URLhaus Database

You are currently viewing the URLhaus database entry for http://wagnerbandeira.com.br/wp-snapshots/attachments/yP05PdRMdMpCNZ9ghsSm/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:562363
URL: http://wagnerbandeira.com.br/wp-snapshots/attachments/yP05PdRMdMpCNZ9ghsSm/
URL Status:Offline
Host: wagnerbandeira.com.br
Date added:2020-09-19 01:35:08 UTC
Last online:2020-09-22 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-19 01:36:11 UTC to abuse{at}hospedagem[dot]net)
Takedown time:3 days, 15 hours, 11 minutes Bad (down since 2020-09-22 16:48:09 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-19mes A1050.docdoc 7914bb6c3d6664a065cdb3f06cfc21a7f85fd7423e3b5af3468245d1f03edf5cn/aHeodo
2020-09-19Arc_20200919_O83598.docdoc 5a0c4c40fea422907e85ce8348431c8365731e13690a0df7ded61ac480bd6137Virustotal results 30.51%Heodo
2020-09-19MES-20200919-28665.docdoc 034a97e7614fadaf9552e4fbc5992139431bbc6bc905b9af8adea4d60b741f3eVirustotal results 27.12%Heodo
2020-09-19Doc 20200919 24189.docdoc 0e7b7cc13660693acc3ac77a1ba7b6128c10bfe810eecb4d67f8b315e94c047dVirustotal results 24.14%Heodo
2020-09-19Untitled 2020_09_19 UTJ30994.docdoc 5c9595da8f021c0eb6c4da08ddfff0b280e4b1f2c7b0c9a1908f8c5bd98163e4Virustotal results 22.03%Heodo
2020-09-19list 20200919 8863834.docdoc 678355b541ffa2eb21d7b767a9e6039f3447aaaad39161002cf3b66c1d44c1dcVirustotal results 22.03%Heodo
2020-09-19Untitled_20200919_N2443.docdoc 1f4636599b3de756ee92e6c14346ceabf27b76d2b45abe64d1d9f48f0e4c3bf9Virustotal results 22.03%Heodo
2020-09-19inf 766834.docdoc 9e398469dae4d767b068930ed48a2283bade08114e66f158454ede4cf08d5bcfVirustotal results 20.69%Heodo
2020-09-19Doc-W99606.docdoc 7da90a568b11f5619217fc3f607646d3fba7a56ef64303b2ab72b8751d9308fcVirustotal results 22.41%Heodo
2020-09-19rep K67654.docdoc f5ca634bdeacd64ccc52ea932bd221762cc68524fcef2df96c77ecd777d16670Virustotal results 22.03%Heodo
2020-09-19378722_20200919_8335288.docdoc 50e2ef861a0588af5e970bd2bd2d4d52e68f8c65d8f82b2c2f6457adc2302ea1Virustotal results 22.03%Heodo
2020-09-19MES-2020_09_19.docdoc 9a89421741b56db1e2d97d925176d40fae890abdefd3e136a24afb0589d4371eVirustotal results 22.81%Heodo
2020-09-19FILE 47993.docdoc 85c0fbbdc250f9ddf13c8a438a1c90ada6ff0e475cddaa45cbdbcfdf18c9dab9Virustotal results 22.81%Heodo
2020-09-19Attachment-2020_09_19-LUZ225904.docdoc 0d6380a49e7088513773efca368acb3a783954a2d4df49ea9b730c9e49969458Virustotal results 23.73%Heodo
2020-09-19doc 20200919 5074.docdoc 3eb7679ffcb5eb0cd537545d2e28ad49fdb4bc89366476f731659703b6707ff5Virustotal results 22.41%Heodo
2020-09-19Attachments.docdoc c23cc89488404b578a22052d1d946ea0e421961bb77a5c4b002d890506c2aba6Virustotal results 24.14%Heodo
2020-09-19Dat_20200919_6038.docdoc 7e37d762b881d0b1d6897e3d3c7ae449bebad8d250e6573923944ad8c0c22c28Virustotal results 23.33%Heodo
2020-09-19doc-20200919-910.docdoc df50fc4b87844f590011e4655d981e4aa7d498dec2d0940b554aea8538567352Virustotal results 22.03%Heodo
2020-09-19FILE-20200919-793842.docdoc f0e6815411621dc6ccb4ca55c8c1ceba4ed59cc0f64b6884f0d93d49f9493bb5Virustotal results 24.14%Heodo
2020-09-19REP_2020_09_19_AGZ24997.docdoc 0e31dc003b5fa4ef58751e94f3718852fdf5c75f438a8a587eac213cc8786c23Virustotal results 22.03%Heodo
2020-09-19Doc 2020_09_19 N236.docdoc 8750d49fc1ba34c16ce392d088b1843101a6669f5407b567c2dff708351b81ccVirustotal results 23.73%Heodo
2020-09-19List-2020_09_19-FU5599.docdoc 5dcb34b82840165da4c8d3f693522093656d8731ab6ffade09c8f5d2b8376408Virustotal results 23.73%Heodo
2020-09-19inf_M48526.docdoc cab5f70f9a6d1f300828e8c715696273befca7a141ca5e75b69b5a408ee432b2Virustotal results 30.51%Heodo
2020-09-19doc 20200919 GH1670.docdoc d6ae83f018f7848b69c8e3f73f71992caabb9a19ab572796adf043a08bf46c11n/aHeodo
2020-09-19Untitled 3426.docdoc fca26f8a9f6995a0a5dccd24f54b77b3d5c855fe48084f99f9b2da3382f88c2fVirustotal results 30.51%Heodo
2020-09-19UNTITLED_2020_09_19_263852.docdoc 9f038a3f8faa7d88948648de22b5ab1fdd3cc1d598fc1125ff950daa9fadc4b1n/aHeodo
2020-09-19list_3901109.docdoc 0f8726a2e1ed31116d9cf065548921ba480bafb9467bbbccc96ec094859734e7n/aHeodo
2020-09-19Inf_DX22646.docdoc 0af0e4a065d036488bc54043089879cd5e6b6a4db8c164ba0b7f45140aa616cfVirustotal results 25.86%Heodo
2020-09-19Dat-20200919-TS316331.docdoc 610c4e7f9d0c567d7d8a230edc8cbe856baae5fb20c5fbebe2a43c7c7d007feen/aHeodo
2020-09-19YFG98752 20200919 2886.docdoc 17b333cc6c291651161d6bab9f62df4f89a31b13b8b8db8722c6e6d069d1bc30Virustotal results 22.81%Heodo
2020-09-19UNTITLED-20200919-W331.docdoc 62693145b7a340ec76dc8653cd1f603f1f25611da8b7e83de3979fee1fdb80een/aHeodo
2020-09-194324_GJ20295.docdoc 614c62ac24ffd787e87c3f0be186188b9c87530dcc81b1559e388c1e06d1e2c7n/aHeodo
2020-09-19mes 20200919 354.docdoc 93e1254e65773ffb3d3f3aeeda414a5356482c00d5ecc36dcd385158ac7c8fb4Virustotal results 22.03%Heodo