URLhaus Database

You are currently viewing the URLhaus database entry for http://ergohair.com.br/wp-includes/LaCwhv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:757335
URL: http://ergohair.com.br/wp-includes/LaCwhv/
URL Status:Offline
Host: ergohair.com.br
Date added:2020-10-27 17:33:05 UTC
Last online:2020-11-04 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-10-27 17:34:08 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:7 days, 10 hours, 47 minutes Bad (down since 2020-11-04 04:21:16 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-10-29Mes_BH2891302886OO.docdoc 160b0b89551ebfd8cb3f4274dc5f8cdb203642886e8f1e95b493227e4b34ace7n/aHeodo
2020-10-29Attachments_PH2852652386GK.docdoc 318b758c5ef22b3666ff9ea38111751a4ccc591294bf85680f723e02f95def57Virustotal results 24.62%Heodo
2020-10-29390255141290649.docdoc 75df04fe2bbfe95af6c2ff3ad6beb372645597b0350f6cc16f995a09e27da829Virustotal results 26.98%Heodo
2020-10-292C3NAXXW3E5UP.docdoc b351737392e69781dd60e3c092684344d2ea98efc1d6885cae3d560384e95e45Virustotal results 25.81%Heodo
2020-10-29rep_0I0V8RFJQXUSEQ1N.docdoc 13b5e4daa9de72cca849daddaf829c4a3c019c11cebbc6e0c7fb67481fbc9b97Virustotal results 28.12%Heodo
2020-10-29Untitled_933556496.docdoc cd3fe863b543b7cff0caa09fe57459ed428b05158a34dd748438f0f7a671fabbVirustotal results 27.87%Heodo
2020-10-29doc_7C393M3MFO.docdoc fd810765d8200ee0c56b220f79375a5a76d36bde37b25512c664f45c7d130181Virustotal results 26.56%Heodo
2020-10-29Mes_1871051469523.docdoc 5db58ed4308eeb76f9c66c885d4f1b53530d6c42eac9d755e67bf41989094087Virustotal results 27.87% Heodo
2020-10-29list_287QVKMH.docdoc 55604e57e8041f303ea78d94b02595b8feb3c1acc8811523c1b55b6e009b2dc1Virustotal results 26.98%Heodo
2020-10-29Dat_99539751.docdoc a536a1efba18ff7db257286623904f5d131c7e933b0af1302fec81dfca157b65Virustotal results 20.97%Heodo
2020-10-29INF_PO_10292020EX.docdoc 3dda8251733c1b96b75d29bcbe3466add36d495368b4b44232fae1dba4a4cec6Virustotal results 20.63%Heodo
2020-10-29mes_618837881.docdoc 8e33cf2204f19a828e1018b6ab9c762d52deb1ecd43a920491561fefd654086fVirustotal results 20.63%Heodo
2020-10-29MES_PO_10292020EX.docdoc cd49f6f6b2b1cbf28331a1eff67e7179731f34a790a1bb69c89b65ffcfc38e01Virustotal results 20.31%Heodo
2020-10-29Untitled_QGI_100120_HTM_102920.docdoc e774f5958547ef05060879d507586d22ab8e651bccd1b45eef5770a2a2e404e9Virustotal results 21.88%Heodo
2020-10-29Arc_GIN_100120_TNG_102920.docdoc c3c4c3d1a892c0244bc5d4911ad7533990556a3ed4a4561eaaf58379a82b3295Virustotal results 20.31%Heodo
2020-10-29XI7897513715KK.docdoc 2427ee3cc0798fcee02c718a1fb58d735d9cf3b0ebd9bb10c14cb9326bb5e489Virustotal results 20.31%Heodo
2020-10-29dat_31450456.docdoc 1e63648100763f7fe5822fa5fedd5b5b9c87d1bca425b6745c236e3bff92bd0cVirustotal results 20.63%Heodo
