URLhaus Database

You are currently viewing the URLhaus database entry for http://guarany.net/zefiro/DDI/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	616838
URL:	http://guarany.net/zefiro/DDI/
URL Status:	Offline
Host:	guarany.net
Date added:	2020-09-28 14:38:12 UTC
Last online:	2020-09-29 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-09-28 14:40:07 UTC to abuse{at}hospedagem[dot]net)
Takedown time:	1 day, 4 hours, 9 minutes (down since 2020-09-29 18:50:04 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-29	xkFVNVkkr.exe	exe	41c86a3b931753185c969c530a99c563a8a58dd0ba3205aaf2f466899a14bbd0	n/a	Heodo
2020-09-29	OsKbb99wuwYuDoGm9e1.exe	exe	ee8e3957fa172fa72092583f4df4ba9c2629db9a0a11d4cb80af5a3e68d0fe16	n/a	Heodo
2020-09-29	b6kkZc58wHlAFPsZu.exe	exe	725299732d029da7c6bc59d18e727a7e7bc7672042b86a53466ecdf15bf11f4e	8.70%	Heodo
2020-09-29	9aHwLTJs2DR51ejt2Ao.exe	exe	21a98d4ee0291e6dde24812af5dbb4d6e154e056c9551c2af2aa17f9051f5109	n/a	Heodo
2020-09-29	Rzbqs.exe	exe	7bb16f2572c033b36a4f047d733398226a5edfe0ebf7e242c293efb0138ff4f2	n/a	Heodo
2020-09-29	YphKukie.exe	exe	b9e4ed5cb3f31d3644ee457f6ebb2d6f6998740a4bf188b98749e06836bf3164	n/a	Heodo
2020-09-29	Mj69Sn23fD13JrYx1RrOE.exe	exe	57144a0c3e1bbbf2466cc1b1526d22248fe3b74a4284f8db6540ca81be33f802	7.04%	Heodo
2020-09-29	vqLFmPV.exe	exe	a821f0f8592040944b0a139365d3ddb8d58d300bfa28adbae4107b82d652b679	7.04%	Heodo
2020-09-29	X2oxNJ.exe	exe	ab847b959bb55463544365657e15770f0715059c6921329aa9ae4452788511f4	n/a	Heodo
2020-09-29	FnBHW2WsD6y9V4IHyeEyl.exe	exe	ed2e29b00d167b6e61ed4cf3bd45d5d93df0b1fb5831dd69cfd9f747fd6222ce	7.04%	Heodo
2020-09-29	oyxMOWp9stQgB.exe	exe	cae44340e8c213d0d415da7c88e6bfbc93afded7e62d59f5412a039b954e69f1	n/a	Heodo
2020-09-29	NIq2N72GwaVg.exe	exe	10314472810d535e9554ac2a78e41fe85b0068fa1e3267be0462172bac5cce06	n/a	Heodo
2020-09-29	dk2RxJpwX.exe	exe	82e1a7c878ef4eba4edb7a83ba7ef6d31c626e4b00ea04c643de8e1eef46f8c4	n/a	Heodo
2020-09-29	VXGMgzsR0oVcX7.exe	exe	b4fa08d9da16d867731dcc5337f82b265ac1bb1b88f122636fd1c1005cc3b61b	28.17%	Heodo
2020-09-29	EQo6mb5ulj6wfPsWcA.exe	exe	779c7118dae0c29822519baf2dea9f2959dec6c1fb833f2ad765629dc87fc3a8	n/a	Heodo
2020-09-29	7uaYF76y.exe	exe	2f00ef033e681a2a1930b8acf10309ece6cb33bb3c7628870a70bba60318c8af	n/a	Heodo
2020-09-29	9QafSF9ZhiwJfzPl.exe	exe	95b4c61afc6fc9f641337cb5700bdbdf4d586cdc7f0a8c78f98c74855a903103	n/a	Heodo
2020-09-29	nGdil3Tz.exe	exe	95f1afba5f2e673ff0d2438b08747c5f8d57db44c46a5ab9e6a579c9b1ef3bfc	n/a	Heodo
