URLhaus Database

You are currently viewing the URLhaus database entry for http://bhar.com.br/caurina/5UZ5Mesyq1J/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	560777
URL:	http://bhar.com.br/caurina/5UZ5Mesyq1J/
URL Status:	Offline
Host:	bhar.com.br
Date added:	2020-09-18 21:13:06 UTC
Last online:	2020-09-22 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-18 21:14:06 UTC to abuse{at}hospedagem[dot]net)
Takedown time:	3 days, 18 hours, 3 minutes (down since 2020-09-22 15:17:45 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-19	Dat_T14575.doc	doc	4cd1338ce62760cd78c5eeb9a795195c5801a562e6adb2d0f0984640a5719bc3	n/a	Heodo
2020-09-19	UNTITLED 2020_09_19 P6951.doc	doc	4a9b7794b446b3948e75da5f390b3cfd4764afe8d48109c42ef37606f5b4f572	32.20%	Heodo
2020-09-19	rep.doc	doc	d91d3355ed5c4d2b1c8a1577424bb71aa3ef224770b4d5c01dd7703a4c329ece	27.12%	Heodo
2020-09-19	Arc-J2937.doc	doc	17b333cc6c291651161d6bab9f62df4f89a31b13b8b8db8722c6e6d069d1bc30	22.81%	Heodo
2020-09-19	67320945-20200919-F177815.doc	doc	614c62ac24ffd787e87c3f0be186188b9c87530dcc81b1559e388c1e06d1e2c7	22.03%	Heodo
2020-09-19	doc G3245.doc	doc	e4873536ba7b163dc9a87dd2dc7d447b502e63eaaebf88fcf4635d423772db47	22.03%	Heodo
2020-09-19	ARC 20200919 A616.doc	doc	f5ca634bdeacd64ccc52ea932bd221762cc68524fcef2df96c77ecd777d16670	22.03%	Heodo
2020-09-19	EO6285 2020_09_19 614794.doc	doc	0b58ba1859d47221ab95122240157d9d4bc885723fb94b700f1c36cb28edf3c6	22.03%	Heodo
2020-09-19	Dat_20200919_60118.doc	doc	0d6380a49e7088513773efca368acb3a783954a2d4df49ea9b730c9e49969458	23.73%	Heodo
2020-09-19	List_2020_09_19_1532.doc	doc	000dd08101567f408a0ee2b7d095d3baa02f532ed3839f66b60b9d64ce065d17	22.41%	Heodo
2020-09-19	Attachment_2020_09_19_119.doc	doc	906eb841dd00ed7c09bdb5dc7c0d3722f6313536e45201301a2db07d0fe04bea	23.73%	Heodo
2020-09-19	doc-20200919-2062.doc	doc	c358d536ae6f128e4d3e87de606603d1eb16268041e18e130fac19804fb21de4	23.73%	Heodo
2020-09-19	list-2020_09_19-NRT466155.doc	doc	606c981a35630090fe7df6ea2bd78be7c01eb20f5d266ba2432b209e9bf26eb8	22.03%	Heodo
2020-09-19	Doc_20200919.doc	doc	9ad2fe8f74ea62256c9ad4c199d69c91b8c76f9a605cb5c038fcbec9d0e85054	22.03%	Heodo
2020-09-19	dat_2020_09_19_431290.doc	doc	b7b9257d8c50f28e5aa87090083acecd0359655c255d52dd1030c0375097e0e6	24.14%	Heodo
2020-09-19	ARC 20200919 047300.doc	doc	cab5f70f9a6d1f300828e8c715696273befca7a141ca5e75b69b5a408ee432b2	30.51%	Heodo
2020-09-19	Rep_VV014079.doc	doc	7914bb6c3d6664a065cdb3f06cfc21a7f85fd7423e3b5af3468245d1f03edf5c	n/a	Heodo
