URLhaus Database

You are currently viewing the URLhaus database entry for http://togatta.com.br/wp-admin/INC/JaZrk2IJQg2CmCvbb/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:610317
URL: http://togatta.com.br/wp-admin/INC/JaZrk2IJQg2CmCvbb/
URL Status:Offline
Host: togatta.com.br
Date added:2020-09-24 16:34:05 UTC
Last online:2020-09-25 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-24 16:36:11 UTC to abuse{at}hospedagem[dot]net)
Takedown time:22 hours, 53 minutes Good (down since 2020-09-25 15:29:39 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-25Untitled-167.docdoc 7db6a41ab50e693d84a76f579a232238181f8af347cbc77fa06e4bbb5690972an/aHeodo
2020-09-25Rep-2020_09_25-6870326.docdoc 9f503d4e78447c60414df12313c5a9ce52cdddea301072425d0387012f52ed3bn/aHeodo
2020-09-25Dat_20200925_54027.docdoc 8184716f0f234f3296e458730d9d455caeecfdc39fd53ecb85372e504927d125n/aHeodo
2020-09-25ARC_2020_09_25_E952027.docdoc 65c53908c3daecd50e02ebf971468d603beae0884b9ddcb8782749609404106fn/aHeodo
2020-09-25ARC_425.docdoc c924dac6274e82098c28ce36b01b23add78bbc969e4996f0aa0ae509b200bed5n/aHeodo
2020-09-25dat_550.docdoc bf6720e73cf3991f50455b524bdb7bdb5f8e6bfae9d1174fede5e8b3e98597b9n/aHeodo
2020-09-25list-2020_09_25-198900.docdoc 25935544dc7b71e58fec2bfb479a379469a9f075b09506a4062a7f4a4e5eff80n/aHeodo
2020-09-25ARC-2020_09_25-DBN1533.docdoc c9ffcfca01d25b4894c7bdb0ada7b571ebf8900826131c67699a894d5318b0e4Virustotal results 27.87%Heodo
2020-09-25mes_2020_09_25_JV81598.docdoc a498490c2d2082417852e61a598fa2606f70d6a8fd7fd5f6ae72ac00b1276126n/aHeodo
2020-09-25MES 20200925 QO5538.docdoc ca999399c331765a7219c8d4d46688f5a5b906dbb26af7972ff51761d8ec9413Virustotal results 32.26%Heodo
2020-09-25Dat-2020_09_25-095.docdoc 9a3560cec5382ed5116dd25d7f7a3df51d3a59ed1d494e32931a1820bf577e42Virustotal results 36.07%Heodo
2020-09-25doc 2020_09_25 ZB7584.docdoc e979e5d62f7d4071c132262078d292902fab0efa9947de49d89e30ea28c01f87n/aHeodo
2020-09-25Doc-2020_09_25.docdoc 90d98540904cb297db85c8cbc30b1510b43c16f60b12a899a565740a3ffdd735Virustotal results 32.26%Heodo
2020-09-25Rep-20200925-6845.docdoc c371ff9b42817e104cecdece97a45a92dbc996cc6630dedb60387b6d2cf3eef7Virustotal results 32.26%Heodo
2020-09-25Attachments-M008.docdoc 462cd06961391298126aca45c13a24288b415fe30319662312401376d412bb97n/aHeodo
2020-09-2549604-W139810.docdoc b998510a8bf687ea61a4eb01488f3480eabc30b7a9e66f1eded2eecbe9e09280n/aHeodo
2020-09-25dat 2020_09_25 ID3417.docdoc 7e262533eeb4db4a15145f80b5cd17c54723b81f4dc194da6d449656d5d039a1Virustotal results 32.26%Heodo
2020-09-25FILE-20200925-789118.docdoc e3e75a9fd546642652ff675e41bee9686f2bd9812e6cfb36db83ff8e08c67bc8n/aHeodo
2020-09-25mes-2020_09_25-EG00258.docdoc 6ffae1d9e9a6596659fba02a68da2b4b00a0729ee83731c6a954be690f7c7a0bVirustotal results 32.26%Heodo
2020-09-25Mes-2020_09_25-234383.docdoc f3e4a5469d7a04109e3b462ae519198b845978938294d7b0b5f43139a332b649Virustotal results 32.26%Heodo
2020-09-25file_880878.docdoc d4f8effbd6965dc96f14d41074b11b187b8173c9f20c950f26dc1dfd243f0a4aVirustotal results 32.26%Heodo
2020-09-251600747-20200925-ZM821982.docdoc 69165cd9c129bd60fccb936744427651093153871bf0b5f61530461a10add533Virustotal results 32.79%Heodo
2020-09-25DAT_148.docdoc ba4045349cdba71bee80fc700a8b3f4747421f662872053c1e2dabd12e0c1ef7n/aHeodo
2020-09-25Untitled-2020_09_25.docdoc 15220c43248046fa93074c3c80521f9773803510ac48a42f7de5b5c28c97eafaVirustotal results 32.79%Heodo
2020-09-25doc_925.docdoc 7d684e2495a1cdc7c3ad26a959dad4081aadc55fc3835ccfa22da218cc48b2b1Virustotal results 31.15%Heodo
2020-09-25dat-20200925-Q3453.docdoc 98dbf4dffc10dd183a60e1fc7f89ada397f31f8bf1af4205ed10b45bbc8475d4n/aHeodo
