URLhaus Database

You are currently viewing the URLhaus database entry for http://cookingbuffet.com.br/wp-admin/Overview/Rv99pcFNgzJhofnv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:731087
URL: http://cookingbuffet.com.br/wp-admin/Overview/Rv99pcFNgzJhofnv/
URL Status:Offline
Host: cookingbuffet.com.br
Date added:2020-10-21 20:56:05 UTC
Last online:2020-10-23 19:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-21 20:58:05 UTC to abuse{at}hospedagem[dot]net)
Takedown time:1 day, 22 hours, 44 minutes Poor (down since 2020-10-23 19:42:35 UTC)
Tags:doc emotet link epoch1 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-23Attachment 20201023 XXX325.docdoc f64319840a4cb0e9282a072a176212d90719cfbdcd3bc7bdfe06d325239cd786Virustotal results 49.06%Heodo
2020-10-22file 20201023 7680619.docdoc 28f62c50f215f1330b0e55bee7b904932feafada38268abeb16d0f730205cd07n/aHeodo
2020-10-22MES-20201023-W17455.docdoc f0e2d518a6265cccb1883da48d48dc033fa310abe31ed3218a1c0a6509f7085an/aHeodo
2020-10-22MES_HP81877.docdoc fb6e914a4c4dc5dd6576bfaf31de00e21069ef8c747b7339a67b451a7a3450b8n/aHeodo
2020-10-22rep_2020_10_23_LYQ64484.docdoc d87a93ae2eb91cfb925982e62a821b9798be7fd9fd307604af79f96c5810e156n/aHeodo
2020-10-228264 8829.docdoc 0ee234682243bf9bf04264c7111b7dfb09ecd2defa3352894085762a363eb2cdn/aHeodo
2020-10-22Inf 2020_10_22.docdoc 02a19bdafb7986119e520e2dc72fd32cacb4d892a3d03530aef4962a45a79d6eVirustotal results 41.51%Heodo
2020-10-22Attachments VDH931494.docdoc 744510232f86ddaa90402827ce8b9d806fff2827c08f1b27cfa01e9ec5787d7en/aHeodo
2020-10-22Untitled 2020_10_22 BYH7052.docdoc e214c33ee3131fb88e3a03800a2c913e64eba9339e59c71b3cbcf17aa14e0509n/aHeodo
2020-10-22UNTITLED 20201022 MD674.docdoc b02a934a10f405b76ee0aaa46e19847d9ecf1718d49ef72233e83d4c5468a626Virustotal results 35.85%Heodo
2020-10-22Rep_2020_10_22_N40999.docdoc 5f899d6ba79a78bc6e85428be8ba9150ce5bdad6dc475b35c61156ff8f21550dn/aHeodo
2020-10-22Mes 2020_10_22 66432.docdoc d4d6ebf49d6bac5195321c922c5c9ea2b7632f88adaedd8c54a00d98578ff2dfVirustotal results 38.89%Heodo
2020-10-22mes 2020_10_22 GS126.docdoc 536230d01e577e98aed429debfdd2232c6866262a424e51086e7f9a09315aafdVirustotal results 38.89%Heodo
2020-10-22FILE 2020_10_22 174.docdoc 6c7f2a2828470bb2d1de562804a51fbdea2f0db07a739aa5ee651390ca7884a9n/a Heodo
2020-10-22Doc_20201022_NLM48770.docdoc f0719f4bb3c2e7da30303c7a5e390c500f99785254b72947b619b0c1d96dea22Virustotal results 37.74%Heodo
2020-10-22Attachment_2020_10_22_422.docdoc 539365559591e27530fac0279af96eac60f4a6903037c3056672ef40518c3de7n/aHeodo
2020-10-22LIST 20201022 UJG61255.docdoc 984ab8845985bebedede05c24fe9d78430626ca6805e0a85a0a7dd9085d1b395n/aHeodo
2020-10-22mes-2020_10_22-BP248334.docdoc e2b2399627f40dd364d961bfd6869f3b5feec404cee4269c78c65b253635b6a8n/aHeodo
2020-10-22MES_2020_10_22_E32715.docdoc e7730e780f02da8d3ddf075b379bddf96077fcda744be9b8ed7f7cfe955a1323n/aHeodo
2020-10-22LIST_20201022_6724586.docdoc c67df1720ca49472579f6d51dd602773181f6d4a20a3cb3743f0aa63b62a1901n/aHeodo
2020-10-22Dat-838577.docdoc 8a689f2d19b100a22054241d81fd818a9a397a60701cf7af99f559f7049ef87dn/aHeodo
2020-10-22DAT-20201022.docdoc 45b0000b1204b4891b65981eae28a8d9f53c1546b1ec74c7e553cbc6460cda63n/aHeodo
2020-10-22Dat_20201022.docdoc 78df285d44c113fb524b0e55403ddd51bce07046274ec020f63c9966b4a93cdcn/aHeodo
2020-10-22list-2020_10_22-NXB1466.docdoc a112ce2e5b0ac2afa6a1f95449eeb08f8e516e7665639c05ff164af5f0267eadn/aHeodo
2020-10-22File 20201022 FU9320.docdoc 184ca71adfbe1ecd4442ea73d4da439aaa94b1086865aaff6b72528811786a22n/aHeodo
