URLhaus Database

You are currently viewing the URLhaus database entry for http://cetrab.org.br/wp-content/FILE/g6yqvtcruafc3zkp_d3nr9-321490176766/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	241644
URL:	http://cetrab.org.br/wp-content/FILE/g6yqvtcruafc3zkp_d3nr9-321490176766/
URL Status:	Offline
Host:	cetrab.org.br
Date added:	2019-10-09 11:08:56 UTC
Last online:	2019-10-14 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-10-09 11:10:22 UTC to abuse{at}staminus[dot]net)
Takedown time:	5 days, 2 hours, 31 minutes (down since 2019-10-14 13:41:39 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-10-11	FA_34062078453253735.doc	doc	54ee917c5fee70417cf804f0d81516a199d237e3aebb54f89ed09e9dc11dd4fb	22.03%	Heodo
2019-10-11	RE_NICTZXGVLD19RQF_10112019.doc	doc	7bb9b68f8f2c198f14e3d91780d43c593393fe8034f433553c9f06af24c015c7	34.62%
2019-10-11	HEF_3I0U71E65IJ.doc	doc	4a913d6da563604d246a53c01a1652da032d6c6baf9fa1bfccf650635555f97f	33.90%	Heodo
2019-10-11	DOC_KHFXESUCG_10112019.doc	doc	bc6d39faad64e70a270ea4eb06fbcf05c459349b21ea6420f3a04ca23e3cfa3f	32.20%	Heodo
2019-10-11	DOC_WED167WTNI.doc	doc	edd0ab17a61f95c20b02d9c7b58ef29911fc287846fdd80d6804d7e325e6b4e5	32.20%	Heodo
2019-10-11	FA_7059069781651.doc	doc	33bd1e5d97265753389685d400934b69456479b92137b4b4ff0457e83e7aa8cb	33.33%	Heodo
2019-10-11	CH6H0ZADHZZ9Y.doc	doc	803eb60e4df6ced789199f41674ab0e5521dbb469d32ad3a2adfff2a7a2da2d7	30.61%
2019-10-10	RE_96S0Q83PN07_TJ_10112019.doc	doc	51de13d18a23740342f1c681de4cb6c2baf116f2a4df4730c5338439d05823e4	35.56%	Heodo
2019-10-10	FT_9NOUEXO7UZG.doc	doc	7a8a800c29c6e9dbf732d98fd5eccb9e78078101fee30d287dc534e83e58a22d	n/a	Heodo
2019-10-10	SCAN_56948171921_MS_10102019.doc	doc	2edaea083ea39aab08670d19867627d5516f1f78efff05973e3524c3f897a4c9	27.78%	Heodo
2019-10-10	FA_ZAGH2GK95CT_10102019.doc	doc	f61b3e7db47761a36ea24ecf8d0213a63cd82d07d84c422f46784f85275e04cd	n/a	Heodo
2019-10-10	BL_3DBSMQC4E.doc	doc	8a55de0566e608798651dff59eaf776fc3a270c09091862fe1e0a089a9a68122	30.51%	Heodo
2019-10-10	BL_VZK9WRWTCQQA9.doc	doc	705e55a252475b5ae7fa7258eb04be795347a8eeaa929dabe7660e33ed392264	30.51%	Heodo
2019-10-10	FILE_39536215027198489_XIT.doc	doc	cc82bc7177f26107263871628ac0c38e385d8f26010182f0f7fd6352221fca33	26.32%
2019-10-10	BL_6133344068756808_R.doc	doc	a9c3dd24c5d7018ede1f2c2ed330ac15462510f7bffcaaf8badbdb5a4da623ae	25.86%
2019-10-10	PT_BZA51D006.doc	doc	396d30709bc95e4e35aa4f3555c72763de26c34ab5b2eb64b1712d287da7ae9e	26.92%	Heodo
2019-10-10	FILE_W2GY0JFRMY840CK_TZ.doc	doc	6be777f2b8c34feaf939fe6e2732936d1b70f7e8a72ef9ad07bb38b42fb68551	n/a	Heodo
2019-10-10	XTEWR03RV66J_LX.doc	doc	86b8b4f6962aeb0aa7ec20cb11c345340fcbfa394b651a238e989de896065584	n/a	Heodo
2019-10-10	DYE_TKIYAMSNWM1Q.doc	doc	5111aee3697b7e6d97f54f97bb11bcbaedda8eb0a8f759e5fb491853b4352c82	26.32%	Heodo
