URLhaus Database

You are currently viewing the URLhaus database entry for http://extelcon.com/test/cerrado/zd_il6mbiwwleka7nru_disco/93433_LAe8G5O01iJ/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	420304
URL:	http://extelcon.com/test/cerrado/zd_il6mbiwwleka7nru_disco/93433_LAe8G5O01iJ/
URL Status:	Offline
Host:	extelcon.com
Date added:	2020-07-28 00:58:09 UTC
Last online:	2020-07-31 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-07-28 01:00:05 UTC to abuse{at}liquidweb[dot]com)
Takedown time:	3 days, 14 hours, 32 minutes (down since 2020-07-31 15:32:26 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-29	mensaje 072020 7675.doc	doc	ad228ab027631c16a85fbde6ed443dee6852a21c84abb6e34d633c962ef1f41e	28.81%	Heodo
2020-07-29	DAT.doc	doc	8bb634c8040c0dbdc8103c0bf90ca21e4ff6d65b9f63ed5a317b6e676ed0c7c5	n/a	Heodo
2020-07-29	Info_2907_072020.doc	doc	201d5cf6e6de292a7fa7914d5471ec348f2b134b2e961d666cf19b262570e100	27.27%	Heodo
2020-07-29	INFO-2020.doc	doc	c2e47faf5a472c7ba02cc29a36639663e9c4f7c1dc0b73da066050da0fc0c17c	27.12%	Heodo
2020-07-29	Archivo.doc	doc	4cad41a2c94580e73badd4c35c2282597f7708204d5214f88c3f9972e3d99bbd	n/a	Heodo
2020-07-29	0019-2020.doc	doc	9890475f020efa660854e167de44045852e57c9a202a1ed39fba865070723598	n/a	Heodo
2020-07-29	44 072020 8_2100.doc	doc	2376e8d554f014b53f97ab04db0649032b1f9cc4a949c2a37e4c5c7ce04b576d	26.23%	Heodo
2020-07-29	KPT5989582-072020-76_1983.doc	doc	6a8bb6e77fb312e9755b5119e1f2d52a58b9f11f1ffdd96eb7c937a0307cc6a7	n/a	Heodo
2020-07-29	file_072020_57/38416.doc	doc	2358e95d172df16e4ee84738952acac2857dd1c6ca1fd8d4f5a1cd6d3dec5b74	45.00%	Heodo
2020-07-29	ARCHIVOFile-969_066378.doc	doc	75054d37db4cec9d1e647c93b7d5eba72b29c8e8f3664263ebb4f48775c07710	45.00%	Heodo
2020-07-29	41 072020 124881.doc	doc	4b508c6d30fa76b1274e65fe98fd3cf85ac60efa92bb9bcd97aa745fa20ca465	45.00%	Heodo
2020-07-29	ARCHIVOFile_2020_44_714931.doc	doc	3178a60156b44854f733f1807d6006d8fb5b9f79bcf3b06f84e70fd6e6be1635	45.00%	Heodo
2020-07-29	Adjunto.doc	doc	f89b0ab3a3817bdaaca98ca6ebdd47fea5c4ee59872c90a4fccc23463d192e52	45.00%	Heodo
2020-07-29	97252358_009_084872.doc	doc	2d0a50c2b71293e0d232856f5b99127f9a871bb9e7e2a731280462f0f48ad966	44.26%	Heodo
2020-07-29	file 3-98362.doc	doc	31a705c847b5a8e8e18857c0a1b1fd7ab4f65ad44d4d860c12c2001c25c67fd7	43.55%	Heodo
2020-07-29	Documento-DE-36819419.doc	doc	dc9ed541230e97a30f45695e066b67e80728f6963ada93b7fb8d9617a653857d	43.55%	Heodo
