URLhaus Database

You are currently viewing the URLhaus database entry for http://bhar.com.br/elementos/public/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:698068
URL: http://bhar.com.br/elementos/public/
URL Status:Offline
Host: bhar.com.br
Date added:2020-10-15 15:29:06 UTC
Last online:2020-10-19 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2020-10-15 15:30:19 UTC to abuse{at}hospedagem[dot]net)
Takedown time:4 days, 1 hours, 25 minutes Bad (down since 2020-10-19 16:55:59 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-16BAL_PO_10172020EX.docdoc 53467ef76cb2d0f4cc9404439089220dd6d34680c167f2f062307713724ee9bbVirustotal results 50.00%Heodo
2020-10-16AYOK_KYH_100120_BUG_101720.docdoc 2d4a3ae690cd64017a114de08ffb095c8208ca65f5647809600f6caf8ff7cd97Virustotal results 50.00%Heodo
2020-10-16INV_3171568260659.docdoc 6647111dcc98f3a01470eee7de5a3b93b579a08c585cd3553cbfbdf3d54db556Virustotal results 53.23%Heodo
2020-10-16I_PO_10172020EX.docdoc 1b2a426d5d7d5a0185640c82655ec40245f89ff62644ec1a04de9894a169114cVirustotal results 50.79%Heodo
2020-10-16INV_MTB_100120_FVX_101720.docdoc c829616c0d226e76bf936406e344c75c3abea9656fdf7b4b1d73934e6a853b3fVirustotal results 51.61%Heodo
2020-10-16DOC_58159545.docdoc f8b980774cc06cbfa822245a47e48d9bd3280bf6cf2bd96628d02e54c84baf3aVirustotal results 51.61%Heodo
2020-10-16BAL_707059965268.docdoc 8e4239eda8a4993212d0de12a0e6fb748c995f1a89e8fab3417a0140b9f650d8Virustotal results 51.67%Heodo
2020-10-16CDR_100120_CEW_101720.docdoc 90be4d140e8e68dd1b218a9ebd10ec1271cd234025341115f1cab4e3149e7f90Virustotal results 50.82%Heodo
2020-10-16PO_10162020EX.docdoc 153c0d18a1b3639fe85f33bd426a65c66aa6af75ba5aa2ebfa89d6cdb7cc62aaVirustotal results 50.00%Heodo
2020-10-162778230675563313077639614.docdoc 8b5585bc3f128dd3a3ef10f180c3a5cd06e2f68e9894551fe177b09b5b1ee0c6n/aHeodo
2020-10-16PO_10162020EX.docdoc ba25bd51dddd6e6b5f359d2e79ac6cafab5ec98ac623f412764253be9e449833Virustotal results 50.00%Heodo
2020-10-16S_53370377.docdoc 377a8aa05410c72d8d06b12b0bff24a6933b51ef88838ed2aa83cb18b0e2b303Virustotal results 48.33%Heodo
2020-10-16DOC_3978271313791934501.docdoc 334cbaeae02aab74b5bcf567ec6fb87be96ca6deead23214dcfb4fc36598b5f7Virustotal results 50.00%Heodo
2020-10-16T_MDK_100120_ZWS_101620.docdoc fe64e60c58eedce9a19e9f18a2c5d220d3d38b0aeb719cfbf027218a13121621Virustotal results 47.54%Heodo
2020-10-16FL1438361084NW.docdoc a9aceace56c828f6185a5d3c739ae2a2e43d825c4b884faf02f5acf460a6be5fVirustotal results 48.33%Heodo
2020-10-16N_PO_10162020EX.docdoc 89157919f283aad6306a78ae43e54b55c2431a0a64dbfcef22df553bf09ae681Virustotal results 49.18%Heodo
2020-10-16BAL_68066564.docdoc 682f6bf35f7cc1f36fb26805da313fa9c07b6b397f6e72c400d1f8ad51e01been/aHeodo
2020-10-16ZIWP_013813709163610025.docdoc 9dba6b5b2f3ec1bc81700f99625ff701521fda4b963095cb22a4137639189dffVirustotal results 46.77%Heodo
2020-10-16INV_WRW_100120_OXM_101620.docdoc 93e36cf759135535e4fe279fe87067e379a38aa62e41daaa7cde30368bcfab00Virustotal results 47.54%Heodo
2020-10-16INV_PO_10162020EX.docdoc 7dc98dbcc601ceca44a529dc8b1f2aae3ad1479e17974321024e0c584914bf42Virustotal results 39.34%Heodo
2020-10-1643609141826853.docdoc e33080e4baec5f692b6a9902fbf0661cef6fd33fdc1ace3cd95e64fe9c70118eVirustotal results 36.07%Heodo
