URLhaus Database

You are currently viewing the URLhaus database entry for http://guarany.net/zefiro/ZO/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:692419
URL: http://guarany.net/zefiro/ZO/
URL Status:Offline
Host: guarany.net
Date added:2020-10-14 12:49:06 UTC
Last online:2020-10-16 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-14 12:50:47 UTC to abuse{at}hospedagem[dot]net)
Takedown time:2 days, 4 hours, 44 minutes Poor (down since 2020-10-16 17:35:01 UTC)
Tags:emotet link epoch1 exe heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-16gwqhQ.exeexe da1ccb985dd5c9f52ed7d821491cb2d6fa4983b4ebdd6ae7b732c4697517e314n/a Heodo
2020-10-16OZ8BjNTSkW2wJKAeR.exeexe d6587df7b2574fb21e7c017117dfd8a8debd03f803f8261ca7850ae1395332d0n/a Heodo
2020-10-16YTZPCufztJoAZzZZ.exeexe 36d814852836cc5fe3c65f0eb58498bef42850a735f6591e63f78f494ab07f5dn/a Heodo
2020-10-16n2eW7vN3PrdYkPO.exeexe 67953216e0d2ba69bc859327d1119f51d2cb152f4ac1cdd4e5a6648ff0fb0285n/a Heodo
2020-10-16BIqzx3i3LIcV.exeexe 905020377b9396de47464a3892078f1113b8600c6f8f80aa4f73f9757c6a915dn/a Heodo
2020-10-16hSvrTG.exeexe 67288b2e816320115801a2bdee61c29b0ba605fddc98fdd4758dc102ca50ca48n/a Heodo
2020-10-16eY8XBLGjW2Cbe.exeexe 75e54717aa1eb21b274464212019102484c3494e3d74568b6453174cf85fd294n/a Heodo
2020-10-1666s1IU9.exeexe 85b2a7e7644ecc715daa2c50391d28f82882157df5a16e2d49704ed95b81c1cdn/a Heodo
2020-10-16REcVF5HiRCXLGkvfc04.exeexe 8091c5e4876aabc218c31e5e278ef5015c8e61d1f7ee768e474152b20d7bd16bn/a Heodo
2020-10-16NyzRXCoCUVSrjamod3.exeexe 3f415bb99ef16131297d45944df70ff48aca2472fa4970fc5341e10e69711d12n/a Heodo
2020-10-16nRqQ.exeexe 9f70ad44198157f71c7015742652bd8f16533b18c8b99fe834873035fa9b40a3n/a Heodo
2020-10-16b1fSgSfhWkr.exeexe 1809173f4bd69f4273150084724e510f8d1c8536d89d862d41b6bf1915a40c85n/a Heodo
2020-10-163TO.exeexe ac92828f54dde65bdaef2d10935cb13d827b6e80c7fdafe52145c2f30bba16e6n/a Heodo
2020-10-16xT8drktLyMyR32O7crMC.exeexe 833010c5638d0bde260714c24b0a3cd0f69cb7c381d0253ccc7b668768b5b882n/a Heodo
2020-10-16yxCnivd.exeexe d1b12813f03f027d33b04cb7a1a185403cf318ebef4ecf898a1834273511d88cn/a Heodo
2020-10-163ds.exeexe a7438b1438733c15fd543da6b791bfa9e96a33952b166ead49f28bbfbc28ac2fn/a Heodo
2020-10-16CsU5PW71rO5uywV.exeexe 50cd3c095b587db0ddae70ac4dc3dcc429c4f5df1e0eff053408714e04f344dfn/a Heodo