2020-07-29	INFO 29 072020 NQA/19528337.doc	doc	69d9c2636b810aad6ced6aafe53a2425b05e93f1a62ddbbf9d09b352cec0271a	44.26%	Heodo
2020-07-29	Documento_072020.doc	doc	915ae2165210e21055c3ce6e6c455943b75d0ab07c690a48d810bcf2ab79d0f3	n/a	Heodo
2020-07-29	DAT-2907-072020-VD/369624.doc	doc	f108b93f8a51197e20952752105e589dac418d57b106df142a474ed7f8627354	n/a	Heodo
2020-07-29	FILE 29 072020.doc	doc	4939104d6ac747a434d08a86353fdba0f99fab4fdfc1fe2791945d8bcb3f8482	44.26%	Heodo
2020-07-29	07990_435/1377.doc	doc	b1694404ff4e0dae6ea880bf9200e1c9df0ff1818d7e3d5aa816aebe7aa4a8f5	43.55%	Heodo
2020-07-29	69933_29.doc	doc	53f3da92ee3ce408ff2015548c4b05bdfd2bde5a32397c042bcf1dacd802fab8	41.67%	Heodo
2020-07-29	84513.doc	doc	87f39e22654ef1ce46b3b78df7085ad350cee20210b2d1aa473fd2991126eb43	40.98%	Heodo
2020-07-28	Documento-2907.doc	doc	94ddcb3d527aa945321d1e706a0d7cdebe9b0380b2ac33918e02ae142da93a34	42.62%	Heodo
2020-07-28	Adjunto-072020.doc	doc	560f5cc2d9a6a987bec2c57b8cacda03229c7f0fcd7542b764adc99d5f7e2f2a	40.98%	Heodo
2020-07-28	Adjunto.doc	doc	c8ada972b3fdd490d032ec05fa07067848d049d418cb998ec26c55fb881520f2	40.32%	Heodo
2020-07-28	Archivo 2020.doc	doc	b08aee092cb3defc671949d65b32da80150ad60e64554f24eb25bea83ade4708	40.32%	Heodo
2020-07-28	Informacion_JG/684695.doc	doc	bd5cbc8583305658dc0266f8fbfced9e57e41d459fb3120bff3df95fcacccba9	41.67%	Heodo
2020-07-28	Documento.doc	doc	72f514c9b5ff43fc2761d9c920fe4887a49804763132cc32d82774ad05a1732e	40.98%	Heodo
2020-07-28	Documento_072020_HFB_126016.doc	doc	b6277264511a02af2111a576b9bb860665865b9fbdf30b99add2b0f5aec1f307	n/a	Heodo
2020-07-28	FILE-29-39947.doc	doc	e57fb1f02363f851607b32a8ce3fb93bf2a12acbecc0c649d9ee5b83fabd3d97	40.98%	Heodo
2020-07-28	18 28 1-72061.doc	doc	fea74ef73aeff3c000de4d0fb83881380d352b00842be1eb8bd91a4e991e7705	40.32%	Heodo
2020-07-28	ARCH 2807 2020.doc	doc	539ff641f2ad4aeff90b35b5fd17121ac44fcc6081483bc9d1903c33c99b8d46	40.32%	Heodo
2020-07-28	R17930.doc	doc	29a7137455b89bdebf29ad563be2d14d562fb893592105905684cad22b3b7691	40.00%	Heodo
2020-07-28	Archivo 6/1096645.doc	doc	512e1272b8fecfa6ed817f3034429a7d7bf2057092dc4d58d78adebc2e4ea13c	42.62%	Heodo
2020-07-28	Archivo_072020_36/77751.doc	doc	7dfe8c017d0ab4f45bff8329eac5216dd63d5f32323126740cafcfcab0444082	n/a	Heodo
2020-07-28	Mensaje-2020-Z-5618.doc	doc	b2660bfdc637dd30977a0d2353b9c9dd6d75cb409d1385a65d6f0ab621d18e63	42.62%	Heodo
