URLhaus Database

You are currently viewing the URLhaus database entry for http://sansorescontabilidade.com.br/wp-snapshots/http://UN06KZ9N8/JjE1GlyZiUSCPtih8Fv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:504388
URL: http://sansorescontabilidade.com.br/wp-snapshots/http://UN06KZ9N8/JjE1GlyZiUSCPtih8Fv/
URL Status:Offline
Host: sansorescontabilidade.com.br
Date added:2020-09-14 23:04:20 UTC
Last online:2020-09-15 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-14 23:06:38 UTC to abuse{at}hospedagem[dot]net)
Takedown time:15 hours, 22 minutes Good (down since 2020-09-15 14:28:46 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-15dat LCJ869.docdoc 07681877725e7dd17c0b5f7b5ded181128fdf3f919c8fe30f5d3c6e8283eed2fn/aHeodo
2020-09-15Doc 2020_09_15 511.docdoc ef0155dfa125f37fe72651907abd58ca621278f4e6af8ed772c2190c0984d6b2Virustotal results 23.73%Heodo
2020-09-15Arc 2020_09_15 36689.docdoc a0b903804944d2331c88b55c7a93462875cae51d4483e5b0a2f24774387bee20Virustotal results 24.14% Heodo
2020-09-15ARC_FM128.docdoc 47e1e01c3af355478eda44a0d753caafb16141a708d0f1f640938b6ec3cf454eVirustotal results 24.14%Heodo
2020-09-15list-20200915-FOF212.docdoc f4e332907276f80aa8c28be6bc453cbbddbbc3a0589f5e03ee258683f5923ea9n/aHeodo
2020-09-15REP ICK600214.docdoc b439dc9c9c9cc635fdf115b2718db9df9629df983699dbb91d586520fc0cb593Virustotal results 23.33%Heodo
2020-09-15Rep_2020_09_15_VX5939.docdoc 94693b748d2c7f8f24294e873fa3275afb1f63ff5ac5a3ca047a88715adee7ffVirustotal results 22.03%Heodo
2020-09-15inf_2020_09_15.docdoc 3ad326abc45400b40ed0fba1540f26c7864da17cd0bf503e3c5f435fba6adcbdn/aHeodo
2020-09-15REP 2020_09_15 499752.docdoc 85eec8889da0b83e50b944ec5aa43ffaaebd8d6e5b144af41e658879d4d9c265n/aHeodo
2020-09-15REP 2020_09_15 499752.docdoc 85eec8889da0b83e50b944ec5aa43ffaaebd8d6e5b144af41e658879d4d9c265n/aHeodo
2020-09-15Dat 20200915 900963.docdoc b257926c300ee20c8d474771e68be8e011103465844412e18cb0654e226008feVirustotal results 27.12%Heodo
2020-09-15Mes 20200915.docdoc f1fd07c547c01daac47147d1493401a592c89513e3c1ef5041ff8baf73d2b783Virustotal results 26.79%Heodo
2020-09-15List-2020_09_15-920.docdoc b96503ce8c81f9234169c129e5acf21fcb5d6c0b9dee0265c3fa76be06fbffe6Virustotal results 27.12%Heodo
2020-09-15dat_R42772.docdoc 45eac8d3f2c340c37b1149fded87c22cc584e341677c5cae9bab43280375a6acVirustotal results 27.12%Heodo
2020-09-15doc_20200915_U0246.docdoc 9dd1964d9bbb70eaeaf1a47da01c70660fa17f7f389198d754c2eaa4cf963f8dVirustotal results 23.73%Heodo
2020-09-15rep_GT701.docdoc 4ffb60a6bdfa7e5fb63a913ab8545cfe5288827c74ea890d2aae2692f190737bVirustotal results 22.81%Heodo
2020-09-151657715-521306.docdoc d022c59589a2ad650fad1bdac12c5e303dfa3fc7061019607c538bcc35222fcfVirustotal results 23.73%Heodo
2020-09-15Mes_20200915_YM611678.docdoc a9690f5c26e45f7ea505e40cfebe5888a3535c137dee58140a63699579cadf72n/aHeodo
2020-09-15FILE 20200915 159256.docdoc f316eecb674c54a4ec894a5a65237568bb94007f2ba66421a23ff37df4916fc6n/aHeodo
2020-09-15List 20200915 072240.docdoc 61ece0282de0d8ea6739dea95cfbe7a08bae1059fbfc8aab9a9a57a996b7c927Virustotal results 23.73% Heodo
2020-09-15dat 2020_09_15 03807.docdoc f97694da71b6d09abe7dce7e990340e1328b1e9647d6052cc2154065460f9d39n/aHeodo
2020-09-15FILE 20200915.docdoc 8b2013ca811304eb6da971681eb1329b0442436f50f2931ca034fb3671b63af6Virustotal results 23.73%Heodo
2020-09-15Inf-AV347661.docdoc 36a4c09aa36b6c1e44f28e3c14548c5af973d983f67070bf14f3ee4679ee599fn/aHeodo