2020-09-29	zRhghUGIBRSSKQ.exe	exe	6fe83fd7c2ef2bf040d5974ca798af48029d23d6595bdd2d8878733d37946b9a	n/a	Heodo
2020-09-29	lK1rlq7PF2ozWfsmwrTV.exe	exe	e2e53bdb060323ab1761abc6e1d4bbc28b6ef6cf027f40d5463619a820f2d48c	n/a	Heodo
2020-09-29	xGaQvznyhdlQWU9h.exe	exe	876f129e425cbc544cc3d59798bf52af46404a22fea831c2b4fceb2c24845425	n/a	Heodo
2020-09-29	Ajx3lbbaS2rkMSGZ92sy.exe	exe	fe4bb74454c10bca79bed17185b67a36e0ba078c8c27e4a6f2a3254470337000	n/a	Heodo
2020-09-29	AzmfCp.exe	exe	57ba341fe2986795aecaa2d85d4ec396a5c4acc1224c68a91572fd64b4e51a0e	25.35%	Heodo
2020-09-29	5pupifIS0Fa7oK7.exe	exe	a2f05076db5502205cb8ee27001972f49403d09c5e6b756279e9be4736ca1628	n/a	Heodo
2020-09-29	Hy4.exe	exe	66fba197e74759cca891749d21880984b0268016fcec7b3913a416124a69e1be	n/a	Heodo
2020-09-29	a6umooWVjSEebCjZN.exe	exe	76783ab029429294ab40cb7f50e1ace7533dc4cc06485225277a9de2aaedad4d	19.72%	Heodo
2020-09-29	XApdQPQnncsu.exe	exe	05fff493c8237f21aae2405ecc70e163027cc2cfa1b7c5c340782cac41e36f5d	n/a	Heodo
2020-09-29	Rggq8ZW.exe	exe	9689072495d9771ea87d01b6c3a69a33ea5fd81e3981b40a811527b6b820b899	n/a	Heodo
2020-09-29	NtMKNnDCpk6Gj1F.exe	exe	9a75127e67f5391a75a0187e1fd6533e3c8e4d81a26d8bf2d64d1433be489e00	15.49%	Heodo
2020-09-29	3mdxnQvsCs.exe	exe	a05f2a98e4ed9bcca9ae02b9ca31a3fa49a133518d4d07ff7b88737087c4a980	14.08%	Heodo
2020-09-29	s2Lhh6S8NRZf.exe	exe	0b7b495422dfb1444c0fd848de9b3a3410a1da12d31cd878840b0fe1b5e7c34f	n/a	Heodo
2020-09-29	gADB7zW.exe	exe	760e4e58897f23a60718fb7dd4d13d65ac1e2dcbb63e3f15b74f29efd9765253	n/a	Heodo
2020-09-29	xUkE9NzKuVOa.exe	exe	aae4885a9f1f14beff256636c43bc30a6a375395d45656275a9ffdc09f0833de	n/a	Heodo
2020-09-29	Xy85jna.exe	exe	040a6d19ca164ffb50c473d144f409c43dcc643be666493e656151223d0743ce	14.29%	Heodo
2020-09-29	MBPF4Lib.exe	exe	62f7d6d0e1b88a56b91ef46d2d538ce9de572e965435684e17871aec76dc1b44	n/a	Heodo
2020-09-29	l69ZT6uMTycnblB4OUE.exe	exe	f653d6afb572dd18218a30f95494533c10d51ab754025e308f34eb4b471002a8	n/a	Heodo
2020-09-29	qGgTIOzyYolEqs.exe	exe	dcb8dd62f07d921be103808592ba0eeda3177ab671c72de18349c63b4dc37f94	14.08%	Heodo
2020-09-29	3edQrF.exe	exe	b0c98a584ef38b635f225c25242b0b76df0455acc781ac016a76c09c850a527e	n/a	Heodo
2020-09-29	Okc6Kaphwa0G4r.exe	exe	e5664a77a1abd9d06c6730e7e084d82a988f67bd33b8398ce9402b26cf6abfed	n/a	Heodo
2020-09-29	i6pptU2oU.exe	exe	8c9f40eeba0fdfa1302cba42ff0da359d7098f409b475f3eb4bd6345fd35cd74	14.08%	Heodo
2020-09-29	yygTDxp9DvMimHzNFsNGm.exe	exe	3cba58079d3c86fa5b13e476c562b6bbc74abd174b0635d319a0f59059b7ac4c	14.29%	Heodo
2020-09-29	O1bAxIhDuZtsNAPyosFi8.exe	exe	b81e3da86483c17361582e0fae3a2e02fd9cbcfc162b6b631c6fd6e204bc9531	n/a	Heodo
