URLhaus Database

You are currently viewing the URLhaus database entry for http://cookingbuffet.com.br/wp-includes/Reporting/na2Jj2w0tbCRYmewsAl/// which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:590861
URL: http://cookingbuffet.com.br/wp-includes/Reporting/na2Jj2w0tbCRYmewsAl///
URL Status:Offline
Host: cookingbuffet.com.br
Date added:2020-09-21 22:42:05 UTC
Last online:2020-09-22 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-21 22:44:05 UTC to abuse{at}hospedagem[dot]net)
Takedown time:20 hours, 39 minutes Good (down since 2020-09-22 19:23:17 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-22MES-20200922.docdoc 9feac62adca8879c6fb77e71311d55feb8409cc5a2a0929f48934970c404f3dcVirustotal results 29.03%Heodo
2020-09-22mes_20200922.docdoc 70f193ff1df17ecdd4cda5e1e3712248c6cb690eae5e961b2255f2fe80750c84n/aHeodo
2020-09-22UNTITLED W7851.docdoc f9db2998d811b8c5fc0a11e513e628001fc463d8e4c9a44068939c3668f072b6Virustotal results 46.77%Heodo
2020-09-22Attachments-W370839.docdoc ef13496f7022fd77f5c840b34d5fc577bf4c2dcef2a56b1e0b71fa0387d6e8b9Virustotal results 47.54%Heodo
2020-09-22Attachment 20200922 XA8290.docdoc fee44ec3b333796685007e96f4c1478fc810a6a4549ed0d18c4e26fb91e508f0Virustotal results 46.77%Heodo
2020-09-22mes_2020_09_22_2675.docdoc c4699bc83e2c480aa53af341f4b67b5dfb27cb5d28fb09a7619b55689b686ae3Virustotal results 45.90%Heodo
2020-09-22REP 9992337.docdoc 15587e3981acde8cea14506a7eec74bb7254104c7b3020773de4fe4b17cb9cc3Virustotal results 45.16%Heodo
2020-09-22Rep-2020_09_22-664.docdoc fec4a3494010371e6a5c7c6422e31e804770c2e9a3980e338181aa32c91f297aVirustotal results 45.16%Heodo
2020-09-22Attachment.docdoc 863c4548ed10a6412c7114ed7032ad3c3520c6546336adf8e93f9cd595ad97feVirustotal results 45.16%Heodo
2020-09-22FILE_8354.docdoc 288be7752a470617650f5882ebf631b541951c5c4fc685fffee2de9650e31bdeVirustotal results 38.33%Heodo
2020-09-22inf 20200922.docdoc 2684fb0d066483f383653d701aada35989b0f0115ef080dc1383ddc2afb00240Virustotal results 35.00%Heodo
2020-09-22rep-20200922-S427213.docdoc abdd1ac85459873879997482fe416aed9e065d97999a52f679df62c5ba9bfe18n/aHeodo
2020-09-22DAT_20200922_089809.docdoc ec0011702614cd33aa57769c23abfa9106382cc9b99ec9a1f9bb57204cd157d9Virustotal results 32.20%Heodo
2020-09-22ARC_SLA893818.docdoc 8d0bfa85c33d7f8725fb13809780b7a2ca9bf9ccdad1780e4e4a55bc670948a7Virustotal results 22.95%Heodo
2020-09-22file_2020_09_22_800342.docdoc 684d538530f6095356b8290993e828154398388f70e1ea9fbf5b6082ef911cbcVirustotal results 24.19%Heodo
2020-09-22999810_20200922_4579980.docdoc 70b7d119e77c7e14ab77dd27ac4490bfc520e57f74e1a01ed1ab8bdb9ba76d4dVirustotal results 23.33%Heodo
2020-09-22FILE-HWE81338.docdoc ed676d1984afe2994468897be4d014ecdf1337f54785f3f15326015fce700a7bVirustotal results 24.59%Heodo
2020-09-22Attachments-20200922-447603.docdoc 428772573902261190e9661b4cb78fdbc2a7d915f15839f9945683a6a0797202Virustotal results 23.73%Heodo
2020-09-2260068-20200922-93109.docdoc 76c0630543f301f3fe63e8ca4ddef6171019fe2bc21d3c891bceb80774bb4cafVirustotal results 25.42%Heodo
2020-09-22Attachment-2020_09_22-6530.docdoc 5a019fa61c1dbd3b736e3e0d6389a785fedea860bf1cfca99dbab44ceaba0840Virustotal results 24.59%Heodo
