URLhaus Database

You are currently viewing the URLhaus database entry for http://greensync.com.br/aspnet_clientOld/9406470676/dFFi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	762155
URL:	http://greensync.com.br/aspnet_clientOld/9406470676/dFFi/
URL Status:	Offline
Host:	greensync.com.br
Date added:	2020-10-28 19:24:06 UTC
Last online:	2020-10-30 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-28 19:26:21 UTC to abuse{at}hospedagem[dot]net)
Takedown time:	1 day, 18 hours, 14 minutes (down since 2020-10-30 13:40:56 UTC)
Tags:	doc emotet epoch3 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-29	invoice #598564.doc	doc	2efeab91d822ab76173df70e491b2cd6881d1435186ad6659da73c4e5c5214bf	34.38%	Heodo
2020-10-29	form.doc	doc	55948fa440efdbe28f551bded69dcb747f665518a10876e4ae3ebdcb5e44ea67	34.92%	Heodo
2020-10-29	Form.doc	doc	b35e8c1cf63de1025db2d2f786b3252b88272d9bad9576c7e2a223a9b4187663	34.92%	Heodo
2020-10-29	invoices 2875 & 95623.doc	doc	1425e6db29a588c212da92116660246ff0b96ee0e493edb96c54bcf45dcf66c6	34.38%	Heodo
2020-10-29	VK8421388097GK.doc	doc	ff2bb9d11fe9eae10cc06eb741a262e915e218c4c4157428cde979b3975f49a9	32.81%	Heodo
2020-10-29	INV_12414.doc	doc	acbe2412c4aff06ae0a1c4b17bf4acab3d67874fa57aa0a31578e524d063f715	33.87%	Heodo
2020-10-29	PO# 10292020.doc	doc	64176cb24145e182cb8783aecc0c2b5ceca0e851c932775b5a44431abee2a611	34.38%	Heodo
2020-10-29	177144.doc	doc	407011017107dd82209d02b6714d52efaf3270f55a81de711db2f20d9b918d23	34.38%	Heodo
2020-10-29	Form - Oct 29, 2020.doc	doc	092adc3e63864e36764ee209d07e652c3b37b55e0f433d9ae5c69a1619a482a5	34.92%	Heodo
2020-10-29	Form.doc	doc	8912ed633b4518995c5cf68b1037b5f3755e2573d19b35873884074daab8e1f0	32.81%	Heodo
2020-10-29	form.doc	doc	67adcb665e495bdce7d8234ef01fe0cebc5d615a6b630a2222366cd51a871658	31.75%	Heodo
2020-10-29	U30 invoicing.doc	doc	07e080dc70dc704b7d6f6eb5138fc133b388aa42e3e4f9db824c0aa5e7637285	n/a	Heodo
2020-10-29	Electronic form.doc	doc	e30eceea75b291ff394ffb670b46a3b07e8725dc0a146c1df069952d9ed885a9	n/a	Heodo
2020-10-29	Inv_39108.doc	doc	62da1d16914ee7b918b84c1bfd2714584b9f6a979558c8e3c09c779b4b30deea	31.75%	Heodo
2020-10-29	form.doc	doc	1c6a68700c5a829d8c421561d670c1f86cb25027af4b54be19724b1b7a979ef5	28.12%	Heodo
2020-10-29	024736304.doc	doc	99d886c1a8460ebf04f28f6695c165f45ead399cf1d98bf8ab140aeaaf04572b	31.15%	Heodo
2020-10-29	invoice #96350.doc	doc	493d0b6b7fe96f6e344c94ed7931ec69f8344a424f6083374387322b6ce037c7	29.03%	Heodo
2020-10-29	form.doc	doc	2df17cda9f5ded819514b9060733138dd171d92eba13d68bfa61efa6d39a85bd	29.03%	Heodo
2020-10-29	invoice.doc	doc	f3068382cc295bad25bc7c5ee96d09893b73ed065dd521170ec6c4cc731d6145	25.81%	Heodo
2020-10-29	Form - Oct 29, 2020.doc	doc	7fafbcc83ea713a0c58c02025b505e177c9014edc2dc1229d9d7487cd3075fae	n/a	Heodo
2020-10-29	Electronic form.doc	doc	7ae576917499bdb77da8f95dbec37ae4f819b800e62b5f467f0900d1dd716d1d	30.16%	Heodo