2020-10-16mLvMgcZEoCeEWfTq.exeexe 43e914c96e30ff2e8a8e42f70e776b28dd5e6555fc9797719db8015824b3ce55n/a Heodo
2020-10-16lwwebDZZWGV.exeexe c52c66fae989c030952157ab62c70642ae0acbc297fa6290739ac29fb68c125fn/a Heodo
2020-10-16jLnwAI3KO.exeexe e5c6d5835a41861c5161b08e0f9d4dc8e9f4764c9ecd648802dc7a1be6368e75n/a Heodo
2020-10-16Po1e0ksXzMY7RVVNMDT.exeexe af19d1bafff011b8e0d637d8adabd8a907715e36de14f0eb7e7f964383fdc8ebn/a Heodo
2020-10-16d6rBbWjy1.exeexe d21dc64d743035935c4c5aef2bdec7fd05476ce61dc6d760e75cf172230281d5n/a Heodo
2020-10-16SPabbkAkMBBCii3bFYBaM.exeexe 2b6f1c730af829f8ddb3ba42df94685a7aa025d3672a7b381d9dcdc698ab9dd9n/a Heodo
2020-10-16Joldm5Dk.exeexe 5d162367550753deb5404fe9a71a8f5ba4ea618a5a85c8b241470ccb3276dee0n/a Heodo
2020-10-155TQJYlvJLEF.exeexe 1effb163bd0454306d79b59381c03c39b67a2693a0d0b3c8bccadb3940c673a7n/a Heodo
2020-10-15wBMni7moDzQgd8Jl.exeexe cf7955aee4c6df4a495cc7d40bb9c624ff4521f60306dcada663f216770a1796n/a Heodo
2020-10-15z2LHDeFt.exeexe 934e35abcbfccea76637975a72f9ac607a772cca6e45cd4565843b1715e120abn/a Heodo
2020-10-15WRqCG.exeexe 9718e8d7d2c465b41263ea9bd33827bf64080352051f728f9d8afcb06d6967dfn/a Heodo
2020-10-15c5L.exeexe e92b90fad376a8ad2f120920d6b903a14e2511ae7fb5b6a5b240a3205d26422fn/a Heodo
2020-10-15CfXgRewmfm2.exeexe a1c7fd39e6e7b5aa62af302db192a5eef5e3222da418d4ef5ee11620064cb181n/a Heodo
2020-10-15uDM9fnEsl.exeexe 3186b99ab4141239ceb8b1300c27f61df075a4e36cc8977a4257ace4d8367df7n/a Heodo
2020-10-151FsBK5q3RdtvZ.exeexe 99b11d4e453ff9c329016ca00e7e54f6853ac15622cdabb3fa82b394371a46a9n/a Heodo
2020-10-15XWcYW3ebq.exeexe 9e844bdb28b9c5577ec3086e9fda2c2af07f1974b52d1beb47f0140c975daa4bn/a Heodo
2020-10-15p0iB6C2Wmf8mpTE7i.exeexe 45ede7c8a98b203777e43ad286ee8c8a67de167867944de67a0bd05cd6a63e71n/a Heodo
2020-10-15nyUm9u6h0RuzY.exeexe e3dbe0e0f8a1049a8bf7d80bcf438315e264765138037d7bba61327ef62fe0e3n/a Heodo
2020-10-15EM5fnb44NYeaH8Q4Hl.exeexe a2612ff8d45a1b9cd17ec2dae0a3c5c29f38a57d42c4b8a8041cf805d65c7875n/a Heodo
2020-10-157oF5zHlSmMjF.exeexe 937e43d4cf2b906e1d0ed8621f7ef3783d8b42700933978b8bb78661064cced4n/a Heodo
2020-10-15dn7N7KrVtdDMrwJ75.exeexe 2460d3552c314adf266dc105680da9053240b889f911e45d1a0bc87d31bd3fcdn/a Heodo
2020-10-15Bu1AOvXnNIz.exeexe f638cee82420c8c2986ba4f1e893944da3463b9b102396c85e58ee6193e0e845n/a Heodo
2020-10-152o4MYjqIvCQvF50wZd1pG.exeexe 9f50b39439fb6aafb00d0c56eebad1d641aacdc435855e837670f73cd5a51938n/a Heodo