2020-10-29PO_10292020EX.docdoc 1ecf50c67d4c4bf7eba5ed050c6500f7ab6a2b63b66f12dd23748e22e9a34ce7Virustotal results 40.98%Heodo
2020-10-29UNTITLED_PO_10292020EX.docdoc a68e38ba80539aaa99e4624f37df31a53410de47b3a76df0fbced21744a74d0bn/aHeodo
2020-10-29Inf_777K07NMTZ5B7.docdoc a94691d74d543c82cfb7a293d0de416bec72dbaa2a2776d2ffa9b176b28cc12an/aHeodo
2020-10-29Attachments_PO_10292020EX.docdoc 4d660fe18f8a7a46884d491d3bc3632eb0d0de321fe085339324e55175c33ff9Virustotal results 42.86%Heodo
2020-10-29arc_YF5931519243YN.docdoc 6e9c088cbe83fb2b0f6c959df9f72eb6faa3316c7eaf8e1690f590a91e56974fVirustotal results 40.68%Heodo
2020-10-29Attachments_4QMYLTL1I09V.docdoc 204f8e84ed2129ae8909236b98956b7b2c453bd1d3ddad9bb1be5c21aef3b69cVirustotal results 39.68%Heodo
2020-10-29ARC_LY5536954512AG.docdoc 7bc5eeb5b63dea7652701ed22beb9408352e3fcb0fb3cb1d379a4b421af65517Virustotal results 38.10%Heodo
2020-10-29FILE_CHC_100120_FLL_102920.docdoc 7161db36ab8dfa34e4ae1aefa3d4fd7923a2a89118835e1e8bc905216bbf70e8Virustotal results 38.10%Heodo
2020-10-29ZV_2912327515413.docdoc e3a96d2e3adca1fc3dfea0ac14af9b1d4cec3a20d9d7c6874edf1c6fec60d90bVirustotal results 43.40%Heodo
2020-10-29FILE_KZ9627439596NL.docdoc 67bf175be626fe3ee59387c2c162c6fe009315964e0d4de581dc1a94daab51c5Virustotal results 37.04%Heodo
2020-10-29LIST_69810105.docdoc 40e1e0d4ba67280ae17c0050feb66bf13f27e271efd4fc91413f8553dcf12a09Virustotal results 39.34%Heodo
2020-10-29G_JX3100199805FZ.docdoc 2bdfb721e168f6ffb5c4608463d3426b3637d3e4af4dc8716ac401e7ab3f4efbVirustotal results 38.10%Heodo
2020-10-29rep_WF2003807801OS.docdoc 2ddd69d637bb813f74ae33be71c1cf20fd61be5a25f0bd5e69c296136a8d1813Virustotal results 39.34%Heodo
2020-10-29UNTITLED_UCE_100120_VZS_102920.docdoc c353f3d728d9ff052a3ee47d7dd1c5e8bcd8813238a8e20f2f2d0a97fe5bd8e0n/aHeodo
2020-10-29PO_10292020EX.docdoc ab7a59b346e75d68ff9a689f85a0d2a96833a3048478fab68af1e8f1bd4d5905Virustotal results 36.51%Heodo
2020-10-28ARC_7545057107.docdoc 6f587af9bf1d3fd4e20091fbeeff179d6280cc928c2e02857eb954aa37c7de98Virustotal results 18.33%Heodo
2020-10-289OUZ1FHFF6BEG.docdoc f8c7566296ab5b125218fcfca6cb017b25bf92027db687ec545e8897a62c59f9Virustotal results 17.46%Heodo
2020-10-28INF_25394076.docdoc 6c0cb9fa14216686237503039df79f6ee1a2766d5878c2e3ab77c9ace4204c11n/aHeodo
2020-10-28doc_LK3230104558BK.docdoc 6db32dbb0eafc0f691a50a4632adf82b9e0206663e1b82259542e8eecdfae00aVirustotal results 17.74%Heodo
2020-10-28LIST_HXS_100120_KMF_102820.docdoc b2df21abd3019bad332f1f34211b5a7f809af8d92737bb020afff3e6f0147a37Virustotal results 18.33%Heodo
2020-10-28FILE_8JJWYP8AUJE1L.docdoc 5fcda50da77323acc30f1b703c2504b8b3ac07997068672294ea312703ef0ea2Virustotal results 17.74%Heodo
2020-10-2876999693.docdoc 7eeb30a34016ac7c6d48178f44b12c48df17acb131f0a96847d1cd67c464ce30n/aHeodo
