsm	6102217f21897ac71dc164ee9cb69526d874d45e748754b44309ae2b1d620880	40.32%	Heodo
2022-03-31	AT-310417333.xlsm	xlsm	db67f0509c5f982c9eb1fab5a17d14ea07d5a1e13b2f5ee3b35ccf93700588e4	38.71%	Heodo
2022-03-31	JF-032711114533.xlsm	xlsm	8569ccf19067a7bcac337678fe513dd551d5527e9ee2a0560c1dd60907c518d7	n/a	Heodo
2022-03-31	LM-078061586162.xlsm	xlsm	8ffdaa8f731fe2148ad8c7dd79ce44c3dc17eadb46af64c64a76395fd0e629ac	40.00%	Heodo
2022-03-31	WB-1080705756258.xlsm	xlsm	a43da1637de01a06d72a9d09981de5132b8bd971844704ee9fc7c5e07450a49d	n/a	Heodo
2022-03-31	DXD-43090135820.xlsm	xlsm	61ad9b2b8c9707a14412bf30d2e17c11d75dd548e841d9b4eb6299ca1e0456d5	n/a	Heodo
2022-03-31	AZ-166359834834878.xlsm	xlsm	0c71f0ce426be3dfeacb36cfb08349362327fa6041d1669a1d2ef8b1110bfab3	n/a	Heodo
2022-03-31	PCB-45828628.xlsm	xlsm	b73f04d9f7a2ce5624249871b7f1277fcc2959bfe5abcaa33e1da19e0da9cb08	38.10%	Heodo
2022-03-30	ZV-0418387348.xlsm	xlsm	2b1f1f87033e83e264f05939f180b63165e067861f9c6f1253aedc9c9e1efb6e	n/a	Heodo
2022-03-30	XPZ-647776256.xlsm	xlsm	0d52cf42b7a5f7ec21d78ec1ab0861571f4136b9d08a6de2c4baea447cac0a6a	39.34%	Heodo
2022-03-30	AK-29747597129.xlsm	xlsm	a9815663da2b9c41013ae43700ed39ce8476ee64cad443c5c40bccd91420efc7	30.65%	Heodo
2022-03-30	THH-211811963731869.xls	xls	c83aefdafdc478ffff051002d1c7b4675c068648d57fca17f788d575ce297596	28.33%	SilentBuilder
2022-03-30	UML-84480963.xls	xls	bc8049d90da2c6ed214cd043d2d754a1f8fc802010a6367d5cac254aa1853a67	26.67%	SilentBuilder
2022-03-30	90599513102173.xls	xls	47d56d48a9d1124c93c30fceca3e85139262e561196d7e483048f00952a1dfae	28.81%	SilentBuilder
2022-03-30	277335924791274.xls	xls	ee875bfdf282dbcdf5711f1553cefe21d02aa98fff3f24f6802ad8165c34287b	n/a	Heodo
2022-03-30	3200758238303.xls	xls	50170893cb064a5653f663f14de07cdaa05f1dfaba665721d31fe98d70db6366	n/a	Heodo
2022-03-30	01382417835.xls	xls	48f8db12e68c170ee127dbfc92d5052aecb6e381f85910d86ba35b032a7737df	25.00%	Heodo
2022-03-30	9320010188812.xls	xls	3e7c9a89e957262b014b07250f015ccefdb050661e9564930d813c033a96b2e9	23.33%	SilentBuilder
2022-03-30	09055219753551225.xls	xls	e3941551e141e98b4494850047b30774e55981de460dbf848f9cc86b6adce453	26.67%	Heodo
2022-03-30	0809811021561.xls	xls	9b549e9ae691f8b583596b3a513ca77624517277b8ce18a5379e2a75604cd6aa	28.33%	SilentBuilder
2022-03-30	88719821315.xls	xls	d67f14a63d4b1018b28ad7b92dc29791b1aeab26d28ce20b6ef1d538b769df00	n/a	SilentBuilder
2022-03-30	5908046170457481152.xls	xls	d4cfb0c8440f63b52a9a6506210f17aa2cbdeac594081472fa3f4c8440fbbc1d	n/a	SilentBuilder
2022-03-30	9586830802.xls	xls	53695dcf97841c90ec048a84804fbdd56aca83a71ad0ea445d6606181c7fcd64	n/a	SilentBuilder
2022-03-30	87380829624564.xls	xls	1bf4ad696c1edaacc7221aee958ac591aed18407dd6c4c99aca6da4fdb8ed3ed	30.00%	SilentBuilder
