URLhaus Database

You are currently viewing the URLhaus database entry for http://grupocsc.com.br/wp-content/parts_service/5afbbbt4r/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:428508
URL: http://grupocsc.com.br/wp-content/parts_service/5afbbbt4r/
URL Status:Offline
Host: grupocsc.com.br
Date added:2020-08-10 17:22:36 UTC
Last online:2020-08-12 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-10 17:24:02 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:1 day, 20 hours, 6 minutes Poor (down since 2020-08-12 13:30:50 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-1257GV5CHL9GND10.docdoc e6aff4596a71a4b0c501dd7850553e31385190366a94fd6dc636e0664665e131Virustotal results 27.87%Heodo
2020-08-12INV_6230859155752.docdoc 445ce6e58d4b1065155b98012da83fd1b0e86a027b8e6d2d48c2554ce66bd869Virustotal results 28.33%Heodo
2020-08-12BAL_26348941.docdoc d4c552ce903e8455566a265fd7ba1a276db5bf2a88ad998b7c93e89989d1aeccVirustotal results 27.87%Heodo
2020-08-12REP_76170839.docdoc 9ec7ef1bc0701307cd1c1ddc9a252a989e724abc0705fec55d8bceefc7ffd087n/aHeodo
2020-08-12FILE_PO_08122020EX.docdoc 14967b4d7ed265d47e03452c19a7c3d048828bfe37abacf2f56782e7eeeeab23n/aHeodo
2020-08-12PO_08122020EX.docdoc 4a9fdc8037cd7e0e547ddbcf3d051c7f1f84179016ad0798e8328f12c69a04baVirustotal results 28.33%Heodo
2020-08-12W_Q8FX8335PGLU.docdoc 75ef3d95b4977d636664bda5c6cd5f0444ecc1ca7d0753f424bfe829474fa330Virustotal results 29.31%Heodo
2020-08-1277584854.docdoc 0d6aca5233bf958211fc44e3eaf4a6c88b1bbc68c716758cb805d62b93306b0cVirustotal results 27.12%Heodo
2020-08-12UO6680602445BI.docdoc 214f91b9b3ab2ea28b14536241901516f9141df4e12fd3b2ce52088fef0a3734n/aHeodo
2020-08-12F_PO_08122020EX.docdoc 121ffe67a99b7c122a7a9812f00830d7a5e9605d6e18ebd7d84e74f2c22a6670Virustotal results 28.33%Heodo
2020-08-1289929767.docdoc f54babb1bd506c10af7ded30d90a42d0cbb37969b9c5187f964047acffd9dbc0Virustotal results 54.24%Heodo
2020-08-12DOC_280132616113.docdoc af51abb1270f34af770a98599b8023a55d05885a976e2c898299e78ffe91c943Virustotal results 51.67%Heodo
2020-08-12NA8841192769WG.docdoc 45597077ea44b6912767ecc3863c6a7eb9a1acb80e69d92deb7f49b5cf9f476bVirustotal results 50.85%Heodo
2020-08-12BAL_2L0WYVNZ.docdoc 6f973501cc2dece992aa2f959f8e352e424e96f06abb300b4bed8bcf2ab4bf34Virustotal results 51.67%Heodo
2020-08-12PO_08122020EX.docdoc 1d2096f4adcba717670858b98912615f7bc86bd95ef6b3117901aa4ae6383d4dVirustotal results 53.33%Heodo
2020-08-12BAL_22244888.docdoc 75e0692474be7d8066516c6ccb1904530d6540d82228ca27d52c6c8c5f806264Virustotal results 52.54%Heodo
2020-08-12O4L1GH0OPZ0A.docdoc e95c19b3173d0c69d60efb950859b2ffd3020235efd6c47ffebddf950a0edf52n/aHeodo