2020-10-28DAT_47518386.docdoc 302684a1df1b3b6bcf6995798581972d23b71888983b326ff3eed9bbcaf1c56bVirustotal results 23.81%Heodo
2020-10-28list_20452846090721982289024.docdoc 34c1ff8688eda9342b1eadd3841f1851b7de276940705bedce26a2a2ef59e0c4Virustotal results 24.59%Heodo
2020-10-28list_UN6251943630AU.docdoc 9423019c9d0c788f9b0f3542a6df53db5b54620754419ca1c69895b15b6c73c2Virustotal results 20.63%Heodo
2020-10-28arc_WS4746970827KO.docdoc 5c1a82068482e028454463db245bd38ae56212f951d1949f9d4dff5bf660f026n/aHeodo
2020-10-28FILE_IW4307402131GP.docdoc dcbe02f1aa0077b9eb58a4e8a30c9c220fc240162ffcb1bb73376e967d6e7b62Virustotal results 17.74%Heodo
2020-10-28FILE_PO_10282020EX.docdoc e9fe736c7aebf19a2dd114a50c120a97eb0e9d4763a5167325791cb703f37d93Virustotal results 17.74%Heodo
2020-10-28rep_90PTHUIGBNW9R081.docdoc 6059ce335049c1b4200290f042fabd903bf0081c4677138bf256636f82e81c9cn/aHeodo
2020-10-28REP_089202831118679932804.docdoc 3a80f65b200ea7247726fab9a6a422ee11db27f16b629823f536e69e6b534f76Virustotal results 17.46%Heodo
2020-10-28Attachment_41264620.docdoc a35f0fa4b2082b66755f87c30fdb12e922d177ae2a22ea0289e2e292042817edVirustotal results 17.74%Heodo
2020-10-28rep_8766196331513754.docdoc 7c5cba3f361edbd305005728464aa36e44d98db05cc52860a979780b6036fac6n/aHeodo
2020-10-28FILE_RT4364005847JA.docdoc 0baa66a446892d388453495c26ee71f8be5dadb844ad77c000f2c4de90976b7cVirustotal results 15.25%Heodo
2020-10-28list_19610756.docdoc 24778ec64b8c22f871acc6e863f37a6de831beb3d45a97be0b3e99ff9e17ac20n/aHeodo
2020-10-28Arc_OB1022492147PL.docdoc 8f81d3bfaa85d06f828287a8c5f575fae618f017c0dd9be15f4544d086ce38c3n/aHeodo
2020-10-28file_2Q1PUIUWABO.docdoc 1c6f1e8fd02e26528ffb033f8609b7ace904644afa906f2de75d4e2eb5ace245n/aHeodo
2020-10-28file_0431XJGH.docdoc 328e64552392319bae85832b13d929359ac21842a9df53528cd720f0f06eea2eVirustotal results 28.57%Heodo
2020-10-28Arc_53132981.docdoc 237787a670daf0b6ee3f6e85c75ca3501a3d0ed0c6761afb36b467a32d31c2fcVirustotal results 32.69%Heodo
2020-10-28921749976995187027.docdoc b2fd50c9b74180bf57162267feec075ce16b9d37ead25cca5f97840e44e61a1en/aHeodo
2020-10-28Inf_TU2137030209BP.docdoc b749fa9443216bb372f3a786fe6f921aaf83800f69c46eec065ad8b2bfb0ad89n/aHeodo
2020-10-28list_PO_10282020EX.docdoc 5acee595ee1bc75adea710f92e969aa5c62d0a2693b6dc8c678b2bff8a4a7e51Virustotal results 30.16%Heodo
2020-10-28Untitled_IB8787604362UX.docdoc 430cbffbdc5d6ef1494df4bf0b8ca22a4e95fcc129261a53ee799778b2ef644dn/aHeodo
2020-10-28list_LV0449191485GB.docdoc 9ef4f6f51b375bbf59cc1d992a0be8455a3a9c3a026b28c4abe77a4f16805c50n/aHeodo
2020-10-28mes_67395008.docdoc 520ca27ad3a13618d306b397f83a91daf238997358520459895991c6285328e5n/aHeodo
2020-10-28JR_PO_10282020EX.docdoc b5967d8f6f4eff72fd314911e828c2376081aa4d190afacbbbfa0fb390f13e4aVirustotal results 31.48%Heodo
