URLhaus Database

You are currently viewing the URLhaus database entry for http://wagnerbandeira.com.br/wp-snapshots/esp/w8MhRxrbsdD6S0W/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:609882
URL: http://wagnerbandeira.com.br/wp-snapshots/esp/w8MhRxrbsdD6S0W/
URL Status:Offline
Host: wagnerbandeira.com.br
Date added:2020-09-24 11:46:09 UTC
Last online:2020-09-25 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 11:48:02 UTC to abuse{at}hospedagem[dot]net)
Takedown time:19 hours, 50 minutes Good (down since 2020-09-25 07:38:53 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25File_20200925_X104701.docdoc 45e6aea2390f44e6f216b37b4534d4d8d0841e416aa1ba63d0b194dedac58130Virustotal results 26.23%Heodo
2020-09-25arc-2020_09_25-142753.docdoc 35b20290035a4adc02a158303d41cc5f9f0b3c5342ca320c17d838edea2b7736n/aHeodo
2020-09-25UNTITLED-2020_09_25-X9093.docdoc 0f674723c07c5218324a68f25f78d92f4f7f8e4662c3856380643e948187a4can/aHeodo
2020-09-25dat-2020_09_25-6836.docdoc 9a3560cec5382ed5116dd25d7f7a3df51d3a59ed1d494e32931a1820bf577e42Virustotal results 36.07%Heodo
2020-09-25ARC-EM695602.docdoc 5075a674a9a566f012eedf4b2bb65bc8dd755f9874507d9e5e3ec27d06a23562Virustotal results 34.43%Heodo
2020-09-2590101834 2020_09_25 YG680.docdoc 1b4bdeafbb09007e953a6160fe436d4804b6edb5069a03724183c8299f6e5ac5Virustotal results 32.79%Heodo
2020-09-25inf_2020_09_25_T2097.docdoc c371ff9b42817e104cecdece97a45a92dbc996cc6630dedb60387b6d2cf3eef7Virustotal results 32.26%Heodo
2020-09-25INF-FF9792.docdoc dea89797b0e3407f423c2d3db4732897df4779beb6caf903ceb16029c480f012Virustotal results 32.26%Heodo
2020-09-25INF.docdoc b998510a8bf687ea61a4eb01488f3480eabc30b7a9e66f1eded2eecbe9e09280n/aHeodo
2020-09-25REP_20200925_CW927.docdoc d75299a8e19df9593c413b093ec1cb2822e0418945eff66f18796ab6ec4661f1n/aHeodo
2020-09-25Dat-20200925-A934394.docdoc e3e75a9fd546642652ff675e41bee9686f2bd9812e6cfb36db83ff8e08c67bc8n/aHeodo
2020-09-25REP-2020_09_25-4358039.docdoc 6ffae1d9e9a6596659fba02a68da2b4b00a0729ee83731c6a954be690f7c7a0bVirustotal results 32.26%Heodo
2020-09-25arc 312.docdoc d92a06690d830abe94e1a9805979b5174998266231cfa82a881bdd5e39b32ed7Virustotal results 32.26%Heodo
2020-09-2549640TTE.docdoc 3155aee94b5f26a27b523fe5df878a43d7d7ba601989219c94d61199dfa016a1n/aHeodo
2020-09-25Dat-2020_09_25-9593022.docdoc 6c4a580ed3d27939e21cd950e032dcb651ad561d04b1c3661f6d4cf690dfa206n/aHeodo
2020-09-25List XTF614.docdoc 15220c43248046fa93074c3c80521f9773803510ac48a42f7de5b5c28c97eafaVirustotal results 32.79%Heodo
2020-09-250575_2020_09_25_9863902.docdoc a138b244d11022bc107b10ac8bba5574f75ebc1f2d7fe82d50c1b1927868faa1n/aHeodo
2020-09-25LIST.docdoc af52f7dcb0121615419cdc0f3a24e218d10a8e6a1ce87d8bd7335d4a8ee75f3an/aHeodo
2020-09-25132NR 20200925 857963.docdoc baa36c365e82f61b5dca40e37836ffc2cba8b31e09be0ae520b89596897a499aVirustotal results 30.65%Heodo
2020-09-25MES_20200925_BO1213.docdoc d7610350dff505fe91024c77b0e93d7a33fb2a121189ff230a635606becac380n/aHeodo
2020-09-25Doc 20200925 JDM012337.docdoc dfdd6e33cdcbefd5800f6e68d63cca0c0d542750c206f4b583f9b1dee47ca307Virustotal results 30.65%Heodo
2020-09-25inf_2020_09_25.docdoc cf6220f85629ed88cd425df3df4dabb7f8a4f4cfabacf433947df4382d5731e8n/aHeodo
2020-09-25FILE-20200925-41453.docdoc cebd7c93a666d0a79cff9edb88403e8a8318dcaf5cc86c52c65fe834fc87e995Virustotal results 30.65%Heodo
2020-09-25Dat-6637.docdoc bd497f91d1b3471692be59bc55fb9a4bcd885d680ba65087f99431f0be67d62fVirustotal results 30.65%Heodo
2020-09-25Attachments WEP07649.docdoc eba3ace46b88aad94a3879c3cb6cf843194ff99b8b32a9c934831f2e48de58aan/a Heodo
2020-09-24Mes_20200925_950.docdoc 84dfa573291310a15b9a67c8643b77e36306ffeaccb56637c4be40b776558d80n/aHeodo
2020-09-24Rep-SS905.docdoc 8ac864fd5ddcb53759901115c3d260a3b4de3390bc8997efd24f08cb1f46e430Virustotal results 27.87%Heodo