2020-08-12INV_PO_08122020EX.docdoc 8f78d106bc2f3e79349aabe3d812859febc3039e06dced8aa67b29e2421a9d31Virustotal results 54.24%Heodo
2020-08-12FILE_GDK_080120_XWF_081220.docdoc cbb96bc7d3aebe42ae0bf197554d7224fd693a6e864fdc3bc2f7b5e466986485n/aHeodo
2020-08-12R_963890359377016.docdoc 4c3eddd6a41f348b80609e91f83e3a9e22818758105ce3db1de70777baeae682Virustotal results 54.24%Heodo
2020-08-12U_MQ0789984384JJ.docdoc 358176ae69d49cbdc29ce5f8965efe9952253949970d9de4e8f09f46c488e6ecVirustotal results 50.85%Heodo
2020-08-12060819605760015991195.docdoc b06fa4a03274712b0d1bea0d2a5d1afc2c71541acb80b1054d31b661b67514ean/aHeodo
2020-08-12BAL_PY3016852145DG.docdoc e4d1deaefa7f905c5ce7490867ae09ff2d50fdf4162f102e276653c1c46eeab6n/aHeodo
2020-08-11FILE_CJ1360149558QY.docdoc a168ae2638094d7d55b0a57e6e660b333c1f15cd8ba280a443943901bffa4b69Virustotal results 50.00%Heodo
2020-08-11INV_XGI_080120_HBW_081220.docdoc 896db11ae3dd47bbbdaef6de2e44964142461c89f1fd377015b96affcc75cf60Virustotal results 50.85%Heodo
2020-08-11KVJZ3GI8C206X.docdoc 6ef92d63f441bea978f148ae6b93fd26d8feb4716042101e28ebacd3101f6eb1Virustotal results 51.67%Heodo
2020-08-11LUD_080120_FSY_081220.docdoc 9d0bac325fa1b829f25ab0696d273be2b1eb46da5d94f3837ed30ca9c495b4c7Virustotal results 51.72%Heodo
2020-08-11PO_08122020EX.docdoc 1d09b28a4d454266d52d7d2e5b9aeab2bbf43839ec33c9a7221eafae3c28c067Virustotal results 51.67%Heodo
2020-08-11TJJ_080120_FCY_081220.docdoc 6c5380e193b725ec3ea512a3146d8c0925c7c489800dad57d1b4b2f940751d22Virustotal results 52.54%Heodo
2020-08-1158949084602.docdoc ddcfa6beac3f79149c8786ca9af44062331f6222f46f5ccfb1429ff859308dacn/aHeodo
2020-08-11UVE_080120_JRD_081120.docdoc cbacf0f510ec4c1a5cacd10259c0e6075f65050b602e47fc67409aefcb6af60eVirustotal results 48.33%Heodo
2020-08-11LD7805951468OY.docdoc 667d0ee592ac9e54d6758d19535eef977352049d274f48289266578e4f7f3974Virustotal results 45.90%Heodo
2020-08-11DOC_64521133257809.docdoc 0dc77319f898db1037b996e421c171d0ddbd13166a8b589ab1da97b8bcfc99cdVirustotal results 48.33%Heodo
2020-08-11INV_61050922.docdoc 3f9ed468a85787c4bf29a327c525e87f3ac3fed5b4079b2958f3617ef3d3a1dfVirustotal results 40.00%Heodo
2020-08-11EXP_080120_PMJ_081120.docdoc 8e5f3490181127db4ae19a0c19a2aab3233016bcc64272ec836a68426ed0ae89n/aHeodo
2020-08-11NYIB_95369663.docdoc 16004f742c9d51196b4a45e665c360f8eecec87448f703ca65f1ca9fd2748debn/aHeodo
2020-08-11INV_IFZ8K366Y3X87.docdoc 8979a7dda1fa732d2164c2ef2e8bb59471cbed0bf320309720b8c18ce4a5f673n/aHeodo
2020-08-11R_40459357.docdoc f288fc67d607003c58bc277bf9c779e8d206ae43259b9cea64be737d4df22a7dVirustotal results 36.07%Heodo
