URLhaus Database

You are currently viewing the URLhaus database entry for http://gpjulioandrade.gob.ec/carchi/aTlUHIyDd0mzJfXOauso50h6xTzrieogF7F3mkHQLPDJR1YAyy5Aa1/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:757965
URL: http://gpjulioandrade.gob.ec/carchi/aTlUHIyDd0mzJfXOauso50h6xTzrieogF7F3mkHQLPDJR1YAyy5Aa1/
URL Status:Offline
Host: gpjulioandrade.gob.ec
Date added:2020-10-27 20:37:13 UTC
Last online:2025-10-15 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2025-10-05 09:03:18 UTC to abuse{at}worldhost[dot]group)
Takedown time:5 years, 0 months, 13 days, 8 hours, 23 minutes Bad (down since 2025-10-15 05:02:40 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-10-05b766bd3925b2c499e6f1a5562fc4d9b8369c97bac67c9aec10d7baba4c25da44.unknownunknown b766bd3925b2c499e6f1a5562fc4d9b8369c97bac67c9aec10d7baba4c25da44n/a 
2020-10-28F_VDQ_100120_OPM_102820.docdoc 8d7bfba7aa5d45dfacce4f1d01bd73c49ac08a57ca60560244f8e4d9220ca53eVirustotal results 18.03%Heodo
2020-10-28Arc_M14IOJJHN.docdoc c7a9fcbd5e7cf2f7c00c2ce737e5f37d79fca2af4840700fbec2812fe888df80n/aHeodo
2020-10-28UNTITLED_GV5807249846RI.docdoc 0843e95e73e1d9c719d84439a7243f080d431179cc900f1d3744cadcb2d19d38n/aHeodo
2020-10-28arc_PO_10282020EX.docdoc 6f09e12af88b8c2ae45c021409c707ca0afc0b65be38c119d8a7ecaa72355ac7Virustotal results 17.74%Heodo
2020-10-28LIST_F1LBM9TN.docdoc 9edf498a6066ff0e5be970253b4e90411ca4d164fbee2a688c65724a0a0dd403n/aHeodo
2020-10-28Untitled_0OF9BFMKO.docdoc 4c8c238793080292318a1698f8e3bb506d63d0e1335171fb6ba9ce1369c5daeeVirustotal results 17.46%Heodo
2020-10-28PO_10282020EX.docdoc 9c5f88a456da5cebbe774e127b1ab02cdb4769374bf745dca29d2e207f156ee8n/aHeodo
2020-10-28dat_QWLVHZ4OT1I.docdoc d1e48d98d3d928c9e037cd42ffa40c55a3dd2821793b189555e6227789239a26n/aHeodo
2020-10-28UNTITLED_57461170771676.docdoc 0cf82bd2a650438c7818a19c6fe0732ac0c004c56b13d070417bb70bfe3b75ccVirustotal results 17.46%Heodo
2020-10-28list_12595232.docdoc 1c6f1e8fd02e26528ffb033f8609b7ace904644afa906f2de75d4e2eb5ace245Virustotal results 16.67%Heodo
2020-10-2807241629.docdoc 237787a670daf0b6ee3f6e85c75ca3501a3d0ed0c6761afb36b467a32d31c2fcVirustotal results 32.69%Heodo
2020-10-28FILE_CWDMXG8JSET.docdoc b2fd50c9b74180bf57162267feec075ce16b9d37ead25cca5f97840e44e61a1en/aHeodo
2020-10-28DAT_28016617.docdoc a2b3de3e6d67d8b984e20da13e2338fb10bb97088378f08537ed93228f6850e1Virustotal results 28.57%Heodo
2020-10-28ZE6788262355TJ.docdoc a8d759c3b4c570d5c7d196edd616d1816f0bf51f7d858bbbdcf8bb41f85242e9n/aHeodo
2020-10-28file_MEW_100120_SFT_102820.docdoc 7803eaecf62220ef80be8d61979f75486f28f13aa80efdea082cc27aa40e63e1n/aHeodo
2020-10-28Attachment_97321727.docdoc b544ff42f8c38e91027ec7df20b912d3c55dfe9235c6f4a609f7c8b57798b979n/aHeodo
2020-10-28inf_PAMCXXS.docdoc 520ca27ad3a13618d306b397f83a91daf238997358520459895991c6285328e5n/aHeodo
2020-10-2891601856.docdoc 4a40f7f94b6987d15605eb7e6ccd22baede35a72d60278537f9aedbd6d7a909fVirustotal results 31.48%Heodo
2020-10-28Mes_97359532.docdoc 969f5e0df23f888aebe6c8cd981961e3bb23f514d3d55148d8c56d0309a7532dn/aHeodo
2020-10-28inf_CFISK8ICVLNALREC.docdoc b1de6df6c2b5ac15a030ee3b606165a808dd7fb78a4d22a267e304c2edad0fc1n/aHeodo
2020-10-28rep_06272098.docdoc 089982175b8c27323227a0cbe60942992e1cd89852436e481f6947e75cb25d67n/aHeodo