2020-09-19	Dat-2020_09_19-73009.doc	doc	fca26f8a9f6995a0a5dccd24f54b77b3d5c855fe48084f99f9b2da3382f88c2f	n/a	Heodo
2020-09-19	IC430 20200919 740160.doc	doc	9f038a3f8faa7d88948648de22b5ab1fdd3cc1d598fc1125ff950daa9fadc4b1	n/a	Heodo
2020-09-19	Mes-S682.doc	doc	c67445bd4a7a3846de10ecccfc8117f4c144d3c2cc2ed29bbd934d3e06dd7e9b	n/a	Heodo
2020-09-19	Inf 20200919 DEI025952.doc	doc	006e64b6cfe2567e6bc6685453e8009b6b2bee02a0ce99713266b04087241d0c	n/a	Heodo
2020-09-19	rep_2879.doc	doc	0e7b7cc13660693acc3ac77a1ba7b6128c10bfe810eecb4d67f8b315e94c047d	n/a	Heodo
2020-09-19	6539 191.doc	doc	678355b541ffa2eb21d7b767a9e6039f3447aaaad39161002cf3b66c1d44c1dc	n/a	Heodo
2020-09-19	doc_ZS3394.doc	doc	1f4636599b3de756ee92e6c14346ceabf27b76d2b45abe64d1d9f48f0e4c3bf9	22.03%	Heodo
2020-09-19	Doc-2020_09_19-234.doc	doc	4186791608fe67e3dd4a2f61f52ed52ba67c4d7d75996cbf27f8379a44509f18	22.03%	Heodo
2020-09-19	Arc-2020_09_19-G32380.doc	doc	75e37e5c3591743af109482748f2a48e550f1a9d767316a8cece66fb4fe8c222	n/a	Heodo
2020-09-19	DAT-2020_09_19-GO106325.doc	doc	9e398469dae4d767b068930ed48a2283bade08114e66f158454ede4cf08d5bcf	n/a	Heodo
2020-09-19	inf_2020_09_19_CLQ797.doc	doc	7da90a568b11f5619217fc3f607646d3fba7a56ef64303b2ab72b8751d9308fc	22.41%	Heodo
2020-09-19	File_20200919_91378.doc	doc	6584db21f3b24953242d8d42e4ffa62e8026aebaea9f5c6b5cae066f4c279370	22.81%	Heodo
2020-09-19	171914-2020_09_19-O22478.doc	doc	23c8490e131915effd12a2adf737b6fb74515b1b54759d0bb237eb7392338c08	n/a	Heodo
2020-09-19	MES-20200919-2697.doc	doc	9b15f15ca0fc3748ef3b9f9a91bae081e2b5c076d1b39e7e16cfbe3a08cc5070	n/a	Heodo
2020-09-18	Untitled_20200919_ZI532.doc	doc	3eb7679ffcb5eb0cd537545d2e28ad49fdb4bc89366476f731659703b6707ff5	n/a	Heodo
2020-09-18	mes_2020_09_19_XO395548.doc	doc	7e37d762b881d0b1d6897e3d3c7ae449bebad8d250e6573923944ad8c0c22c28	n/a	Heodo
2020-09-18	UNTITLED-20200919-KJ916525.doc	doc	df50fc4b87844f590011e4655d981e4aa7d498dec2d0940b554aea8538567352	22.81%	Heodo
2020-09-18	Doc-20200919-0341885.doc	doc	f56906e33a9a9bd3b074b3b5c24c2e98ba58817c4c61452977054f27d0d9312d	n/a	Heodo
2020-09-18	list 2020_09_19 GF6426.doc	doc	8750d49fc1ba34c16ce392d088b1843101a6669f5407b567c2dff708351b81cc	22.03%	Heodo
2020-09-18	DAT-X71368.doc	doc	bad0da6e5c3252214e74c5ebd3ebca1b19331a5dc3c62d1b0c400f8ad73303a7	22.03%	Heodo
2020-09-18	INF-20200919-3740961.doc	doc	d28151cda4058aa8e8c1175ab6fea760c7c6812f758570a50fca1ad2b52eea2e	n/a	Heodo
2020-09-18	14454ISA-20200919-UXE63295.doc	doc	bccc6031b088f432a5b9d9303eceeb6d9ba9da4ec4f85997f393f67e2d552819	n/a	Heodo