URLhaus Database

You are currently viewing the URLhaus database entry for http://vendasproduto.com/wp-includes/Documentation/ckq1fqZUII/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	585956
URL:	http://vendasproduto.com/wp-includes/Documentation/ckq1fqZUII/
URL Status:	Offline
Host:	vendasproduto.com
Date added:	2020-09-21 12:37:05 UTC
Last online:	2020-09-22 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-21 12:38:03 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	18 hours, 18 minutes (down since 2020-09-22 06:56:41 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-21	Dat-S3964.doc	doc	c0e5018509f8a988f0442d2d6c3a200dc70f4d69bc590c7a7e9720b756267168	30.00%	Heodo
2020-09-21	MES 2020_09_22 205.doc	doc	f41df92a7bf31e22ac28e3e35cabf45f3be392f06c43b813eea05e2ca08f24bc	n/a	Heodo
2020-09-21	Attachments_843003.doc	doc	5d9ea64e57564b3e412eb44aa61235c5b1cb4d677aa5089910f9a5f1c6e6b1bc	n/a	Heodo
2020-09-21	Dat 20200921 VDV643.doc	doc	cc422106d6dd2c41a70e946a117c310587b1beb090c9366c0122801bdbf0ab0a	n/a	Heodo
2020-09-21	FILE.doc	doc	f6809265a7460ab3d0e927c5fb9399a263172140778b4cc34f6698d9521b3b43	27.87%	Heodo
2020-09-21	39531-E685837.doc	doc	77c88c85cace420b9b8fe01b1306ee27674e3ec8a457d99302c980ef2e271a3d	26.67%	Heodo
2020-09-21	Inf-OH8933.doc	doc	1df07b51bae05c06a37810d29ec72043b2d9f3e93c01e3dc13cb5ae1a03558d5	n/a	Heodo
2020-09-21	Inf 2020_09_21 7117257.doc	doc	817dfa0131f4686e1849deaf26ff7ffe1f5b2eb30526bc09a6753ce13185f502	26.67%	Heodo
2020-09-21	16974545_2020_09_21_MGR96140.doc	doc	716299f97023ee3e7f0a20ad1843ee7284684da8a503b9031fdaf0aac7e81671	n/a	Heodo
2020-09-21	Mes-3197.doc	doc	395bb9568da78936c13a412ac5052ef6a015bc0134fcceeddfef1f47fd692b6b	n/a	Heodo
2020-09-21	REP_20200921.doc	doc	9c52aa87b478480188f49240e7286d869dc06ab37388e6821f088b5eab8bdaf7	n/a	Heodo
2020-09-21	Untitled-843.doc	doc	16be9e593507ba2ccca2de91d87b8784818450844e2dd0df7a54f2cd24f3b683	n/a	Heodo
2020-09-21	Attachments_2020_09_21.doc	doc	82fd021a09f56eb6c9c4129caab80c81c416871df51ed92e6649100c7373ff85	n/a	Heodo
2020-09-21	PHR74674-2020_09_21-LH86710.doc	doc	bbfbfa4b74ecbd22841d49fe5721601886838b5365ca2da11e07e046670cbf3b	26.32%	Heodo
2020-09-21	8362SOW-20200921-16989.doc	doc	3fec38315e25ce05e197bc39a6136959cf4cdf2b9fa9229fc188a71d464a5846	25.00%	Heodo
2020-09-21	QI30552_2020_09_21_AI245.doc	doc	f2e681ee5b79805f8cf54b83b821ad59c1c4b7daa53deeac54ac5ac3ee7a6421	n/a	Heodo
2020-09-21	mes-N65573.doc	doc	d6b49fd8cd1ae8ef8187df86ab91bb6b2b0c19b4025834915102eb597a04e0c8	n/a	Heodo
2020-09-21	File ZI255841.doc	doc	1c207d713f338bdd9388fcbf5a62faf0bf73c0b4a555c1734b63d521952fcef6	n/a	Heodo
2020-09-21	list-LS171157.doc	doc	d379185bddb04372ebaa73fb3d3d84f999a3ef2f1cbe9c61e39a5ad938fdbab5	n/a	Heodo
2020-09-21	Untitled-I2002.doc	doc	2cf740fe002fcb52b76e9121ef2b1c0efad8f7829310489bf59e7a045742deb8	24.14%	Heodo
2020-09-21	arc 20200921 FOC806.doc	doc	5a4026c992939e304da0cb25bcf181141d3875dec80db0003434902ca37ec64e	n/a	Heodo
2020-09-21	Attachments-20200921-507395.doc	doc	c38007baa464dfca54ee9305c00ba166951dc23b5b4acf9fd9d28ae1ca04ca8d	23.73%	Heodo
2020-09-21	Attachments K264796.doc	doc	f7702d1f529ffaf4f63ff3e1f187bf299215f423fc8fdba43e49f337ce1025f1	30.51%	Heodo
2020-09-21	mes_B4821.doc	doc	8107e9bdb5b253a1ba409281b6c4196958c41efad1ed86ba7a7ab2e2d58520b0	31.03%	Heodo