URLhaus Database

You are currently viewing the URLhaus database entry for http://www.cenomp.com.br/templates_c/nZeK/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120585
URL:	http://www.cenomp.com.br/templates_c/nZeK/?i=1
URL Status:	Offline
Host:	www.cenomp.com.br
Date added:	2022-03-29 21:27:06 UTC
Last online:	2022-12-08 03:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 21:28:08 UTC to abuse{at}bluehost[dot]com)
Takedown time:	8 months, 13 days, 6 hours, 20 minutes (down since 2022-12-08 03:48:27 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-31	HE-01460817382481.xlsm	xlsm	4e6c2dd2bb0183aa17caa2084632719d1b9d42cae3e0c96f6770b216822b8d01	n/a	Heodo
2022-03-31	MBA-6361525.xlsm	xlsm	a395d2ca627270c1b53481050d39c6395c778682e98aeedcb00d1f68fd1ec23f	n/a	Heodo
2022-03-31	RMA-6162026792.xlsm	xlsm	7ca9c48ab76e34256ebad65fa28f1eb8b3da601b413e19e03a1442046b3aefea	35.48%	Heodo
2022-03-31	OZ-3543271.xlsm	xlsm	a4c90f279a6b95cfa27debaf12cd09e6dd57fb1eb87803667a8b0527c7fc27ce	n/a	Heodo
2022-03-31	ZI-16532346600.xlsm	xlsm	0e92cfd04405b8b597562761080285f19807c04c48c7278fe7632271ded41c3d	40.00%	Heodo
2022-03-31	FG-2809114047.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	OBQ-219620085.xlsm	xlsm	5fe0d5c74d36af2db670ba08c72837740a66a82a2e8f0b206468474195578366	n/a	Heodo
2022-03-31	NJM-47680494619.xlsm	xlsm	09edc074cf0f65e7ff9b4ce87add12e2dba511bdfe639896c894d4b0d1945438	n/a	Heodo
2022-03-31	IU-325627325003.xlsm	xlsm	54bb2433c32ae91e6033d49276536fd303652e555e7d1cdf5e1aa0bf9f483d18	40.32%	Heodo
2022-03-31	TK-70333659372974.xlsm	xlsm	eb39b29661d81cbcd7a00f191c61ce9902b80b68e1e03215e56221bfc85863ef	39.68%	Heodo
2022-03-31	JOC-738414016518468.xlsm	xlsm	fc37b21b57dd4e4116c820c9280bc19e19f6d58c78c3f68b13c2d51a3cb311e3	n/a	Heodo
2022-03-31	QW-48771301133973.xlsm	xlsm	02830d05c8978247bcf9d67de7de69472a79c9f8c2a34c6e19174da73f50f627	n/a	Heodo
2022-03-31	TI-8536257.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	n/a	Heodo
2022-03-31	DH-55207465611.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	VVJ-7306268436.xlsm	xlsm	f6d9028f6903f57570a969a97a510120fa11d93ce778cfeac61862c36d6b6bd2	38.98%	Heodo
2022-03-30	HDT-8606987922709.xlsm	xlsm	08e64e582d9d42f5f3a21eaff52bcb72b4a3abfc761561ff28f40bf937dedb2c	35.48%	Heodo
2022-03-30	NHM-29883610285.xlsm	xlsm	b8a9c6cb2992b99ed3cc0c82c5cc63dc9a4a3c509e8c67399d2d7c864ed83c03	38.33%	Heodo
2022-03-30	QN-9672300964008.xls	xls	88eb7648bf7a3c5eb3fbb953cd7b5df5165ffd0cd0249928a6e314f8958ebaf4	n/a	SilentBuilder
2022-03-30	7270029710.xls	xls	6edf2bbc238af34d4d9a013d6ae99ec1a1df41d15caa4bf4e90ec5fd50ac19ee	28.33%	SilentBuilder
2022-03-30	3313784043471.xls	xls	e6816092d6eb5bec7ab8d5463c45994379e212925e29994c9a28a826b9f0ee92	n/a	SilentBuilder
2022-03-30	4440264183024.xls	xls	dca8eaa3af3959b306af25eed2fa0edff0e0afc2eff8303e02086f3c9e2d24aa	25.00%	SilentBuilder
2022-03-30	0369527376.xls	xls	6ac28d351130c9a9e015f393afc64aff771658d80861d03c3a6da6d22d3208b3	n/a	Heodo