2019-10-10	LLC_694457096903772_N_10102019.doc	doc	361b9eb186d6b5b0cb035335a8b2ed19979af4d7f407455891188860f1b82fde	25.42%
2019-10-10	RE_0SGN3DYR63XUA_10102019.doc	doc	d6ba47dba7a4b5d3edbc954990704573281e71239ffd59490f13290d2f19694b	25.42%	Heodo
2019-10-10	LLC_3RBL6GCLM.doc	doc	861d17c81ca38671d9c3e1aca61ac0e839d18c12f206a5c1f414f7f85c310cfe	25.42%	Heodo
2019-10-10	06788409933153786_MW.doc	doc	82822a6d9b3d52a07fb3de64bdeefcbe471e2fb5fa06d31452c07a7c0b71c6ad	24.14%	Heodo
2019-10-10	52191004757919.doc	doc	d6fe373d277c5f879898aabf73b8dca3dc628e78cbd2e0ac29d639e1b5d1654b	38.33%	Heodo
2019-10-10	FA_15062474926523918.doc	doc	58eded6711ac307b2b48e309d869ed1c4d88c6a23815973779b6d610704a3f12	n/a
2019-10-10	FT_28828523450174200_TL_10102019.doc	doc	3f90a20aa7c21e5d785814d6521649e9b99c8dffe61a910e5ed63f8a70bac08e	37.29%
2019-10-10	INC_2629522393_PT_10102019.doc	doc	7344c6d38f46a38419082b72d7ee3d622be05dc86c93e87f55600942b8da470e	n/a	Heodo
2019-10-10	ADQ_NVD6K8TXXEG7_10102019.doc	doc	0c421092cfe868bfc29d2e6f007bf424f8d02edf05fda335f832f5d67fa57d27	33.93%
2019-10-10	INC_OXM6Q8D9VRK_CW.doc	doc	d8eea2d3bbcc6e6e992defd69e50cdec689f66a175f05fb05f530d9a17ea3ed3	39.66%	Heodo
2019-10-10	FT_QW275WRC1N1O_OPV.doc	doc	f0229f9d03be90dd3424637d9832125d43a75e6f65a4aa5ce92fcc192b303111	n/a	Heodo
2019-10-10	FILE_4A6S2C73DMNAAM_KX_10102019.doc	doc	39cd1632dcae212d910edfea2eeb2ea7e21b1dd0a2fe1638b1f4d42d335d91f9	30.51%	Heodo
2019-10-10	SCAN_BUFA4L04NMAUR.doc	doc	b4dd04c27697f3b87422d720c09d3a81af3823ba993e20e05de8a285932f047c	30.00%	Heodo
2019-10-10	FFE_76HH0T92K.doc	doc	144d03ea075288b15252acf044fc37f946c00e044fe29ede864507d477c3129d	30.00%	Heodo
2019-10-10	DK_QVBMM1RF5K9J_NLZ.doc	doc	16aa536e17f9eae3fabff4fc9a99ee6112aa82c6bdc58dea62d7c0a44f9899fa	30.51%	Heodo
2019-10-10	FILE_219327362916193_BGQ_10102019.doc	doc	fc13915dcf6948edbe4bb35e72d68abc124fd2703b6d7cb8e54901b490010a75	30.51%	Heodo
2019-10-10	SCAN_85403635031492337.doc	doc	88177b5b39ed84cb0d01934549e1af17f39273dc50302d920fee4bb06932ec5a	30.51%	Heodo
2019-10-10	SCAN_68369739560_Y.doc	doc	d83997e478df2c6fb110487f2456e8174b3ed5de8e3d7d09a91cb50f025c9805	30.51%	Heodo
2019-10-10	FILE_931360173585682_K.doc	doc	e333768e423c4aa3e8d064045ab3245ce04700293b0ea520ebf5e5475ebf8da4	27.12%	Heodo
2019-10-10	NB_5653134493080555_XMS.doc	doc	c923b3272f267788fd3b9324de97192cac0839d72c742b492a6a5e8240858548	n/a	Heodo
2019-10-10	HS_2045408568726544.doc	doc	795a55ce16a6e032f51bfc5db65f4051a3c0df955a50e17a6bde4cf2c907d9e6	n/a	Heodo
2019-10-10	FAH_6759279380024_10102019.doc	doc	4f25f7d86cf0f77dc97ebd3184a7e03e8da522ad421766bb559b8f928e53cd45	27.12%	Heodo
2019-10-09	BL_KCG8NLHCYPG.doc	doc	f93381722b5ba7d4ed93d0c44fe08cd794574547d97eff11ed814b0ec18273eb	n/a	Heodo
2019-10-09	1354497052_E.doc	doc	ab90dea096c0cd0114ae6aaf4fa406b524a5f503d2a5188a7742403c8cf48a33	28.81%	Heodo
2019-10-09	INC_DMZH062SWW1S3W_PL.doc	doc	688b36ddccba7411cfdd5b7289f698cc1a0eb9f0f22fe9313ac4a97706067b08	25.42%	Heodo