2022-03-30	5828172432230566.xls	xls	1368718563ca6d717e28a11f2ed560ef1e7ebd71253649ab0bd46a45a96e835d	n/a	SilentBuilder
2022-03-30	13758949084602.xls	xls	c141fae72760b3ea499d3149ccac1732cee2f3c7b9c0a753fc649b91b5b120f2	n/a	SilentBuilder
2022-03-30	07620581248147364.xls	xls	5e42f72b6f48384d2369d13cce199bc20da44c757705ba69765152d0d1d02f96	n/a	SilentBuilder
2022-03-30	6147028755.xls	xls	19f6caa7a30df844b400ba5f224bd75901e715d328ef9a38903900f0fa773946	n/a	SilentBuilder
2022-03-30	340807025206963097.xls	xls	28ba829fb4abeb8e11243e10baa9049f361d5411bb569975c0bae2c64a800d3f	25.00%	SilentBuilder
2022-03-30	59227541372908.xls	xls	911fd14af43d57e7079a9b400ad3f15746e956d88b0057754dfc9e62029b4e3c	n/a	SilentBuilder
2022-03-30	36596630996853262.xls	xls	385fc2720a678cc5b53d3d58caa225e7fa24e29c86ff6acecb609afb7659caa4	n/a	SilentBuilder
2022-03-30	02532030727.xls	xls	51a8819534ed48bd71579b6e79307358b76ceaae81aafc73cbb8e8b77e977061	n/a	SilentBuilder
2022-03-30	1380439793928.xls	xls	052fbc6590f24acff458963b590eef70e2476dda44c74382ebbbc8cc3a9e9c25	n/a	SilentBuilder
2022-03-30	6202620811343.xls	xls	f736398345593d7694cc483eef6daa8b0530fe9ac5371d53d29f75e4ac5293fe	n/a	Heodo
2022-03-30	12996216406820776.xls	xls	ec2aa6f18594a4bc61f6fc977efd358ed21b613e43f91d5acd869c689c687f1d	n/a	SilentBuilder
2022-03-30	96779256169585442.xls	xls	9e567a344081987a4426f78ec523045fd89cefc8790ccd11bc7c7e84a0816144	n/a	SilentBuilder
2022-03-30	102314317058.xls	xls	f37c6c8662785514f852d04f94ac6b2217b3c5244e84dae528f13c5b8b95daec	n/a	SilentBuilder
2022-03-30	88426963014073449.xls	xls	b8d670ca1984f7ecc9e90c4bc0c4c4d96172690aead7080171735f96c11ba21f	n/a	SilentBuilder
2022-03-29	96475917415562691.xls	xls	97df6ceb1a63712a6b1bf8f40f12d8add7b3a4e7f8191734eaee45dc10aee3ec	n/a	Heodo
2022-03-29	0132066102937924.xls	xls	1dbea40fcbd816ab601a760ef3a43708219096749c335057165212872cf8833d	n/a	Heodo
2022-03-29	92691719358.xls	xls	dafd00fba6b496c20002458f86e37e76aa614f5ffbd25d4499f4271e48b7b02d	n/a	SilentBuilder
2022-03-29	06820154176.xls	xls	cad159477bdcc1a893cefc1b3c89fb0108c077f05f516817b1d9b1c226df132b	21.67%	SilentBuilder
2022-03-29	59476085771.xls	xls	5facd7e6e06801b2f98d8622d9dfa7549dc7fbcc4d2f1cd957f193d81a1e7e31	23.33%	Heodo
2022-03-29	4066001517.xls	xls	aa7f8032eea8a66f2a2fcb725bfc16899f61552dfb4e2e7b9c6a4d1bfad9d604	n/a	SilentBuilder
2022-03-29	47034409916824.xls	xls	912ef80d96550207598474c59820892d1bf52be76ac1c04f833228027a222f0c	n/a	SilentBuilder
2022-03-29	216613618782.xls	xls	a547aed1d65611b428003c7e43a76e655c5d49d41f62c42f041744d7700922fb	21.67%	Heodo
2022-03-29	236914827225601.xls	xls	22daeddd01102db47e51040281f74ceb59a25e612288ef7010287a71977a6044	n/a	SilentBuilder
2022-03-29	8276652931369046.xls	xls	1cac8ab3ebcb3d2cd35f78983f0f8376434e0df131e92784aeedaa28f17abd37	n/a	Heodo