URLhaus Database

You are currently viewing the URLhaus database entry for http://terraplant.com.br/wp-content/y85olO3ItcfCphv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:625919
URL: http://terraplant.com.br/wp-content/y85olO3ItcfCphv/
URL Status:Offline
Host: terraplant.com.br
Date added:2020-09-30 01:05:11 UTC
Last online:2021-02-04 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-09-30 01:06:33 UTC to abuse{at}lacnic[dot]net)
Takedown time:4 months, 7 days, 20 hours, 20 minutes Bad (down since 2021-02-04 21:26:50 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-01-16inf-2020_10_02-92148.docdoc 8db95976218242d3ab54392bd2e0df2a03ce965de61894e269d1d38676d51d10Virustotal results 65.62%Heodo
2020-09-30Dat 20201001 OZ101.docdoc 4775719b443e192325610b1eb79d188314e42c2dbdd27c3d2aaee14a082a5176Virustotal results 25.81%Heodo
2020-09-30Dat-20201001-781128.docdoc 59218dd633aa6e55d901c1a8227ace241e21d80c34af6fbd4dd99400832ef122Virustotal results 25.81%Heodo
2020-09-30FILE_2020_10_01_ZM317104.docdoc a45457d61dc4348ead8ec41d69cbf25f7a141e5ccf3cea45583e5a1a666cef6dVirustotal results 25.81%Heodo
2020-09-309212VRZ-2020_10_01-RU583.docdoc fec01c1bae4abd3f9440381c855227b0f1482882e766d147e42f80cd257cab3aVirustotal results 25.81%Heodo
2020-09-30Rep-315.docdoc 024d41e6829c4934db673c8c999026101957149432f935a6f24412fd9d6e52d7Virustotal results 25.81%Heodo
2020-09-30MES_IWQ513.docdoc 32a1991f3cccd7f0d787d1fd9ef745328cefd8d134d25a6a2e12d49808143952Virustotal results 25.81%Heodo
2020-09-30Inf JUT052.docdoc 164fe479632bdf27098b3df0069d2cd134548e39cee7d60201a17b4ea0579b90Virustotal results 24.19%Heodo
2020-09-30Mes 20200930 8804961.docdoc 8f46d02ff9a3f6dd9767435624c92ff8aeb0c17d1cf0f65564c9a9b52ce5cf2cVirustotal results 22.58%Heodo
2020-09-30SFG467-26606.docdoc 9d324dca782f0c31fabf90945e2299934a2a4a5f08c328100843fa3c06380300Virustotal results 24.19%Heodo
2020-09-30Inf-APC9237.docdoc 425549332fdfd6f0e65c959673d9ccd5e6a8be2a83d6ac67a63a147bca27837cVirustotal results 24.19%Heodo
2020-09-30Dat_2020_09_30.docdoc 5f1b7ea2789bf23bdbd87c87daded72bb53aad07fc776bd6622709482c002b33n/aHeodo
2020-09-30ARC-20200930-RS228170.docdoc dec24ed6c763f910089034b7692793382148a8918f6a302e9749c3c2746f60e0n/aHeodo
2020-09-30FILE-RGV493245.docdoc 98a129783214c4f848182d4ee393f9778ea81fad1808c5d1e589afa4738e38adn/aHeodo
2020-09-3031126 2020_09_30 WHB36434.docdoc 6d252cf9f5ba5ca72addfd64afee22e96d0205e1f0dce0fee750a463e1f3166bn/aHeodo
2020-09-30inf_20200930_380133.docdoc b03527f06cf23a197a3ed8826c8e376391264fa6bbff6dac29b2ef9af6dfb8c1Virustotal results 24.19%Heodo