2020-07-28	Adjunto 28 FE-08479767.doc	doc	687cf32a1f55ee68a9a7bdf43a0e0598aa7275cb6d10eb00d88d226f4e8b36da	41.94%	Heodo
2020-07-28	419_28_0811.doc	doc	2c08dd8d76220e75360438dfc6211357fe013525c32c839df3070b40d0f211f6	45.61%	Heodo
2020-07-28	1902 2807 54-004969.doc	doc	0081319dd28e168071c4515c299698a8bd64da6089ba663e300aa782d4195f88	41.94%	Heodo
2020-07-28	Info-2020.doc	doc	a785e89b0383e1503dbb4e3705ea8f23a377fa2613444a79f1b4360f34ec3d1d	43.33%	Heodo
2020-07-28	Info 2807 NQ-925991.doc	doc	1151e7ac96e0e3b70a1ffaee5c9b97aa4aed6e2140e17ec6799b568a578c2870	41.94%	Heodo
2020-07-28	Documento 2807.doc	doc	bb1a783ca7ceb60fbafee59659899b8820163e4240f492ffd1be70942f2c11e0	43.33%	Heodo
2020-07-28	ARCHIVOFile-2020-OC-02584.doc	doc	7062f6009b062252fc3dd1ea29d46265a166398e42cd997b8a8f72b1bb231350	41.94%	Heodo
2020-07-28	435274 2020.doc	doc	45261cdb48919132b134b190e6bf3a8d25027a224985b567f0a97ec33a4641bb	41.67%	Heodo
2020-07-28	Archivo-072020-07748.doc	doc	3e6bedc906a69aff43fab9f79f7e1eaa50c23b8fcf6b3cff3238c7560a3e25ef	n/a	Heodo
2020-07-28	09467068_072020.doc	doc	4e002c98acad5356bcbe4c771a68f3e3e04aa91c9027a664dac74191c361fbc0	39.34%	Heodo
2020-07-28	ARCH-072020-Q_03366.doc	doc	692e22a30f0b10567e27ca14e5502f9ea96a69e9a58c179252f8e174c0f263d0	n/a	Heodo
2020-07-28	27-2807.doc	doc	f1d57605a40b68b680448c915d43de5ee6a2d1b3622a56112eefa6cbca8e28f1	39.34%	Heodo
2020-07-28	Mensaje 072020.doc	doc	3ba184b2de88c686683e25f96b41d6d46537b86b857736459e286253a59c4dd2	40.68%	Heodo
2020-07-28	Arch 2020 O/8473686.doc	doc	4545350210bf1fd8b012fbac3ea72c145dc9d12457597946a9e2b1c167659bfa	n/a	Heodo
2020-07-28	Documento 2807 303/22598.doc	doc	c886af6a164ef32164d83f2dbaa1d353aafb9289858ea9bb2e78674b4ed9e632	39.34%	Heodo
2020-07-28	mensaje.doc	doc	49a829db25a031f897c810bec82adf3f2af0166b1d5043dcec07db0ba72546b0	39.34%	Heodo
2020-07-28	Mensaje_2807_2020_BCL/6838.doc	doc	7c76382a386308e490c7bede412bce41103071c93c2908cb1ab8489eb302b31f	39.34%	Heodo
2020-07-28	Datos_2807_2020.doc	doc	0086265c2f4da7654f02494ee0cbf199fc621cd86d4d0b7ed80b5af62252209e	n/a	Heodo
2020-07-28	INFO 2807 KY/2635275.doc	doc	d50606e53c27b5e7138d2be53d6a9a60ff578c5435394e7abd8692d19a31f013	39.34%	Heodo
2020-07-28	MENSAJE_XK-722386.doc	doc	13824696141402fe137e5e58955f5c27d0c6921c9c6d1111ed0d2fb0214d03b3	44.44%	Heodo
2020-07-28	Datos.doc	doc	9b99486eed10794305fde884a8485b04d32bbf215cc45559bcd7e74ff2a753d6	39.34%	Heodo