2022-03-30	24635970423342.xls	xls	de039f6e79fd46992cc628b03a7ba67a7a5e03bd3e7243c29c255249d8ade1c9	n/a	SilentBuilder
2022-03-30	092729964454344.xls	xls	b2565c24c9c72461d71c25df5d6ea291c53cd27725217f8c6585653cbdf72648	25.00%	Heodo
2022-03-30	6523955913.xls	xls	ef3d086b10d8ff1a6b4e0e8d2b12a320f6c5c03623b0cb931acf667cdc77a6b3	23.33%	SilentBuilder
2022-03-30	56067525426098694.xls	xls	9516cec1ec1966ef048e5db73db64efa00188b43420a99551c9830768698b5d6	25.00%	SilentBuilder
2022-03-30	86813514452009.xls	xls	d67f14a63d4b1018b28ad7b92dc29791b1aeab26d28ce20b6ef1d538b769df00	n/a	SilentBuilder
2022-03-30	5546372783.xls	xls	d2bbd8120515b265d888b7a8f53e83db7a6b22e79a65a720d69198d989b07a34	n/a	SilentBuilder
2022-03-30	4135772275506578542.xls	xls	bfc4346b81b8cab420b161be78ca4bb5c5451f4342fe4334900389f56b8bdfcc	n/a	SilentBuilder
2022-03-30	19196892701742274416.xls	xls	8c6eee41d0ad11f2a2d7104ebd8c5b0ebdd6298f5d44e51e65e3fce0b5bab139	n/a	SilentBuilder
2022-03-30	0699196926.xls	xls	b0bb73b26ef4bb7bbfc7a11f9623721be84f3b00cab0c87a0a89597f79cc9be4	n/a	SilentBuilder
2022-03-30	169672342060170.xls	xls	4d57182432ade39fbabce23e685ff21cc1d6cf5966f8bf69e222d84d6c2176e4	n/a	SilentBuilder
2022-03-30	731283451553962.xls	xls	ed919e7317e9edb91eb7468e26cad1b08ecd328cfb669e1fb95bc2f3171b2ec8	n/a	SilentBuilder
2022-03-30	0485333313.xls	xls	0dc349ced3a964c30dbc65e647487d5692c66b5de22baed873d295f384f570f4	n/a	SilentBuilder
2022-03-30	2695466853.xls	xls	a612e9a7b8f4a08f1b73f5a7e07b586913f327d8bd789ca7ce7c1e6e80883f91	n/a	SilentBuilder
2022-03-30	2189255314885818364.xls	xls	385fc2720a678cc5b53d3d58caa225e7fa24e29c86ff6acecb609afb7659caa4	n/a	SilentBuilder
2022-03-30	677951664780445.xls	xls	51a8819534ed48bd71579b6e79307358b76ceaae81aafc73cbb8e8b77e977061	n/a	SilentBuilder
2022-03-30	812325558160.xls	xls	1b3dcc87c329e9a704c55890eced55298a7fe31f93de0dcbf15924aa87d4b3af	n/a	SilentBuilder
2022-03-30	1898216163938875.xls	xls	b1f9a8c2b79e9e80247652fcb54a87ead4d7b32c51769ae1622b94d9af3edeec	21.67%	SilentBuilder
2022-03-30	868476829177.xls	xls	30ca6fe2cdcf114cf2d4aaf09ec92ff5ef2f13a9ecf72ca8a5d37195f6688aa3	n/a	SilentBuilder
2022-03-30	6317733741332475.xls	xls	aa579d60406300305eec771b75ab3f147f1f990b8739d04b60d1b15bbbdc0809	n/a	SilentBuilder
2022-03-30	4682096158441.xls	xls	f37c6c8662785514f852d04f94ac6b2217b3c5244e84dae528f13c5b8b95daec	n/a	SilentBuilder
2022-03-30	9756827298681909.xls	xls	b8d670ca1984f7ecc9e90c4bc0c4c4d96172690aead7080171735f96c11ba21f	n/a	SilentBuilder
2022-03-29	93116819110563.xls	xls	6eb16e0690e24c1b65d09c39133e26dee115930191fbb0b6a2a6bbf2963962c1	23.33%	SilentBuilder
2022-03-29	565284633009.xls	xls	1dbea40fcbd816ab601a760ef3a43708219096749c335057165212872cf8833d	n/a	Heodo
2022-03-29	777315009592.xls	xls	d2c2f994b521bda48acab4fdb007d4fd5b14e1d30efd50a47348c9021992ff50	n/a	Heodo
2022-03-29	6728686793683380.xls	xls	24a1941927cd7d54e343a4d2eeece0639b6502fb458e92b9e9d325cb138842f6	n/a	SilentBuilder