URLhaus Database

You are currently viewing the URLhaus database entry for https://jbconsultoriaenegocios.com.br/wp-content/54795772425399/xwi2274826499555696lxrn96usmlv8ta4/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:514337
URL: https://jbconsultoriaenegocios.com.br/wp-content/54795772425399/xwi2274826499555696lxrn96usmlv8ta4/
URL Status:Offline
Host: jbconsultoriaenegocios.com.br
Date added:2020-09-15 12:17:05 UTC
Last online:2020-09-16 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: spamhaus
Abuse complaint sent (?): Yes (2020-09-15 12:18:30 UTC to abuse{at}digitalocean[dot]com)
Takedown time:1 day, 7 hours, 23 minutes Poor (down since 2020-09-16 19:41:45 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-16FILE_PO_09162020EX.docdoc 7cad27b68df51d87f204a171a2f75a578b52e11f339a2bab138c6ada02b5a196Virustotal results 25.42%Heodo
2020-09-16JS_0B1YJLERVE9I.docdoc 9ca5390e9af21757dc77575f56e9d0528c527843951ae719c3aedd2d8680ce7aVirustotal results 39.66% Heodo
2020-09-16WUA_090120_NEB_091620.docdoc 7b1127e502c3d59ec345e24f48984ba9a6e5ccb5667e317f7c3f5a8ffef69004Virustotal results 38.98% Heodo
2020-09-1630480176.docdoc 1e5ed60832baaf0e362870373615cff90279bbbc4e544c76224f7528687276eeVirustotal results 37.29% Heodo
2020-09-16DOC_16368208882693886.docdoc b114281a6664f44018353cae8a6f00cea1d34854e2942f01a9e027d2ab333b9dVirustotal results 38.98% Heodo
2020-09-16JWKP_PO_09162020EX.docdoc 89e280d00eba5184867b52270ea583f8bda9161dcb52921411e456747741e571n/a Heodo
2020-09-16REP_IX3322552597PX.docdoc 234a1653236e959e6329aec64c1de58538db56e66156f95517c05b62487d70ffVirustotal results 38.98% Heodo
2020-09-16X_UE2679201003HZ.docdoc 02451c13f63ed93c6ed0c0e4a3025100834fd59eeaa78acff45d726c056b2293Virustotal results 38.98%Heodo
2020-09-16OH5152033294UK.docdoc 201b4b59a31c60055c285e64737d5bcba8974b4400c27f37765636deea097b30Virustotal results 39.66%Heodo
2020-09-16U4AXE0SERGWV6ZKT.docdoc d84e8e3441cf862fa793eb241277718737789cb1e43d92be3b8510f8bdaeddc1Virustotal results 37.29%Heodo
2020-09-16B_K6M9WX7XFX70QI4M.docdoc 0745a0b546e98bc288370d0b4faace44a060f1abb905403e159b812b2d694a7fVirustotal results 36.21%Heodo
2020-09-16J_JJG_090120_RGW_091620.docdoc c676f40df939ef32b19cfcd36138370ce7ed85e33cfa4e744be20734235ef2can/aHeodo
2020-09-16REP_LX1DYCTP2BUFH.docdoc bafb5cf6bb12b21e7f331fdf1488636a16efe662960947b470868882650f0fe7Virustotal results 32.20%Heodo
2020-09-16DOC_PO_09162020EX.docdoc 5aa5a3b76812b8b3edc3768f494fd3550f5088d44872ac9f4bbabb99137427f1Virustotal results 31.03%Heodo
2020-09-16E_TBO_090120_FXG_091620.docdoc 39031955d734e86e67664eee812819b699a9bc4f869cfb4d28db7f4c99cbdceeVirustotal results 30.51%Heodo
2020-09-16FILE_957422787513797.docdoc 6ba958c1d5b047f3d205a8d70c0603727e7777113e1a94b4a6cd6da9a2981de1Virustotal results 25.00%Heodo
2020-09-16INV_12245893345003948910703.docdoc 453fc431889b51f4fb7acf5fc4e22eaba8197e7d496d65d45233adbc854431f7Virustotal results 29.31%Heodo
2020-09-162801925899307996.docdoc 8df40fea0429dee60fdf8fa354db52ddf3cbe643cd5945d226b5eedca75bd659Virustotal results 25.86%Heodo
2020-09-16726652320591207263.docdoc 55caf48be5ac9c86baa0a943d9733131878d5b4316acdaeb3f9fc054a2e3bd38Virustotal results 25.42%Heodo
2020-09-16EZ0654000559WN.docdoc 0e0913f7c913e70406fdc7b5e47f2455d7152c4e461770cc1b9bee581491fab9Virustotal results 25.86%Heodo
2020-09-16DJPGKK8YI41OAA.docdoc 4f21e25c362b1dc72f9dd3b2b0910516918a46a4016a631a2ee276493d7d160dVirustotal results 20.34%Heodo
2020-09-16DOC_AW6874979135JI.docdoc f03cb295ce892d3a5376e3dca50e8d59e04c023ca4bbecf921022b94432763f6Virustotal results 25.86%Heodo
2020-09-16NZ6256049529BE.docdoc a1a24cdd447db95aa10894a3b471875da732d0240e0b855117d5d31d9ca09500n/aHeodo
