URLhaus Database

You are currently viewing the URLhaus database entry for https://hlg.juntosporsc.com.br/wp-admin/Scan/arkuyy2a/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:513290
URL: https://hlg.juntosporsc.com.br/wp-admin/Scan/arkuyy2a/
URL Status:Offline
Host: hlg.juntosporsc.com.br
Date added:2020-09-15 10:51:07 UTC
Last online:2020-09-16 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-15 10:52:40 UTC to abuse{at}amazonaws[dot]com)
Takedown time:1 day, 6 hours, 32 minutes Poor (down since 2020-09-16 17:25:17 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16QSR_VGK_090120_SCO_091620.docdoc 02451c13f63ed93c6ed0c0e4a3025100834fd59eeaa78acff45d726c056b2293Virustotal results 38.98%Heodo
2020-09-16REP_PO_09162020EX.docdoc 201b4b59a31c60055c285e64737d5bcba8974b4400c27f37765636deea097b30Virustotal results 39.66%Heodo
2020-09-16REP_PO_09162020EX.docdoc 6820256b4c1c4c5b50146126f828d2317ef12e023043a390611fe9b036cfe638Virustotal results 36.67%Heodo
2020-09-16J_SOK_090120_FQW_091620.docdoc 0745a0b546e98bc288370d0b4faace44a060f1abb905403e159b812b2d694a7fVirustotal results 36.21%Heodo
2020-09-16BAL_JHV_090120_ZHG_091620.docdoc c676f40df939ef32b19cfcd36138370ce7ed85e33cfa4e744be20734235ef2caVirustotal results 32.20%Heodo
2020-09-16Z9IEQ40EWNH5NTG.docdoc 342aa4ab42fcc250006a6fb29d75a6c38d4b1fd1a40c5146d41f5b6f2a93e24aVirustotal results 32.76%Heodo
2020-09-16TURW_615508141577632.docdoc e5c37ebebf58e59d2a4855aa35821a501f6412b3960604cb50fd0d14009888e9Virustotal results 32.20%Heodo
2020-09-16FILE_2HL0MTOUEC.docdoc 5aa5a3b76812b8b3edc3768f494fd3550f5088d44872ac9f4bbabb99137427f1Virustotal results 31.03%Heodo
2020-09-16REP_SBH2OYGIU5UC7V.docdoc d568208ba08c7d30eea80ea82899d3af70f76cbfb55c2c0700fa48c40f5aaaa5Virustotal results 25.86%Heodo
2020-09-16REP_V4GVP59Y.docdoc db2e9beef71da38913f682036ac17e7cf2e5f9a0efbc1bf2f4c823a425f82ae7Virustotal results 26.32%Heodo
2020-09-16INV_ZL7847721807YE.docdoc cfd2873377699ee9677793786de5f4e61b92743b992a3514810515fbb759d724n/aHeodo
2020-09-16DOC_505671723601793720753887.docdoc e04f91fce52b82ec7b1d0b6c78767a725e28cf4ddb1044dfbf301bbd4cd14ddaVirustotal results 28.07%Heodo
2020-09-1660246761.docdoc eea6dc90968d819bd63f4a5b5ce7713cdec1f610e5867c1fc7882ebf155f713fVirustotal results 21.67%Heodo
2020-09-16BAL_30625146059084.docdoc 0e0913f7c913e70406fdc7b5e47f2455d7152c4e461770cc1b9bee581491fab9Virustotal results 25.42%Heodo
2020-09-16FILE_YIH_090120_YLF_091620.docdoc 4f21e25c362b1dc72f9dd3b2b0910516918a46a4016a631a2ee276493d7d160dVirustotal results 20.34%Heodo
2020-09-16REP_RQ2346637825JV.docdoc b3f649438cba7dc8f34dbdea69bb67a356906ead944752b8abcc4fcc23b737e6Virustotal results 27.12%Heodo
2020-09-16FILE_50694135.docdoc 1e89a5f9dafcd1d66bcda4eb3a8e391448606ae28a808d4f723c1decc91292c4n/aHeodo
2020-09-16UFR_090120_WXP_091620.docdoc 716dc594b3320a3bc8601253c2e46721df663c180acbb2b8e62c64f7362b06a4Virustotal results 22.03%Heodo
2020-09-16YF0434523286VK.docdoc 8398f9c5f37ef0558a84d839ee7058340351a71fe4cf26d2590652a5a66857f8Virustotal results 21.05%Heodo
