URLhaus Database

You are currently viewing the URLhaus database entry for http://teacobranca.com.br/site/swift/aocmfq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	493383
URL:	http://teacobranca.com.br/site/swift/aocmfq/
URL Status:	Offline
Host:	teacobranca.com.br
Date added:	2020-09-14 09:46:07 UTC
Last online:	2020-09-21 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-09-14 09:48:40 UTC to abuse{at}lacnic[dot]net)
Takedown time:	7 days, 1 hours, 1 minutes (down since 2020-09-21 10:50:35 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-14	INV_55830357.doc	doc	9f0ae988efa45dd5a31b192546bb881ebbf6b50e79bf2da69fa2256bbf4d845d	38.98%	Heodo
2020-09-14	FILE_KN8HL0LY.doc	doc	25745649b41d77ba129790a2a0c37f720f1e050cbe6ddc4a74e1348e41b59de9	n/a	Heodo
2020-09-14	REP_5635096727941178.doc	doc	92851cb764419d8ba397bd68f8a097ac8cd0faeeac231c1348fc7ab7172aee64	37.29%	Heodo
2020-09-14	VFF_090120_SMI_091420.doc	doc	c1fe84c5bc07595ed1c451c7cd8d61f681f1252325096963b580e974a54dac0e	37.93%	Heodo
2020-09-14	HYY_090120_NEO_091420.doc	doc	2a3b8ac232c62d1a8020778231c0385bbc08ad42e9bed9599296e8f05bbf9b7c	32.76%	Heodo
2020-09-14	U_TXY2B00AGYQ.doc	doc	493f41475530b76b9d0d6620de2763277bdaa51bbe084ec12fff5853fa44c208	28.33%	Heodo
2020-09-14	U_TMIQ2E9CO8W54.doc	doc	28af08585e9a6ba58d36d8e18f06e00def8d27ad158b4ceef0a99e6ad2200e9a	n/a	Heodo
2020-09-14	REP_56715430.doc	doc	8a1112eb65bf0c10488d7fc08deab1fdfec85a041c667cc977e621993a888450	n/a	Heodo
2020-09-14	DOC_241641355301701412232070.doc	doc	e07a35b45fa2c96f9564aaa36434a5fdc8d4fbbd9b95c35ce926e4bb0f87dcc5	29.31%	Heodo
2020-09-14	PO_09142020EX.doc	doc	ed410e106fe3f9f8bedec883afe4b7b0d0dea3b449ad26fa6f41aa69c0a78f80	28.81%	Heodo
2020-09-14	VAL_090120_MWB_091420.doc	doc	875aadb39437a5366487bf9232ad64eb3d635fae59449e241d84be3133ed2a44	27.12%	Heodo
2020-09-14	DOC_228604657014701009506.doc	doc	a7a9ba166406bf42b11025e3c7e259c3866c29146ffd296dcbedbff60d3f09a6	n/a	Heodo
2020-09-14	26420484.doc	doc	218f129d0a9af2058f7b45dbba90b9784f52c5ba284c347192dc265a8c48993b	n/a	Heodo
2020-09-14	QN4964233922FL.doc	doc	8b92293792b289249b31bcb9f2904fea4360b6d0fa95b90b8e03a6b4d9691fd5	27.12%	Heodo
2020-09-14	BAL_4WLBOOXAZ0O.doc	doc	e4a9024be2fd969f3d64de3bcff992a2d29ad69e823b5ed145c96a395a013e19	n/a	Heodo
2020-09-14	INV_720353469797820.doc	doc	2ff4b7d7b02e82dce1df902e65b025fe06a6a66e3e4605ada4206d0eb2e33cd5	21.43%	Heodo
2020-09-14	QCF_090120_SXL_091420.doc	doc	6f94245cbc7d242d2ffa0fa4b3e3b3d5c9d3033df0482320fd014daba53f62e3	n/a	Heodo
2020-09-14	INV_8529735938505073810543.doc	doc	6c582c81ef9f686301cf1a663938a08c6f793a3f45403b3d4d87da94d5eefc00	22.03%	Heodo
2020-09-14	DOC_5875502775620899363.doc	doc	2762b832d1111457d6402af3d53a4f516dd99507d963614d4bdc48855dc057c1	n/a	Heodo
2020-09-14	DDQ6VBDG6NN.doc	doc	8479daca0fc8e5a71c4658b54796c49513f4c6b45d048438213ec781db114c6b	22.95%	Heodo
2020-09-14	INV_EY4756784064SF.doc	doc	29727ccfff36705a0638c4b0127fc5ec22be60f05d542fd9e9f0f49f6827ef54	22.03%	Heodo
2020-09-14	21QT04I7VR8R.doc	doc	21bdbf6ef88670da6f32d97e4d4d1ddaad79bbee1a8d10d476ef78b5a63e14b3	22.03%	Heodo
2020-09-14	EH0427231737RY.doc	doc	089bf49461e57f29762b5c1f0b89fd5db567a615c5fde7cc529369f7472f8f3d	n/a	Heodo
2020-09-14	DOC_PO_09142020EX.doc	doc	fbb786eb4a0f0a9ecf9da92977d330921554d0c4cbdc1218de3641c9a9a16933	26.67%	Heodo
2020-09-14	INV_PO_09142020EX.doc	doc	f14c6bc62e459f57fcbf3044108e087966c7f90e706b655248f9707410094bcc	23.33%	Heodo
2020-09-14	8698037595.doc	doc	bed57dded8f474e1685273acb47e279b76b699d0e2c44ac0f299ee924329f3a1	23.21%	Heodo
2020-09-14	1558866436715152885.doc	doc	0cc20101093fe0717a459f14250ba02273813050342e588fed50e77c5b9e52c7	23.33%	Heodo
2020-09-14	INV_29050065346431325.doc	doc	fa69858e237719a046347129a4fa0d2bad1890e1843c54a8e5d71568337ee2cb	23.33%	Heodo
2020-09-14	541569523593626168667.doc	doc	093763d4cb36fc3e586ed3f34a6168b60a03c5f26c4c7b517235e4b2edf8507f	24.14%	Heodo
2020-09-14	FILE_13039142.doc	doc	b1a7d9e8d86b77651baaee9636836bd1c11bbd2566d0b8fab5de85c7c56e8083	n/a	Heodo
2020-09-14	JG_PO_09142020EX.doc	doc	813835e555a57244f759ea1f03dd32d05bc472af33d6ed3c4ff22fc850798fe3	24.14%	Heodo
2020-09-14	DOC_TMSSA217LL0PNNQD.doc	doc	b55cdf490435476aca6b1d71b6b9e509cf20125e5c8135c53de653035fa5a76a	23.73%	Heodo
2020-09-14	IXH_090120_QKQ_091420.doc	doc	61c53f6c53756e4688c1b4976287215231032f9f4e38b3ab6aea59c386de1517	23.33%	Heodo
2020-09-14	INV_UM6897247414CM.doc	doc	4828ea08e57d65a9b30f86f4064c885c040ea13314bbcd0c5275ef0dd7e9a46f	20.34%	Heodo