URLhaus Database

You are currently viewing the URLhaus database entry for http://ftp.cgmma.com.br/erros/RikCkT6uYJR1l3aIdQvlJuY6Zlko/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2120608
URL:	http://ftp.cgmma.com.br/erros/RikCkT6uYJR1l3aIdQvlJuY6Zlko/?i=1
URL Status:	Offline
Host:	ftp.cgmma.com.br
Date added:	2022-03-29 21:51:07 UTC
Last online:	2022-03-31 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-29 21:52:07 UTC to abuse{at}hospedagem[dot]net)
Takedown time:	1 day, 23 hours, 4 minutes (down since 2022-03-31 20:56:07 UTC)
Tags:	doc emotet epoch4 heodo SilentBuilder

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-03-31	AI-9271297.xlsm	xlsm	7ca9c48ab76e34256ebad65fa28f1eb8b3da601b413e19e03a1442046b3aefea	n/a	Heodo
2022-03-31	CT-56725791685302.xlsm	xlsm	75f0362196443080531377973dbab9153eecc5ae78da6a2e94b492580d2bdf7a	n/a	Heodo
2022-03-31	MRZ-00120752973.xlsm	xlsm	896ef5fb12bd10c84fa96213d6a86aa368388e4806b9c882fd601a113482ff74	n/a	Heodo
2022-03-31	AR-7535568702.xlsm	xlsm	36828e7a04990e1d0b2b67ccfa64ea170ff92c77cf92107d904f1e106c1d676b	n/a	Heodo
2022-03-31	ZKB-2826500534486.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	TM-7039440907.xlsm	xlsm	a7ae8fb40c5d93e9ddbfc68b000b65ba19b085e7a19d3a5d9bef1c243a6add91	43.55%	Heodo
2022-03-31	YIW-89331515.xlsm	xlsm	b034cfc88c6603dc0f5519ecba2dbba8c5382b26b8c25da23f8d40368ce8e7b5	33.87%	Heodo
2022-03-31	BH-436647064475.xlsm	xlsm	2e1db4578a7534abbaeb0e65b01b0da5024a9e27d99c3a9b29b03cca35b3a096	n/a	Heodo
2022-03-31	XT-495082566291.xlsm	xlsm	409e55effd488af9a3d098060e33fe5d66743135fc711a07d6ce4c57e2f2c2bb	n/a	Heodo
2022-03-31	AJG-417617484128308.xlsm	xlsm	00ea616ce33ef49268a2d6046f588bb73c80b7a90ae6e5e5067938d72e858564	38.10%	Heodo
2022-03-31	UV-06281817.xlsm	xlsm	764d8e72174b0666952016caf95096e85219dba6554a8ce6db74b8244b3e7590	36.51%	Heodo
2022-03-31	RBF-56362546674439.xlsm	xlsm	4f1ab8d0a0a6f8a7964b32b8a4bdd94bad95e6774501cf7685028a40efc761e2	n/a	Heodo
2022-03-31	OLX-57336440110.xlsm	xlsm	162637428037d1f8f3bd675b122e5b830107b9ea7352c8c765e97a3afbce1231	n/a	Heodo
2022-03-31	WA-56582326.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	HS-934285446.xlsm	xlsm	f6d9028f6903f57570a969a97a510120fa11d93ce778cfeac61862c36d6b6bd2	38.98%	Heodo
2022-03-30	KLZ-623965087.xlsm	xlsm	39bbb570609ea300f9d959dcf23f2161043c6dedc230f97e7eab2388db651831	37.10%	Heodo
2022-03-30	OI-935653166752304.xlsm	xlsm	96fac13010c22cdd9510ed06c70ed29257b59aa3fc3be17a9515bdcf3596aa51	n/a	Heodo
2022-03-30	VR-904125863574830.xls	xls	34c12fb797211966f38e1025e683ec8ecc00b70e39d5f463213f7b09eea896c4	n/a	SilentBuilder
2022-03-30	14231757534441006194.xls	xls	00f6421fe8f4847be025bde29b82ccb92d3bb76d95ca4d36c6b87d9f173d3d01	26.67%	SilentBuilder
2022-03-30	90282215638915557.xls	xls	afab90f284e5f643a8fa8a6eafd154175a22394254db310f0dcddc607a5ed468	n/a	Heodo
2022-03-30	3565757172960.xls	xls	de03ab1d198136ce8f5fba27d87ceed99696fc46da6cb9ce7614b3824e02dec1	25.00%	SilentBuilder