2020-10-22Rep-Z34920.docdoc af99936eeacebcbaf1f7b8bb8acc9096bde1669bf09b47e728c397fd123673a2n/aHeodo
2020-10-22Mes_EV434.docdoc f20c367c8117caea8f52fbfdcb354401d63195bdcd73a5b6fee8ff8ed836a6f7Virustotal results 42.62%Heodo
2020-10-22mes_X470.docdoc 6759c39cca89573c7c4515f4409dda904ae598d0b2e38b1169023f890647c133n/aHeodo
2020-10-22INF_2020_10_22_DW571.docdoc 01776da98f2ac077981a29489f399705ddc19dcfcf9584190b858fa1f894a6edn/aHeodo
2020-10-22REP 2020_10_22 HTB297449.docdoc ff463811a1b2d27096836980e07b6cc1e0d339a5ff6a07d9edfe141eb4a4de04n/aHeodo
2020-10-22INF 427.docdoc 66b977424a823de14f80cbfbb5e6b30980374448a54c1ae75ec6a9d9c2b0bf90n/aHeodo
2020-10-22File_2020_10_22_IF336.docdoc c7a85af45b6b4f958e7464875678139be6209edd9d863301247c0c4469b29428n/aHeodo
2020-10-22inf-2020_10_22-HKU586.docdoc c53ffb4639e68722e714385b3296c8ad388a6f6004e2905dd2f7a86f3e2f59d0n/aHeodo
2020-10-22mes-20201022-ZK899.docdoc f95182213ce7c6c1e585a1a0a4a11d9c9dd07358a8acef0539def794f40182fdVirustotal results 55.74%Heodo
2020-10-22MES-CTN824.docdoc 44825c2bae3d56eabd7956d7f042f944a78988f626e43a3e94204ace8c69cbden/aHeodo
2020-10-22Mes EF497.docdoc 4fd05f115fa19fb83772d3774cbca589e514557731f2a46ac032052ab63e3cbfn/aHeodo
2020-10-22rep 2020_10_22 039.docdoc 34745d391369025eba2dc5ac8ec4d7811eb2fd3c56857a550e9bf863d20472d1n/aHeodo
2020-10-22Dat-2273636.docdoc 624a776ecf3335ca75e6d84922925f0c24e3bd9c382e148ec031721415ce111en/aHeodo
2020-10-22file 2020_10_22.docdoc 90aeee97e0274703c7aaaebf22decaa0c4c4e1c626f2bb0713892ee662256842Virustotal results 53.70%Heodo
2020-10-22List 2020_10_22 559613.docdoc 6468266c5994c400937bb96f344756a764ad1fcf5b00cc3135183b89bc60eb4dVirustotal results 49.18%Heodo
2020-10-22REP 2020_10_22.docdoc 56b0146ade4758767f9d08bf5b7a71e892afb7d9edb8388a4ab6f346e58d8565n/aHeodo
2020-10-22list 2020_10_22 K80817.docdoc 64d785d18d4dd4904a4ea1c9d9493cfc2e7cbae4856956062bcacda90ddbbe02Virustotal results 55.17%Heodo
2020-10-22File-2020_10_22-ILA6292.docdoc 7721cf1daa797e7d3937a27f69b99ef2a6151487a971903c12c6974ced209725n/aHeodo
2020-10-22List_20201022_101.docdoc 4cc7995cf34b8333e0c32474aaa114255bee33f8db8560beb601b5486bb5079bn/aHeodo
2020-10-22ARC_20201022.docdoc ccda7e2a1aa2d6ecff5cfbf3878c3146d9116ef8a288f4ad6e2763ea9f7c46bdVirustotal results 52.54%Heodo
2020-10-22596YTZ-5672414.docdoc e67a507d777e002eee507ccec06969302b4e54c01e686bb88b3368c97fd09fa6Virustotal results 49.15%Heodo
2020-10-22doc 2020_10_22.docdoc 87810aa6765f1c09d6d20ffb8a1d9384bd668189fe36938f7d9172d3f5ba4fe6Virustotal results 46.77%Heodo
2020-10-22rep_20201022_771.docdoc b017b8fe117b6169dc386da817f59386321baf8ac06699f5306d2c659c38cc88Virustotal results 50.00%Heodo
2020-10-21Inf-2020_10_22.docdoc feb428de94cd42d3f8a3e5d5b95134902ab3ec4b06299008cad8569a71e466c1Virustotal results 43.55%Heodo
2020-10-21LIST.docdoc d65ac49f3e3c26aa5a64eb44cd03e3d4e66f10dfc24adb8dba89260852589e14n/aHeodo
2020-10-21Inf-20201022.docdoc c169510f02360921eba830fdd4cc4558b520eed16d652ca0fd6f8476a2961f9dn/aHeodo
2020-10-21Untitled_2020_10_22.docdoc d9bd69f241ea307af694ae3010651af65a9fdd62cef9dcde429d8ce6fdb9ecfaVirustotal results 44.26% Heodo
2020-10-21file 675318.docdoc c2f0f8e8d0fbfa48d0ac6cd1251964b6a14dd3b0956a1d293140bf7cb439e049Virustotal results 43.10%Heodo
2020-10-21Doc_2020_10_22_DB879082.docdoc aef5a4970fdebe3d03b26480ed0641733b326d81933701e1f24dda114c45f87bVirustotal results 41.94% Heodo
2020-10-21inf-208.docdoc ac263f9b3c24d660e8d5a0cfadf60a84f5499c5975e323b8fcd3ff3095889a39Virustotal results 43.33%Heodo