URLhaus Database

You are currently viewing the URLhaus database entry for http://vereadorgilbertomelo.com.br/fmkmz/45ptffa3e/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:431482
URL: http://vereadorgilbertomelo.com.br/fmkmz/45ptffa3e/
URL Status:Offline
Host: vereadorgilbertomelo.com.br
Date added:2020-08-13 03:04:35 UTC
Last online:2020-08-14 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-08-13 03:06:04 UTC to abuse{at}redehost[dot]com[dot]br,flavio{at}redehost[dot]com[dot]br)
Takedown time:1 day, 4 hours, 3 minutes Poor (down since 2020-08-14 07:09:54 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-08-14VMUENCUZVHGNF1XT.docdoc 5c4b01c3ced2b583ef082d4b23868cab987a227f7454eff73fcdc8180260c050n/aHeodo
2020-08-14Y_CEG9CQ9OSEJEK1.docdoc a6384f1e6ca3c085bd046934f2542f5ddb7e7966dca9ae654b221f0b1993a4e0Virustotal results 36.07%Heodo
2020-08-14564809031822861428345.docdoc 3435e343b0a6c8e9196499ac3dd741f97bc11a10039d254d98a744d6fcbe3d2eVirustotal results 35.59%Heodo
2020-08-14FILE_CYR_080120_LII_081420.docdoc 0928f7c9c557d9e232052edc5377f9986651f02861f1f90ae67a9bcdf3caa375Virustotal results 36.67%Heodo
2020-08-14DOC_99696792.docdoc ac72c66d611118545906b5f23ba3aa32a7dcf91eb2f2f41c1476afea66ad21faVirustotal results 36.84%Heodo
2020-08-14REP_DC9487864211VL.docdoc 7f0cfcaba7df4371efff36fa780cd28015c7c1694c8792fa2f56dd86b7ce8989Virustotal results 35.00%Heodo
2020-08-14FILE_PO_08142020EX.docdoc 6ab2c399c8174e97809e728dc331f229df5e7d30dba04a5b1658ff245c45a657Virustotal results 35.59%Heodo
2020-08-14DOC_27066408547290888.docdoc 1caf3b81363b58c02feb6ae2c0ccb617e3ed49bc8a03b4f3de7243dfe6451fdeVirustotal results 36.21%Heodo
2020-08-14DOC_43964190.docdoc d14b37fdf7ad86b3794264b6df4bfd7efbfd5ae07b03e72a800be6d16ec8aa83Virustotal results 35.00%Heodo
2020-08-14TKRS9XM.docdoc 36d38e224e4d9711b5753532010c6306d1a2f2c9a73bcefbb77c27b8e4efbadcVirustotal results 36.07%Heodo
2020-08-13PO_08142020EX.docdoc ae61420aebc07da884917752dcdac62809ccd7a3eb2ed470a3b6c810e7635adfn/aHeodo
2020-08-13PO_08142020EX.docdoc 668487ec145e75676c1a4fd6e0828331c412f7fe35709a3deb6d182debad6422Virustotal results 37.70%Heodo
2020-08-13EURT8WCS6MDZHV4.docdoc 0ed266508f694702f6337f375bc70e94eb3c5397bbf5e4fddf1d319a751544dbVirustotal results 36.67%Heodo
2020-08-13INV_PO_08142020EX.docdoc 34aed4bb09915606f5373f0d72261b384fe3d85fcde9b3c716ac00967158ec77n/a Heodo
2020-08-13BAL_0383161511951348587951.docdoc 8829bbce815af3eb259bf395ab4bc8e41ed24c260d590c7a8253172b4e6ded79n/aHeodo
2020-08-13INV_504999558381.docdoc 91a52a2771534f1d27c8d0bc0c3faf71165f394a77b4d5a811c5fdd15b203e46Virustotal results 38.98%Heodo
2020-08-13BAL_82778201.docdoc 659a89fe80ca3cdd88f5cd70c4fd18c6061b708da2489d7b0eb57ba2c0d0db55n/aHeodo
2020-08-13INV_36554122.docdoc 181c8cee3b6463be02aa4dcfbcdecf6a495a03e0692a379e34467dd0ed5a6fdbn/aHeodo
2020-08-13D_9666808901995685.docdoc 15d1980af7ca71885dba9f7887ad95dd5b49442818013ec5293e6145f4cf5897Virustotal results 36.67%Heodo