2020-09-16DOC_45510453.docdoc a77ef77d33744bee43471f6efd79797f4e3b790cb616c1a01e546f03a4e960f7Virustotal results 20.34%Heodo
2020-09-16DOC_PO_09162020EX.docdoc feb760d598f3b0a810214edcedd3e0ccefa48d12ba8c1dfb200aea8d382b4070Virustotal results 18.64%Heodo
2020-09-16REP_81782316387051883098684.docdoc b8684570ff020824676af136d3c0076181180c4d7abe963ffb04a340ecb68186n/aHeodo
2020-09-16IZDVQL8.docdoc 30f103a39f5ac055f29f5b9364d03f9777737256ea1096c2cb957cd5285ea8b8Virustotal results 20.00%Heodo
2020-09-16FHS_090120_IHN_091620.docdoc 43458ffd76ecd54f2773f4de6f0428edd6be448d42400dee02d183cfa15acea1n/aHeodo
2020-09-16BAL_BKKZ4G4D99T.docdoc ca193911fda7f38dae553f8746afb6e4021eb40f46144ae77d2c8883da2c3d82Virustotal results 20.34%Heodo
2020-09-16INV_OQT9SI5E3HZZTOM.docdoc a28a23ca128d4219c14856421649e8be9836b60650040fba71022341d239b6faVirustotal results 20.34%Heodo
2020-09-16DOC_HS7698759518EY.docdoc b465429729fe580c1862844b5e743b4913418b2bde007ae65a8b150f3defe751Virustotal results 20.34%Heodo
2020-09-16INV_PR2703136707BF.docdoc dcfdf9a342db69a880c3acc43b01f2e3f04938ed129c9b3597ee7aad3377f25dn/aHeodo
2020-09-16N_2ZM3HA2ZG9LGJ2HI.docdoc 1bb4012e89aef09b80eda22d99a564f0d3e923f96cbf25dc4a78ff6de6dbb31fVirustotal results 33.90%Heodo
2020-09-16REP_13987211.docdoc 13238717cc308eece65e0e1787bfda1e801a63f6256bb88850fb9fa8d76042b4n/aHeodo
2020-09-16PO_09162020EX.docdoc fa8627da107f5b8e635cab97b056ed7a22bbe8dec6b3f2343fe001138ea2680bVirustotal results 33.90%Heodo
2020-09-16PO_09162020EX.docdoc 4925033a50cdf185c0bf7ca724be9b934b182fb4052da144b80a85f5f58bfef4Virustotal results 30.51%Heodo
2020-09-16QOH_090120_XGN_091620.docdoc 0baae239cc9292a22eac63fb292ef0261437ef05c3ae2f0b402dee533bc9fdd3Virustotal results 34.48%Heodo
2020-09-16DOC_PO_09162020EX.docdoc b55bf8d95ff3a2bbad6b0601a57de2a479f99a33add787f61befe740dad11b66Virustotal results 31.58%Heodo
2020-09-16BAL_DA6922541175JZ.docdoc 0db5f8d914e43863feb97b598b9d216663ef184121d7d2fedee37f04325c1dfbVirustotal results 32.20%Heodo
2020-09-16AN3328603002TC.docdoc fca275c16aa901a7fff33e9ab6ef4a73787f1020eabc602bfdd18bb08c4e78fcVirustotal results 32.20%Heodo
2020-09-16R_63817985.docdoc f612c549bdd3f599721c805169c70aa6e0b6f144a0a58a323f0d59d11f23b45cVirustotal results 34.48%Heodo
2020-09-16QQ9952331334IB.docdoc 67cb2e599dc74d3e6f8048e4f19b08bb8852579326ae869f8c39fa818ef144bcVirustotal results 30.51%Heodo
2020-09-16BAL_ET0048023234LG.docdoc 52a5776503722d0ea87fa60009674bdd3ebbd4449ed9328bf502c7ec5c5ac516Virustotal results 31.03%Heodo
2020-09-164737276719243472770635.docdoc adbca35477fb3a09c475fd0866dc9150946d2e4bd9b05650f9f066118659df26Virustotal results 30.51%Heodo
2020-09-16BAL_PO_09162020EX.docdoc 588439f42539c073b150e685ee9d555a0012c8bfbd92b3bb4091b6ba21ed3d6dVirustotal results 29.31%Heodo
2020-09-16BAL_JQAPOJB5ROJR91.docdoc 8e6f30327f622ec5f0e0af698a465ea3e932a184bd57077e5561244208e45f8dVirustotal results 27.12%Heodo
2020-09-16INV_68526406.docdoc 1fdc71b89f5d3b5fce037341692415964a8c4141c9579be50045bf9d2e309afdVirustotal results 26.79%Heodo
2020-09-166DP19PAL.docdoc 3b610a0aa4890a007dcf6df33178a042c25d7ae68a3fdff4d368a5728f811a78Virustotal results 25.00%Heodo