2022-03-30	02045206293.xls	xls	248cd85fd7e892435c33370e5ac93d3fe53595ae7358e2e12af1e9f453697513	25.00%	SilentBuilder
2022-03-30	17849784761870414519.xls	xls	108d9a103375064db77c645ed840a5f24d0211c046985fda1898a464c31a742a	n/a	SilentBuilder
2022-03-30	6132280563.xls	xls	b2565c24c9c72461d71c25df5d6ea291c53cd27725217f8c6585653cbdf72648	25.00%	Heodo
2022-03-30	10891788508767828.xls	xls	82dd13809bbcd68f4c4cb0b98c2c979c8275fd86dfaaeb01eb3c1e17d6a3d990	21.67%	Heodo
2022-03-30	89286987764578032315.xls	xls	ebfa044ba6f3aeb955776b3c5565296472f0f8f6ed2dbb78c25c87f8107de4f3	22.03%	Heodo
2022-03-30	92565748810278545.xls	xls	51cf8f6f736263047c2f947bf40da516a3cf74cefce2f1aebf9b5a71406b2f51	21.67%	Heodo
2022-03-30	1671286875363.xls	xls	d2bbd8120515b265d888b7a8f53e83db7a6b22e79a65a720d69198d989b07a34	n/a	SilentBuilder
2022-03-30	5592504849466812.xls	xls	d165b715b1c473df33c059be50a8eec754b9dc819ed59230ab9c74e352584753	n/a	SilentBuilder
2022-03-30	80406430545419819735.xls	xls	ee0751444c28714ba1f0d4228dbfcee7ee0d8fe35176d8ab8ad52fe2d0eca562	n/a	SilentBuilder
2022-03-30	9151943082454132459.xls	xls	15b8f817ad756bd04cd33d34f0a4670b25afa33c7ab59f37b322284809532d05	n/a	SilentBuilder
2022-03-30	2916976787380.xls	xls	06ec7d1a1a19dac000cb1932a8aaf93ab8f9133a5de6800f084df77bd90cba5d	n/a	SilentBuilder
2022-03-30	59235583222129371.xls	xls	ed919e7317e9edb91eb7468e26cad1b08ecd328cfb669e1fb95bc2f3171b2ec8	n/a	SilentBuilder
2022-03-30	1356775645005214.xls	xls	f30f9c9233859f2549dc271d14fd86bdebcc72c70e9c51ba4606b75cbf745473	n/a	SilentBuilder
2022-03-30	09249840726633.xls	xls	66115ef823bbc6b8007ee6b6508af174566899af8df63ea1f6707b293153f2bd	n/a	SilentBuilder
2022-03-30	4505655091533.xls	xls	7d9969135b930be92c93aac7e3057b98410a43fd0af360ee02b88b9ad570d116	n/a	SilentBuilder
2022-03-30	9941450285549.xls	xls	51a8819534ed48bd71579b6e79307358b76ceaae81aafc73cbb8e8b77e977061	n/a	SilentBuilder
2022-03-30	802740246225.xls	xls	fcc9433ef4577609340bc031159a9d1329e9f97cd05dc2093d12abe1857691f9	n/a	SilentBuilder
2022-03-30	60374755142091.xls	xls	8fc9e8a1e3d1a19ff9fff8c201ffa5db5b8a718f5c8841dd24bb802739f32d07	22.22%	SilentBuilder
2022-03-30	7245478378.xls	xls	0ef1d87a8603f19dbb5c1e6352e3668afad3b3c384b0d5b3dc198a3b9786a318	n/a	SilentBuilder
2022-03-30	473000029922.xls	xls	7254be738108ec8b2d0ba70621713ce3174ab181e872edff03f9abf160bc1b44	n/a	Heodo
2022-03-30	6001624636371.xls	xls	50c3d5a37ccc9d63435cb5ed56e8a758234f55c42f3d8a90c12fdde81ae649bf	22.03%	SilentBuilder
2022-03-30	49582805175.xls	xls	11388ab6a5ddf4428f702631f9c917387a0e41810a583427274cebbc73845ce4	23.33%	SilentBuilder
2022-03-29	1512230429576.xls	xls	3cd17e7df9642d09bd3d735e259ca8f9c4ff061f1070a601f3e638df5fbe1647	n/a	SilentBuilder
2022-03-29	9564031432457.xls	xls	d97c0128350e74d1f6eaa63deb4da2dcfc20f1f9d1f8e05a02f32edb9291290d	n/a	SilentBuilder
2022-03-29	29907415901.xls	xls	3e97f09fc53890ba2d5ae2539b5c8df372ed2506ed217d05ff2cf8899d15b8e6	n/a	SilentBuilder
2022-03-29	8576690082995590196.xls	xls	6741b0effa1844c85e25015d8c01ab0330e793dc563cfe2977746f5eb7a37fd3	n/a	SilentBuilder