2020-07-28	Info_2807_2020_723_0483828.doc	doc	cf18e1a6342f94e888186b84b0c81c120ab3cfcb3023234fc4ae013dfafe734f	38.33%	Heodo
2020-07-28	1956 2020 869_0121.doc	doc	8ad5258045f9c1ec73dd06d74b5b6157a12c15166fa0c8e2fc8106e78227af6d	n/a	Heodo
2020-07-28	Info_28_PUW_51225.doc	doc	231a0e9672ea9bd8a4425055e34051b2105ffbfdf3c2a40ba5677eb17b36cfd2	37.10%	Heodo
2020-07-28	Info-934-43764819.doc	doc	e4f202476429f6ff5d69372983be2a0efe9e6ee8dfe8f2f466d235974421b2eb	36.07%	Heodo
2020-07-28	MENSAJE_072020_8-5304.doc	doc	9a607d7180b06b7e61ac102458c6319f79e974e4bad33d27ee757a66c18f7f11	36.67%	Heodo
2020-07-28	049019 28 2020.doc	doc	c777c2cbf20f13d04f0e4c21bd8ba2bc44cea5e4b2992ae58a6d6dfe6fb53465	43.55%	Heodo
2020-07-28	Arch_28_S-03477020.doc	doc	6387bc4484750efab15cb9bc530a51f91ce86e20e43c10d496b70b4e3afd99bc	44.26%	Heodo
2020-07-28	2218720-28-690746.doc	doc	016d35e74af3e0f39c21c51cc13daaa14078437e8b3b01d09f9ffb46f64551e0	n/a	Heodo
2020-07-28	DAT-28-2020.doc	doc	f17c0f459fab0492c863e99c1a5792ad48d11acddb5e049a6b4c39f99ce8b344	43.55%	Heodo
2020-07-28	info-9_97184331.doc	doc	36a2dcdbe270ab3526bdea28407cfdec949c82215605a7d871c95f6803ef2eb0	n/a	Heodo
2020-07-28	Adjunto.doc	doc	c2c286c513606c5ebbc5bad98047dc2c6887966b0a3e972c7fc53bc25e1584be	43.55%	Heodo
2020-07-28	MENSAJE-9606.doc	doc	1a96354d5160003954ee2b2cda62e5aeb5d637ff5783111aa169ec5c84b4a422	43.55%	Heodo
2020-07-28	ARCHIVOFile_2807.doc	doc	4ca4d1e4470fc34af7ba6930b887d43ae19fcd3a58253e8e08dfca1543e49c7a	44.26%	Heodo
2020-07-28	ARCHIVOFile.doc	doc	21dce6efb379371051277359737d8c090f5bd3feb2322f04fadc8c1da068432d	44.26%	Heodo
2020-07-28	6607927 2807 2020 1993.doc	doc	1285ab067041ccc47554c1b6a78dd2ab191d2426e7242817235a92f1f674307c	44.26%	Heodo
2020-07-28	978_2807_072020_1/0277.doc	doc	3117731e93abddbeef527b2dd61a88aef23e0ff72b289b0b92e56432b31f3b3c	44.26%	Heodo
2020-07-28	DAT.doc	doc	ff97460ec476ba0b1dc6bf5044dc590c950725e79412fb75bcb38f37bf94e227	43.55%	Heodo
2020-07-28	Arch-2020-218389.doc	doc	c8f7207b776cd41fd7bbd4a9c1bba2c4c1161dc9a1e132d8754d87743107e43d	43.55%	Heodo
2020-07-28	ARCH.doc	doc	d579e990b4b7d3f7232f569d7bcb7f6f783d8019f52490d87a83c675e80570db	45.00%	Heodo
2020-07-28	Informacion-072020-SZ_2056.doc	doc	ae7f037dd7436f637bbb6f62f4a44f2dcf5ddbe56fa25edd87e054d203e34d27	44.26%	Heodo
2020-07-28	mensaje 28 2020.doc	doc	a07b7087aa9e62580d3df6662c97f7827de42955fe766f0969af529daaee016b	43.55%	Heodo