2020-10-29	invoice #706414.doc	doc	154471acb1707b19c1efb5b7bc06211dd35e28a69e0db7f663b983d8712d8727	26.98%	Heodo
2020-10-29	Payment status.doc	doc	19d1d7b47cc9258f228a84f405d6832d66bed17bdc8f3dd9615b448d9a238780	25.00%	Heodo
2020-10-29	Form - Oct 29, 2020.doc	doc	7d41847fb131218d629e6bb8132dc6b2b1ce714b4090c01c3f531fa66ad7274a	21.88%	Heodo
2020-10-29	Invoice 39097.doc	doc	9eddbf9eaa4b753108631f0cdbef5ecc758378c188d216542bf2db06a4c4e7e5	22.22%	Heodo
2020-10-29	Invoice 001402690.doc	doc	9da8a687183313d2dec4f41ff6c4b5b6fda388b7d8d295b3071df72518fb318e	21.88%	Heodo
2020-10-29	invoice #97300.doc	doc	26e0dedfbc389de133350f134455565f185e864b79466539b658dacc21fb1bb6	22.58%	Heodo
2020-10-29	INV #00480126 FOR PO #511563194730.doc	doc	95b4f0a791e9ffefe35972f8c4e1a90c115fe1c8976f779e44b5190d859b3eb0	n/a	Heodo
2020-10-29	invoices 4164 & 0931.doc	doc	dd46084c550c55905276f7c43df92dbe4a91d31ba7afebe0313262ddbfbd56ed	n/a	Heodo
2020-10-29	October Invoice.doc	doc	3e84e096f2f889c271504b8dcfb1e9fb78a347087b984a219d7749a8a0839c31	20.63%	Heodo
2020-10-29	invoice #915831.doc	doc	4076636560061cc4ff5eef39af1175c75192f566e214b6cb17be9f9f819c0390	19.05%	Heodo
2020-10-29	Inv. 02217790.doc	doc	36bc0b0a45b7b904804ec1e2efc5349ac69bbdd883633311f3c89eea32884799	19.35%	Heodo
2020-10-29	October invoice.doc	doc	d35618fba11f6c84539c7888912e7eb42799ab92025b7d9b15eb542b4b380d33	17.46%	Heodo
2020-10-29	form.doc	doc	bf01de28c8cf6dc5958da2bedc45b045e3978c687cc80c399c8fb63407e8562f	19.05%	Heodo
2020-10-29	Invoice 008068096.doc	doc	8744e383bf013444ed1f687f385d558ee1c4e2a153cdfe224250a02fd1eada2e	19.05%	Heodo
2020-10-29	Inv_21374.doc	doc	995bfae8132d4637a2d2e72e1f40a22043e19520c5c45039b2f257e9430f3cd5	19.05%	Heodo
2020-10-29	Payment.doc	doc	2dc19d1576e1d7e5d43a3e0cf6ed690d3b66634515389ca782f0af0198069e65	19.05%	Heodo
2020-10-28	MZ-100120 LMVM-102920.doc	doc	6c9191798758c5d2cb92a9f60c5d221a0e2d737aa467dfacb65c2a86c5781586	29.03%	Heodo
2020-10-28	INV #0847614 FOR PO #07106111562.doc	doc	c6446a1b82e57959baa73f792dba78e1b5374bf16e60ae5bacdd7a1981c45f9b	27.42%	Heodo
2020-10-28	INV #0204234 FOR PO #000827547624.doc	doc	77011899c5b86d17bd9c00bf4a80339feebd6adb1135b65512e1dfa8653e6ca7	26.98%	Heodo
2020-10-28	Invoice 02812632.doc	doc	0c5643d4a7b85e177802b1eae495641a49631f1e3016455f0c7ba45709d27026	25.40%	Heodo
2020-10-28	Inv. 087651561.doc	doc	ccdb2c5ed40ad6227647ac04e1d3d1cb499a0d67ae9dc428c3ef6b275f786a8c	23.81%	Heodo
2020-10-28	PO# 10292020.doc	doc	5177894154a2ad0d67c6ea62534a27cdc18b7cfe9c73c8ec6071d72fb8c198a2	22.58%	Heodo
2020-10-28	October Invoice.doc	doc	2a87f25fe351249b33ffc8d24f6310b9d8e1e3907a6b53b06e324566027dcae0	22.22%	Heodo
2020-10-28	Payment status.doc	doc	6c5d2dceb77aca3c35f72874bcb483c53950fd5f5aeb9dd9a66fed7341d3cd3a	20.63%	Heodo
2020-10-28	X-100120 SCDU-102820.doc	doc	550bb4afeb580c5ca1bef73de9f4548610129a2f407d1375aa69b29c109ee9bb	n/a	Heodo
2020-10-28	Form.doc	doc	661694d6fc62c1af16ddbe2db10c54b471f5acb387cde760666a6a672635f16d	17.46%	Heodo