URLhaus Database

You are currently viewing the URLhaus database entry for http://ghostdesigners.com.br/senna/nS6TEkXRfL-rC0e6Z8CWNc-box/guarded-cloud/2659172096764-E5u6txmyhCVffFt/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	272200
URL:	http://ghostdesigners.com.br/senna/nS6TEkXRfL-rC0e6Z8CWNc-box/guarded-cloud/2659172096764-E5u6txmyhCVffFt/
URL Status:	Offline
Host:	ghostdesigners.com.br
Date added:	2019-12-19 00:40:06 UTC
Last online:	2020-01-14 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2019-12-19 00:42:02 UTC to abuse{at}hospedagem[dot]net)
Takedown time:	26 days, 15 hours, 1 minutes (down since 2020-01-14 15:43:12 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-12-21	new-12212019.doc	doc	4f3d263ad80f53f48ae5998616306f43e7694c970be3c50cef65a433bc3143aa	37.70%	Heodo
2019-12-20	newest release n30om633n.doc	doc	8465c1ae1e1efd9b35e631873245f8cd88a15e884ace87b68eaa2d407dc3b6fd	33.33%
2019-12-20	relevant-release IQV2225579-0196.doc	doc	399194bf5a65f66bf7d130c1b73d5c5fd4cac3743ceb388986e338a04725bcea	27.87%	Heodo
2019-12-20	approved-info_12202019.doc	doc	0a430db8f97c853692ab17929306a7a3ac9523448c878e51c0fe7a1665833f24	27.87%
2019-12-20	newest_original-076088750101_581145.doc	doc	8ab0062b0f2ef3962a8a32c49b92c3da0166b5150d5edb37aae325f2a54078a3	32.79%	Heodo
2019-12-20	relevant_12202019.doc	doc	7c533c72f2bb828c1e86ff5ac3481016e056f89e11f418ea2881fb8207bda4d4	29.51%	Heodo
2019-12-20	correct-part_12_20_2019 787568069.doc	doc	6054209ef8d53dafabfb03023d236d7cdb010a33e35f45f11280ef331d7315ed	27.42%	Heodo
2019-12-20	fragment LZ6572673850945 5644117.doc	doc	d6cdc0581d304d753f631e26b8bc0d994f119f132a712b99fe51fb146debe158	25.81%	Heodo
2019-12-20	greeting-card.doc	doc	ba5df276a95a559d5660e2576bb1bd433d24bb16aff6d598f399c94ac0c1de12	25.81%	Heodo
2019-12-20	final-original 5R828945518.doc	doc	51769ec4d4a32038ae94386128813f3d8d3f9b4e5abd02e596758ca9e2fc69bd	22.95%	Heodo
2019-12-20	final_original_ZWY6222955972-65903.doc	doc	e418fbb8c1f0b450a5ea6ab4de380b1e3a361440050c0d2fb9850177441ec84e	22.95%	Heodo
2019-12-20	new file-12202019.doc	doc	4fa69a6e2bd147fed055ce29ac3da808c8b02490daedce960863bf3bb908105e	23.33%
2019-12-20	new payment_5268411032920.doc	doc	d45748d8d626e9e8684a0be1dd6c2c228bb8fd8f99a11a626694f3148f66572a	22.95%	Heodo
2019-12-20	new-12202019.doc	doc	a35d23968eae8e3f9825a4f02cf04ddeccba1700c9cd890ac37ede3ad01c9976	37.10%	Heodo
2019-12-20	invoice IU4942-107632.doc	doc	6e5072f64657ec476491b85f1522366eb46e5b23dac47259abe2bd34a2e7e5f6	33.87%	Heodo
2019-12-20	release-12202019.doc	doc	7ed9ebfe018acd4a099aa43009acc6eb790e741d8ad9b0254e3a951071824948	33.87%	Heodo
