URLhaus Database

You are currently viewing the URLhaus database entry for http://oxentevirtual.com.br/bin/eTrac/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:502514
URL: http://oxentevirtual.com.br/bin/eTrac/
URL Status:Offline
Host: oxentevirtual.com.br
Date added:2020-09-14 20:36:04 UTC
Last online:2020-09-15 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-14 20:38:16 UTC to abuse{at}hospedagem[dot]net)
Takedown time:18 hours, 5 minutes Good (down since 2020-09-15 14:44:07 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-15RLE_090120_WQX_091520.docdoc 155463c9c0f6ad4dc393997a8a05ef92ccfdcd3afecd7caf5a434422ae52d5c5Virustotal results 29.31%Heodo
2020-09-15DOC_35991310.docdoc 86e5592a5a53eba6b534b450d5b736eff616b1453a741d713aceb18d55557483n/aHeodo
2020-09-15REP_G8DAUE9BJ5UIFPN.docdoc 3ee56397fcfde3641f7f9115a3226d0bc7fbb7179c1743815a22700cc0ca30bfn/aHeodo
2020-09-15OJ_27SU3B8.docdoc d590291ac7dd3e6a44554bafcd4bf1bafffa63e97ae93a536a420a3378ecec21Virustotal results 30.51%Heodo
2020-09-15I_PO_09152020EX.docdoc 66ff020fb95ced4f2653e4ecdff764a34d92c4e883e306f037fb46b470b5fbabVirustotal results 32.73%Heodo
2020-09-15INV_PNJG2ZH.docdoc 55602b4029b686a7580b578c217f2d3da2de553e8d41b8630276dd5bcf231ffeVirustotal results 31.67%Heodo
2020-09-159232573268041716356.docdoc b397f6734c037272b01c97d7f6272a06a5e6b7853cedf05f5931ec83619964aeVirustotal results 33.90%Heodo
2020-09-15DOC_AIP_090120_QPQ_091520.docdoc 1c71f8ea6feb7151e43dd7a022fed82103545c6e079231fd59df26e00bcdb66bVirustotal results 27.12%Heodo
2020-09-15KRP_090120_WDP_091520.docdoc 2cde4939f797633de929427a46005c56edcb0480a7a87e6194df70cbe707bc7eVirustotal results 30.51%Heodo
2020-09-15UDLZL1WMA.docdoc a27e34af3dd6de2bd605581cce065e11a651c8ee0544d3ea0d7419a9a3daa3feVirustotal results 27.59%Heodo
2020-09-15REP_RDKILMWXR6T.docdoc 0a027ac005f0ab69b76b7587c1f5ac68377f933bb7d7aed7741899867ccd0032Virustotal results 24.14%Heodo
2020-09-15REP_88150529.docdoc 7053a78a2269988798f9dcd4a161f7bd9dbd17a48874fb4452ebdb3a33b209efVirustotal results 27.59%Heodo
2020-09-159487887267544107335081082.docdoc 9558bbbb8facaeebb9539a63e639acd60d8fffdaa69c92c05ceb23e26e61c41bn/aHeodo
2020-09-15DOC_NOQ_090120_HDC_091520.docdoc cc44bd25c71b4907ed39e3fe1c2fd6516cf447e3f32e3ba98c0565b946446727Virustotal results 27.12%Heodo
2020-09-15Y_01493724100272694994.docdoc eb2c2c3e17adfb02fc7bf496cbb8f4b533687d6f39ab07101562628b9b0c292dVirustotal results 26.00%Heodo
2020-09-15FILE_81011573.docdoc a8fd2808ccfd8453ff229d0c6c0c874b154d9031fe33e519eba2be356d9790a6Virustotal results 24.14%Heodo
2020-09-15S_35322641.docdoc 4668679a52a06dbdb2eb65be12e6175011a6c99e90adf7c71fb2eff66fb66d5eVirustotal results 24.14%Heodo