2020-08-11X_QFL3EB2JTCU2SQH.docdoc 819a2c8717a367ec5a69f4a0ddc0eed9f469fea2415f8b0e3defc94d21813f41n/aHeodo
2020-08-11DOC_TW6312991417TE.docdoc 91ea8ace7b370d468a6318d2ab0847a1d03897afb3a2d887794d4f35c781f34fn/aHeodo
2020-08-11FILE_3ZVKJ015KQEAGX81.docdoc 208687883ec482d8ef391621a964345892dc3af09bbb0797af59fb18935df319Virustotal results 32.20%Heodo
2020-08-11FILE_35517082.docdoc 2cee94dcc3b71779bc2314dfd47fa9e17f89e3344ff4a3f00a21ab86f5bff9e1Virustotal results 31.15%Heodo
2020-08-11AS7276255557ZS.docdoc d760943bc37af2bcfc28d0e4f2a9de09a531cf8eb96220ea588ab5373d0b5ddan/aHeodo
2020-08-110IPQG1GQA9LDPX00.docdoc 8bfd3587537db9be73cc189509eab9796c40a95566b79753724b36ce7dce7c19n/aHeodo
2020-08-11FILE_71681482.docdoc e86b2beb2b36a9530c75a89e078c28b809fca63518cebdcd860f0135e899ae90n/aHeodo
2020-08-11INV_16148741.docdoc 2b773fc9f00dc3faefe05dca9697347ab80fb8224235bd96dec05698ea4139f8n/aHeodo
2020-08-11BAL_FLS_080120_HZD_081120.docdoc f266dfe6eca386777143d38c655e759b22fba117bcd9138c44354938222c1673Virustotal results 25.00%Heodo
2020-08-11BAL_PO_08112020EX.docdoc 1455b3fed34c9f9524557c1681b4ea63f86ce164113c4c2c15bcf5e70d14b251Virustotal results 24.59%Heodo
2020-08-11RR2384326101EW.docdoc 44371483f703d07a492861139471189a8755d6863157b3ace04c1e4ea205987fVirustotal results 24.59%Heodo
2020-08-1195140789.docdoc 159adf2257291ab010f4ab9a6518eca15f59b22b9dca9f3d52dee5f9fae80c00Virustotal results 24.59%Heodo
2020-08-11FILE_UYL_080120_BBR_081120.docdoc 2cd6d3c756477ef451f511c6ffae2ae49542fb6a4114f11be3b86cf4bdf57404n/aHeodo
2020-08-119980996372568686107.docdoc 7bce19ab2ebbfd54b04f581b9e81b10e82557befdb1b22eb3d0fdabbc8826a5cn/aHeodo
2020-08-1115405116.docdoc 5fd5d52919277328ddc6a266f40c3ad46a8b4196c9fe8f14d7f42252def786a5Virustotal results 22.95%Heodo
2020-08-116JANFA81KE73R8.docdoc 5d9fbd0f9ed6217eaaeca9a23ced4e99e2efe45974c0c80e8039c15cf6e222aen/aHeodo
2020-08-11FILE_6U0BHOFKR5BWR3Q4.docdoc f6fa765a0885ee4a0383d1fec754e6051fc90b598eb9c66cc528e9adacce7d5bVirustotal results 23.73%Heodo
2020-08-11XT4193348492SF.docdoc c767b2934e512dcdfb0c6efd95e7c7ba795fe9a09d27479585cbb066d145ef5bn/aHeodo
2020-08-11N_PO_08112020EX.docdoc 3f96851b275fb5a1a7a9fd1950711c7966acd41a7aec7974827e40c729d38ee2Virustotal results 23.33%Heodo
2020-08-11REP_PO_08112020EX.docdoc d89122b3343485f18e72909f9c77fca6203a619ab86c89f197dcf234b555785an/aHeodo
2020-08-11REP_P20RD2YC3J0UR.docdoc fe1403af8bfc6dafc09d02f60f2b208d0891210f6d16fc2db622f950339c7f99Virustotal results 22.95%Heodo
2020-08-11DOC_532178839510.docdoc 9fa6f271532ad52f77c508705e1b99fd612fde44318f5bd13a6a3925b059ae8dVirustotal results 22.95%Heodo
2020-08-11X_NVX823Y.docdoc 4a4a4dd5d1a19053ad3e765787b01d9dffb8b06be5faf5ce7a36efc5285df326Virustotal results 43.33%Heodo