2020-09-30dat-20200930.docdoc 31942ada0dac9b812b7eda1449490454af6c5ee7e421ee11d7c4c9ca467967b6n/aHeodo
2020-09-30Attachments_20200930_R2801.docdoc d8001dcb320e9cea74bbfed4d771877abb643b6b5bf9c2718e2ca6dc92fc36e8Virustotal results 22.95%Heodo
2020-09-30REP_20200930_VN239092.docdoc cd4e40d3b639c11b89ee51b90d700ac2d0036337b64bf354c10703b23923e621Virustotal results 22.95%Heodo
2020-09-306152606_20200930_SVC5295.docdoc 070f607b4f349149ac149bbafca3314d4fdc3db65a0a3fc158b564f77d9ee460n/aHeodo
2020-09-30rep-20200930-087.docdoc 2888b551e17e7d62e62ca0cec57591c6d9e40b39c0db60b31ba14b2e39fd86e0Virustotal results 22.58%Heodo
2020-09-30UNTITLED-20200930-518943.docdoc 850e9bafbe0408f9f427939ea3ff414b76d842b7dbc9d3eb38acfa0b259aac86Virustotal results 23.33%Heodo
2020-09-309661NLT-2020_09_30-C34347.docdoc bba8eee6c7052816d44796927ca6001f69f76e479ac041cf0331e13e167d0b99n/aHeodo
2020-09-30List-20200930-730868.docdoc ccd09c9d5a3e23cf11d4573a5ce8d84c634f8cdcf7188378a94ab61d27544009n/aHeodo
2020-09-30File 20200930 GMP368127.docdoc 2e596652391370bfcf5e776a4379dd5061fcb4441200889c726c34ea6207ee9bn/aHeodo
2020-09-30doc.docdoc e5f595a826309d1309411963281babb3e9d29b8149a7f105059242d22a207863n/aHeodo
2020-09-30MES_2020_09_30_E79089.docdoc 45faa8a93a80ca5b456bb20574a499c2e4f9e838126903fd4af560ecb2c8ec05n/aHeodo
2020-09-30List-2020_09_30-04211.docdoc f6ed8a2b25a6f8f693aa0aa17e1a77c02888113452cbbb4efae319131fd375ffn/aHeodo
2020-09-30Inf_2020_09_30.docdoc 2fbc53c50b9b33c49311e11a41aa64660b305c9c7d4a4db3986c59a1a77696a8n/aHeodo
2020-09-30rep 2020_09_30 124.docdoc 638f854ddf0512642125aa805b9b59a11c6197b711e11aa71db57fabb2f83f67n/aHeodo
2020-09-30List-Q6301.docdoc be1d469e7f434641202ffde45e666cd4b1d255814f8cbf344a3aff1e78e86768n/aHeodo
2020-09-30UNTITLED_2731.docdoc ce1d7fe9a715dbd5b408b17ff12010a67d3d1d002a9484370931304e35254f12Virustotal results 22.95%Heodo
2020-09-30REP-20200930.docdoc 5b24e8f4ca7bdad868a0e56849d64ec683823966fd395d1b4e3f4d193353aeean/aHeodo
2020-09-30Attachments-7651604.docdoc 913f98172cbe570c40c669297d3e0fd52e3109a2433467ddbca9e443d7ee438an/aHeodo
2020-09-30Arc 28014.docdoc 7517322994d207e75f7e760a7797f433ed016d4d39d3b2cc257e6b05d158c0b8n/aHeodo
2020-09-30Rep 8929.docdoc 32df3c70f61588818db28100b3aa78cd777b526393d31f97a17cddbee56e12d3n/aHeodo
2020-09-30dat_20200930_O51549.docdoc 51bfbea1b9568775317e6fb2e320354fc98657ec6c3124ff2fb659b72bceffb1n/aHeodo
2020-09-30ARC 20200930.docdoc 4c25015ae6e259e42564c6b03066111433ae12f8488364a45ab1e6680d708350Virustotal results 21.31%Heodo