2020-09-16OOPQ_PO_09162020EX.docdoc 5184e08e6c595ddbb60b6ac4030286b2e70fa5ee7567cb0360b2a66ec04f8d89Virustotal results 25.86%Heodo
2020-09-16Q_PO_09162020EX.docdoc 607bf68103d9158e576beb6c3a4b287bc5f5283c5871075a532d44efa448b9a0Virustotal results 25.86%Heodo
2020-09-16DOC_PO_09162020EX.docdoc 9380f9cd5f7294278d3ae6cf6e6a6b7ac08e815a2649e50d5ad1bb16b9ac0bffVirustotal results 25.42%Heodo
2020-09-15DOC_DH4126453715VU.docdoc d2939ee7042da0a88a76cc4e60e5a8cfbc83e5b4fad03c547ffb13bb006a2c5fVirustotal results 24.14%Heodo
2020-09-15INV_78726195.docdoc f875df5ff3a0ae34e7f9c96c6d419326c5411a29964693ced9a875ab952484d2Virustotal results 31.03%Heodo
2020-09-15BAL_N9BI2LG.docdoc 20843d0cdd4530871779caa7abdd86286747cf5422074a5f981d499aed8d19d3n/aHeodo
2020-09-15ZET43ZVO994.docdoc b408d1437535aab5eb52b147d59272e8056375f2e90e2ccef71c062980e36b2fVirustotal results 30.51%Heodo
2020-09-15BAL_73882406.docdoc ade1729cdf53dd56b39ae9440ccb71670f42e5f8fd2b0a564f11aa404c2d427en/aHeodo
2020-09-15IW_EFERSH0.docdoc eba11506102b0d17ade3dd25ef88614226a2faa5c3710af2a89b5588f49844a2Virustotal results 28.81%Heodo
2020-09-1573907411.docdoc eb6bbcf1755a8438e950e632c5e1330ff4c78dc8849914d2126abeb732ec4360Virustotal results 27.12%Heodo
2020-09-15FILE_12740919.docdoc 233f0708bd18c6dcfda50809ba5b1d71184f0743d6a9903de9d06dbb5fdcfdd3n/aHeodo
2020-09-15KCY_090120_PXC_091620.docdoc 57f88105c170f6a9c0718d37fc98fc60ebc7eecbd83b74780b5284d5412ff8adVirustotal results 25.42%Heodo
2020-09-15XTK_BJ6320922961WX.docdoc 7cec88df6a841fbc1251142492e673c8a2cddc58f21d6fd402f8167ee96e194cVirustotal results 25.42%Heodo
2020-09-15REP_GL2283385613IH.docdoc 6783ef413f3dc640c8c9accbac37c09de5db05eee45604f5334cd90e7bbc109eVirustotal results 25.42%Heodo
2020-09-15REP_58130859531.docdoc 231d8f32ef0ff8e1a2b69db9bf1bf6c665c0cdff42bb4e3407cf7fe579304994Virustotal results 25.86%Heodo
2020-09-15BAL_PO_09152020EX.docdoc 8803b647321791051baa9ae249b48b03143908965ed583a37b955bf28c6a1c77Virustotal results 25.86%Heodo
2020-09-15INV_9EUWNXIBL2QR3.docdoc 9a29066aa3490e60be3e563dadcd9f7ef75e6eef752abd1bd40ab5323a57a83en/aHeodo
2020-09-15JZR_090120_EER_091520.docdoc 5764303dc206274cefe1d8317b60d9cbf0f363db9b2735feb2cab9133b8b8921Virustotal results 25.42%Heodo
2020-09-1553199151.docdoc 5d9edc02f04ddf9fb8eeb524fba385c85303fdb91b154a912a32edc47763657cVirustotal results 32.20%Heodo
2020-09-15NRLE_47993991195812721359.docdoc 82c25613755c7a3a9737fe08cbc7fae6d75faa2807218b65d6b5a6dfb1bbff67Virustotal results 32.20%Heodo
2020-09-15YP0817464932WY.docdoc 81834b464c9d4cf11ffc357df7e18071f8e5d8f62d182e997059da665294a8b2Virustotal results 33.90%Heodo
2020-09-15VP6999569896TU.docdoc 1c6ce51748a1b4bdc97378a6091b03df69c39d6ec6185382608edd0355ae0bf5Virustotal results 32.20%Heodo
2020-09-15PO_09152020EX.docdoc bc6688b91c96942809bfc6219384dd3b47ee5f29d07b97d21d12e381b6ebab1eVirustotal results 30.00%Heodo
2020-09-15DOC_PO_09152020EX.docdoc c8410c8dd820bc1e8805ba93260cd2fb0f7707d75573915bdb97ea2a01b66ea8Virustotal results 30.51%Heodo