2020-09-29	qqgsSQLqmZA7.exe	exe	3d7bca685713f8873047e82e817c10a0d87387046a01d932a5401a6cfb4c907a	12.68%	Heodo
2020-09-29	tC8CeJlHMg.exe	exe	b8ee4d64bc6c00b3135128d7e40a83e822191002ec9d386d9fc52f4d6f3b00c0	14.08%	Heodo
2020-09-29	Af9.exe	exe	746fe1a248c298b8eed77842ae6b019a889b8fc01c7f1954e0f4b362df729f8c	n/a	Heodo
2020-09-29	CMnHdUtmCV8nsOd.exe	exe	5e8e6ece83421c96972ce210c49a4186f7e500d583f7cfb9072db7c0880a7520	n/a	Heodo
2020-09-29	5SQF.exe	exe	b5407869151667b8a573fdcea7d6c213fbbf90ec3310dcf5055aaf0ecdc009c4	27.14%	Heodo
2020-09-29	NzHkcmGrq9.exe	exe	2d0d0d01ab923fc5028de6790b68c9debe63ba30f3508b998135b2d03df98d7f	n/a	Heodo
2020-09-29	w8m4yYJIPWVT.exe	exe	23c89fd32744eedaf97e17aea938abbb4b441e4a143e278a0a25d49a74a34ab4	n/a	Heodo
2020-09-29	xxx13awsOL.exe	exe	9d1d07f0a454a93339f1c8592cfad06602b38e194fcfecc7d5e2243db823e94f	23.94%	Heodo
2020-09-29	BbOfu.exe	exe	f8d7a37d208507d59eae26b9f0e82eb7fec0d757899f8a1777a527f54e53e08b	n/a	Heodo
2020-09-29	q1uItgv.exe	exe	d44786916107c924296d1f5b1729ef5c7fe1acec4145921aab832c4fee1622b4	n/a	Heodo
2020-09-29	5K5m0Y.exe	exe	8a8074d2c8fe74295e6c6ecd0a3bb342365e7a1301a58df8fdfb024b5375d364	n/a	Heodo
2020-09-29	6aQuKznSAHE2KQNYE.exe	exe	c019c50249b1a7a57f9ab868d7fe0ee2674d71317c1f93b7de52c6df0e1e6a01	n/a	Heodo
2020-09-29	cAAlAXyT4Nj.exe	exe	c7d1c8d800ef7d14665ec951a4e49a0f86d5fdd5b63832bc5f1cd79474cc7110	13.04%	Heodo
2020-09-29	F96FHDaC3mR61fhzDbn.exe	exe	72942d1cc04fcd29719b4d10b258cd6ba0d9a84d064ba5a48afd616990e36d0f	n/a	Heodo
2020-09-29	MJ37F6vwRyudE4pf4.exe	exe	560cc2de2c278aa123ca2857da889076acfb171943ae8ad052cad247511e9bd9	14.29%	Heodo
2020-09-29	4fA8szXLZBU7ctiR.exe	exe	728fb1239cba46ac39102bc82010fa52f7c7bc391dfd3917d2ec8cc42521ad63	15.49%	Heodo
2020-09-28	eFz2K5UT.exe	exe	26d989ac71d96443d8d1e269e9f1a64a6c1342dcf78a8ccaa16758b12b573a52	15.49%	Heodo
2020-09-28	akfODv.exe	exe	7e3d45361a0c17961d5f9f33615b1f0fc7a9d13353f8e6ce3a19107d6bbfc4cf	15.49%	Heodo
2020-09-28	mrHUGdZl.exe	exe	f246e881be74dd909664f300ae0a9c332158992d4fead32f25ea3c32b2bc6d59	n/a	Heodo
2020-09-28	UAMEbFOTpu6P.exe	exe	395f52f9636fa034c682ac424303ff545b92b02f39621c4c4d432b6baf35f731	n/a	Heodo
2020-09-28	mBoma9q45gh.exe	exe	88d9e35728996b7038cace64122b4086182cd84df4b1e9f8a93c4a6054522870	n/a	Heodo
2020-09-28	T9ygpr.exe	exe	cf1a0a186d00f1ca0299bb978bf7f2303ee00171b1a56e5d1325a20b8fa0c12a	n/a	Heodo
2020-09-28	JNc10ihXHPwoRbl5hxM3n.exe	exe	786e4de191d62d6d8b8b3240d8dd0809658fae651f86e51bce38e08a17ed9390	n/a	Heodo