2020-09-30mes-20200930-61423.docdoc 799ad9ba2f68222b08e1a3728b0e9ec9ba943db3978c06ce8febd8e74f57a0d8n/aHeodo
2020-09-30file_4946.docdoc a3f7b976b0c108284bf0de59187798f84d509ad7182c92761cedbb9b35ba4a3dn/aHeodo
2020-09-30DAT QXZ186.docdoc 96d5f51c5c53a7af3dc7d68d75b9e56fe3d1eafbac0804a201994874cda5a954Virustotal results 20.97%Heodo
2020-09-30685175 869822.docdoc 3492fab300b5d411b647ac5b6cc3abd93b7827150f876d1a38d4930e03f16a1fn/aHeodo
2020-09-30file_2020_09_30.docdoc 8eb186e54929e922a6eee808ae49e03dd5a7ef9fbda95a0009ebd8f36523161dVirustotal results 20.97% Heodo
2020-09-30Dat 2020_09_30 YLU1605.docdoc bc1a1a8828821a74c104c0e49dc6a8456e2d89c4f2af71491ea5136f93460561n/aHeodo
2020-09-30rep 5538.docdoc 7464edd6b84b35d71ec4b891bd85c2918da1024f18f49f0e06192b440eb5f364Virustotal results 46.77%Heodo
2020-09-30Rep-20200930-IZO126377.docdoc 45fe2fda54ec2b495e927d8205639f79fc95f1de2c7325a84a6651092c11733bVirustotal results 47.54%Heodo
2020-09-30Attachments 20200930 V0776.docdoc e0241059c22b3f4c297b2b6d6c3d0d854d45f39af3ec08495ca2b04025772414Virustotal results 47.54%Heodo
2020-09-30File-2020_09_30-5777460.docdoc 551817b29bdd25cae481fa77c2f295a03a36b7de6c5afd9dc612ff0ded86e9f0Virustotal results 45.16%Heodo
2020-09-30List ML7733.docdoc b91cb11be0bd9f80cec08a069751a27ef60de586e87e2ba9f8d2a4dc266f879fn/aHeodo
2020-09-30mes 289811.docdoc e8687463d9ab753f201293dcf26cc49ccc1d536ca5eb2807821502b5e45a4b3cn/aHeodo
2020-09-30file.docdoc 6dcb7e9d3ef574e032cf8d4f7da8e1ddefaea58991677a7e53be13723839e09dn/aHeodo
2020-09-30Attachment-4565.docdoc c5fb0bf46e7abc0dc192a51dc5e8c8f05df4c91bd08dc53d536cd4ffbf09f89dVirustotal results 41.94%Heodo
2020-09-30Arc_20200930.docdoc f72f43e5d32d5bf4ab91a6e04550dbef93f82764320a7403d8b59952c208beadVirustotal results 40.32%Heodo
2020-09-30List-2020_09_30-ZO32079.docdoc f8b2d066f5a3d657edb1544f9df31a9a7b3121c5c14ddb1b96b50ddd69b44c22Virustotal results 37.70%Heodo
2020-09-306690N-2020_09_30.docdoc a3aa47fd0e69bb9abfdf3263e13b7d854f23cc07579e8e294a8930e6498d6143n/aHeodo
2020-09-30arc 20200930 137.docdoc 12eacad71c2a295436f6909c437715e14ed8ab2c4c2417d845ee7e4155768b1bVirustotal results 33.87%Heodo
2020-09-30Attachments-20200930-31154.docdoc 1b7ae75c0843e24188c16e98283ae53b2d5d441a3149a30eae0eda9db7781220Virustotal results 32.26%Heodo
2020-09-30mes_2020_09_30_A059.docdoc 0cbe205dde93631435eaf136feea1e35c86b49f20a0067c26fde038b48e2d725n/aHeodo
2020-09-30arc 6984928.docdoc 07f05248ebd561f95c8b5988fddd0396c6d3c0a61015e3cf154e1e97f2af015aVirustotal results 32.26%Heodo