2020-08-11BAL_A37YPOYB7PZ1V.docdoc 8edf233ddcd24433edb9bf021d9eb73597b9d87e5bb9ee0c3fc936977dfe6f45Virustotal results 45.00%Heodo
2020-08-11BAL_IB7HOOY5OMPJ4OSQ.docdoc 4d2029f90dd4666820163090c7717ea8b2166605108cf8e5292054e752213b86Virustotal results 45.00% Heodo
2020-08-11FHKXRAFWO5RP3SVM.docdoc 57d5fc234966fd696f948b9952b125ec464fe2c3b2b0948e151dc74218050cabVirustotal results 40.35% Heodo
2020-08-1142468027.docdoc 810f85306409a8678b1956aa73bae5e016aa0eaf12cece7d24c3297ba074c56bVirustotal results 44.26% Heodo
2020-08-11FILE_D8S0I8ESFT2DY.docdoc b0276a23c508f3b994e893c4a51a5130674d5aebb945c3dbffcbbe22e7d62846Virustotal results 44.07% Heodo
2020-08-11BAL_PO_08112020EX.docdoc 106e9a3097680f7a8270ac6a6a5c75fdf983b6e2ce326e7c56403aefa0eff516Virustotal results 43.55% Heodo
2020-08-11NYO_080120_LVM_081120.docdoc 77d07ebb9067728855c77e0d2486102c7710c99f4d2f952cde12dd1aff24ae2dVirustotal results 45.00% Heodo
2020-08-11INV_24546507.docdoc ef8d089f8eb24df2f211ebc1cb4700181f97d431f3d8706c0977619cf01435d5Virustotal results 43.33% Heodo
2020-08-11UBW_GM7NAKU.docdoc 37f50253f8018bae34e45657de8074c1a59a940ae12792fc8a5cdc8c700bc5eeVirustotal results 44.26% Heodo
2020-08-11BAL_62P2CUIANW7.docdoc 62104fb8abc7b1ebfcc1f27dc49a753517b49182741b3bee249633214a595e82Virustotal results 44.26% Heodo
2020-08-11591674166155054670.docdoc 4d67767678a9079f097fa98392ca9191d4dd429a1da0506b2e60185b0ded8609n/a Heodo
2020-08-10INV_93732706.docdoc aaa17626011fd8709d2db7d9a466aa405485b300c881a5868f328cff238381d1Virustotal results 40.32%Heodo
2020-08-10E_DNU_080120_DPD_081120.docdoc bb9c6274ff65ac8ee339d712ae7f3d2b010cb74f04603840cc6017db29aaa3caVirustotal results 40.68%Heodo
2020-08-10FILE_33258779.docdoc 33d40d4480617fb77d5d793051a847a5f4d09e1bd9845507308637ddf454e47aVirustotal results 40.98%Heodo
2020-08-10J_NT1458384732RP.docdoc 872f1ff7038a5fd30b2cb3a77effae2365720dca363e5d86677a58776cf18ae6n/aHeodo
2020-08-10KEYR_5010673150087556.docdoc fa0282385f733053712a3554624957b09fe274dea4427b8e7111e5bef7e1f64en/a Heodo
2020-08-10FILE_3790702909363.docdoc ad90d0071b25f19345c41da1ac91d96258866c8048ddbe085d4c33dfe445e5b1Virustotal results 40.00% Heodo
2020-08-1059983841.docdoc fe21493280e923306b2814e03a02fe978f4d0179c15049984f9205344b9015d1n/a Heodo
2020-08-1020636055.docdoc 6bbff5c81508a235fc04fffce3bef5c637c819c9648e6f8302a2cddd4cf8df09Virustotal results 40.00% Heodo
2020-08-10B_WGM_080120_VUZ_081020.docdoc 7a980883f34a6d6f8be225c2bead4ea44dd499257e6060051c1a4fff7a28aa6en/a Heodo
2020-08-10BAL_YJ9983801699MX.docdoc 53fce5c5b0fd1462d1f42a0da82aa628f26001cf571aafe2ddf5cba61ce11c5fn/a Heodo