2020-10-16FILE_KHCG673HKVI228K.docdoc 77841e6834d013e8e9da391602d2a92f126a16360212e7856b1863f12f0f0b0eVirustotal results 36.84%Heodo
2020-10-16INV_NDB7PFEA4QQ3.docdoc e8cf2d2aeeef9972177572c05c58a7659515a991f2601167d7512ea389672c6eVirustotal results 40.98%Heodo
2020-10-16AJL_100120_TSF_101620.docdoc 603619e4d81dda77197d6ff40406a6f101a494901653c22f181ecb7be55111d6Virustotal results 42.62%Heodo
2020-10-16I_TAIX9WW7NIJ.docdoc 50582c9e06f7726c40ab166de684e95a6f0de3f3fe6a0d8a749e6b18a5047f23Virustotal results 42.62%Heodo
2020-10-16FILE_31716490.docdoc 47d38038ded63e7475f52b11190a88ecf7f16b7bc13b5a277cfaea452e6bb240n/aHeodo
2020-10-16ZHY_100120_QDV_101620.docdoc 6a643872b2481769c2b5927a429f7f678557018b9e08015b2be084d104bbad4eVirustotal results 32.79%Heodo
2020-10-16REP_R0CZY2OA2A.docdoc 928ec3474e204aa23a9fe0971c55669cb5ad9a752f46fdb16c46c974035fdd9fVirustotal results 36.07%Heodo
2020-10-16BAL_15254346.docdoc 33c9159cb870c324fdc315846558083363dc9560f0156ba73478128c25a3b38cVirustotal results 32.76%Heodo
2020-10-16E_PO_10162020EX.docdoc a3fa531964a47b3b5dd71f9eeea52a4d2307db02fc1fa019d5914a59e80bf81dVirustotal results 29.03%Heodo
2020-10-16BAL_DOJ_100120_CYP_101620.docdoc 650e5649d3b4dd927f8b6390e3ef98587b4c2e6769d5d2f5e459cb7f4872f363Virustotal results 31.15%Heodo
2020-10-16REP_Q2M7UWV5.docdoc 1b2652ca4216be8936873953880078a3db413557d80496831b1891f5947f4eebVirustotal results 33.33%Heodo
2020-10-16REP_MUR_100120_ZNY_101620.docdoc e1657e2b9da4fc39004ca0c0c681b59985f94ca16d04c3f363122de4bb444099Virustotal results 32.79%Heodo
2020-10-16BAL_DEV_100120_KJL_101620.docdoc 13dd027c7d676424966985f919f6af29ceaa868e93910717ac651e65201aaa08Virustotal results 32.26%Heodo
2020-10-16UY_ZKR_100120_MFG_101620.docdoc 559bb6f9101d44aeaf2eb59aedcfc95cf3d633ec3f05ad1becca0607c28bb866Virustotal results 32.26%Heodo
2020-10-16UQ4250356623EB.docdoc 86822c825f780b9e9d3fdaf61cb3b8ce210b2892fe9a2ce77faafa9518c34627Virustotal results 50.00%Heodo
2020-10-16LTP_ZJ6734623779BB.docdoc d22ae8bce1c58f49acf052afd9fc15bcb9f31f7849b5cc3812ac610c97b3d984Virustotal results 50.00%Heodo
2020-10-16DOC_VQ1838690837TK.docdoc 91b7f176ae3c1a59512db4552cb758df748b75fbe33fb7d1632f59ea0f7cd905Virustotal results 54.84%Heodo
2020-10-16PO_10162020EX.docdoc 72b44b8e255ace9d74a54f19671fdcfa1b296bb221e038ab578044b55b309afcVirustotal results 51.61%Heodo
2020-10-16QYHM_LBL_100120_CLZ_101620.docdoc f677579d45117ccb457830413b6ee450bfe97425e2b31f2b582368410b0b78e9Virustotal results 50.00%Heodo
2020-10-16CCN_PTEIA04VT.docdoc e50a486c4f791974fd105266ca6b3a7105238ef18dc5e96fb44a1d1e6d2bbc6bVirustotal results 50.00%Heodo
2020-10-16LFQ_PO_10162020EX.docdoc 7e1333c6529018473221519532ee51d04523ad9354f66d62ea599d4bcb9b4a8an/aHeodo
2020-10-1680302505056915809554366.docdoc 195a50cab4bfb5ffc40475b4cfa57218d820afafb3a5f4398fa2cb446a290e1fVirustotal results 49.18%Heodo
2020-10-16R5KU8C6G5DLSUE5.docdoc 2955467d39aee8efaa08f284298b86e105ff6b8855c674bb41e38ca21d2c6bfeVirustotal results 46.77%Heodo
2020-10-16BAL_422657330721647798530.docdoc 598b4cf3fc5b97854ae8b54625407b4e6b7f05d8ad96b446baaf0855b754074cVirustotal results 46.77%Heodo
2020-10-16KBJ6H5FK.docdoc db94d5c4b06addbc9cf25f6314120acc65844c5992881c55969c97cec957012dVirustotal results 46.77%Heodo