2020-09-15PO_09152020EX.docdoc 234abcda5234527fd9e5441e8bcb123edbc786548ab844a1b481642bfa9a4e29Virustotal results 30.51%Heodo
2020-09-15REP_80048851.docdoc df8e3bb8218a241d663a81c536d1ce5f64b91ade8fb09dbdc183006ab9e901a0n/aHeodo
2020-09-15CCLL_PO_09152020EX.docdoc 4b30a75800dac8e687499541fa381736b76d3f3b69146ea8801962b7eec548bbn/aHeodo
2020-09-15CS6N0I2YKM3O.docdoc ba34bf775daa42ec9022cd46e6fc17cc035d968b15fd48a74a765e88acaec39an/aHeodo
2020-09-15REP_JS1693678305LP.docdoc 33163e89d4430eb23360add971fa52651aac6d7f2212ea3bab450dca4eaafff8Virustotal results 31.03%Heodo
2020-09-15DOC_PO_09152020EX.docdoc 7183f98072abf96cb52a8cb67e459b8b465d6c544910b75267689dd7b3db059fn/aHeodo
2020-09-15VEW_090120_SEQ_091520.docdoc daeeeaf46ab956a95350b3dd00a6e610465b0cb7828c6c924413573804524099n/aHeodo
2020-09-15P_DS21SL63C93YOY.docdoc 41b26a08cef23f1d783c98829c4d5a4c38e260d9de966fa86c20ad488bf7d765n/aHeodo
2020-09-15FILE_WNR_090120_LMW_091520.docdoc 0ec418e8980ab3a6855c2e01e16335d606b8f8b54a4eb3dd9e3ac41201668ffcn/aHeodo
2020-09-15INV_371767838458669223212183.docdoc 13c1ba72706bb674ea0a6bf5b7231040f81d44e0ef91cabe81d84556525dc258Virustotal results 29.31%Heodo
2020-09-15DOC_WL8555637402RC.docdoc fda02bec817e33a0eb6c4f769013fb985dedd41c73e728f9db5d7ff9e76cc93bn/aHeodo
2020-09-154299908858285029.docdoc 7eb8772cc7350453ef78a981f2c5a2e71c909ef4e35ed2585e6daab6bbe651f9n/aHeodo
2020-09-151855413255.docdoc a90cf1cb6d035bbb6b3ff86c2b93faa430ecce7ced8293cf7938bc913218084fVirustotal results 28.81%Heodo
2020-09-15AGCW_4485877825067219538698.docdoc 155463c9c0f6ad4dc393997a8a05ef92ccfdcd3afecd7caf5a434422ae52d5c5Virustotal results 29.31%Heodo
2020-09-15BAL_PO_09152020EX.docdoc 4b8d943fe81e879719ab1718262d43f8621b5994175b1668d85913aec3f5332fn/aHeodo
2020-09-15INV_37279037.docdoc fd847c1ac2582df7fc923b1a1c5a5ab3c065151c082c2a2ed29b36210f899d07n/aHeodo
2020-09-15INV_SD7516352810EQ.docdoc d801da6fdceb7c5596f89f5c6b3cccb1f4c79690bb0a6f612ceac1ee58096eb6Virustotal results 37.29%Heodo
2020-09-15K_DVE_090120_HKQ_091520.docdoc 4e14eaff86f204c98eb2c3e3f1c819d230863f05ee0c1e9e5ac35ae3cceb507eVirustotal results 33.90%Heodo
2020-09-15FILE_J5PKX52WCOTK.docdoc 66ff020fb95ced4f2653e4ecdff764a34d92c4e883e306f037fb46b470b5fbabVirustotal results 27.27%Heodo
2020-09-15F_GJB_090120_SRM_091520.docdoc 356d47d62853cdffcc77d94782e286aea2cb43b33cfc90bd957d65bf9edf8c05Virustotal results 27.59%Heodo
2020-09-15DOC_379QOPKD6Y.docdoc 1cc4e6ecab2c4d1d8867cc06c63c3287cc0f37d7c173d90b81fcd07ecd523bcfVirustotal results 31.03%Heodo
2020-09-15CLV_090120_FEH_091520.docdoc 77b862c878b3ab4fbe0614191acaecb1f9de023fd95ecff518d725490190f4f1Virustotal results 26.67%Heodo
2020-09-1546769825.docdoc 9f39d3f8edf0e13fb2226e79b569714a44fe33fcb890f0ed2117bd5522757de2Virustotal results 26.67%Heodo
2020-09-15REP_IANVCBZ.docdoc 0a027ac005f0ab69b76b7587c1f5ac68377f933bb7d7aed7741899867ccd0032Virustotal results 24.14%Heodo
2020-09-15REP_PO_09152020EX.docdoc 79ba5a7a70056da57112bee19e3bc8f985e7b22339162bbdefcfb0084f8889ban/aHeodo
2020-09-15PO_09152020EX.docdoc 9558bbbb8facaeebb9539a63e639acd60d8fffdaa69c92c05ceb23e26e61c41bn/aHeodo