URLhaus Database

You are currently viewing the URLhaus database entry for http://greensync.com.br/aspnet_clientOld/w/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	620629
URL:	http://greensync.com.br/aspnet_clientOld/w/
URL Status:	Offline
Host:	greensync.com.br
Date added:	2020-09-29 04:10:06 UTC
Last online:	2020-09-30 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	bomccss
Abuse complaint sent (?):	Yes (2020-09-29 04:12:13 UTC to abuse{at}hospedagem[dot]net)
Takedown time:	1 day, 9 hours, 37 minutes (down since 2020-09-30 13:49:35 UTC)
Tags:	emotet epoch1 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-30	bn2zPCYyJf1AyOrQDF.exe	exe	e317681b551bfedd40ecb658679ee3c576508aae07f2078cdcc4383a6345ab02	n/a	Heodo
2020-09-30	r3kW4.exe	exe	17fc27182ed27b7124ea0c63275115202894fc4699d635553fbc778b8ba2da05	n/a	Heodo
2020-09-30	ZZxjUmYqJBM99O8IYok.exe	exe	90a59d89bcd381b6748ced32b06cf2b97108d11ce3e13af8c413c44e081ae0d5	n/a	Heodo
2020-09-30	btV6NK2.exe	exe	196e5c76ee1fd5e40bd9c16acc4fa06168ee4521fc610fd5fe7fd26e7dbd496e	n/a	Heodo
2020-09-30	oJyYhBR96g.exe	exe	bf032da77b9e9a01ca760231f3244e364d5d2f04ab211684d0b072abd104b426	n/a	Heodo
2020-09-30	jwXdeScHguiG.exe	exe	69ad04539b336dc9e6f2f1226d50e52b2f6407cea7c3c07e6a3b3b0937438e27	10.00%	Heodo
2020-09-30	zpfTI8v8HVv02.exe	exe	3ef480f9d3810faed48346b317b372cfb2843dd321434541e8017b378f99c6a3	n/a	Heodo
2020-09-30	OZqxEO.exe	exe	4a25e1bd1d1f43b973b785e971a18cc9464a13052099cbbb5bd44adf3f17510c	n/a	Heodo
2020-09-30	etBQ8hO.exe	exe	f695b6cb71fcce1387e767b3be8ddf0044b1c28dc132e888aeae4baf428c23c4	n/a	Heodo
2020-09-30	HJD25lclSRTPWz2j.exe	exe	5f423cce0577b1166d7b0d3131257031a1f81f8ba68972f45bd51621b401468e	n/a	Heodo
2020-09-30	MloC6F.exe	exe	f1e3a97a91ba0c6618bd350b43630e9cbb2c549cf4e24ae79daf9d57531ef677	n/a	Heodo
2020-09-30	bsJ39JXWaHuhAipkCwc.exe	exe	8f2382a4f98dcaef04735e4a37ff9d9e1481e9508c7f5784ba7f74e00b9a6d20	n/a	Heodo
2020-09-30	MVmszZwzl5kAFfAt.exe	exe	7cf38d6543e2fac64ba9a86db587a5505faaf9b36872ae5d67ac863c6013a769	n/a	Heodo
2020-09-30	ZVIeqMX.exe	exe	3488e6d5dadf56c0465abca6c2ddfe434bd6d827e6c604c1698c81e5824db586	n/a	Heodo
2020-09-30	qzpy1jFfDFfIokvoPSWI.exe	exe	c464b18c7a2c2652c6032594fac15ad2ae6a7a372f25ba60dfba2c3595729304	n/a	Heodo
2020-09-30	GMzFupr.exe	exe	2901aa6fa2f4aa924980922533d2d11cee55c2d3a3d2f21a0447f6664f4d7e17	n/a	Heodo
2020-09-30	FZH5eNrqI1x.exe	exe	d36ea83fd0faaa0efce4c8dd35253e3279661ce34c938194d77c999b63843bae	n/a	Heodo
2020-09-30	gHicIHoHx.exe	exe	cea343535e704ff87cb6aa2432164e1d3f1bf7feb756ecfdc78e0d902ae348c5	n/a	Heodo