2019-10-09	LLC_10344700612699_JNO.doc	doc	72e80950c7a2f21ef7f6934e4fae280f8401fe83de4d6995fba8e0dfc559ef53	25.42%	Heodo
2019-10-09	SCAN_59831648066630069.doc	doc	57f050a32c6ebd5ee2dfc81069588a910df9917b9770db07d84b5242629fa012	27.12%	Heodo
2019-10-09	DOC_47927582805596_R_10102019.doc	doc	d0ec402c6420a7a773c4a95acccdbde2f4ec2bb5bf3b1b13f86e8e762a37bf7d	27.59%	Heodo
2019-10-09	DOC_944659827467.doc	doc	fef5ed7ccc45e820a028b0aa5cea44e51a384f8e7ab6bc5632f33d51d64664e5	n/a	Heodo
2019-10-09	DOC_YG53YAY83QOQ8_10092019.doc	doc	a5535ff40bc7807b8dffba53e8a2a6fcd2e9bc12d545a7c0618797d4c27d7eb4	n/a	Heodo
2019-10-09	UZH_896698468291566_DAU.doc	doc	7222676fa925ced8216a6173b82d365e994e644690b628d33102d13d6ddd37c4	27.12%
2019-10-09	DOC_0198450262_10092019.doc	doc	864b8b9d2b33b2902a9795d894be4833fa1e1fb62c79b45dfa292c8d5b2d5fde	27.12%	Heodo
2019-10-09	INC_32651399077935888_W_10092019.doc	doc	8fd04ce2418fc4baf9ebde360fa250cbafad34dd67dea5afe4f317779679dff2	27.12%	Heodo
2019-10-09	3930225481737.doc	doc	61efe2427662ff044fd5f42ad21f4d1ec5dfdda0f6c922bee558fa9470ff240f	27.12%	Heodo
2019-10-09	LLC_G4HXR9ALBN9W_KL_10092019.doc	doc	7197b03dec44235f9e44560e18fa14b02f7021e2f2ffa5ccafb39fcd415e8aac	27.12%	Heodo
2019-10-09	DOC_54410872561.doc	doc	f57b2904d665951603a281dec44425965ca87c15f90a0f5f8282b609404b3a88	n/a	Heodo
2019-10-09	FILE_61085935648834.doc	doc	af14bfdb6fe9002449434de0b75a24bb254d2257423f1503e64f9e95e1ec11f1	n/a	Heodo
2019-10-09	FILE_QQUS14QMTKDV.doc	doc	072a7e6f654adb46e871bab6b3e6a43a8021ac60a7cb4f1659596b79fac0d5db	25.86%	Heodo
2019-10-09	FA_PGFUHFBX32YZS1W_VB.doc	doc	717415998233e6c11784a3d7de4c81cbd1cf1631e0c7c37ad2fca26d8c8f4b03	25.00%
2019-10-09	DOC_55922105128104893_10092019.doc	doc	bb960450c2b0089d24590ccdf5e9771f674257b38388afc26d4fa195b60acd7a	25.42%	Heodo
2019-10-09	INC_RUJYUTZEILFAEUK.doc	doc	ab47a7deb307f5d70096f44b7698c17c814d0cc9b37dafebefd1759b64ced6b8	28.07%	Heodo
2019-10-09	WCA_IHROW4D30SM_F.doc	doc	197a06f462b11d818f1efb361aa61425dfc0a7264d40deb8e3890fee1271d6f1	23.73%
2019-10-09	SCAN_004281727144575.doc	doc	83b5e481119a6df670ccf18d3a18b16d8d44c503fd15dfbfe0cb43afdebebaaf	25.42%	Heodo
2019-10-09	INC_5BIBZYHJJ320XMO.doc	doc	8b5db5a8fb38b8ae91a42ef038d1a9404dc3237c57cbf208ec17cb80b3440dcd	25.00%	Heodo
2019-10-09	SCAN_73264209826795.doc	doc	9a1c2f37c694cae03eba825550a69d528d43f0f157df9dc83bd893d3e4b79ec6	25.42%	Heodo
2019-10-09	OT_TY07LTF77HC.doc	doc	051e6598ac379949458a7cc477846784ec21a6c5d4050395a87851db626becd1	25.42%
2019-10-09	SCAN_9SZBHQY9M0YQW_HKM.doc	doc	6b402b98e05150b7cd6cfe353232c9c90edc357c900487e7fd60adcc2b4ccb66	18.97%	Heodo
2019-10-09	RE_LVO79K8L0.doc	doc	1aff2e97b2120bfed781b58989d7b9ceaec3ffe671622a0301ba4d72b20dfeeb	18.97%	Heodo
2019-10-09	BL_DJEEDZDSKET_YVQ_10092019.doc	doc	e7ff479f4adb4434b10983fc64d9f5d442da4427792a66f2ae4f4e47bfbe7391	n/a	Heodo