2020-09-16REP_PO_09162020EX.docdoc 716dc594b3320a3bc8601253c2e46721df663c180acbb2b8e62c64f7362b06a4Virustotal results 22.03%Heodo
2020-09-16REP_1BJXAACVQ11HIU7.docdoc 8398f9c5f37ef0558a84d839ee7058340351a71fe4cf26d2590652a5a66857f8Virustotal results 21.05%Heodo
2020-09-16PO_09162020EX.docdoc 6578fea012e69eb51d9527777ef8c0a05c0e125586536d0f865a2e0ca949f57bVirustotal results 20.00%Heodo
2020-09-16T_71984569.docdoc b7d7c443145be4e2543b2786517f68cfef114f06e7c276368a6046c98963b766Virustotal results 22.03%Heodo
2020-09-16INV_HPX_090120_PFL_091620.docdoc 09c3f3aad8f9bc8f65a86d581ecb23b0a6262a9e28d5c5e19750e6770aa5e40fVirustotal results 21.67%Heodo
2020-09-16REP_NN2356007565BW.docdoc ba7b3a0a6b1d37bb71adbceb6c77e589b2645f816957e7a2555934d893ed8033Virustotal results 20.34%Heodo
2020-09-16BAL_40757997.docdoc ca193911fda7f38dae553f8746afb6e4021eb40f46144ae77d2c8883da2c3d82Virustotal results 20.34%Heodo
2020-09-16G_74253255.docdoc 733150afe58d633a7748c6b98f7f64f72685083f5b0535ee970260073452bc1dVirustotal results 20.69%Heodo
2020-09-16PPU_090120_OPZ_091620.docdoc 6b2eab389a7a3b060a0531979a56b8ed93a525cadb8535243ca02b29d3fdb1aeVirustotal results 20.34%Heodo
2020-09-16REP_YJZ_090120_DPK_091620.docdoc 3e62fb780c0ad60d1b4e8a1cf6e61782262a3376a1b6552c72c17df57d5375eeVirustotal results 20.34%Heodo
2020-09-16YS4154358623QE.docdoc a7f50bf321bf73c7af879ec128a67f16868adbb11239f8c21520fb3ba193eff8Virustotal results 20.37%Heodo
2020-09-16DOC_PO_09162020EX.docdoc a6706614d0da8c58be5ac61af02a29dd4542a4fd130464ee3bec6b26be18416fn/aHeodo
2020-09-16REP_PWF_090120_EIZ_091620.docdoc 1bb4012e89aef09b80eda22d99a564f0d3e923f96cbf25dc4a78ff6de6dbb31fVirustotal results 33.90%Heodo
2020-09-16DOC_JK8751875169AX.docdoc 901353bf497a3403db274b0c2175a9e1dfc3a0f60720e0dabb97619da3cde741n/aHeodo
2020-09-16E_DPC_090120_TNN_091620.docdoc 0b1f822ec4210b6345a48fc8f51bfe50d3713137557385c9ea7116635bac1f6bn/aHeodo
2020-09-16RO_PO_09162020EX.docdoc 1b96135a2846d7a48ebfda9e2ca65dd11d6820c9fb6f1ef9a9b2b15395cf48c9n/aHeodo
2020-09-16MZDL_INZ951TE4.docdoc b75415103d2353ac48eeb8630f5fb9c840dc5b1653351fd68b9a18b4bd070b5cn/aHeodo
2020-09-16LG_VOWBX0ZOJOPJGYK.docdoc 9b7b60825eb2ba0fbacb8419b73d618db0a10d1e8b7e45a946aa8afd771038efVirustotal results 32.76%Heodo
2020-09-16FILE_0OXOGX5KVY.docdoc c2a32a81ceb22f1d6dc99adbe9cefaf4591129c09124544e3ac46ddc0a19caecVirustotal results 33.90%Heodo
2020-09-16REP_61395530211648953067445.docdoc 0db5f8d914e43863feb97b598b9d216663ef184121d7d2fedee37f04325c1dfbVirustotal results 32.20%Heodo
2020-09-16Y_81083447989367.docdoc f875df5ff3a0ae34e7f9c96c6d419326c5411a29964693ced9a875ab952484d2Virustotal results 32.20%Heodo
2020-09-1533LBMB4LVZT3O.docdoc 5d4bee6f5bb0d02b980f21c2ae731bd12d5de2e2810058e6098fc888a7cc6f7bVirustotal results 29.31%Heodo
2020-09-15INV_93571824131846089.docdoc 4b8d943fe81e879719ab1718262d43f8621b5994175b1668d85913aec3f5332fn/aHeodo
2020-09-1524QA8OOMCCS.docdoc fd847c1ac2582df7fc923b1a1c5a5ab3c065151c082c2a2ed29b36210f899d07n/aHeodo
2020-09-151723067727869424.docdoc 0fb32d14c44e30aa5e3f3aefb634a5414cfa213f97ad3b129d3c18dcf8e7ff61n/aHeodo
2020-09-15BAL_HIZ_090120_PQC_091520.docdoc d590291ac7dd3e6a44554bafcd4bf1bafffa63e97ae93a536a420a3378ecec21Virustotal results 30.51%Heodo
2020-09-1552368459818023175644481.docdoc 5c42326192568cbdca87a2ce45c600c464aaf3ca19800654f7195bfd7e5f4e17Virustotal results 33.90%Heodo
2020-09-15QM1600530229OQ.docdoc b397f6734c037272b01c97d7f6272a06a5e6b7853cedf05f5931ec83619964aeVirustotal results 26.32%Heodo
2020-09-15PO_09152020EX.docdoc fb643feff479ae9885669488962697766e6dbd2da0ca79b1af07c225f60b0527Virustotal results 30.51%Heodo
2020-09-150C09DKKU6A.docdoc 2cde4939f797633de929427a46005c56edcb0480a7a87e6194df70cbe707bc7eVirustotal results 27.12%Heodo