2019-12-20	correct-859n611n.doc	doc	86930444fe82272962d8e890a5eea78f55fbae52eeba7ef7c6415bf80a2bdb56	32.79%	Heodo
2019-12-19	last-material_12_20_2019_CA215387.doc	doc	ac9ba0e203a476c01aaaf83135bc6ea60113d473eb493a04cf01c6885c729c4b	32.79%	Heodo
2019-12-19	Greeting-Card-2019.doc	doc	fc110dff7efccb57e0a3e950ec1eed6021914ef8089083ce0243f2e9da2c7c23	32.26%
2019-12-19	ChristmaseCard.doc	doc	d394ed6a30ff8bd2c2812675561d9662c72ea9d8c987dd329046f0ecfdeb9177	32.76%	Heodo
2019-12-19	greeting-card.doc	doc	38228d35350b8cc46377671e6c82da104d71567808173fd99063d63b506488ea	30.51%	Heodo
2019-12-19	ChristmaseCard.doc	doc	3e503c9c6f63ffc6a19412072ceb0b2fb5147dfbc484c39005061e954a0776e7	24.59%
2019-12-19	Greeting_Card.doc	doc	24e179433d71db6342574fcfd773f0be4f8e674faedfa4b2366dcea8eabf72a0	24.19%
2019-12-19	Christmas_Congratulation_Card.doc	doc	737b938912c804410d1432157b4700e4a062e9a8b8070b4f81107cc6c593b404	24.59%	Heodo
2019-12-19	Untitled m5p30n9kwuw7rn5.doc	doc	db9bfe2c7e0ebd2aa95569ed9992dd704eee255a25741a6a1f5b48db58cd6a47	22.95%	Heodo
2019-12-19	COPY 12_19_2019-43C5571592.doc	doc	df0c6477bbad003cae5aa4c6d82e9b322fc079c3cd62e7a96f52aeeca677d402	20.00%	Heodo
2019-12-19	list-12_19_2019_C024871033.doc	doc	1612cd9b94f1c335969ff73c085dceadf11615bc296caea41c9628fbab30d5e2	21.31%
2019-12-19	12192019.doc	doc	5324e7e2922c5a28faea5704e5b985ddf3d864b0b427c57fb0ebc707b68c5bc5	21.31%	Heodo
2019-12-19	12_19_2019 G334025426.doc	doc	23eba3429a21c5e63057883138a850ee673c9d433478a5a4b92c58984f4de218	25.42%	Heodo
2019-12-19	PART_12192019.doc	doc	cfb32bf801d79dc89345097087ff2df183cc8c4e0c3dae4818e3a018fcfaf745	22.95%	Heodo
2019-12-19	STAT-12_19_2019-E83695.doc	doc	c210204d6411280873f3e8fff2e0b1e74107270be73763cac1702b16231cbf87	23.33%
2019-12-19	050979607.doc	doc	05a8a3f3f3dca19f1acc974e96a89516094169ba8aab2298558f2252b084018e	22.95%
2019-12-19	12_19_2019 311349.doc	doc	fa11188c7932135a5835f091c552af9adc4301f1fd82eaeb542af892bca94ae0	21.67%	Heodo
2019-12-19	sq4wn5un.doc	doc	35b833827dbc56f1fa4b6720b9771c3e7b27459bcb17bc1214c0acce11dc940d	21.31%	Heodo
2019-12-19	part-12192019.doc	doc	8a375c796318cfaf7c7ac3c524f9c401ded50195b94059176d97992ec3832da2	21.31%
2019-12-19	Untitled-file-709184.doc	doc	cf65b38b2650623e1361a482d1e8e8781019d7a29cb757cf79c1e276583838a8	30.65%	Heodo
2019-12-19	list-BH74194_13821.doc	doc	e3b8b39aa821af3e0c5ff412f47631916e45f432148625981509b7be707054c8	24.19%	Heodo
2019-12-19	Untitled-2v8t6l9p.doc	doc	33cfcbc524f3cf95c916111345c6ae43790b0b00195d64b778fae42e8ff8bd19	25.00%	Heodo
2019-12-19	file 12192019.doc	doc	29b09a38dd8a80d4166fa0bd02fc00380f70cc097cffc0eeb9d33e8af35e8b62	24.19%	Heodo