2020-09-22Rep_2020_09_22_N546.docdoc 1905997bc71b596381c75393456d143e27aeb93fec85e5b38a5cb4892d5da8d3Virustotal results 24.59%Heodo
2020-09-22list V344.docdoc 9beee1368c809fc1d69ee0973379057573aff27c44352c442d60199cb9659dafn/aHeodo
2020-09-22LIST.docdoc 0dfaf8162f2566ecc1bf5422761fb45983685e302f75ff87f87b0b3568422ba9n/aHeodo
2020-09-22File_2020_09_22_NOS794.docdoc c1c64fe054f9be96a2d05c6e7957db0b63d92542154af8a46ac60bb7d5d5d622Virustotal results 50.00%Heodo
2020-09-22MES-K463468.docdoc e06da79bbf12cc91eb5587a79bcd953d94bb22fda610de539b4bec127001f50fVirustotal results 51.72%Heodo
2020-09-22rep 784075.docdoc 5744548adb59f24037bb5500e559b80bc6917502f107b28a16b38ab4e6abfb71Virustotal results 48.33%Heodo
2020-09-22Mes_2020_09_22_987.docdoc 0d70d473dd82d66be63e961914b3fccdaac41677e69ee91706bb0be406144501Virustotal results 45.90%Heodo
2020-09-220086_20200922_976.docdoc ca8bc966291f9d6ab8a2c9497a5db3e867a7d530e117bc6db2d60c39fda5b66fVirustotal results 43.33%Heodo
2020-09-22Attachment 20200922 RPU331788.docdoc bba3849ec67263bb32327cd4462beff2e001ff9db4a576d683df43961006394fVirustotal results 44.07%Heodo
2020-09-22547948_20200922_94096.docdoc a8193929a853df30fe24b8fab4982b0b2e0e980da1dd67074bb26ecc0c8e2ecan/aHeodo
2020-09-22dat-2020_09_22.docdoc bc077632ea6bd7e0d83fe02cd1b706c078d7bdf7a18b0c1477c0c3f94d2f14b1Virustotal results 40.68%Heodo
2020-09-22A151_SQM803518.docdoc 050935f49889548f87753aa002d3e6204e6b6ef7a540a5ca8111e9b5f5d275e2Virustotal results 40.98%Heodo
2020-09-22Doc_2020_09_22_YNF958.docdoc 943f5e58cd9c9060ea37bd3ca7dba199921932c07110941346389657a4ef1a6bn/aHeodo
2020-09-22553332 2020_09_22 8771.docdoc d05527f19cbcca0953e287b0b76194570b3c3e64eaff273f6428446e1a4379dcn/aHeodo
2020-09-22REP_20200922.docdoc 90f5fcbadecf831b2ea1ad31be2ad24a539c2886611a270e23975355d3ba2692Virustotal results 33.33%Heodo
2020-09-22Mes-TMN26290.docdoc 1692576fa20b26d4b08f7ddf02890b29ee1afd8c20ae52aeb87abfbe023c7209n/aHeodo
2020-09-22MES_20200922_1677046.docdoc 217d18116ca119751a9e29f6ed27a4fe97fe6fc8bfe088610cf7841c4fd8dab8n/aHeodo
2020-09-22mes GHD3111.docdoc d54e7732d4686780c94f902037c5855a15032d82fb5236e42e072640e767a034Virustotal results 32.79%Heodo
2020-09-22Rep 1384.docdoc ddabac18016628a7b4e14df72caa0012c52af6a318df5c236615b4869b257546n/aHeodo
2020-09-22UNTITLED 2020_09_22 DN9364.docdoc f9c1f50a35c2941949d6ee8e91935c1fcebd4b1f46849f8870ff3267bc5a88e6n/aHeodo
2020-09-22Dat_2020_09_22_Q34141.docdoc 8a2890bb71a8c5efcd1478ee7b30ed6d9c942d68f9a2b98bcbce5ebeef693071Virustotal results 31.67%Heodo
2020-09-22Rep_SQ5490.docdoc cbf5b0482bc2cdc04d1f4ffa6c39d4517ef6793289339305a64f7820553bdeacVirustotal results 31.15%Heodo
2020-09-21Arc C294.docdoc dd5ce5ffcf0c62e6fce916b040418dc3bcb7a74ea6b11c3f31123106f04ad6c5Virustotal results 29.51%Heodo
2020-09-21Attachment 20200922.docdoc 0394eebf7602baf22b2e45b390f4aa5854b0179e671b3a2607dbf44a5130870cn/aHeodo
2020-09-2106679P-2020_09_22-RYL8973.docdoc 752cfdd4b5bd5525a1b48d12b73710003b76530b232e19a33add7a21712daa98Virustotal results 30.00% Heodo
2020-09-21Doc_MC8575.docdoc 408b12e331000ac29de83635501b2c1ad800d8465e28a0a8054f10c4fdcb091cVirustotal results 30.51%Heodo