URLhaus Database

You are currently viewing the URLhaus database entry for http://77homolog.com.br/dev-jealves/qP9ATfLKwqggHYDzeBlXatOLmk/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2123253
URL:	http://77homolog.com.br/dev-jealves/qP9ATfLKwqggHYDzeBlXatOLmk/
URL Status:	Offline
Host:	77homolog.com.br
Date added:	2022-03-30 21:09:06 UTC
Last online:	2022-05-03 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-03-30 21:10:07 UTC to abuse{at}bluehost[dot]com)
Takedown time:	1 month, 3 days, 17 hours, 52 minutes (down since 2022-05-03 15:02:58 UTC)
Tags:	emotet epoch4 heodo SilentBuilder xls

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-01	ZUV-32933347145.xlsm	xlsm	ff29c4e7acfa113d826b2fcfcc5e8dea43a58a5db3ad37376750c95e58335050	40.32%	Heodo
2022-04-01	GP-7023856.xlsm	xlsm	d49b49a18488d0de9cc4c249745163a9f744363edb3477d12357c7f58ed46a79	n/a	Heodo
2022-04-01	QNR-1076645.xlsm	xlsm	5e318e7afaeff1da0ab8f38c466b9fb4e911da7fae7a6eb58cfbab3175d51263	41.27%	Heodo
2022-04-01	FTH-02006556201862.xlsm	xlsm	989afb22d889ef10aefc7185c5a8d051fa3dd6c0f2a6a811c1a89498e293b615	38.10%	Heodo
2022-04-01	ZX-2496324.xlsm	xlsm	172069d53028518eba0b857e88be2520acea926685cda54cc456c55d3f94d5f3	42.62%	Heodo
2022-04-01	NO-3824655093.xlsm	xlsm	178e56af34b8983297784e7e795578c7567350c8ef3be2b30a43a05de59b9e8b	47.62%	Heodo
2022-04-01	QFS-365453942155.xlsm	xlsm	3cea415c72cf99f730ca00ed40940ba35c82dd2582786d91fb329459f88328ef	43.55%	Heodo
2022-04-01	QR-1472841160.xlsm	xlsm	d5e9766c94d91e4da90999a0ea0d9a7b3918973c857c7f9faca5686288b53db2	n/a	Heodo
2022-04-01	WQ-2748723.xlsm	xlsm	534f4ab246459c91599d4d14e916a2f16707134075a5a88d897105a0e782632b	n/a	Heodo
2022-04-01	HA-15992708993.xlsm	xlsm	8090d0b6d046091604553a331f669273c32d27943faae06a33b6ffda57479daf	45.16%	Heodo
2022-04-01	FUE-39798858675638.xlsm	xlsm	004f6c9fad398f8dda13f421a6faa1a78916ba04c3eabe988acd669f8cb1b112	n/a	Heodo
2022-04-01	FJ-4975155830072.xlsm	xlsm	ccd56be98c55e12bd6055a6653472e9d7f1a8847dec281a9a3b6af0ed000c226	44.26%	Heodo
2022-04-01	QO-285882818.xlsm	xlsm	b25b9d420c3585bd014abd2e590a74feab98bbb0ee612c465a5e152b28c67e0b	n/a	Heodo
2022-04-01	HK-41760476453534.xlsm	xlsm	8cfdb13bd3fba245b5e3c5a06b90cdab4f8970b13e3ea5262aeb7bd089474bb3	36.67%	Heodo
2022-04-01	UZU-720310406.xlsm	xlsm	e659479a435f37e03d325154ad864519c5a6853aac0f16d605d7560f3a4a0863	n/a	Heodo
2022-04-01	WS-66050154256.xlsm	xlsm	027cdc2c1f7a5137ca0fb9585bd5b7b98bb73c9e51073632d4101a1b533eddf8	n/a	Heodo
2022-04-01	GV-936633952.xlsm	xlsm	b95fe3657493ffd175dbb5086c90553ff09539498cc0f0f4d7964b6793dca099	38.71%	Heodo
2022-04-01	KC-053711058647.xlsm	xlsm	b42ac7850efc6c39b4c7db61d4be9a131d78b545eaaa868dab373c45bff2fd72	n/a	Heodo
2022-04-01	AD-71318218.xlsm	xlsm	f3c06e72e6b0cddb3d66545d59bef1288458f9c106ede60b0507f095971e7067	n/a	Heodo
2022-04-01	EIQ-46720729289.xlsm	xlsm	a64bc6ebec8276ca2d7c4f93924435aa5bb8f8cdf0f71601d6640108157a126b	n/a	Heodo
2022-04-01	PK-0954307649.xlsm	xlsm	b9a82fa6fb67d3ca785a7d8d842c76b3beecd65c9789af664049e029ce4e9a7a	n/a	Heodo