2020-10-16INV_27789433.docdoc 29d8f14d9aad7f7303bfffcff57109e4a24983050638c356af826bf4febc04a2Virustotal results 52.46%Heodo
2020-10-16BAL_PO_10162020EX.docdoc 2fc8f20d9cf100c7de1244d5ccb17f14230e534ff24921e0cb537ebce7668908Virustotal results 48.33%Heodo
2020-10-16R_03559802713117.docdoc 677cb2fc5d7a4e66220d66445d3a7fa7129fefcfad236744a558140e65d7264cVirustotal results 48.33%Heodo
2020-10-15DOC_PO_10162020EX.docdoc df301a07bada1a07adbe33c638f8c00159a565bafec1b7fc1ff5ff69b6a7946cVirustotal results 49.18%Heodo
2020-10-15REP_15598112.docdoc 2889aa2818bb6b697ece0258b29a039f5f46f85444792ecad4d3667806bb5610Virustotal results 50.00%Heodo
2020-10-15BAL_XL19NQTOZS4AYBXA.docdoc 590e91cfd2bc7164b8528b3e845e9d45e8328e9148b90c0836936e9d870ca895Virustotal results 50.00%Heodo
2020-10-15REP_GF8NVB5KZ.docdoc 0ab272f979fa9aed2035beb2f578c7dd1b689f64452457def9e7aca2d1c91a3aVirustotal results 48.39%Heodo
2020-10-15BAL_59236716.docdoc 220ac344a6cec573fee38bce085d019effbac440a1edc4f463c1f5b676b6d082Virustotal results 46.77%Heodo
2020-10-15BAL_48760165588.docdoc 766e921c13edd4367d95fd44b3070b9d4bbee1886ba2e298fc91f030e5e034acVirustotal results 47.54%Heodo
2020-10-1589341115.docdoc 69f9016515fae6fcbd183373fc2264cde1b32149aeccfe75d2f248beb80c5d5dVirustotal results 46.77%Heodo
2020-10-15LO7905918251HH.docdoc 2ea42eea9abe81ee4415154eabd2fc00bb951b3a234e1b3ef9e824d77ee97732Virustotal results 46.77%Heodo
2020-10-15FILE_821935559875.docdoc a0af2c0d46bfa10fc4589560d7055a18babee6615726fb2893b817e111f9ecbfVirustotal results 46.77%Heodo
2020-10-15CPTUK56Y.docdoc 1d9754d306c2afe8fd501b6a7449ce2b31988935a52af20866fe321c5a5b0645Virustotal results 47.54%Heodo
2020-10-15BAL_407696195085785716878.docdoc 200fd063fbce58987452058b68b6f0d32d9fd51afddd74f6ed466124627fc51bVirustotal results 46.77%Heodo
2020-10-15INV_PO_10152020EX.docdoc a44bec73fa5d84c99c152a133907faff21cecbabd17faba199a628c8259be229Virustotal results 45.00%Heodo
2020-10-15TJ_60126707.docdoc 3a655449935db1d07871d79739c4fe01d8792844b72e4bc0c3f2c936b6d5ee1fVirustotal results 43.55%Heodo
2020-10-15KNA_100120_IOQ_101520.docdoc 39c25de18abaccdff5bdbe5fb490b60e00e8b38d1c30556115d11f468d4b6a76Virustotal results 45.16%Heodo
2020-10-154770246023083316.docdoc b4a13d579c367f64c35555628c0386cca34afc9ac0de28d4949ca37328f6b8b4n/aHeodo
2020-10-15INV_Z8QJJW0SV5IOWE.docdoc d9b7b5c042c7906658d29f0f2ce9d72212853dba41328c900b11987b9c264639Virustotal results 41.94%Heodo
2020-10-15BY4382959998EY.docdoc 876665583f24289019346c75249cb2a878ee97166a2994f3be6dd27b7c0f3155Virustotal results 41.94%Heodo
2020-10-15REP_3TLNTT2S2.docdoc 30b3400f4a69274881ac358ceaed2b0e632dfe513ad2c374e97bc00fc214ad10n/aHeodo
2020-10-15RPUX_38664168.docdoc 1183f1f5d6bf413a47030f417d0318bfb96102da8bdceef6eb88de412a134c6fVirustotal results 41.94%Heodo
2020-10-15FILE_PO_10152020EX.docdoc e47782d222656eecd0843cf18982e7c6ca8855403c91fab58cc8b109f30aa1e7Virustotal results 41.94%Heodo
2020-10-15BAL_NT3906374718OL.docdoc 00d0f2df2841b9a79031ab3dc564db99e2caa22c9626842f087b195e3250dc89n/aHeodo
2020-10-15SIZW_41017037595947930048039.docdoc 4ca916c008b39d7fb20cc3e639ed697d7a55e9aff96c574d84ef918f7488cd03Virustotal results 40.32%Heodo
2020-10-15DOC_PO_10152020EX.docdoc 35167e81519fe2cee61cea8f8989390c7c4142bb2639f430a40b9645a9eece16n/aHeodo