URLhaus Database

You are currently viewing the URLhaus database entry for http://marseguro.com.br/cgi-bin/http:/parts_service/b4w2gcbbei6KpMenJ95/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:511692
URL: http://marseguro.com.br/cgi-bin/http:/parts_service/b4w2gcbbei6KpMenJ95/
URL Status:Offline
Host: marseguro.com.br
Date added:2020-09-15 08:44:25 UTC
Last online:2020-10-06 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-15 08:46:40 UTC to abuse{at}hivelocity[dot]net)
Takedown time:21 days, 5 hours, 24 minutes Bad (down since 2020-10-06 14:11:10 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16LIST 20200917 GB18731.docdoc 97214e11cc4031687da4e0f6bd8d5c8d1d671f191e3e0cd29ff774dd79df8d3cVirustotal results 27.12%Heodo
2020-09-16mes 2020_09_17 F658478.docdoc c560bd7cab130e548e905cd859fe196bd6e613280ceb83dd2cc348f9c6545c57Virustotal results 27.12%Heodo
2020-09-16LIST_20200917_FPG8014.docdoc 4ff425a974e9720cc0bf4d6ae70d4d57ec4edba20d9949e1c2dce87d6f7b20b8Virustotal results 26.67%Heodo
2020-09-16Inf_IHL435.docdoc 2f29cf2a87f1dd91f4fc1632dfb7f8b203c94cebca50bdcf803c71159167a18cVirustotal results 25.42%Heodo
2020-09-16Rep-RD04961.docdoc 6843240cd5e8754d30a1b8196f3c8a4b33c1c213920f4a84832cafe60f195c79Virustotal results 25.42%Heodo
2020-09-16Arc_55333.docdoc 2d1a9569e809e86eb68d7b98229847bd41adfca4a8525ad55338934bdd0f6514Virustotal results 25.86%Heodo
2020-09-16ARC_20200916_BS628.docdoc 02e3f118e71d821fbc946be66158b6278db8bcc976d2859f5d4bf3768329864bVirustotal results 25.42%Heodo
2020-09-16arc-2201.docdoc 2bce55fef7af642bf1a2d9206b3af012b8b14cd8fc95709ef2f747901ea726cdVirustotal results 24.14%Heodo
2020-09-16rep 2020_09_16 689876.docdoc d972d66e6ed2fcdbf01ea2e4fa5ac97c13802701905b61ce26a4acc19be0378dVirustotal results 25.86%Heodo
2020-09-16List 20200916 BD3460.docdoc 2e1b8dfbe1719ad829406992171d920bda27018d3a91e35dd419526e3d25bf56Virustotal results 25.86%Heodo
2020-09-16DAT.docdoc be0c2a749f260510345861c6c9f6fc1cb52747bf0d8fe78e7f7d9558b95891cfVirustotal results 25.42%Heodo
2020-09-16mes_2020_09_16_FY339.docdoc f088b33a237029f5eb3e6e86edcb6aeabcb73b66b7692edbf8dddaba8466ee6dVirustotal results 25.00% Heodo
2020-09-16315-6447141.docdoc d8b47baabbae09c0c4031caf55507f5a72274312d9d0362830fa9dd62c911630Virustotal results 25.42% Heodo
2020-09-16Attachments_2020_09_16_096.docdoc 335fa963bba3e7b326133fba097b6f2023c9bfe1e666d573978cda2f92101471n/a Heodo
2020-09-16FILE 828744.docdoc aff13401e7b8a7ffe133469b277f3e453dccc4e3679ca7434c7ad00f1b485e1bVirustotal results 22.03% Heodo
2020-09-16K455-A100.docdoc 122a6a7c89864ce7eb51d7a6b54da6100eacc1a2f40325b866e63db8eab80784Virustotal results 38.98% Heodo
