URLhaus Database

You are currently viewing the URLhaus database entry for http://brunosantos.com/zuchq/report/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	538125
URL:	http://brunosantos.com/zuchq/report/
URL Status:	Offline
Host:	brunosantos.com
Date added:	2020-09-16 21:39:09 UTC
Last online:	2020-09-17 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-09-16 21:40:13 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	13 hours, 15 minutes (down since 2020-09-17 10:55:45 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-17	TMGI_46448743959971567119.doc	doc	a646a759b53cde465f66a1cabf6363c9b826f10073a766cdfff2a015168ae2dc	36.21%	Heodo
2020-09-17	GH60OWYYIY.doc	doc	208e89fb766998ab21cbde91b170f04f5833e9d0d69257b3654828d00dc79933	35.59%	Heodo
2020-09-17	YMKK_HC8190888449QQ.doc	doc	fa191cce995bce7e56b494fa94b13859f68f274e86a7aceadbac93d6778ad84b	35.59%	Heodo
2020-09-17	DOC_UJM_090120_MOT_091720.doc	doc	9bf20dfb53d447d25176c2839e17ba601117c7a1a4f051777df513d7641ebd80	30.51%	Heodo
2020-09-17	88912277.doc	doc	8a208192487ebae685a63017664df013b885234a7104db17ec13514b4b9ced41	n/a	Heodo
2020-09-17	INV_X2KPJ6GYPWUJ5I.doc	doc	fb1da662dff89db69ca276e03a883c96c5089932488e637ff60637aa73d876b6	n/a	Heodo
2020-09-17	FILE_DM5O2GECK.doc	doc	e0e9dac7a50485ca1030fc7dd02b0654cdb97f93294d975d06d9d8b8317d8e6e	29.82%	Heodo
2020-09-17	HVEO_2YV01I6TTQQOIG.doc	doc	fd0f987936c01acfb91bb84e9e9c3e6f425f55d07887f14ee595ec418d252849	40.00%	Heodo
2020-09-17	DOC_Q5R894CKGTTL9.doc	doc	dcf52647f987ed5fd370ecf3ddd3dedf9c3bcda6c29057f5464d8222839fc45c	40.35%	Heodo
2020-09-17	A_08371766.doc	doc	595abb95ad8bea9fcd875fee5c21baaf5f829e997eb430384a8fd7f43da2e0cf	38.98%	Heodo
2020-09-17	INV_17418455.doc	doc	c3474c39b7b924e42872d74244d0854423f1a19a0bc7bf53337994e269cad134	41.38%	Heodo
2020-09-17	73357546.doc	doc	c77010ecb3ef7c24c3c94a923eea805df5460a008b8cb15a2a7c58683055c738	n/a	Heodo
2020-09-17	PO_09172020EX.doc	doc	f0c89d19ca9b6c30286a2f5a0383fee0c9516589dabbcde5749a541cb666b41c	38.98%	Heodo
2020-09-17	9O6JRLZ10A9EL.doc	doc	8d1ff2bacfbda66fbafa8dd2c05aa1912c32f694f2d0aaac4ac43897edcb677f	35.59%	Heodo
2020-09-17	INV_VNAU99US71G76F62.doc	doc	163a09323a2678ec297914024703f458b53d81470967ee69eb352bb51a5d4f92	n/a	Heodo
2020-09-17	NHL9B77UI.doc	doc	8bed6a4e027b38076c316eb5378c9d60d8fd9305217dba0e315e93974091667c	34.48%	Heodo
2020-09-17	FILE_110911958994109145159984.doc	doc	d9a35783bb245b622048384501eb1c30e098c547b4d3079e0c8d01e06336464c	n/a	Heodo
2020-09-17	BAL_HUX_090120_SSP_091720.doc	doc	673ccb819f5c45634f57cd58fc55070323b5115de7093360197b016cc2cc57da	35.59%	Heodo
2020-09-17	BAL_40481140.doc	doc	430ef6af760d2105f3c14655f66ff5dc191916c938a26256085965a4a536c827	32.20%	Heodo
2020-09-17	FILE_WB3582440761GS.doc	doc	8f30ed97624714bbc4dd8ce51400050e106aef3630f8510ffd8195e28c9ea6e9	n/a	Heodo
2020-09-17	92944026.doc	doc	57e1942e529266771688a423f03e005f8ed47584381f2a38e92e4045550d657c	33.33%	Heodo
2020-09-17	A_41339575.doc	doc	ca5204766a181d5961896a0f4c506ed00718fad078c3a951d9343e52ad7f16d4	28.07%	Heodo
2020-09-17	S_32820244799013.doc	doc	76bf8d09a314a6ed1f11e8794d3027fcedcc3762677e37d8f7a304e4d370837c	27.59%	Heodo
2020-09-17	DOC_PN8192245773KN.doc	doc	1a487a6af75caefff2748862adf7200a692c1e5f6453c1d86ebceab252b5bd66	34.48%	Heodo
2020-09-17	REP_52192921.doc	doc	4fc07945a17ff1e3422b0c95992fa2750006aeb21b1e886f0c2876d4ef69a14b	25.42%	Heodo
2020-09-17	SBNEK6KOTQHM.doc	doc	2bc521550fad4a12b0bb8f34a8958db7b2f5b50e9f8579d30d814cee697ab694	25.42%	Heodo
2020-09-17	MQZ_090120_HXR_091720.doc	doc	d30169f108ec72fbaf16bb8726e798602988e1c42a7b3020b0ef0ad0572f9625	25.42%	Heodo
2020-09-16	GM_GGQ_090120_BFZ_091720.doc	doc	fcb293cfa69d4cbbc6afa71ad0a6456746863f91a54c2af300ca91c088f9c2f4	25.42%	Heodo
2020-09-16	FILE_58443024225955251.doc	doc	f656f7fc2ac175767aea79393803f493b18211403a390c2daf9c5dae720e26e3	25.42%	Heodo
2020-09-16	REP_UYDNYL3I60QIXY6.doc	doc	b88f5009f8b75ec0a35f549fa777d05a819b0ca478eedb65a7b0a9fd01d51e30	25.86%	Heodo
2020-09-16	INV_84981532.doc	doc	73158e3c574c5cfbe98520ebb3b8c4270609205751d997b87414e5a43980f960	25.86%	Heodo
2020-09-16	H_20996483.doc	doc	3cf8f34ba881699b5932783c60c591a6b88b1523d772b1fa292425764b0aa3f8	25.42%	Heodo
2020-09-16	PNX1KSYPO6E6R0VT.doc	doc	6ba572ac222372c95a63401ec2b6710af0a9445d6c38efc7cf8397461ab1fd8e	27.12%	Heodo
2020-09-16	LOV_YJP_090120_DOW_091720.doc	doc	11edbb83a5be58e02605322f9c28134420f1aafe0e30a23b264ef751657c70da	25.42%	Heodo
2020-09-16	DOC_59542714.doc	doc	409d5db4ee06957895e043e25c81a8d9b2438a172c248bfc3f149c6c947e3ce3	n/a	Heodo