2020-09-15DAT-2020_09_15-396.docdoc 477c395b9e8ff0dbc9e1be2bc00fc237cd22130edf50168630af4a01c2bfde34Virustotal results 23.73%Heodo
2020-09-15list 2020_09_15 H728.docdoc 44d8997c833d84fe296710ac53735dacaabe24e2b9fbb7d5e4e3b15a48866509n/aHeodo
2020-09-15Dat 20200915 88239.docdoc 6c6225685c94dc3731580b64ecab9c502b1a89defe6a0ac2c3d3ddb2726f9a65Virustotal results 47.46%Heodo
2020-09-15list 20200915 352.docdoc cf00026bf61471406d94a2ed4f58ba5c40cd51ce11251ee4e9699e8705915253Virustotal results 49.12%Heodo
2020-09-15ARC-2763001.docdoc e0aad52f9de4512023a6d55564583a80a0c187c213055d7ae3f5c47da8d5d7ddVirustotal results 50.00%Heodo
2020-09-15LIST-2020_09_15-0413822.docdoc 70fd42a9c8f4e756e7045642e89490e8917b44e18a081e82a9a6be42a1cd29a2n/aHeodo
2020-09-15File-2020_09_15-ZX6959.docdoc 9de8750e2891c99eca39c8611279a54098c6121731bdd8028fcb5fab110752a6Virustotal results 45.76%Heodo
2020-09-15ARC.docdoc 5ce44d83a41eb185f956666c77f22aabf955616d25fac283a491f9451fe7ba52Virustotal results 45.76%Heodo
2020-09-15MES-20200915.docdoc 722daad4788110079385f9dcb18317099000ff8ce70664dab44c0895dd127083Virustotal results 45.76%Heodo
2020-09-15DAT 20200915 2684358.docdoc 351db71f7f86ca34a34d77dd20dad996d2edb06567520169f89c2172a487af18n/aHeodo
2020-09-15Attachments 461.docdoc 6284608a75bd2f21cce00c2c3453353c83b146947f173dc53013c0919178a4c7Virustotal results 46.55%Heodo
2020-09-15W80853_2020_09_15.docdoc 8656695ef3e73212f1da1f7c552c57c9f43e5b9e46fe1f3aec227b1700baf555Virustotal results 45.76%Heodo
2020-09-15doc 20200915.docdoc 0cfd48d659357dfe98c08ed94a2aea6daf06a9bf7c06c092d529055fb592c179Virustotal results 42.37%Heodo
2020-09-15Dat-ZHW8805.docdoc 76d26557ad9344a10d718f60b088004f1335e8217a201641d894a46373bf73fdVirustotal results 42.37%Heodo
2020-09-15MES-KA71743.docdoc a5fe34f4f59c550793d6e628deeb7b0e77273be63dd3d68f950edcbbb2cc0d5cVirustotal results 43.33%Heodo
2020-09-15Doc 20200915 E358502.docdoc 5fae5bb30e9800ec137ead15679e59e39b70069c5a495f35874953f74cbd4c6cVirustotal results 42.37%Heodo
2020-09-15Dat.docdoc 89966dd362b436e2a9f2c8c60424c4d6c29197c7001146a71acdf9e29600a348Virustotal results 38.98%Heodo
2020-09-15Attachment-20200915-24087.docdoc 2bced1a8302d817af06cc07010a27345146769b3d9ad0e86d246ca93e4dc8e69Virustotal results 38.98%Heodo
2020-09-15rep_20200915_5491.docdoc 9ce006bb0e752354b2374803060115dedb3f8239567d4bfa6a2a027a74bd9b9bVirustotal results 41.82%Heodo
2020-09-15Attachments-2020_09_15-482355.docdoc e62e3ce49ce000faa67e3529b416113429d8e50c9a9a316886406f56e1a1bcf7n/aHeodo
2020-09-15DAT 20200915 9745.docdoc 0b92085e3fef4b9cb196fb9a8e9bf64d4eb8664184ea2bdf46132abfa7f72a3fVirustotal results 38.98%Heodo
2020-09-15dat_2020_09_15_A2360.docdoc ca62501fd8a132340a63f97e4547ee1384a7744ab8c7e1afe4e69a008b2c3602n/aHeodo
2020-09-15Mes-20200915.docdoc 0fd1ea9df6c248cc1ef6ac65fc534db5ffb946cd912f8199503dd93fecbda5c0Virustotal results 39.66%Heodo
2020-09-15Attachments 2020_09_15 I471000.docdoc c247ddf966fd2c2df2ffec2956e4798990741e8b0f7d121639bdd06fa98053den/aHeodo
2020-09-14UNTITLED 2020_09_15 L924.docdoc 3797086d291ee004f0fca9dab3efca616b89626f0f0f01ea2db082c63d67d68dVirustotal results 40.35%Heodo
2020-09-14dat 2020_09_15 TYX8644.docdoc 061cdd9bf95054729c409879d11d74c56ae0808ee7858234932993776586d315Virustotal results 37.29%Heodo
2020-09-14Untitled 2020_09_15 XZH591.docdoc 659eee918658caf613efe868209fc51ff054b39f70d699c5474e5f6ad4684d76Virustotal results 37.29% Heodo