2020-09-16Attachments 997317.docdoc c5ee86332c530c41e6a9683dad0ba8c5a8c835dd2f304756e3f7a7b3102b7118n/a Heodo
2020-09-16rep-2020_09_16-707042.docdoc 2a5a214979da006e6a9e67cbc8d207fa6b5d3641b5436fb00a9a8b62fe6a15f2Virustotal results 39.66%Heodo
2020-09-16inf-20200916-L20239.docdoc 81ff1426eb59eec8a8753589cba0b00fd96ca52bf947650c4b247d6cc655b4baVirustotal results 39.66%Heodo
2020-09-16MES_20200916.docdoc e0c7b8080fc647e78139d3b533912d0e4ac0acb868329eea833c080084fe5066Virustotal results 37.29%Heodo
2020-09-16Mes_602323.docdoc f705caf3b7dd3cb911c258ee86b3c77fa6d5eb999f7799044ce66986b39fda81Virustotal results 34.48%Heodo
2020-09-16rep_20200916_IA927408.docdoc 2fd7624f767d8dfd5ce27157765c250c8355f390711487db72a758b033f2f135Virustotal results 30.51%Heodo
2020-09-16File_453.docdoc 7970fcfdac90cf00463cbe1bd52b65de61382f75f5fbe7bdfd457aea3893e244Virustotal results 26.32%Heodo
2020-09-16INF.docdoc 6588df39b1cfd797af1644aedff24c2f62e80a5c800b8e8187becb4d8881c73dVirustotal results 25.00%Heodo
2020-09-161009 221.docdoc 139c1c2329d28807c00378921a8d8094f2520f44c3b6d71e8683f58ef5433c75Virustotal results 25.42%Heodo
2020-09-16DAT_684933.docdoc 4d77c339a0eb8b35f138a8bc3168f62826ef57d988d7bd6ceb0caff11a4c77a5Virustotal results 20.34%Heodo
2020-09-16DAT 20200916 TT52905.docdoc 4ecb24460ecefa2376fd1ee0d4c80ca3762b26e31ccd9bfbd5f321fa100334d2Virustotal results 20.00%Heodo
2020-09-16file_20200916_030232.docdoc 97cffcaaf100ec54db380744f86a801950511370eb6f0b016daaf3135b91ca9bVirustotal results 25.86%Heodo
2020-09-16Mes-657.docdoc 713f58d4582847587a9672a604bd31ce604ee2c1e3a3781ef7c17ac2a25aac59Virustotal results 25.86%Heodo
2020-09-16List-2020_09_16-201744.docdoc 7789a5ea12217e4890eed699d3532cd98e0d71b7178bb51f11e76dc34a3da27fVirustotal results 25.00%Heodo
2020-09-16Doc_2020_09_16_373113.docdoc 2e5cf7a36eba949a076059c64011466d48fabd37a7ea5a23bddf0f63de7e7952Virustotal results 25.86%Heodo
2020-09-16MES_20200916_Q55829.docdoc 2df2c1608e75dc3162882ed50ee37c43d174deb4d1ce6fc85fc1386efb6a1b71Virustotal results 22.41%Heodo
2020-09-16file-20200916-85504.docdoc 9c2e02ead173d8f1fe22a0b2adf237ebd75b82444b7ca8747e428e3e02f9ff58n/aHeodo
2020-09-16rep 20200916 N861288.docdoc ef05270695f68818610fd803c17c07b5b86a2151c945f96a499343c75506b27an/aHeodo
2020-09-16Doc 2020_09_16 5900.docdoc 498851ab9ce69c8a81c7e61242bc6897b23a7d9c7a5d961cfa1eb17705de72dcVirustotal results 20.00%Heodo
2020-09-16file-3422194.docdoc 43be6d6834d6347397c37b76980ba172a1bf750ee9c89cbf6c125df91e916d47Virustotal results 20.34%Heodo