2020-10-28ARC_8688145056817174590552802.docdoc 95d0a6acc83d661cf2f495f1e9b4c465b64f5fcfdfa6a75c0ad72beac8e31b19Virustotal results 28.57%Heodo
2020-10-28B_PO_10282020EX.docdoc b1de6df6c2b5ac15a030ee3b606165a808dd7fb78a4d22a267e304c2edad0fc1Virustotal results 28.57%Heodo
2020-10-28UNTITLED_AF9097612177CM.docdoc 089982175b8c27323227a0cbe60942992e1cd89852436e481f6947e75cb25d67n/aHeodo
2020-10-28Attachments_1091731013313061647095.docdoc 34eea5e4f2e92b636f9fcade14a7aec223d0ef960f9c0f6c749b2b806096aeb5n/aHeodo
2020-10-28Dat_PO_10282020EX.docdoc 087c51a90ce1975819e515fd65ce7583219cb9a7eecfe2c20191cf2d1196eac9Virustotal results 29.03%Heodo
2020-10-28REP_33862589.docdoc ed432b4a387becc419df96f24140626602c26a169999780c2309f0f5190a1321Virustotal results 39.62%Heodo
2020-10-28INF_KU8800441329UL.docdoc 9c509bf6c3b7824436cb299b2efffd013f3b0b156e9398a6975b71b50152cac3Virustotal results 40.74%Heodo
2020-10-28MES_UHTKJ3LZ.docdoc a74bd9bb59caf16dcb34bc909644f9b39712ff04e230af2fd8f4838af00e85f8n/aHeodo
2020-10-28arc_PO_10282020EX.docdoc 0250f0fd12c78f615ebd384a8bda63e6ff45039b0005ab5211ae72a4ab4b97d1n/aHeodo
2020-10-28REP_842655578519506330.docdoc fe13971c49c4731ae4fdc32c49bbb6796383a27db3ca2340642ed9d0c1753880Virustotal results 31.48%Heodo
2020-10-28rep_TV5DI3ZNQQDA10TW.docdoc 2ff2d2fe253a47fbc4e9580ec37c3989ea365bf7b0475b19e6cb580942dd1630Virustotal results 23.81%Heodo
2020-10-28Mes_PO_10282020EX.docdoc 7f286766434b67cb7ea25119d469c086c70807bf665e8e373acb472ec284a72eVirustotal results 31.48%Heodo
2020-10-28Attachments_93261831.docdoc 95d5a2d7dcee12209de69b8db569c01e68322524257ca16c36f43ac546532c95Virustotal results 25.00%Heodo
2020-10-28L_FNK_100120_RCU_102820.docdoc c3e8b7bf6e9c96cf2335ab8c491d537cf81a2c322e9b305fd0545d051c613a83n/aHeodo
2020-10-28LIST_92062988.docdoc e774de558ab588e2aefc6661f8ddf20b6a02ef8a6e2c4504a0b03e27d9c19df3n/aHeodo
2020-10-28REP_YS2485307421IS.docdoc cf6945d684eb6962274cca88159c3f88a0a5291a81ac0d8831d9f6496b005c33Virustotal results 27.78%Heodo
2020-10-28DAT_F2VPQY2WNU.docdoc 384f0ac6af41ed895424d29854b510286d7b1c075150dbd313f8682f26eb4249n/aHeodo
2020-10-28Untitled_74814656.docdoc e809029e144d585294881c1cc21836d527c1547b45b9f97446ca6bc9987c3ee8Virustotal results 25.00%Heodo
2020-10-28UNTITLED_2QIEHL6TFT4RBL.docdoc 5e692d0f6341638d540a0dd0458062a4852cdc65dd6551956aaa28c4d417416an/aHeodo
2020-10-28Dat_ALZ_100120_DRX_102820.docdoc 176e68686c8b9f4fd451378d2515712d6b00a0870c518d0c530d020d13bb3052n/aHeodo
2020-10-28doc_XPQ_100120_NXT_102820.docdoc b1667802a4201e50d756b921bd73789dabdc6e0ead93ccde248f9634cef63d6aVirustotal results 22.22%Heodo
2020-10-28Attachments_BGT_100120_MPP_102820.docdoc 4e5d8413edd514941f72294d90df25c1f1ea77bc15de00e104dd0a9242c1085bVirustotal results 25.93%Heodo