2020-09-30	t5NtD3EVRr9z.exe	exe	dd0facc21afcd3604dad2f0109ffefddb9e98062b982583e410021fd2f769201	n/a	Heodo
2020-09-30	kYTpfXVuFhmsI6jbg.exe	exe	3fafaed23699c17eb506974b82fd8e3c26a729986d665527272c412f29036321	n/a	Heodo
2020-09-29	iKKRtbb302.exe	exe	f66438981b46c5c9e1df8d27df7466f52c16bc989fc0728f56623fdaba3c4f8c	n/a	Heodo
2020-09-29	VuDwWg.exe	exe	209a4c22659b7b72516dc08c5cab7c3f08d776b95ef3023e97204e6f1681f4f1	n/a	Heodo
2020-09-29	3dE.exe	exe	ddb8e706b37dd204527d3dc2719c4ab8a5d9cd9db387253c32eec9ea6de7e58c	n/a	Heodo
2020-09-29	eY5BlTsAGW0KMGHY5.exe	exe	06961da1d8fa4afcdca6de74947c9ce7ca0536336c9b558b11d51b80d8495101	n/a	Heodo
2020-09-29	9LeChCGPWZHWwA.exe	exe	97204bfad670eba40801d15cdd0dc15dd8d8108be093d760dc8e1a02316a879f	n/a	Heodo
2020-09-29	QchQhErgUuNMBbHND5.exe	exe	af8c69a5f910a2f48925fe3f424a39cad7660258059a1fae246e3e8b50620deb	25.35%	Heodo
2020-09-29	rzz6ggHI6GM.exe	exe	314c6c30a164ffbcbde7d3a0c29ffa68ea44bdbcb5d6c660d2df304e727200c1	n/a	Heodo
2020-09-29	AcxciNbaVP.exe	exe	cea0b4ef6b0b012f10236f7106c6771f833eee5177777ddb6b588c282c6e5972	n/a	Heodo
2020-09-29	iLt3.exe	exe	176371297ebbd16b1ec33a7d8b35f1a4869781893fc850f90bcc2ac94f4e514c	n/a	Heodo
2020-09-29	o6wOQ7Lm9N2nFzZ.exe	exe	36b0e3c34a3f8bd7b5a1d5eecb203057f30d9d5ab12846866cfb2a5813534c86	22.54%	Heodo
2020-09-29	TWRYUpBYPI3jvX4MLGJM.exe	exe	31fdf5fdbcb2c9af741d65dd8300410c74df526dc100713db45ed45559737bbf	n/a	Heodo
2020-09-29	9IH.exe	exe	84f7a92c500b38eac091675d1619acaeb1ffec54e65bf059bae9a07c44a35651	20.00%	Heodo
2020-09-29	Vgz7MO18nUNdW68.exe	exe	ac38f5d778d2c5d9fc0c5351e0194bc9165a7f20d75caa6f5c7b68f053f4e886	n/a	Heodo
2020-09-29	5uoS.exe	exe	3239cf36fcf09a56a2a58e847578c27b5eeb2739256022b83dc693adf32a6ef3	n/a	Heodo
2020-09-29	4M8IjEFuRZSF7G.exe	exe	9828beb19bc914f58b688406810cdeecf271dc65b7aaa341ad3f4c6f558b4317	14.08%	Heodo
2020-09-29	Wiefu61AO3Vb2443fAZMH.exe	exe	c4ececdb451da1fdbdf5733366c35611576419ba90a72db872dd38eb972d2493	n/a	Heodo
2020-09-29	pzEIiYWo.exe	exe	a9666b5f25be919214796964b8beb7f641c3b1bf5f99ee929ebf977cc7ba557c	n/a	Heodo
2020-09-29	uETBWqWqfw.exe	exe	95579ef8a9e9ab6ee8735e8557cd1e7cc9c8e7c91321b4bf86e21c9d4ca4466d	14.29%	Heodo
2020-09-29	VrIfm4DgX7MCf4h0JscRE.exe	exe	29d51207eb5669fcc3c4ab9995dc00803f5b21e8bbea95757e39a557f9241fd9	n/a	Heodo
2020-09-29	n2y.exe	exe	7e6915bb6644db21d5475d64ee4851ef6e2a0a3ac17e6b68d602752cbca65489	n/a	Heodo
2020-09-29	2cZ7.exe	exe	68eae843c3bdd703433340fceea515cd37fafa202051a3eeb50f96ee8b2a7fdd	n/a	Heodo
2020-09-29	6TaASRqFeE02q.exe	exe	41cf644a6bbc34ad8f595b78ae0bd114bcb0d2236cfadd0ca6d494907e881913	n/a	Heodo