2020-09-16Mes_2020_09_16.docdoc c179aa89c19ea182ad6d23576d3e3e939f704d9c25777f2757b6e311c89cd0f7Virustotal results 20.34%Heodo
2020-09-16UNTITLED-2020_09_16-CE57936.docdoc 60ebb60bdbd9d062410367b982c74e9f4d3a5a857f4b3cbbfd64f9521d01472cn/aHeodo
2020-09-16File-20200916-U398.docdoc 5d3df9c2456b7ce750073492a426f7769a92db04ff230f7d4a15eb20384dd207Virustotal results 20.34%Heodo
2020-09-16arc.docdoc 63dfb07c5b9fcb4fdce014b1a639a20198b2e1999defcab1bb6ce7f55ac02ae6Virustotal results 20.00%Heodo
2020-09-16doc E168.docdoc d1ae30d99ba1693d44ab486f81acb82fd54e97eb6b05bd956a9a00f58dbacf93n/aHeodo
2020-09-1656588KBB 9316212.docdoc 6abc1726cd059afef29ff4ca05ef48445a931969f6db0f9e90becb790f485e83Virustotal results 20.34% Heodo
2020-09-16mes-2020_09_16-KUW415.docdoc c18d26648d361c7c52164f6987ea197d93a43d055247acad10999b8d896ff8e1Virustotal results 20.34%Heodo
2020-09-16Attachments 20200916.docdoc 667c568b9e49ed53801f5dcd122990fa693072f9778e7d326410f2e7c9c74b25n/aHeodo
2020-09-163929 036617.docdoc a19fa376f35c2f22c67112d0a5049196c92d820b41c96354ea3fa52453d71d82Virustotal results 35.00%Heodo
2020-09-16MES_2020_09_16_Z9053.docdoc efe40182427cf19b9573f818abffa41b831d703a3ae7659825faa9c768257294n/aHeodo
2020-09-16File 404172.docdoc 443a06a937340342dc9548074d915fe4d72baa3e9a8c965607a7d43c11c091b3Virustotal results 33.33%Heodo
2020-09-16Mes 20200916 NL814337.docdoc 793c4468a9e884d73484aa56d9bdde013d34801ae1e8120652713811130e560fVirustotal results 32.20%Heodo
2020-09-16ARC 20200916 CJG781.docdoc 961c90068d4be9c85f77e3ff6bc75d82cbee2a7c84158dde6fd378db85069766Virustotal results 33.33%Heodo
2020-09-164915_2020_09_16_U6614.docdoc 12b8124161c9ce3fd1f5501e19baadb499863b1c6411d7ea64204be683f7706fVirustotal results 33.90%Heodo
2020-09-16Dat_81034.docdoc 6ce61eccd50917328baca8baa337e8be84724ca3af434db260146552b5b901b7Virustotal results 33.90%Heodo
2020-09-16MES_446.docdoc 57c55ce3943b5424de0f259dfd11a755a3fa502bb80433cc12891f1c50694998Virustotal results 33.90%Heodo
2020-09-16Untitled 20200916 W9785.docdoc b6c369aa5d1c7381b6dc6a49054428f659335685ccc912120497d9a650f6152cVirustotal results 33.90%Heodo
2020-09-16621CIJ M188.docdoc 04266111b8aa0890a65bbdcc990bd92c054ccfe06d3ecadd00df1dfab2a395b2Virustotal results 33.90%Heodo
2020-09-16Untitled-X998915.docdoc 061ff88d82151231c5c858ae6daec8558d578ae6a21ad02c34fa840246f02fb3Virustotal results 33.33%Heodo
2020-09-16inf_2020_09_16_UPF0236.docdoc 1292dd86f8e8fe11fcbf78ef24f8e0001be9a651a0704a2d31fa4fdcbe6dfed2Virustotal results 33.90%Heodo
2020-09-16MES_XS288833.docdoc 3efbf2f756756ebf7bd7511292448954e6d7cdda20849048e5a6ffd67ea27874Virustotal results 34.48%Heodo