2020-09-28	SJpBtJ18.exe	exe	fa74e3361276e640dfe7df3c0ea27b8710420088da99ef7beb1cd1f1969b0b1c	n/a	Heodo
2020-09-28	lUtBPTtG.exe	exe	0b743c5ffb6626345a591d437a98621dd9a4675ff00a23d1e7012405f5238a6e	15.49%	Heodo
2020-09-28	qfFE.exe	exe	98edcbbd280c024805349fc87eb520cff9419c01ff89df7325a55a9bf536e6ab	n/a	Heodo
2020-09-28	LxkHsGyCqAEaiiH03.exe	exe	e92d2181d760f1626d2d59f946900e13a1755cb15ef3c816fefcbe7ce3ac8c25	n/a	Heodo
2020-09-28	aOt8GYCqJ.exe	exe	79e7dc1b174502ffaddc4731c6d23bc54a298d8050ce92e00be61d01e36bcc5e	n/a	Heodo
2020-09-28	HqFNSQctB.exe	exe	7f5f4e0fa171e0a64986a733e686d684da2f8ed9df9ccd4d193442aec64451d0	n/a	Heodo
2020-09-28	uFRN.exe	exe	f97a8aa7f26e0f359d994a2919e7ba6f842344f216f468827c79c1328b45c141	n/a	Heodo
2020-09-28	tdj18HM5HQvY2vY8Hvx.exe	exe	b5548ae8d88e7cdc5c2dd4a2e89c3db9e85b1e346edbb929602e1a879163efd1	n/a	Heodo
2020-09-28	9xA.exe	exe	37e22f838246bdda8db7d2a2c0ef2c7d5ce225f32ea5c8243c4e8b83f681cbff	n/a
2020-09-28	OMMlU.exe	exe	6bcbc07a21091acb79832de6e3874157e7f80a9b32ee75be48e4d933aba39cee	9.86%	Heodo
2020-09-28	7VLGvL.exe	exe	608e928ce1966726294b15858b3a8fc933310ae7afca0bb0ccc559242d86ecdd	n/a	Heodo
2020-09-28	aqe2aaUEbEF1oBO84q.exe	exe	dc30a86993babaf5d6c1f18c0eb088bb40f604e6b96da5426701c838e27cb26b	8.45%	Heodo
2020-09-28	WNzrsqtYzad6.exe	exe	f39a5b93a10c706a384fb20f2d947a273a8f5016d9bc6092745efc306d160c95	n/a	Heodo
2020-09-28	u15Y5gg1EGz.exe	exe	05c8b5833188c055ec3289dd3aef6673f738d4ae196c5001ed758db31703f1dc	n/a	Heodo
2020-09-28	3QD2nF1D2go.exe	exe	2fed6202529dbe2e265b8022170d80d144a704625e5fb7a56c2f1dcbed30c672	n/a	Heodo
2020-09-28	PZn9gjQXDlvhE.exe	exe	8b29ac63974e671b108a8744cff56dc46d36b03efe717e2e0a9c4de713d6a47d	n/a	Heodo
2020-09-28	578wJEKspBAuMdT9XCXty.exe	exe	b7ab445717170b0c4d3c8d9ea35123d63d86ea21ead0c1368888b4002a7bb515	n/a	Heodo
2020-09-28	HGIf4zXGjLd.exe	exe	c3804578e62a8f76bf2f8b6b81edbd176dd132ceead5c62b5c651a8ac700e569	9.86%	Heodo
2020-09-28	faQXiOfdL3DToC7.exe	exe	21b6f20b5bfe7aa202fa547b03d87022cbed685cfa01f4b3004210a46a53c81c	8.45%	Heodo
2020-09-28	CpwFB3nulyQ.exe	exe	8179e1d0704b0d3abbada3148a814d04fad521864d11b6d78223e2c305e2c4b2	n/a	Heodo
2020-09-28	CWbXl1T0fi0XGIr.exe	exe	75b9e9a4404ac53e966c8c54ad374403f1df81bcd63d1a8bdab0529556dc0d53	n/a	Heodo
2020-09-28	pN8aQggNB7y.exe	exe	7184f1c989ae06d547600396d04148268b4f9ff3016f3ec5f76827b809145bd4	13.24%	Heodo
2020-09-28	AnSkSkFB6w9sWzEyZu.exe	exe	d345f20a20b751086b45affb8f4165f4893674cbbebba410a5ace36c5b3d24ea	n/a	Heodo
2020-09-28	cxVT1ZspmEhsHluBc.exe	exe	142447009270af77aa6ab6e7c1427e0665aba76c298088c6fd73a1c4e77b85bf	n/a	Heodo