URLhaus Database

You are currently viewing the URLhaus database entry for http://tfbauru.com.br/cgi-bin/Lhe/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	445607
URL:	http://tfbauru.com.br/cgi-bin/Lhe/
URL Status:	Offline
Host:	tfbauru.com.br
Date added:	2020-08-28 00:42:26 UTC
Last online:	2020-09-29 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-28 00:44:04 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	1 month, 2 days, 9 hours, 12 minutes (down since 2020-09-29 09:56:22 UTC)
Tags:	emotet epoch2 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-29	OXhYYv1Fyr.exe	exe	ccd380ea868ffad4f960d7455fecf88c2ac3550001bbb6c21c31ae70b3bbf4f6	28.36%	Heodo
2020-08-29	zyUmwjLrxP.exe	exe	eeebf2bcf1f485c00c64e15b69897ccca44d7e920422105a7103667016e1eb9c	28.36%	Heodo
2020-08-29	h.exe	exe	8bae20b6612113e6647fb42d1926cdc4d5d69ef704b8f221dc8806f73ddd9e66	n/a	Heodo
2020-08-29	1BamyLQ8kg2u0Rbt8Q.exe	exe	d5aa16d803969b738388d0f09f279b5c67f10f770bb2f828fa528f9651184ad0	26.09%	Heodo
2020-08-29	6k3hjfKZbOhl.exe	exe	44bf9faff85dd4fe34d911a710e2ca758bc3a9537e02c4edfb7d39471914e666	n/a	Heodo
2020-08-29	YKfdPkeJCtuYAAvQ.exe	exe	daab04c49478938dcecb9ea258d3b3e7648afac4d83d8b5c4442592e49727662	n/a	Heodo
2020-08-29	QCKEFIi1lMMyfnz9.exe	exe	391ecd00707442550b8865e0d3db527b79033183a54f40937e252d93954e97ed	n/a	Heodo
2020-08-29	Blq7j0Gsg3g.exe	exe	fddc4e6c4aa844978b10d9b485b334e837b3f7437118455b3c54f1df1ec2d342	n/a	Heodo
2020-08-29	FUChU3W9a8tR97WmxmLB.exe	exe	891a57eaf88a3dc70f29d648a7374a352e12c5b015c9260bf280ec12431a6c44	n/a	Heodo
2020-08-29	3V.exe	exe	f67e5086bdae0183c5c6feaf67b0782dc89747cf0ee900e980c0ad9008d2efe6	n/a	Heodo
2020-08-29	p.exe	exe	77792fb0423b07fa7d912cb2540403aebbd1f467cfc751aef6d7800b6dcd59c7	n/a	Heodo
2020-08-29	5rLqzdIRwele.exe	exe	f92b50abded6ed6920589d048d4dee41d360bc0f575a3b5aabf3df53bd6eaa56	n/a	Heodo
2020-08-29	uJr7AHbcLw69.exe	exe	1b49f3515225c9b81ff1d78fa40750f0ceb1d687aa0f6beae6e2c192238cc23e	n/a	Heodo
2020-08-29	hwQJC1F53.exe	exe	da55c776a5890c8b204c1e38ffcf97e2d2a577a5383a1cd1fda6b1883cfbb07b	n/a	Heodo
2020-08-29	BGjLXm6u.exe	exe	fceb348255ce8631c5145060f90ec34e1bc6d2d7d54d68ffacab16c2256e3939	n/a	Heodo
2020-08-29	D.exe	exe	42d4fc70bbf2b58af2e5b9ca5ea722310260e6e2c29b3b068ad532af400b7a4d	n/a	Heodo