2020-09-16Dat_2020_09_16_LY709.docdoc 9bbe6656d238339ae8b2e4eb7afdc2c30b877f1274b56eaa0cb1c0ec7212edaeVirustotal results 33.90%Heodo
2020-09-16111NYV_2020_09_16_FO0904.docdoc 3e9f742cbd4f500a90f5307eac39dbaa71ac16f3991a12c4c0dee78bb777b09bVirustotal results 33.90%Heodo
2020-09-16KA00932_2020_09_16_633.docdoc cf5313406e5d9d7550e340b4d6c0351f0b5ce0af8102b09fe94835e9b634ed9cn/aHeodo
2020-09-16rep_20200916_7471092.docdoc 20c7b5630dc478bc52a2f6e463b895d3339d123254ca558d5dd6b0a6fe6daf1fn/aHeodo
2020-09-16INF-OTU478131.docdoc 7f57a659e3265b22c0cfded64ea3a0a3fb8d36c8f10aad23def7e1399d99a656n/aHeodo
2020-09-16Untitled-2020_09_16-DEW118124.docdoc 82ac6817a3e36a939990363702ea2f1314bd610d6374575a5b7afefde85c7065Virustotal results 31.48%Heodo
2020-09-16File_20200916_PL75294.docdoc 3e88858278038bca70d809d2baa4ea4072da2a976880d113c8edfdc49fda4590Virustotal results 32.20%Heodo
2020-09-16DAT_20200916_KB84103.docdoc 5106eec527c2c3f1926725309fde44601cac2f45e601129ee392e6023e415d34Virustotal results 32.76%Heodo
2020-09-16Inf V065.docdoc dcb0d0b6eb04aeeb4ed91ac7100ad41a9014285cc6be83351f9af84207386d7cn/aHeodo
2020-09-16doc-275594.docdoc 319317f38c99f529c8edb9dfe98e8bae40102f5b321402ac862f6745bf125091Virustotal results 32.20%Heodo
2020-09-15dat_71288.docdoc 801147f2dc7b49cbc2907525e54d3bcd41a7ba4be9d648de5e2222d068e63d9fn/aHeodo
2020-09-15Doc 2020_09_16 99348.docdoc bb6d6a8ee182afb71df2f0e50dbe64c6f2bcb636231b693f8d34aad389480be8Virustotal results 32.20%Heodo
2020-09-15dat BQQ917281.docdoc 398b03590995c96a56a346f9882b22caa5fdbd4d9606402c7a6f4bc3675326e1Virustotal results 30.51%Heodo
2020-09-15253_2020_09_16_GO80242.docdoc d0fba2b098ff90a78440a38e84734c679208cd2f44396b653f818b1e6618c829Virustotal results 31.03%Heodo
2020-09-15Attachments_20200916_PP204.docdoc 61bc4a7eec2f1f25d62b78ce3e921f8ee133898d94e02261c5daf71e50b49947Virustotal results 31.03%Heodo
2020-09-15arc 20200916 A57886.docdoc 4ed3b936d9b0ffb44be013208f756abbca27cca3ee96b46494369f2e82aa430dn/a Heodo
2020-09-15ARC_20200916_D5606.docdoc 79072ee92448d21af7333e10da35c4ad37c862ddadd4d11e9744f5ac2f41fa2eVirustotal results 27.12%Heodo
2020-09-15arc_2020_09_16_G77166.docdoc 3a7d290d64c985186f4275fe8db0b5808e8d3dfcaa556a98851d23680f56089fVirustotal results 27.12%Heodo
2020-09-15Untitled_148.docdoc 59de1190716bb70c977e59d24c6527fd5a765e7abded702239495d195191eae3Virustotal results 25.42%Heodo
2020-09-15List-2020_09_16-8383191.docdoc f6026b1907982603476913669e74731759ec372c967219ee892a9343d54183a0Virustotal results 25.45%Heodo
2020-09-15DAT.docdoc 7906ef6d9d63daaa63ac4e0fe1f61164d6e4d79ba7da927b9c22abbc95acc9cbn/aHeodo
