URLhaus Database

You are currently viewing the URLhaus database entry for http://togatta.com.br/wp-includes/public/c4szhpwx/q3c8vd667158628s3p7wto5ayqhrd5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:559045
URL: http://togatta.com.br/wp-includes/public/c4szhpwx/q3c8vd667158628s3p7wto5ayqhrd5/
URL Status:Offline
Host: togatta.com.br
Date added:2020-09-18 18:31:51 UTC
Last online:2020-10-01 20:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-18 18:32:21 UTC to abuse{at}hospedagem[dot]net)
Takedown time:13 days, 2 hours, 3 minutes Bad (down since 2020-10-01 20:35:35 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-29SIO_090120_QRH_092020.docdoc d05c8f55312cd1449be1eccda8d36e7fbc850b28840edd9300bfba008c4ab5a5n/a Heodo
2020-09-19DOC_WNY7P7UCEPBMILNU.docdoc e9325a711e0f6f605b85898c5b507d4320e1f1dc672c68172b06cda359b5107eVirustotal results 34.48%Heodo
2020-09-1956102856.docdoc 2219a032fd67333ac69e83d15651054f5fa2ebf7711e2ff700faf7cf27bb18f1n/aHeodo
2020-09-19REP_PO_09192020EX.docdoc 9f77870d3740686f81155c4cca802ccb196cdd875714ed8e25d9a920d2d2adb4n/aHeodo
2020-09-19FILE_PO_09192020EX.docdoc dd1eb5d6665fa95590fbb058fdfb8311563d8d5b62f6b8b538cb33c967f22362n/aHeodo
2020-09-19EL0995922247DU.docdoc ca235f31bad34b88fa114fb3657583c68ff80a1c5fb637b51b4338fbe6134f94n/aHeodo
2020-09-19INV_GINJNR8LBII9DA15.docdoc 20afdfa7a7c7a299565cdd046c41bcbea4b1cbdc4041edc9f0e51d52dac04a0cn/aHeodo
2020-09-19DOC_19044708449.docdoc 0fad7aa076137ca0eea07801301e4a9799bfe63d5f5ac04aa449db6fa4201512n/aHeodo
2020-09-19INV_ZAM_090120_RHE_091920.docdoc 5e26ff2da8ec2dc57e3ee7a4a6aec18f5d6c6102fd03e5e1ad8caeaa1c2943efn/aHeodo
2020-09-19JK_53197078.docdoc 7a015b6833969e6837d78d58ac9b507cdf02d2272798f7cef35fdf534b58b52aVirustotal results 40.68%Heodo
2020-09-19PO_09192020EX.docdoc 6da6b99d1e7334c2df666c15e596c4fb9cca58c3f3891e9cc6676580e5b1dcbfVirustotal results 35.09%Heodo
2020-09-19DOC_NBG4GLD8STV9DWRV.docdoc f985df117771ea00d82ebee99e084f574e31d0134d0ac1d15dff5478c02f6b91Virustotal results 33.90%Heodo
2020-09-19KAPP_PO_09192020EX.docdoc c066bc4500ead9e0889bdaa4bc27671470aaed708c36824216e519d2b9325dfen/aHeodo
2020-09-191141904040025702637568.docdoc 15533d02d9310a6707f2092410bb3deff89174f7bc64f893a98e946f2ae3ba3fVirustotal results 40.68%Heodo
2020-09-19BAL_733988657578893073.docdoc 7c391c5dde83d6bcb96a44a794bdced0a65235c65e6ee19d33bd602b09df433fn/aHeodo
2020-09-19P_RLCPHZI0HV.docdoc 23e85a68c4a3b9d299d2ed531ada64c13d44ea288cad289752aa9dd3d3e08884n/aHeodo
2020-09-19JQAPOJB5ROJR91.docdoc 4e390e231203b78c1e99ed5cc2816a709f09978a28448f578eb6f79c204589d4Virustotal results 33.90%Heodo
2020-09-19PO_09192020EX.docdoc 34e8811492cd8da5ce69e6cb1a67c2323c637ed0705436bc1e8dec1badd96ce7n/aHeodo
2020-09-1967145855.docdoc f1bb14a732551e8301bed32c9d8cd4dbf506815bc17d1695708593bdef7ea22cn/aHeodo
2020-09-19BAL_8479125439583782536785.docdoc 2f74b7cb39258bea3019a9fc83f6fdcd6ed4e675e175236ae83bf0ea02af0e0eVirustotal results 32.20%Heodo
2020-09-19PO_09192020EX.docdoc 7991a69a5cbfa005b7685a29ded3f4f849b24fed6a340cbba97dc86d6db9b0a6n/aHeodo
2020-09-19D_1461771578521401.docdoc cda0f300f10989d730a1ea43471dfadb97cb10e13a73fbabeb565b5fbfd6bc30Virustotal results 45.76%Heodo