2020-09-240921-20200925-28876.docdoc 57374a1ff11ced7ada0485939fac0097fed707df6f0d3f248ed63c199ebd0fdbVirustotal results 27.42%Heodo
2020-09-24Rep_44359.docdoc 0dfd7348c12f85a4b7b71a09910827abde365fa4ce39d433074932e2df13c5f4n/aHeodo
2020-09-24Attachment 20200925 157052.docdoc 9e5f0e71f00b8f6b9873396df74c8857c4fa39ddc5375d47c5a657e6ce932cf4n/aHeodo
2020-09-24inf 20200925.docdoc 7f79ff37cd9a41bae9a937d105462a9deb6bf053d1b8d36efcc84fed27d6699dn/aHeodo
2020-09-24MES 20200925.docdoc 2c6d5d8658794ab29bd0a4855dc9d7a05858fdc4f986c0949570dccb299a2e9cn/aHeodo
2020-09-24Untitled_2020_09_25_HW948170.docdoc a21b445e7541a779604d506673053ddf5d7abcb729ccfbe09ac48d1aea602609Virustotal results 25.81%Heodo
2020-09-24Mes-8716.docdoc 71e6fbfc302988b9d47402e544949794407ab97087ddc0ccbfa34db2385f86b2n/aHeodo
2020-09-24Attachments 20200924.docdoc 8dbb3afd7b53aca3df3a40119f92111562f8571716118d99432d300ae602f8bfn/aHeodo
2020-09-24352144-2020_09_24-21437.docdoc 018ad63f47b0c526a0dc6864302e8482d644e1d636bc862981882d9ed34b4d75n/aHeodo
2020-09-24FILE 540499.docdoc a04eec7be461e708f8df91a5118fe261a5a18b6ab866ce9a032631ba8fca505aVirustotal results 29.03%Heodo
2020-09-24Arc-2020_09_24-L6982.docdoc a626a37df7cda5e19509dbf11e7da25dee10fccb13c11783d28879021ead0f7dVirustotal results 29.03%Heodo
2020-09-249804036-20200924.docdoc 53894a66cb2c5b7803247d709fb0ddd3352721e5b03c2a381085a5018a2eda0fVirustotal results 27.42%Heodo
2020-09-24Mes_2020_09_24_90985.docdoc ce6c5b403794988f1f8b87e204c73e7de295624d14d9b2e7b2115ece7aae362cVirustotal results 27.87%Heodo
2020-09-24Arc-20200924-891634.docdoc b439c5584fde670fae46ef551e3dcb4279968441b7a7df23ae166eaa11d61cd2Virustotal results 27.42%Heodo
2020-09-24Untitled P413.docdoc 7a11e2e89a4548c968baed637d81d8db702acba0ad82d1571be8617b8b704cf4Virustotal results 24.19%Heodo
2020-09-24INF 2020_09_24 PAC237801.docdoc 612249e717e41cbbc2e1f3b188a6239dd839b101daad36420d7c2ac1bc06566fVirustotal results 24.19%Heodo
2020-09-24Arc_RMA2566.docdoc a7119297d5e0a5d3b6ab6bfdecc15029d2243b433db330c981e01246f23d5556Virustotal results 24.19%Heodo
2020-09-24Dat 20200924 58035.docdoc 0bbf6ade1e1dde1eee57d4a7ff17d22247db6a4c8aca326ae05e3ec8464e5f85Virustotal results 24.19%Heodo
2020-09-24REP 20200924.docdoc 951d6f18d680fd8bee849c739c1e9b2da02df8baa9230ab6c74266f3bbe444fdVirustotal results 24.19%Heodo
2020-09-24REP-2020_09_24.docdoc 1365a75650ecfa285830cb0cefee3f914deab037e2ca8d4a9efcc2243e2d7a77Virustotal results 24.19%Heodo
2020-09-24ARC 99842.docdoc 0e82376f74d311910f2215b69aca318b42aade67fb90e64743dcffaca6bf99aan/aHeodo
2020-09-24file 542.docdoc b14f597524f1d15a0fa2821d6000ceba85ccbc12fea8116c91d6bc24349bf39an/aHeodo
2020-09-24Arc.docdoc d7830edfcc130fa55772340c76b1c276dba29b52af14de22d5e8e79a22183879n/aHeodo
2020-09-24File 2020_09_24 XGX9426.docdoc 57ef50495409da8fad169d1a264178fa0c81f290a47d259eee69dbc2ae646df2n/aHeodo
2020-09-24arc 249084.docdoc b8e8b77978927490bf4bb07aba15fa7d3b408362f06c70f1d0a1be606d71fdaaVirustotal results 22.95%Heodo
2020-09-24Attachment_2020_09_24_403810.docdoc 46a86b74ad359ae4e52a16362ce1c83a18b23d3e594633672fb64b74e9e7c15en/aHeodo
2020-09-24inf 20200924 9182699.docdoc c6792afbfcf5e1aaeec3a137969307c7aa9d1999b59ae6f70706910f95e786aaVirustotal results 33.33%Heodo
2020-09-24INF-KY704843.docdoc b0a9fa5890efee7a7871819049cdaa014fe5da77f85ad8e9d3dbc46ae3a5e348Virustotal results 30.65%Heodo
2020-09-24UNTITLED-20200924-KB167849.docdoc fe3cc0d7c9149b7117d7835e07f7c916b5cca31c1f3f2bf90d9a2b77b8d98c0fn/aHeodo
2020-09-2419446EE-S34100.docdoc edeac6b6b86c18650d2a2f8b7d9737c558892f5dd76da6be7b771e5e010bb244n/aHeodo
2020-09-24doc 2020_09_24 AF39010.docdoc e7284f40ba50932744dc9f59ca8fb42e0dee384a97fd14eb5f8ab332aeb86ef0Virustotal results 29.51%Heodo