2020-10-28dat_87986517.docdoc 4d2065b87b5e9b6d1f4bc0bb53b3244c9d61eb3fd8c95d64757935758065ff29Virustotal results 22.58%Heodo
2020-10-28ARC_FZ4816822746TX.docdoc 6310463115ebc704a66281738da24d3ddc5e2b7142db330ffc61d25899c74869n/aHeodo
2020-10-27Inf_OF2192461114IP.docdoc 9efa8997bf4ffcc29b996b1a0dd651e92bacb8e79143a0c008cf1eb4a8b41cbdn/aHeodo
2020-10-27LIST_V4G67LKCL9BM.docdoc bab42b7ee6d4b385f15274f7900f7f2a4d5d68d7f527d20b0bfac926752f9b3an/aHeodo
2020-10-27Attachments_YPR_100120_UPG_102820.docdoc bfc255c1fae47d22c3a502329ae24b49b0fc4169c49c13a4b1091cb686e3ccedn/aHeodo
2020-10-27list_1N5YLDTK3S38.docdoc 30fd05291d39b5fa6a8f5ce2a03818679f4c7bd25f18fe933c78efa7516cd787Virustotal results 20.97%Heodo
2020-10-27mes_2ZPM8VKLVLY7QC.docdoc 7aa10dde15927ea374516ecf0c02332c44d93290a94510cbd83a4eea88cd43ebn/aHeodo
2020-10-27Rep_HX072QC7.docdoc 98c713e8df6c92a443138d43fc4435e730cf2515b07e1402ca23c7b03e6f6448n/aHeodo
2020-10-27Untitled_3401360304609562.docdoc 7d30568082d982dc387555d54ac483b20abaa0a5b97e653ad6f5374bd8ed3d45n/aHeodo
2020-10-2747312845.docdoc d6a6701bc63354fa0f34492bdbe6c22bfee5f624d5714b329a8795508ff5b6e4n/aHeodo
2020-10-27mes_SFR_100120_XGC_102820.docdoc a972fb1281a3d74bbf2194996a6b7af6b95eb98b1111573562958b4235e71d93Virustotal results 19.05%Heodo
2020-10-27FILE_OK2RXEO.docdoc c0b7364bc8b2a4ef21f805fa2085e3ad41e5ea6206b0274d6300d64305d4ec0fn/aHeodo
2020-10-27LIST_AEM_100120_MNP_102720.docdoc 12e68ae11d4760770f0cbbbff076d4433df71d8674e10d3875994fc1d749b1d6Virustotal results 22.22%Heodo
2020-10-27Doc_NT8515716490FV.docdoc affba7e7949c06840bb7887c8373003434c8755505fd274c8274210b5c8a2961n/aHeodo
2020-10-27rep_BKF_100120_WGI_102720.docdoc 31b23d9a8a18a659b89c36b6b116aa8f28579df18ff6d5f81e557ed41c1cc271Virustotal results 47.46% Heodo
2020-10-27LIST_391229444280.docdoc 446d4c75f38265697474a1d1b7a26b664e97e2115b1a754df6fa956e98ecceacn/aHeodo
2020-10-27rep_PO_10272020EX.docdoc 6f468d656d3c2f72a6daa3ca15a626683934bdfe57d65187f19aacec5e0f38f1n/a Heodo
2020-10-27rep_BLC2SPRU2A70KKO4.docdoc 69c66278b808dbebfd0dbcd3869f502a33b285251e49e1fa7f9fb6fc7deff266Virustotal results 50.00%Heodo
2020-10-27ARC_80907060.docdoc 7a543f0215796af850eed509dd0ee5fe9afd2a01385880fe2876945c189f6eedVirustotal results 45.90%Heodo
2020-10-27ARC_JF4252060545SG.docdoc 3a6999a4a9e86c13cc7384d88715d7e2ba2f571b311c29c076b654a9d15aeb1fVirustotal results 46.55%Heodo
2020-10-27UCEH9BNCZI2N4D.docdoc e298717a6f9ade752fdc64bab13127ed179c323b1bf54c9e8f79d64bc6227943n/aHeodo
2020-10-27Rep_4533817251478822357652633.docdoc 1058744de415e325716999c39aa1a4e970532d196f5aca783d1628feacc20626n/aHeodo
2020-10-27Inf_PO_10272020EX.docdoc 7188846dfd580ff0556d07f492f0e53ea9b6d632f54f7749b2d1ce34cdf0ac48n/aHeodo