2020-10-28INF_2M8L9F3.docdoc 34eea5e4f2e92b636f9fcade14a7aec223d0ef960f9c0f6c749b2b806096aeb5n/aHeodo
2020-10-28mes_34319531754284.docdoc 087c51a90ce1975819e515fd65ce7583219cb9a7eecfe2c20191cf2d1196eac9Virustotal results 29.03%Heodo
2020-10-28Dat_AIW_100120_UTY_102820.docdoc 101fcc93c33f4a28332bd09291db3501b3d13ef433719cbf7750e9f6a73b88f2n/aHeodo
2020-10-28FILE_PO_10282020EX.docdoc 1d6286cbe99db0f75e74a7ce7e77a50699b075af54aca64f8d2fb9c235f5d094n/aHeodo
2020-10-28Arc_78223010.docdoc 0c7d3ec331ef86b021bbe0e3892bf17424bd028421e6f164f683a969e38c44d9n/aHeodo
2020-10-28DAT_PDT_100120_PQK_102820.docdoc 2a46f3f595f2eea533b556a67f2558d85d955f1784d1d48cbe78b2e5fae35f34n/aHeodo
2020-10-28Arc_274510648054466728.docdoc fe13971c49c4731ae4fdc32c49bbb6796383a27db3ca2340642ed9d0c1753880Virustotal results 31.48%Heodo
2020-10-28REP_EQE_100120_VDM_102820.docdoc 1371c2d34a1e3ad727d60804b08ef021e7568a841acc95ce5cf1773149657ea7n/aHeodo
2020-10-28Attachment_PO_10282020EX.docdoc 7f286766434b67cb7ea25119d469c086c70807bf665e8e373acb472ec284a72eVirustotal results 31.48%Heodo
2020-10-28MES_ORH_100120_RTC_102820.docdoc 95d5a2d7dcee12209de69b8db569c01e68322524257ca16c36f43ac546532c95Virustotal results 25.00%Heodo
2020-10-28ARC_EA9032588809NA.docdoc e774de558ab588e2aefc6661f8ddf20b6a02ef8a6e2c4504a0b03e27d9c19df3n/aHeodo
2020-10-28file_83595912.docdoc cf6945d684eb6962274cca88159c3f88a0a5291a81ac0d8831d9f6496b005c33Virustotal results 27.78%Heodo
2020-10-28Mes_PO_10282020EX.docdoc b7ee22f0341587e221b8a80c3caf8fe78b8d8ba06220d4cc28641f82d0d32bb0n/aHeodo
2020-10-28REP_Z6TH9IYAATG4GFK.docdoc e809029e144d585294881c1cc21836d527c1547b45b9f97446ca6bc9987c3ee8Virustotal results 25.00%Heodo
2020-10-28doc_PQZ_100120_KBE_102820.docdoc 09a4d7f3bbc95dc5b795441093b4f44943d384f0b9087a71ddaf1b55eda16ec6n/aHeodo
2020-10-28FILE_WGJ_100120_RTP_102820.docdoc 1fb4278069691dd947dc414fae8cd33f4b9309293ff8919ab9fdf39e30cda63an/aHeodo
2020-10-28FILE_3947356882944559.docdoc ef87afc95689c73759bee33f83ee37d3a46dcdd5dcd498921e9cc06eb3f02455n/aHeodo
2020-10-28PO_10282020EX.docdoc a30d2b343e3646a2a05e98c5b7f976a1f67e12574ecb880a2a460bec35735f6fn/aHeodo
2020-10-28Rep_YS1469185374MA.docdoc 0c874ea74e47b55d95a88c84aabb2e74dc3938824474937df34da0971b59f4c7Virustotal results 22.22%Heodo
2020-10-28Rep_85533973.docdoc 5b5139dd7a1ffc7d31ef829c6f23afb23a459dc8aa0a8f900970875ecd254e39n/aHeodo
2020-10-27ARC_562940442.docdoc 90f1f20d90c0a5c6c32d6eca01833ff1db7b1325a5db427d7c5871fe3d5096f3n/aHeodo
2020-10-27Doc_UY7738202438KN.docdoc 51dc9e5a948487f714ef9600e3188b99aaebca09db45c0cd628d561945767476n/aHeodo
2020-10-27K_M0QBYSN3SZ1X.docdoc d63d4a763ad9df9bb9fa87fece48df3f857bcd1e1aa9a3f37a472c4b7394c500n/aHeodo
2020-10-27rep_JJHPTBOIIO97.docdoc 58c6d43427679cdcaa82662a3a2421ce675d528b81de08448e7c904c9afcb992n/aHeodo
2020-10-27arc_623913889383.docdoc 98c713e8df6c92a443138d43fc4435e730cf2515b07e1402ca23c7b03e6f6448n/aHeodo
2020-10-27Untitled_10465646.docdoc a260910db0747bfef736fe491c9762f6651e7031b77914ab19fad50c63ef70fbn/aHeodo
2020-10-27FILE_4115651569302.docdoc f0cfa5e0da830c64b718ca4ef0e2a826727e13e6f59321d4bd07c41f1ce888d7n/aHeodo
2020-10-27Untitled_71101367.docdoc 0b8ac5c9dc030e537de800452a108f34d872311dbe2d68949a7230e90cc2ca63n/aHeodo
2020-10-27FILE_0ELRM34CV.docdoc eff4ff103b1930c43c7f0ae267a43b853c4cc734db4c80473d028efff6e8f7f2n/aHeodo