2020-08-29	U3C4bq5.exe	exe	bc0f7ff13d092eaeae7ed3c8a443221cbdf03be8e9b4de2b89caa475c752e6a0	n/a	Heodo
2020-08-29	shXFjeQ8.exe	exe	8524b23cf7597dda681085ab84b5ba9229bd4236950e3ba010f6666280b68ee7	n/a	Heodo
2020-08-29	oMYmRY.exe	exe	7f5e3f7914f83fe350ffe308e57399a70a58c2edcdef96e2e52b070454c1c10b	n/a	Heodo
2020-08-29	mKRCXBN8bAPcKNmJaHTM.exe	exe	7398142ba7f6cf72e1947e7d37c42f515d73d1b8212f7763651292be8d0e2f4c	n/a	Heodo
2020-08-29	n.exe	exe	fa8774c2a8d4450c3abb5b55d59cb972c0b24379b6f4b9df7e958bd5305c65fb	5.80%	Heodo
2020-08-29	el3KqQT9.exe	exe	b4922215101e377fa8b1fd2360c3e059f7f633824c68b4ea5c48cc5ba7aa2c65	n/a	Heodo
2020-08-29	1fI0gxWocSvJivsB.exe	exe	d52fa2f6f5f1a1168436d22eb611e9053b2746af2aba13f02cf0521a63cfce1c	n/a	Heodo
2020-08-29	eV3vpYIuh13a.exe	exe	b0e4dd89dd21020429d989148834711137b2a44987d06980098392cdc07aedba	n/a	Heodo
2020-08-29	xqHwY.exe	exe	098248b91d1cfeb3e6afda2dd6d27eab817936514891eddae9b850f39a93de86	n/a	Heodo
2020-08-29	kf5g50iuGy7h.exe	exe	0d45be50356c188452f7e29fe5275e2192ee7e2467e8af337baf5c1ea60333f7	n/a	Heodo
2020-08-29	742nt.exe	exe	a652aecf1e6b312d5383fc30a224ef5145210e8553e461ec2ce51a97de076f9d	24.64%	Heodo
2020-08-29	aaMVMWnGvQuv.exe	exe	0f8dfbcb78df28d79f33cd7eb948ccaa6abd327d572d844721ca1fef14664449	25.00%	Heodo
2020-08-29	kzc.exe	exe	75a2265442630cb9c48aa583bdecc7b082dfe408ff0335ae033a7a241115c050	n/a	Heodo
2020-08-29	5rzCaZy.exe	exe	9a25c4c41cc50d9733045da650706a144977d26cd4c699fb4462cfdce6768fb8	23.19%	Heodo
2020-08-29	IZKtWo.exe	exe	b49a5f7627001e4d1d59e6262dcd04fcd5e1641e3c3f5d3281d9b29cbb8e98f1	n/a	Heodo
2020-08-29	LIZDOw.exe	exe	704c0f076cc9f53c53ad4013a322d43d4c07a9ff94b4d1b367b914e3215187d4	n/a	Heodo
2020-08-29	LSBBOyVz761mzgLp1Ei.exe	exe	76bbe2e77f474d8c5f503a851d2586a82a4c98467f3506b49ceb8edbe910f61b	n/a	Heodo
2020-08-29	7.exe	exe	182eb8d9ae09ea7f497c017d4b0dcc1ad79e37fcaad229308025977ac4509ec2	14.71%	Heodo
2020-08-29	mM527Acwi9pKqg.exe	exe	0e0160be54dfec4c0bcf51d9ade2717b82f70f539b16a7a4ff9c5244237dcb62	n/a	Heodo
2020-08-29	M.exe	exe	717ae625c139551bf4119f5ac2d00619834418b8cb6fb48db4b640d076b7f446	n/a	Heodo
2020-08-29	2kQK5Da703y.exe	exe	ab08e3437d9dad9eecb6b92e2db7531c51ca2de2d3b5c9ec4920eaf1460da026	n/a	Heodo