2020-08-13PX_51315245.docdoc 15e32f7a4675db4e399e6ac32e7b9b98197aeb89dc371330c21678abcbe13262n/aHeodo
2020-08-13W_XOBRKGYH.docdoc 6411bdfec957841d02b2697f3933820d3c41f39d1622b2f74d1fbd5b0f66b0e2n/aHeodo
2020-08-13REP_ZP0483467106NC.docdoc d2096169d1212457db40e6a605d82b82aea4ba2d2ea69225cdd2c60cd104bcd2Virustotal results 34.43%Heodo
2020-08-13DFK_080120_UQS_081320.docdoc ea4ab11724bb19ff8c0451069a27cfc6b2de7b7ad0254edd07f3036c265a066fn/aHeodo
2020-08-13WYP_080120_SRF_081320.docdoc f2cfa3001f9b3f64a8c75cb726c5a894693ed9297adb5c97b35b825225bd4001Virustotal results 35.00%Heodo
2020-08-13DOC_MBU_080120_GLX_081320.docdoc 81c7769a0b7529af3a8694dd0b1141ae2446ebc681026ae67653753eba1ed6b6n/aHeodo
2020-08-13R_WUT_080120_YCR_081320.docdoc 9ad97679cbee7aac235985d49340c9b7f81becacdc6718cadc94648869514682Virustotal results 32.79%Heodo
2020-08-13REP_QPKCQFWQ2PUAR97H.docdoc 5f13b204f1454bc08133eb8207a0bbd3faa357d80495f1136ff43768e69914e5n/aHeodo
2020-08-13MK_77142330.docdoc 5dfe99bdd766418f029d534146438a97818581f989d4b2ebf5f92179344000c0Virustotal results 30.00%Heodo
2020-08-13REP_9268191144054644846184230.docdoc 0532eadbdda96ceadb7250d379491c1bb64d6d40b96bc71d551268896fd4bdd6Virustotal results 28.33%Heodo
2020-08-13RT0164325729KF.docdoc 8a0a74b31fb30ce1a4adbaa3945c4186c7d467268e76b9ca802905b7cf5fa54eVirustotal results 29.51%Heodo
2020-08-13C_5M0NP0VLT48Q.docdoc 479e00f4a39c727821fabea3c681e051bf755f4eb4c10e62f23055ca7f4a9353Virustotal results 29.51%Heodo
2020-08-13REP_PO_08132020EX.docdoc 4b99e8df8f724bfea2f32a9274cf4aa0f41b3e57a2b1ec753b17514149c670b2n/aHeodo
2020-08-13DOC_PO_08132020EX.docdoc 699e9c49cddbcccfa59e80655673a41d763eae2d910891f07e66a160c9545279Virustotal results 26.67%Heodo
2020-08-13REP_IM13QSHSQUVOGGIH.docdoc 3f9f641892bac263ede86f11632b4a6498dcc2b94b13727c5dc8c8c594e0f608Virustotal results 27.59%Heodo
2020-08-13FILE_NBUF8MLF6ESV1H.docdoc 30aceb60d6841a0f444bf36dbf53b021d32f7c1494c42f2c8600c6ea1b84909eVirustotal results 26.67%Heodo
2020-08-13WQ5817050512GR.docdoc 1ac4188f22c717e76b493881ab12ef60e719cb86d2e5289f743b42b338cb5b96Virustotal results 26.23%Heodo
2020-08-13FILE_888272817333917344292.docdoc bad77bb86f43d26aeeddd264c08f21e690be629f116fd2659556e12485195610Virustotal results 26.67%Heodo
2020-08-13DOC_1574151469775634.docdoc fdd5654b78c6c5c23b4f6c6502eb69701c87c65ad4bd2d121046db883154d863Virustotal results 27.12%Heodo
2020-08-13QK7853643360OB.docdoc ba510b5a0f97430a09efbd12acbb4c1be869e71e678adf5fa0b5498fb477068eVirustotal results 28.33%Heodo
2020-08-13BAL_EDH_080120_DOX_081320.docdoc 286553ae57a160d6c96aead277a25d92227a3f0030fb98198e7be863f897e1deVirustotal results 52.46%Heodo
2020-08-13X_94138791251573967051.docdoc b32da058a64ad598e02220460837a9e004a34acc63c7e37c39afdd4b08a544d8Virustotal results 51.67%Heodo
2020-08-13C_ZU9114963733WX.docdoc 0938a3eb8d86fa634cbaa1f643bd2c6cafcdacba202e4683cf7245705bd11fb3Virustotal results 53.33%Heodo
2020-08-13NY9208881998QQ.docdoc 3bdac8c960a676c5413f552929782bbdfc77931172a688e29070916155a94ff7n/aHeodo