2020-09-15FILE-687425.docdoc af24b69fe5f997b8c930405122e5bf3f0290858619776823bcf2efde68a3076eVirustotal results 26.67%Heodo
2020-09-15DAT_VA5740.docdoc 8a4d95a53d4c08749787abffaeed2faf9012068b6177db2f70f862b12e4d4c1fn/aHeodo
2020-09-154400 2020_09_15 F6330.docdoc f198ab670a8b0340f9f9564522fcd3ec55bf271c8497766810c9ddfde0105648Virustotal results 27.59%Heodo
2020-09-15Arc-2020_09_15-351.docdoc cd08e3fd8c919ee8a3c4878e05fe51f82e99ad158484d39fe28c9c9e83a9141en/aHeodo
2020-09-15Attachment_22184.docdoc c81ff4ef68c60dc83bbe763ffea65f186310502752752be48cfcd97e49296c11Virustotal results 32.20%Heodo
2020-09-15list 2020_09_15.docdoc 9c1cb53270b551562a51bd5c7d704ff53f077fc07b79ea003b463e0b14853e4an/aHeodo
2020-09-15mes 20200915 T7584.docdoc 5b372067c1b29b0f14ad42676ac56326898cca6fbe9cb7d6cce703f1e5274c31Virustotal results 32.76%Heodo
2020-09-15Untitled 2020_09_15 351.docdoc dbab1d04f6be43ab157f7d77850e5ce737f83222c7e3c2fe5f468c27abc8e67bVirustotal results 32.76%Heodo
2020-09-15Untitled_2020_09_15_457152.docdoc 72a900ad332e866b51a561a2de218571579ad070a8f19799710a2ac261a9f7b6Virustotal results 32.20%Heodo
2020-09-15file 2020_09_15.docdoc 3927ae0a2238e0065a42a60c22fd5d8424df580cd6bbaa0f44c7a88acb36dec5Virustotal results 31.03%Heodo
2020-09-15MES_870.docdoc cd33f316ebd200842ee712ba17bb690b9cbd8751955a162d6a1c44b0ed07341bn/aHeodo
2020-09-15FILE_2020_09_15_S391.docdoc 788898711fa45e880f9eb22e655e1ef65a58aa5b62dfe11e68c6b1ea587bd900n/aHeodo
2020-09-15File_2020_09_15_P625.docdoc ec0700c7e97c66fddb8235fe657a7bcb1bd0267c1858a709dba10cb0dcfdfa49n/a Heodo
2020-09-15arc 1000.docdoc b262dbb7c5bfedc300edf2453eaa99563f37d9e33ce5488e48ba6ff56a18d178Virustotal results 30.00%Heodo
2020-09-15dat-20200915-HQM759774.docdoc 4750043e1297e5f6fdfa6736ae789eb8fbc983dd49cff12377d51b6f77d870caVirustotal results 30.00%Heodo
2020-09-15Untitled_2020_09_15_208.docdoc 2ddce65f2477e6003048b607164c41428034fe2b50406de560e2aa22b0881e90n/aHeodo
2020-09-1567874BKY X9147.docdoc 8f938913a1061dab6a00062bcb70b49c35e323f5a6cf836d1ca77c8d1eb2dab7n/aHeodo
2020-09-15Attachments 20200915 681.docdoc e8efa4ac0a78e78b96542a094bd840875de41e5f04320ca0642c636f8c2f93fbVirustotal results 27.12%Heodo
2020-09-15UNTITLED_20200915_0400734.docdoc 7ae0bf2299d65882246c5ba59cb8d05a3f40ada75e9c28bd9e86fb6185de702bVirustotal results 26.67%Heodo
2020-09-15inf 20200915 RL174.docdoc 0e28b0a67bc3bc6acfa73e14d5ff8e9f0f93cc23fc1c9b217c50b98eaa269880n/aHeodo
2020-09-15File 2020_09_15 64399.docdoc 89698120e14e5f6203ca0c7d033cbc9e2b18bc37bb175cb25d6234708eb44109Virustotal results 26.67%Heodo