2020-08-29	HFUwXQfF641zw.exe	exe	5698040c34e85a241b2d62bb1247b9a9acb1fa3e7ed8f40ece7b9cfa4863804b	n/a	Heodo
2020-08-29	pIcM.exe	exe	e1653b79ebcc51e7a9c6ed8889a919b0340d2dfcfe6d97020d970be6f999f484	n/a	Heodo
2020-08-29	ox4ChBcFn9n47fRzNDC.exe	exe	0aedb52c76aa8bdce7d691bafa893e8d284283e47a64968acbfa860f9343ec9d	n/a	Heodo
2020-08-29	nix7O.exe	exe	a65b130eed3ff71d4a88007be5aa2516391d7ad123c7811dd6dc90e64ba6be85	n/a	Heodo
2020-08-28	BgGDPG2NHd4q.exe	exe	f1437a2e3687bfe75ab69665515a454bca16871b41e649ab284775fd47aa1840	n/a	Heodo
2020-08-28	vqfCqwbFPGp0yoWk.exe	exe	d078d9521674c80fa24904a5c88963aaf3d852c3d27a7d58e1ba88aae52e521e	n/a	Heodo
2020-08-28	fC.exe	exe	98e77cb1ba98791a223980c3525926328962dbb543985f3c76b4455f473e4ef7	n/a	Heodo
2020-08-28	KM6Mxy.exe	exe	9da20d864307970cbe4510990d4903f65b9246bc03dbd1dedaaaa6ee9866db32	n/a	Heodo
2020-08-28	hQu67ejjYwQ.exe	exe	177db497598d3c0d732c96e7254426fd32aae95aa2502c9e75717aecaf8db736	n/a	Heodo
2020-08-28	T63Qje4a4BBesOfV6SOP.exe	exe	3dba244c0b544556e45c483ccda17ae5d58c4100f22ea02d0e9bc5ef7259b30b	n/a	Heodo
2020-08-28	5vN3aLhhHe.exe	exe	52226fbf8fc54e69840eac7edae8898af119e8131106f22ac69a6229538ea3a7	n/a	Heodo
2020-08-28	gZGHE.exe	exe	0716f06719668770529150471b016aff391e9937d3597a61bcabed93d715a666	n/a	Heodo
2020-08-28	hbLIXlafuTAT2hWCrFX.exe	exe	3faadc084607e0ccddd982ee46d5de1593c39f952668a0a35c985e7ad97cbf6f	n/a	Heodo
2020-08-28	X40iAYI.exe	exe	c00d60fd2659bdcb9c0153723e9cccfcce397f8e42fb8bdee9f6f3bec654e8b4	n/a	Heodo
2020-08-28	V2BEpIt.exe	exe	d39053e8395900d5357f2b257f19f24b17b6e3ce461fdfe17972f31b2c916389	n/a	Heodo
2020-08-28	fYCEVZC1yI.exe	exe	0c8a47e0c837c8a6c60bb6fc21ec78a26e264a2ddc0865663506b8e118d9ae23	n/a
2020-08-28	8bYSXZLXm5YTyRgbzuQ1.exe	exe	b5afa13da481c0d7dd370a9db6b920968e3c2cf741462388fbf4bae239908397	n/a	Heodo
2020-08-28	7DgvDZa.exe	exe	fedcd500e5497da7510b7bda3c7afbbaf149f3f20632c630ab3560e380f03cc4	n/a	Heodo
2020-08-28	rdv1y.exe	exe	2e55be3a1696c3816f147b980380ddb3d75b06eeef173d4ca3fc30d9be9e0208	n/a	Heodo
2020-08-28	qooChWK5S74um7UvQ8.exe	exe	8c0fc207bd9e4e5ae43cb14ce20b2149fbda944d1db83fd47148571118a249f2	n/a	Heodo
2020-08-28	u3.exe	exe	838bde9685d4433135a34a184d109042be6e697d202915d1d58c7b6af8025e58	n/a	Heodo
2020-08-28	aV.exe	exe	c98ccdedab9fdf796bbe4065c10d75107e40cd87a608a165419645801d167174	n/a	Heodo