2022-04-01	CQE-0268983641463.xlsm	xlsm	a4653047d35b63e4cfb6020be4149b484aa5e68354d53a9da860dcc3cdeef038	n/a	c8fc17ff030feb3383d8889f69abbb
2022-04-01	CUY-1665246821.xlsm	xlsm	73dc0a16c8430b50b28054c9e0b1e54cc8174554e7b63b4e2fa4be17c3cac1d6	n/a	Heodo
2022-04-01	YPW-146721169823795.xlsm	xlsm	dcc6409e704780116523a3e6ca35edf1399b381568d26b6d0373d1d9e00be491	n/a	Heodo
2022-04-01	ELB-279921311376166.xlsm	xlsm	55af29e8285944f573d931d856bd099dac92ab1868000f8346d13a0bce7f1e3d	n/a	Heodo
2022-03-31	YQ-120186678.xlsm	xlsm	7b5aca9a82485f669d10db3cd974bd416d8c41f460a1cc9e81eb7a5ec0eb1574	36.51%	Heodo
2022-03-31	WH-12347597.xlsm	xlsm	f18597d133d32b346f94d05eb9a0865b4ed9a863e7dbcd4cbf10bb847803c37c	n/a	Heodo
2022-03-31	QKU-737748087934852.xlsm	xlsm	5144b4176d2f9e56ad483565884642378be09039de1f2a353cb355c00dfa1894	n/a	Heodo
2022-03-31	GUI-346074344.xlsm	xlsm	0e0d8dc4db15ad8d199eab417dc846552e869c3968a063d0886f02604ee42c64	41.27%	Heodo
2022-03-31	DHW-94382030.xlsm	xlsm	2fa93c2dfef003816d473094a03ffe57ed6fd6cbbd21f22831af88634fc3287d	37.10%	Heodo
2022-03-31	GO-4641087.xlsm	xlsm	c201ae0ab0516a27d14400b4af28d4189bb2c6d8b589c4fadb025c26645f19bf	38.10%	Heodo
2022-03-31	QTI-2911528384210.xlsm	xlsm	1ced9273a6ee8877064196bee5023e889b35f9c84d1e0d3a5920d438aa763618	n/a	Heodo
2022-03-31	FQ-416116061.xlsm	xlsm	c171d718d9aecb5ad1e27309660f8da7a568f9798e03d4c6683d7825b5a122c9	n/a	Heodo
2022-03-31	NKQ-282478997205.xlsm	xlsm	894658b992050ab6d7ee061f083a48264ce56c1b4fbc5ac87c142765405a47f7	36.51%	Heodo
2022-03-31	DX-40601286728189.xlsm	xlsm	fea58fae76c86e5f07c7f8b032f84174206bc489d92c49fe54a5b51d2658faf8	34.92%	Heodo
2022-03-31	KEM-1731213475.xlsm	xlsm	64c57c337892c7579a7c6d302233570e6f2450b0d0152b3b32de811347079a2a	n/a	Heodo
2022-03-31	QWT-247951505437540.xlsm	xlsm	5fe0d5c74d36af2db670ba08c72837740a66a82a2e8f0b206468474195578366	n/a	Heodo
2022-03-31	UYU-063141357260.xlsm	xlsm	2e1db4578a7534abbaeb0e65b01b0da5024a9e27d99c3a9b29b03cca35b3a096	n/a	Heodo
2022-03-31	YSF-1521346113.xlsm	xlsm	c3a5d5bc890f935056c127bdeda35cfcfbb8e292e59774a24ca5611e94430907	37.70%	Heodo
2022-03-31	GV-5470354.xlsm	xlsm	287f8b49b0107a7e303a4d327d34a8fe117d4696af06bb3bbd73d25e5a39270f	40.98%	Heodo
2022-03-31	DBG-76414787.xlsm	xlsm	00ea616ce33ef49268a2d6046f588bb73c80b7a90ae6e5e5067938d72e858564	n/a	Heodo
2022-03-31	WOA-718439955.xlsm	xlsm	a4e22b806505d549a037a67123efb6b397193d7d2ff28e32d8b73185438fb5ac	n/a	Heodo
2022-03-31	KZ-306556827.xlsm	xlsm	ecfb46439586ddfd60ed5763f7b103d7487e94bf095208d8967dd838c5a68c27	n/a	Heodo
2022-03-30	EY-732837204360.xlsm	xlsm	f6d9028f6903f57570a969a97a510120fa11d93ce778cfeac61862c36d6b6bd2	38.98%	Heodo
2022-03-30	SN-7879568.xlsm	xlsm	39bbb570609ea300f9d959dcf23f2161043c6dedc230f97e7eab2388db651831	37.10%	Heodo
2022-03-30	BQO-40965401.xlsm	xlsm	70c7353a1e172d428b42bed59b7ddb9a6d1b60c368ec7ae5eb64c0eeed368080	33.90%	Heodo
2022-03-30	QCA-177313136274805.xls	xls	6e01ff3d58fa651f18f924c8458cd62827fef98bc3e43893fb927f34b9ed02c1	28.33%	SilentBuilder