2020-09-15LIST 2020_09_15 RJ795.docdoc 2b5117e3cd60e9d288b603b9346b50dec1c2bb8f5a3a6f13f8685c22345ca611n/aHeodo
2020-09-15ARC_2020_09_15.docdoc 3bf86a1c4985e7d7f19ea727ed39aa660c6f18eef225bcbbd068207d253ae0e7n/aHeodo
2020-09-15mes 2020_09_15 CR8821.docdoc 8ad422bd66b5a9c254d92adc292f4ff4791a940dc48d725610fbb02ad80f31fbn/aHeodo
2020-09-15MB39463_2020_09_15_LMX33426.docdoc 17c5546960d533b0df0defcf3c6a1db50d0ec10ebcdc9de157d9e40eb0c0d9f3Virustotal results 25.86%Heodo
2020-09-15Inf 2020_09_15.docdoc 92004fdfd845395f59b03e025722db7fbe54c0425e07e389df08769dc0b7a695Virustotal results 24.14%Heodo
2020-09-15Rep-20200915-4221.docdoc a54a399d9a047d56f0b33e904a7da2852376ed8a5211d14e4c3e225f992ac859n/aHeodo
2020-09-15rep_2020_09_15_U89076.docdoc bd9930fe25be74feaa42966355c9fdc9803fa8d52255a5f78b950297043bc164Virustotal results 23.73%Heodo
2020-09-15DAT-20200915-J79384.docdoc 60cc7889d4bca6658e884f969b130358a8911b73a5fecaabdf207e4880aee458n/aHeodo
2020-09-15mes 2020_09_15.docdoc 738282eb7cc063af9334cbb625bf13105ed6f56a48a6bbd0d39a937500087844Virustotal results 22.41%Heodo
2020-09-15Doc_20200915_QQ4147.docdoc d6a6ba1726014c272a4be4d8867b85739b700790d83f97c25845567b63783796Virustotal results 22.41%Heodo
2020-09-15Dat-682.docdoc 58075c5366b6ce6e0d6a708350cd85235d853c6a4eddd8438a1268a39b17d4b2Virustotal results 25.42% Heodo
2020-09-15UNTITLED_2020_09_15_411534.docdoc 6880d2e79190370d40b0b27d9a18e34142fab5a99a6e94aac94e5e32c8cbfe84Virustotal results 27.12%Heodo
2020-09-15Doc-20200915-IN4554.docdoc 69eb03823bc34a8285407cee97f0aa78eb6a4e98318f2b3121cc31df94f35393Virustotal results 27.12%Heodo
2020-09-15Doc 2020_09_15 9627.docdoc f163c66aa73b41b96ed8c04c9db32f3917a67fddb8f2d58ec0f0e51a7e127dfaVirustotal results 27.12%Heodo
2020-09-15mes-20200915-403012.docdoc 0cb05acf641f3f12f0d2f43a62786cdb1847eeafff45920ac8d2a2d155f0c12fVirustotal results 27.12% Heodo
2020-09-15File_2020_09_15_55298.docdoc 9ab65eafe5ee8a24aae972cd5202d553d653b1613e02fc162d3ba425dcd283f0Virustotal results 27.12%Heodo
2020-09-15Arc_20200915_RE72056.docdoc c23a242a9b18cdfcb1eb027b0adf192cb5c289b0ad26705241a762a4fe476baeVirustotal results 27.59%Heodo
2020-09-15Mes 2020_09_15 952.docdoc 056a94bbbf958dca66eb2343028766a64e0aef349935a47ca849fd2e7a89c43eVirustotal results 25.86% Heodo
2020-09-15mes_ZUS509.docdoc 4ffb60a6bdfa7e5fb63a913ab8545cfe5288827c74ea890d2aae2692f190737bVirustotal results 22.81%Heodo
2020-09-15arc-20200915.docdoc d022c59589a2ad650fad1bdac12c5e303dfa3fc7061019607c538bcc35222fcfVirustotal results 23.73%Heodo
2020-09-15arc_20200915_38510.docdoc a9690f5c26e45f7ea505e40cfebe5888a3535c137dee58140a63699579cadf72n/aHeodo