2020-08-28	Ob2D1R.exe	exe	06dbf183574b31e9845968b37bba0b9c153500b6e3174ead663d4c4b042ffeb5	5.80%	Heodo
2020-08-28	6BdZb2edeSv.exe	exe	6be14dd347da5891525393e2a5655eaa2f8e359d29e043ebb597436ae3c70a82	n/a	Heodo
2020-08-28	eXDo7.exe	exe	0fe1e88ac64c79f53c6a2bfe329706bd8ae94a8404b04646728f18e64a577ce5	n/a	Heodo
2020-08-28	8VzWr2Ii.exe	exe	f5155302840321cab23e123668f9d69ae44e2f56f96f17e602c6e7c1a13212e0	n/a	Heodo
2020-08-28	folL4wOReB9j4Rn.exe	exe	fb97292aae2fe2f582dcbca390e3b7928463f7b2f1cf2fd03d4d914140b260c9	n/a	Heodo
2020-08-28	kBs7l1WIQ5z.exe	exe	7fa8ef9f2020353dbcbdcea1424a6e726d341d9ed0c69f50df529dd41f258da6	n/a	Heodo
2020-08-28	kBs7l1WIQ5z.exe	exe	7fa8ef9f2020353dbcbdcea1424a6e726d341d9ed0c69f50df529dd41f258da6	n/a	Heodo
2020-08-28	9yoqvAl.exe	exe	91e8b3df177ec92698465418ad8857bc62bc2149a27324d4fee1c356bd1734d1	n/a	Heodo
2020-08-28	f4Oh0KnpUHBeXiWUsk.exe	exe	65fc8653ca192fb929cf89833418e7b214f5b3a1e15e186ec40e02e8be602745	11.76%	Heodo
2020-08-28	JjQjlMHCPP9RM9MF.exe	exe	7656b7a84c56452b07d7d086f4b715cf243a1ed532908c2cfe1513c2d5a6aca5	n/a	Heodo
2020-08-28	3p9SAD3.exe	exe	854a895f8c63312dc83a24d2fda6b6daebe7f6ef707f5cc1b0031c8a3652461a	n/a	Heodo
2020-08-28	OCfUbTqH3XdAMlf99.exe	exe	9c41ec187463fddfac5766e4552afa276e541e6632bbf780caad1ad7a4a7a5c5	n/a	Heodo
2020-08-28	MNgcpIbTx7k.exe	exe	41516314942f58a49493c39dcb4245ebb1e56d76973c8fdd49d9a95a3c79bce8	n/a	Heodo
2020-08-28	bcWMYq.exe	exe	3a06a51e13195baf4423a91d99948cfa77679116e30bcb0d87529d11c2552496	n/a	Heodo
2020-08-28	slnT5LkszDN.exe	exe	390ddf10ac9969c2c7c12bc821580536d5460843e4658420677506c1e0ec441b	n/a	Heodo
2020-08-28	n4rmqjhJR.exe	exe	7faae3e0a77706828485b4671bca185d7aa9c5d54f197afadb7a50c1c51025d0	n/a	Heodo
2020-08-28	zxg8Ky8ZPK.exe	exe	c6640a0f3e8745611786ff9fd88878d9c0503d43d3b6aac11d28048900551456	n/a	Heodo
2020-08-28	p597gZIw.exe	exe	668c4aacd8d408375cd744c29fd45a6d73f842ffe136bedcacd3799352be7106	n/a	Heodo
2020-08-28	4e.exe	exe	ee845c793be9e270acc96ba190ed6629d1afb376cab3fc7fdbc2ae4ca6e6677c	n/a	Heodo
2020-08-28	upI.exe	exe	42352ba28468526c5dc92ab581c5a883fc8db50ab9aaa224f5a8a89d15de5e55	n/a	Heodo
2020-08-28	briOQ5kh.exe	exe	4ee6a200c7c4c3d9990809b4b3cf115084f053e4a883abd9023ad2da627a64e6	n/a	Heodo