URLhaus Database

You are currently viewing the URLhaus database entry for https://www.barrunagro.com/wp-includes/T78mdSZh73l7v3N6YbnrcxVT1ZspmEhsHl/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:755595
URL: https://www.barrunagro.com/wp-includes/T78mdSZh73l7v3N6YbnrcxVT1ZspmEhsHl/
URL Status:Offline
Host: www.barrunagro.com
Date added:2020-10-27 09:48:06 UTC
Last online:2020-10-28 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-27 09:50:19 UTC to abuse{at}hivelocity[dot]net)
Takedown time:20 hours, 48 minutes Good (down since 2020-10-28 06:39:02 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-27I_PO_10272020EX.docdoc 26334b62aa0e9ede3dbb964e4519bfd8864952e21555d976db4332851a0affa5Virustotal results 44.44%Heodo
2020-10-27FILE_ZKR_100120_CHS_102720.docdoc 85e10f7c54a4de77db7e25f711b82baf1f238ebd57a4cf772519f9086f97cbc6Virustotal results 44.44%Heodo
2020-10-27UNTITLED_4266674375364169539323376.docdoc 22ac8237bc5e3f90f62a2b7fc69ed3ecc6bf52f767e8b8a52ebdee9e4e09d8a6n/aHeodo
2020-10-27file_4881227648818140.docdoc bbc60f6a3e441d49e8c3797ddfab56b309bf6e162bcdf8400e73e7651d117c54n/aHeodo
2020-10-27dat_PO_10272020EX.docdoc a0ef9fcda78c9700644ecd5b7f1088a2d3d69402f143c6d597d163ec8ec8f956Virustotal results 43.55%Heodo
2020-10-27list_DH2405085301AE.docdoc 6fa6e20d7ec107f63284a312ab290e80286e32c497a623e5002f111ce34dee75n/aHeodo
2020-10-27Inf_74682339133661535.docdoc 0ffd78abcbef3c3c9db246bde76dbdb1adfd04048d57b817b5a0036324136d97n/aHeodo
2020-10-27INF_5EQM2NI.docdoc 39b408479c9b71f2255dbb68b69c160ba53dde08fdcf127f2ca2598fefa640ebVirustotal results 36.67%Heodo
2020-10-27Rep_JM7957273733NY.docdoc 7c1d4014d5f038bcae31a98765f1206deb293bdca40c8776d00f3ff5c1831e84n/aHeodo
2020-10-27FILE_48543408.docdoc f31140483a61bc5bd7a5d3040838aee934eefc7cc47842ef5b55881d29820b62n/aHeodo
2020-10-27Rep_2345321181.docdoc 3092e6e7aef2b73f03a66006986c014a7b44604668cddea7c33306fa35779341n/aHeodo
2020-10-27REP_RN2973047950EG.docdoc 71c73b1d88d50e2982f5f633cf03be4da68db518fcf131f2f22787aa0cd54650n/aHeodo
2020-10-27Mes_HSS_100120_TTI_102720.docdoc c2f163720f0e6e06b3b33b5477481a4789df1991bf3ef3c5e8eb3c3580176e65Virustotal results 37.04%Heodo
2020-10-27LIST_2424179761660228886.docdoc c7a43f32ed239f55b870956822794d73441e158496f1ffc8cc99be7913381e76Virustotal results 33.33%Heodo
2020-10-27Inf_DRG_100120_GCJ_102720.docdoc 9a25919303a6d0b1210df01ae35bc7d31040fb1463dc977b75c5f7f11170a42fVirustotal results 38.46%Heodo
2020-10-27795718523565295.docdoc 6c430c25a4a93862cc380bbe358ff4521d28025a85292ce26620d37aa756118en/aHeodo
2020-10-27List_PJ5DIDHTTQW.docdoc d0b2630b796df661789e540ba6ca88de07b43f58bebf9f911c9985b4c4cdd0a0n/aHeodo
2020-10-27Doc_PO_10272020EX.docdoc db8c10dd3ab28c896b921d720da5b91739c6f990bfef2f4026dce156e231fa0dn/aHeodo
2020-10-27DAT_PO_10272020EX.docdoc cd1e0a22c855d17c145a7577ab2ade765735a6eb768de6b3445d724824388dcen/aHeodo
2020-10-27ARC_HJT_100120_LOM_102720.docdoc 1775a89c8013b60f9d0c4049675feb67fc007e0995b58d5a7b8221d7a4efaa37Virustotal results 32.79%Heodo
2020-10-27Untitled_7345478578720814720843945.docdoc ce4487fda001cd7ca68551af1af64a2adefdde8a6e5bfc8483a8d91328a7e50bn/a Heodo
2020-10-27FILE_PO_10272020EX.docdoc 2e645bb4982ac3ce6f30a2fc5a13d0a55dfdbe4c11decc1a5dd1f9a3136390e4Virustotal results 35.85%Heodo
2020-10-27Inf_RFLIVIGY7YZQBDN.docdoc b15e644be48fe68c11500258266ea197f1250797de8c53b4e52a3ce84c27f4c0n/aHeodo