2020-09-15FILE_BZU_090120_LRX_091520.docdoc 81359dc1f57093677819ab85af1f1429b8b5ecb3ae4ceaa5f79483ed6632f836Virustotal results 24.56%Heodo
2020-09-15REP_HBD_090120_DUS_091520.docdoc e236af0ff1dc6eeeb071a3e3803e7fbf90358b72d28d4be51753cac423614a85Virustotal results 24.14%Heodo
2020-09-15FILE_PO_09152020EX.docdoc 67a75548a3b665ecfdae82894af9afd70eea10739504d1a88e332fa55c9dd797Virustotal results 25.86%Heodo
2020-09-15INV_63TATL9.docdoc e59d9c71dc2b1b07bbcddf5a7deb089e38f07cb485353ddd1e9dceb25a92c041Virustotal results 27.12%Heodo
2020-09-15REP_DAEUXL0QT.docdoc ab62b40af15a3394d7dce6cb44652e58aec60150e431f9eff3ceb517bfba76efVirustotal results 24.56%Heodo
2020-09-15BAL_N72PBEG9T34ZYYT1.docdoc ee4cb8147930b79304f60f6160cf2532f3004cf9d4d838576f3cbb850c085294Virustotal results 24.14%Heodo
2020-09-15DOC_77002307.docdoc 24cb7f01e7145bec55d36a8acc1cc1abd754ef76615097aeb792fa5025bc7cd1Virustotal results 25.86%Heodo
2020-09-15PO_09152020EX.docdoc e4fef3fac02d6446ba2e8e83cb1b661aeca814d908e8b1c256a138f350f2d57an/aHeodo
2020-09-15M_YI0272334231LD.docdoc 10b17795235e180a179c175fd900f397c7d967604ffd8bb0e06082b68c57c0f5Virustotal results 48.33%Heodo
2020-09-15AJNX_YXK_090120_UID_091520.docdoc af1f4de1f933555cb0e3e2e75977b4e12d9602c9f6572fe342b590a54597e7e3n/aHeodo
2020-09-15BAL_077167655754122342005.docdoc 807bf4c0dd85eea9b4ea5c41fab297064a1a79599cf41ee23eddea254c4f5692Virustotal results 46.55%Heodo
2020-09-15WI_AV6662552891CG.docdoc 9911312184bb07eeb3040cd5c10b824f0dc4defe5de5367c22d7d95046426a4fVirustotal results 48.28%Heodo
2020-09-15YHWA_ME8574527666NH.docdoc 2d762ab029ed06e534d2fe01860356c294460430b467b6cc9ae3968bfe0d39b7Virustotal results 47.46%Heodo
2020-09-15BAL_GDZ_090120_QSO_091520.docdoc 01d49bbdb64dc17e757bac7421c4e96e8fcdf6c5546c9ec8336680d4c6e81f75Virustotal results 47.37%Heodo
2020-09-15BAL_QUG7LE1I5BM.docdoc f03848c6afc05cd5d611b8304cf3a3e07b29204249f889f19885d6a476206f74n/aHeodo
2020-09-15INV_MW0703833754YS.docdoc 11457a99a5505f705c398e4e05548708cc0ca4e18748421ea1374c0f410eb5abn/aHeodo
2020-09-15PVYQ_82476310.docdoc b39dbc57e68cf701fad0dedcb81f6851d1241eb91edc91e37894db8d34bea3d5n/aHeodo
2020-09-1576667390.docdoc c35e9c9afc96480d2758c3b540ab077b6cb25140d4fe35c18a49627acfad2745Virustotal results 46.67%Heodo
2020-09-15FILE_68587304.docdoc 0610a25bd15aa42196ef53e0895bd6a44111f961df28f1c091c54016c9669b26Virustotal results 45.76%Heodo
2020-09-15DIYS_1866329595399623315364.docdoc 6ef3421c3c2d879e5ca7cb83b8a540f77a9f78cc60ed7ef9771ef39e8b92f48cn/aHeodo
2020-09-15FILE_PO_09152020EX.docdoc bdc5631818335d59a977eee0b55578254df73a429b5c6a2d24b1956194e29c66n/aHeodo
2020-09-1585562183.docdoc bb9f602ad96cbe273388a0693171c3973e1353bef3ceff859abf378ee3ec09f1Virustotal results 44.07%Heodo