2020-10-15IT0pBXT.exeexe ca01d92c5ebb0f864dac224a6e2bebcaf99b632e50c5f216882b97c9fa42da00n/a Heodo
2020-10-15UEcy.exeexe 68d24b0c2a2a4863f03c97771210fc1a87edd57d66b9d1b0df526f509fd86a7dn/a Heodo
2020-10-15Gqj.exeexe da2aa306b93f35c292296e6f61ac8a1a320be383e36ff40734fcced01ae00cc8n/a Heodo
2020-10-15MANZ7DaF2.exeexe f2af0b0ffd80f54486dd632cbb1197aeda18b323250323b2c5f00195ae09c371n/a Heodo
2020-10-150kapqUFzCC.exeexe e38adb0c20e9d0a59aa02d6cd26510a58bf5e7a616ec45dc523ae38c398b51c3n/a Heodo
2020-10-15HAMGHajjEXbE5Vw9PHj.exeexe 5893304868d431a78308e1e67f568a90b859db02467b77fe9552f11c693b9299n/a Heodo
2020-10-15gLfWevXQyo.exeexe 38d789903aa406df09070aa632af57b3c1d25b0231cb11da87f4a0134336e585n/a Heodo
2020-10-1529cD278A8Ozxt0d.exeexe 8fef4d205316e42e5ae864286ed075ce866729e6fd6aac9d02e0f5ed2c404dffn/a Heodo
2020-10-15yqthxH34sbEMX2Qlto4xk.exeexe 177efba1b81b15e68e3e8a5978a569e2f05dfa7f7550e1fff953214e96ae6721n/a Heodo
2020-10-159XhxU8Ybg3Z.exeexe 890133ea7ce40c8165fb9ac49b2ece117afac6c2ff07542be661012184a900a0n/a Heodo
2020-10-15Qm0stohTI.exeexe af9b033f23a26160af39ceff5fbc0ee06f8515bf1ad69504ffd90a9137f2caddn/a Heodo
2020-10-15Eyx0.exeexe 8b63da77e269a827bb0cc36aa31f6ef0db5b19c36816b35dc6e9f864b19656d7n/a Heodo
2020-10-156neeujZWR0avHEfk.exeexe 9cdf82b1fcdb8dd82a7805afbebee441d82c00fec4ff38599e41def91475c17bn/a Heodo
2020-10-15tWOLJPR1vcjXaUbhYsGD.exeexe 96bb945b6e98ef26d80bb93b6c1ea3f3d63311a3484e4a2eb4c0eeb4890a48f7n/a Heodo
2020-10-15zfFSvJidjfUpIiqZ3dTk.exeexe ee0edf3ff7ec2e2049f2c0cd3ac11820fb14a0a8afa3747e7fdd65a6451250b6n/a Heodo
2020-10-15nS1jc3.exeexe eb70ff57397c6f3c2f94b824551177e028b34137e611163c5554bb65673bca0cn/a Heodo
2020-10-15Qqbklr.exeexe 954351fde3422e32f06f06b6eaeb3610b18f2268f630f23052adac2db8884615n/a Heodo
2020-10-15r8YAI2o98o4j0.exeexe 20a0d5e2e0e854a5961ee200fc366710395ee64aadb132ee6207bc2691016ae9n/a Heodo
2020-10-14FIHX.exeexe fbb0c79d642641c05d54091abcdb140c194c1ce784b42ba49997f6011a623a6bVirustotal results 12.86% Heodo
2020-10-14WZ7wUZFqsG.exeexe 952698ae2c689b148fd20ee9c77a83deaddc77737a1ac7acd79d0a55a782370cVirustotal results 11.43% Heodo
2020-10-14U1EROCvrYWRsm2E.exeexe bdbe38ae16373bf50f10d0363e73ffa98c63024d5f105191ebe33a039e2f2947n/a Heodo
2020-10-14xv5ePPDsca4BPqq1ev.exeexe 5c65406bebb080e192fee665909d0f0f0c23a417a922bf7af0cd89bd30b8bf4an/a Heodo