URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetbaruck.com.br/wp/attachments/pJgP11Aa7P4/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:624627
URL: https://buffetbaruck.com.br/wp/attachments/pJgP11Aa7P4/
URL Status:Offline
Host: buffetbaruck.com.br
Date added:2020-09-29 19:11:48 UTC
Last online:2020-10-28 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-29 19:12:04 UTC to abuse{at}hostinger[dot]com)
Takedown time:28 days, 6 hours, 22 minutes Bad (down since 2020-10-28 01:34:45 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-30list J67283.docdoc c5fb0bf46e7abc0dc192a51dc5e8c8f05df4c91bd08dc53d536cd4ffbf09f89dVirustotal results 41.94%Heodo
2020-09-30mes_2020_09_30_M8186.docdoc f72f43e5d32d5bf4ab91a6e04550dbef93f82764320a7403d8b59952c208beadVirustotal results 40.32%Heodo
2020-09-3032383673-20200930-803.docdoc f8b2d066f5a3d657edb1544f9df31a9a7b3121c5c14ddb1b96b50ddd69b44c22Virustotal results 37.70%Heodo
2020-09-30UNTITLED_2020_09_30_IJ1473.docdoc 3e16472eff5bf2937b0f1833264ef998b9f6339e36a135499b25cfa8e794b33cVirustotal results 37.10%Heodo
2020-09-30Dat_397.docdoc 12eacad71c2a295436f6909c437715e14ed8ab2c4c2417d845ee7e4155768b1bVirustotal results 33.87%Heodo
2020-09-30File V478634.docdoc 1d44cd8c3d04874dc41108bc844eb637f657064927fc28927f68c95fe596bcaaVirustotal results 32.79%Heodo
2020-09-30INF-2020_09_30-2721.docdoc b6c45e66c35cf5d894ba5932c824d162c760459d59644fd0d41bc5ab63604b06n/aHeodo
2020-09-30arc-2020_09_30.docdoc 0cbe205dde93631435eaf136feea1e35c86b49f20a0067c26fde038b48e2d725n/aHeodo
2020-09-30Arc_2020_09_30_J0467.docdoc 10f4a118d75e59c1f0ae83e7e44c9553fd6925a4bcf21a4cb62559c38c550147Virustotal results 31.15%Heodo
2020-09-30MES 2020_09_30 L33238.docdoc 541afbe8b457f589a760cae7ecbf5d520a7f1ecb81bf9d2e2f5ddf90cad8a418n/aHeodo
2020-09-300011XV-2020_09_30-FZY157903.docdoc 8b094b3853afcb79ef514333bfa570faac9b7996f06500f174020ce0e5a31751Virustotal results 31.67%Heodo
2020-09-29file-2020_09_30-FVO821.docdoc 98c87f2f2e124f5e8444896304f556a844430d6543223343abc894702abf99e3n/aHeodo
2020-09-29dat-2020_09_30.docdoc fe1ce0fd30ae39c4347efaf4fd829853c3df12a2eaa46b281faf17855b5c3a2dn/aHeodo
2020-09-2912861_POO47335.docdoc 349dd2ac63132716ea7360223fd038575e1b7144925c60d87589880fbd488670Virustotal results 29.03% Heodo
2020-09-29Inf-2020_09_30-196860.docdoc 2ce2a7979c53158a0e7454224e6755704290a5a16a092aec69088da9eb3571a3n/aHeodo
2020-09-29inf_20200930_434841.docdoc 74f26e376ef3b8ea6b3b9d1599e98182897725563fcf69a3ae86f502acc7cdabn/aHeodo
2020-09-29file GLE06823.docdoc 004d7159e2360d1569de7849fbd5ffa3e63968d011834c565255ade18fcd54cbVirustotal results 19.35%Heodo
2020-09-29mes 2020_09_30 223046.docdoc 182753a6c1d4b67b4f7ae6131148151d0b2cd2b05c8b09f5aca4329bec74cfecn/a Heodo
2020-09-29UNTITLED 694.docdoc f9c7cad1321f589fb0fd68646c0760dcd9cfdd72004cb61598fa14599b5b9bb3n/aHeodo
2020-09-29BHK921_2020_09_30_4988166.docdoc dc37c6a8213875ada2f9dbe9a76ae223105ef7407b221f2b9a8741b9a114bedeVirustotal results 21.31%Heodo
2020-09-29LIST_2020_09_29_0300397.docdoc f02b188278d31f5c4bf69da19d42c2dcdc5f9724d5de56c4b6255732d6d6393dn/aHeodo
2020-09-290002Q.docdoc 66e0d59d4c4e46b4e5589d41dbb45277b6dd25aba1efb68deada81d72a492aebVirustotal results 19.35%Heodo
2020-09-29Attachments.docdoc 140254a1f60e331ddaaa70ddd79ef03759dd73aa778c4e098be6ee6d8513c08an/aHeodo
2020-09-29Dat_20200929_C6949.docdoc 356a24ae493195e7f79abf0f60624c9a90112bad3593eb1b56bf8fe85d10b08aVirustotal results 20.97%Heodo
2020-09-29arc-2020_09_29-171.docdoc 5edbe1ed71b6f09ddce8192cb4e9486cf7fcde8cac4394cc89a313c76c646ad0n/aHeodo