2020-09-19INV_ANQ_090120_BPE_091920.docdoc 778c345084d688acf88bb52a9c052c1e852688885a2b4c6c3938f6f471888d44Virustotal results 29.31%Heodo
2020-09-19FILE_QXFXHQ72M7CK.docdoc 7a41acc2bae61a34f8177e8d2cfa0b5f268c583906f678bd7331d9aca266f238Virustotal results 40.68%Heodo
2020-09-19BFF_PO_09192020EX.docdoc 4fdb1e6203d6e04a6229d129f4087b311a3824e7fc345b00b555b9593f6f9adbVirustotal results 38.98%Heodo
2020-09-19LOF_090120_GEY_091920.docdoc 2d22cb6bb2684459c707f30b23c49d03c4077803ebd1e4256c071f8d365ada55Virustotal results 31.58%Heodo
2020-09-19INV_37587838.docdoc fbe06b77331c2615ddb714d8e539f9f8eb7e35024aad5aad9af594b528f4450cVirustotal results 36.21%Heodo
2020-09-19REP_0024000711.docdoc 87888ab358912c8c811b942e25e6e58df8ad065a33cb1041ae790d60cfad79den/aHeodo
2020-09-19REP_90575194.docdoc 5cc754b56ea15b372576406cb73285d5c74e09ee434b62bb955e5c02caca6b68n/aHeodo
2020-09-1900856004557868655403606.docdoc 7df3447e0e3af084cc5d6ad9a9f333ac88e09c1d60c0f9c0f00fcccb6d04b708Virustotal results 33.33%Heodo
2020-09-1903FKVA9WTE.docdoc aa3cdc25f8835c95178555450c3a59e80c40494e67fce018b448217410b03dc1Virustotal results 42.37%Heodo
2020-09-19BAL_18159489.docdoc eda809ad0a26585bd981ed4836c84dd4c4844d775d5ee471d3c35e980e71cd10n/aHeodo
2020-09-199599151344572085.docdoc 3c2d30dc81db1b5fd85d00649cc0efb7f00b2be6a2a8be88fcf3ab9e627c346bVirustotal results 36.21%Heodo
2020-09-19BAL_DMR_090120_DYS_091920.docdoc 56813b1ff2c178be52fb844d4656d77d7d061aeeb71e90418d1665f9aac64978Virustotal results 26.32%Heodo
2020-09-19REP_87662064.docdoc 0549a96b45be7693d38af5e4063355260635db3e33191b92e82e43c49eda7901Virustotal results 38.98%Heodo
2020-09-19FILE_NCORPI4EN1A9LKXY.docdoc 3d097d4ca7e6e88c447fcc85c406838b4fb38f2d3f3365be0e88af7b2b711ed3Virustotal results 40.68% Heodo
2020-09-19INV_206728126476400.docdoc 70b754fdafc77f0358317dcd23600e0d99a6252fe4a9dc823aa2cf15f2713451Virustotal results 36.21%Heodo
2020-09-19J_71967389.docdoc ec0a9a535ccb576248f4c7900428f2a898853aa83d6cdff165a23414125d8a68Virustotal results 35.59%Heodo
2020-09-1863863797.docdoc a89a3fb97be7cefc4d26bbdfb463943abc4b7a4ad8f448b559cabed432592458Virustotal results 35.59%Heodo
2020-09-18DOC_JJ4487680293SY.docdoc afc7650429d1bb92b43bc1bae9ac07c7e3ff7d34b10949e03b97c1a43cab0930n/aHeodo
2020-09-18REP_LGH_090120_CYU_091920.docdoc af7a05d648d4175f924ff2431748c2bf40e15eeb256d2135bfeba80f4adbd149Virustotal results 24.14%Heodo
2020-09-1810450773.docdoc e767562438c04ed2d3dee57114d125b4446278c036106d12eb8e7fd9d9a93940n/aHeodo
2020-09-18INV_JP9099844103AS.docdoc f517a93071e1c1603f17e27fcacb8895394f49626d63add12daa6f605b453ca3Virustotal results 32.76%Heodo
2020-09-18DOC_WN7512797527XD.docdoc 87172168a864a3749122b035ac2217ff9b8b5a26f2e55a5a0c74c3f2f52f67b8Virustotal results 22.03%Heodo
2020-09-18067WA0DBEM7AKS70.docdoc d23fa82b132d789d0acf534793a6437c0fbd0b86e7e85475b6856e558b964ca7Virustotal results 40.68%Heodo
2020-09-1876929230.docdoc 844364fc7fd27d3f478237624a434b3255b9f564ed64e272e1935914ab559d9aVirustotal results 41.38%Heodo
2020-09-18ON_RQTYHP8XW.docdoc d81e151fbf63278ef5320ad506045027ea5427813ed63ebca0f919970b41460an/aHeodo