2020-09-1516731552.docdoc c6aeaa35f509ebc9ec72cf09b60a5b65360f64329041aa96959044f268dc8e86Virustotal results 32.76%Heodo
2020-09-15DOC_PO_09152020EX.docdoc 896a53572f85ad0c7e76943a28d4e017a47ec95b8905300f6e1e03ddea47e4e8Virustotal results 44.07%Heodo
2020-09-15X_PO_09152020EX.docdoc 226c6a5975ec56d38b6444325d3a4aabc3f5c9ff0f8de5cca0eccf3e2ad57f97Virustotal results 44.07%Heodo
2020-09-15BAL_PO_09152020EX.docdoc 29d8e169a30fd7895f5e7c44d984fc2df3ecdf41230c24bbad22b1084ede0a32n/aHeodo
2020-09-1553744093.docdoc b5fe7ec6d41ec506aec64e171d1a201d8c9ea0d72bf698265439530d7b96a754Virustotal results 43.10%Heodo
2020-09-15REP_PO_09152020EX.docdoc fce230cc51f22d3300a491125869d2d269a62848b60d641218f36cd92e7ec261Virustotal results 31.03%Heodo
2020-09-15YB7QM9G.docdoc 96e9194d08285c4dae093f6075771fe0f21778e87b190999a06e84e9d5aef3ecVirustotal results 40.68%Heodo
2020-09-15PO_09152020EX.docdoc 052459689d69d170fc38722107e8ad827f626fc0808ff2c9afb2d7fc74b464f4Virustotal results 30.00%Heodo
2020-09-15REP_VKS_090120_HGW_091520.docdoc 8aaac3ba7ee1eea4f407286fb7974879a2cc0baf38d4de3d7add15df3ba2bee6Virustotal results 42.11%Heodo
2020-09-15REP_PO_09152020EX.docdoc d1561f797d8c7b185a29acca5b8b8db71f711dd129448acf96d3ac1d0c23d0a0Virustotal results 40.68%Heodo
2020-09-14QJ_PO_09152020EX.docdoc b1519746d2c2a349f5fd48d89760bc67161a6474005f9060909bcf2e2c3fa1c2Virustotal results 42.11%Heodo
2020-09-14DOC_PO_09152020EX.docdoc b3c6abf670480a16083371fbbe54e43aae5e790eff0aa861813e51e44ca2c975Virustotal results 25.42%Heodo
2020-09-14INV_MCQ_090120_XBX_091520.docdoc b5a7d485108a6ba50def96acbffc0765954b5e85ec5e3898ea386ddd63b247a7Virustotal results 40.35%Heodo
2020-09-14INV_87642456486475.docdoc 28852a0812d4c493c54382ee8489aef1695d1f07cedc122e9dff86a2ecd451baVirustotal results 36.67%Heodo
2020-09-1402609310.docdoc 5f31da31a925d5eddfcd8a434b8adb8329c95b9ef397d6d4b0c3cf33c44787a6Virustotal results 33.33%Heodo
2020-09-14MMV_090120_GXL_091520.docdoc 2497dda34472d547ed6a08c9ecd19ce163c0ad9ef57c853d99973267810eb910Virustotal results 34.48%Heodo
2020-09-14INV_PO_09152020EX.docdoc 4d58f9bc9cb9c71282fc9003acfff87afebaa80186b02cbd42d663d20eb5c43aVirustotal results 25.42%Heodo
2020-09-14FILE_PO_09152020EX.docdoc 5b34fdfd16c49176f9e6e5cdeb255aa73c18c4ef0648c89118cb1b17b52c8f13Virustotal results 25.42%Heodo
2020-09-14UDF_090120_JXZ_091420.docdoc 44cca8cba5ff51e2195e4c42279930fec3adf0cec60c38f0827e18f52070cd95Virustotal results 29.31%Heodo
2020-09-14FILE_QFV_090120_SZT_091420.docdoc 25495bfd60e1250a8ff4fe5bc5f0360ec275594ca52f86be9d2cef2d2c134734Virustotal results 25.86%Heodo
2020-09-14D_70824075.docdoc 52fc0bc99c65b0394f76bff61aec92b537d81777782b346228008e19424b4642Virustotal results 27.12%Heodo