2020-09-25Dat_2020_09_25_144466.docdoc baa36c365e82f61b5dca40e37836ffc2cba8b31e09be0ae520b89596897a499aVirustotal results 30.65%Heodo
2020-09-25REP 2020_09_25 671.docdoc d7610350dff505fe91024c77b0e93d7a33fb2a121189ff230a635606becac380Virustotal results 30.65%Heodo
2020-09-25arc 2020_09_25 324.docdoc b4da5a271c46eb9d526edea40d4f641a1a0da3dc6048ffc493b8fece7044022bVirustotal results 31.15%Heodo
2020-09-25VL7785_2020_09_25_D285925.docdoc 9c89759e237878a95c83cded3d21a6adc6f8d4ed97c3d955138c7dfd1b713334n/aHeodo
2020-09-25File QV6691.docdoc 0b183503397ca536ee4e23d6a0c2b3d8fbf624b4b7002954a25825e601928171n/aHeodo
2020-09-25Rep 2020_09_25 78914.docdoc 18e942439d79f97e34245158394275fae160da61d8abc66b9f45496a11e5a22eVirustotal results 30.65%Heodo
2020-09-25List_554626.docdoc bd497f91d1b3471692be59bc55fb9a4bcd885d680ba65087f99431f0be67d62fVirustotal results 30.65%Heodo
2020-09-25List_20200925_D6524.docdoc 84dfa573291310a15b9a67c8643b77e36306ffeaccb56637c4be40b776558d80Virustotal results 30.65%Heodo
2020-09-24MES-9055308.docdoc c8e79fc0288a89ec2d815e21d6d7f396bdbd52530a889df128b23b14a212f602n/aHeodo
2020-09-2456149521-2020_09_25-PQ013132.docdoc 22cf8ae36d6a536307d19a4683966503ff80c76f9963dc106fca26f9d790972fVirustotal results 30.65%Heodo
2020-09-24Untitled 5421.docdoc 227422649eaf7507d68de8f7150f5afe9d1fe84f59a75bd4aaf179dcfd9752bfn/aHeodo
2020-09-24Arc.docdoc 0dfd7348c12f85a4b7b71a09910827abde365fa4ce39d433074932e2df13c5f4n/aHeodo
2020-09-24List_WX50643.docdoc 9c110a7d6411d6083aaf8b1342c7eeb9e42d0065ce10ea3b464f442aefb301e1n/aHeodo
2020-09-24DAT.docdoc e30954491227d012c82dacddc3299730619d5f9edf66a0d7769f87cc5bd184feVirustotal results 26.23%Heodo
2020-09-24inf_396.docdoc 6ad9b0dacfcb42e74938b2e5511f039017a29e3ff73f4606e6c2478b98b86e4fn/aHeodo
2020-09-24DAT_20200925_91051.docdoc 40553c3c1a1a2ff36541fff6d148b3d3a89962869b7d29d3dd978f4957bb53d5n/aHeodo
2020-09-24FILE 2020_09_25 5769.docdoc 71e6fbfc302988b9d47402e544949794407ab97087ddc0ccbfa34db2385f86b2n/aHeodo
2020-09-24list 20200925 PA1316.docdoc a2b8dfa4778220db8308543b1816426b856c8d7ff5f7e207246efb08135c46b6n/aHeodo
2020-09-24Inf-2020_09_24.docdoc 9c0ee5ec6927fc3d66e98e5fb2f0094f98853e71849bb51140dfc573c16864f8n/aHeodo
2020-09-24rep 20200924 07563.docdoc a04eec7be461e708f8df91a5118fe261a5a18b6ab866ce9a032631ba8fca505aVirustotal results 29.03%Heodo
2020-09-24Doc 20200924.docdoc a626a37df7cda5e19509dbf11e7da25dee10fccb13c11783d28879021ead0f7dVirustotal results 29.03%Heodo
2020-09-24233428-20200924-CY9835.docdoc 53894a66cb2c5b7803247d709fb0ddd3352721e5b03c2a381085a5018a2eda0fVirustotal results 27.42%Heodo
2020-09-24FILE 2020_09_24 L56409.docdoc ce6c5b403794988f1f8b87e204c73e7de295624d14d9b2e7b2115ece7aae362cVirustotal results 27.87%Heodo
2020-09-24Mes 8116.docdoc b439c5584fde670fae46ef551e3dcb4279968441b7a7df23ae166eaa11d61cd2Virustotal results 27.42%Heodo
2020-09-24rep.docdoc 0659cfc4b010396551f8842405a5d4d047abbf71bd783a7956dd41c1329972c9Virustotal results 25.81%Heodo
2020-09-24mes_2020_09_24_MST61812.docdoc 612249e717e41cbbc2e1f3b188a6239dd839b101daad36420d7c2ac1bc06566fVirustotal results 24.19%Heodo
2020-09-24UNTITLED-20200924-710.docdoc 57c819aa8037219a797527d244de0184e442b0f39eb6dd73b17661ab7f97969cVirustotal results 24.19%Heodo
2020-09-24List_2020_09_24.docdoc ee8bbbd66f875dadd1be1e600b7ea785439dfae118c9ae269a9beb0bc11c1b8fn/aHeodo
2020-09-24doc-20200924-2549961.docdoc 89cf8d6da8af65713bdc1bc9d1d535f6a609b1b9b1d44ec09136371efe650605Virustotal results 24.19%Heodo
2020-09-24File 20200924 654.docdoc 0e82376f74d311910f2215b69aca318b42aade67fb90e64743dcffaca6bf99aaVirustotal results 24.59%Heodo
2020-09-24ARC 20200924 ULY533.docdoc 05333040945d98d0c4a9ec726dbfc9f4ee0a00c4e354e2716e3f14df54f7b3can/aHeodo