URLhaus Database

You are currently viewing the URLhaus database entry for http://www.sprintnegociosdigitais.com/wp-includes/form/ZScgn/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:938402
URL: http://www.sprintnegociosdigitais.com/wp-includes/form/ZScgn/
URL Status:Offline
Host: www.sprintnegociosdigitais.com
Date added:2020-12-22 14:03:05 UTC
Last online:2021-01-03 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-22 14:04:02 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:12 days, 3 hours, 39 minutes Bad (down since 2021-01-03 17:43:08 UTC)
Tags:doc emotet link epoch3 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-22Inv. 00124343424.docdoc a61add91d1ec99ec85463137cdefd5a4f56e2bc5885b00b4fdb840347ed6ab4eVirustotal results 44.44%Heodo
2020-12-22Form - Dec 23, 2020.docdoc 0ee6267a600d0be88323943101ac74161ec1b3c70b533800cbd7b51f0d2ecc14Virustotal results 44.44% Heodo
2020-12-22T0067 invoicing.docdoc 92888947fd26e79a007b4813b402232e8c2d8759a09c4a09df45de70229b9087Virustotal results 46.67% Heodo
2020-12-22PO# 12222020.docdoc a0aa13db6c8109cee5544abb9e28e2455ced6b65a3a34f0b1502989fb24a411fVirustotal results 45.16% Heodo
2020-12-22INV #8549 FOR PO #0854394015648.docdoc d54ba8a8a51f5b139f174c012bb6cb5d21135722e679bbb89e7eebc2c20c1988n/a Heodo
2020-12-22invoice.docdoc 9e2347c9c0400fdbe92813b589bc13231a7153e64333daca76263137edcab559n/a Heodo
2020-12-22invoice.docdoc 1c87d4a758e100db631379b9d6462129efaf1cc3f2f68c39d23082283495fdaan/a Heodo
2020-12-22form.docdoc f817b73b9dfcc5de9d4dbb3e5d797449f155c6f1faa7991e9199de0c9e23c6f9n/a Heodo
2020-12-228166341-122220.docdoc d3ecea32f704ae23f82fb224eb48abcd7d19569562535668b5c7e15874989bdan/a Heodo
2020-12-22IF8785130021Kx.docdoc 36b6056048ff40443e91673ace0b3f34b25649a724c5297c7b56406f51f7680en/a Heodo
2020-12-22tieLP-120120.docdoc 4b3bb25baec4647ce285ecbd6612fd2bc31e194b1a7549fb905457921ab15706n/a Heodo
2020-12-22December Invoice.docdoc d03fc0905d26be1f4da81d8a867683b6c1a708591d8553a1f6a1a25f88bb0c5cVirustotal results 41.27% Heodo
2020-12-22Form.docdoc 0af8cd3d1815a4917fc85beed3d3103472d8044e614b5b7487fd864385a3dba0n/a Heodo
2020-12-22Payment.docdoc 97a7d65be64a56693923de9a5e289eb8f60e7a1c9c0e8028c12b3247a9f23adbn/a Heodo
2020-12-22Payment.docdoc 9c8fa69bad491103df4b3b4120c63eacc1b0d1d084009f9c2c61dceb5fbe308bVirustotal results 41.27% Heodo
2020-12-22Copy invoice #991878.docdoc 53acfe21fbd1ee22493a6eebbf0895b5f7baeaeaba30e87fb5eb642ce75a92e8n/a Heodo
2020-12-22invoices 583 & 3550.docdoc 300174da0440159106a4ee540f8183c413b43a83f3ba96ce67080028cbea72a4Virustotal results 36.51% Heodo
2020-12-22B1 invoicing.docdoc e1757b0f0980cca2afdf7bf366e1ae85afc7d2608565aa49c3581be6c7722244Virustotal results 38.10%Heodo
2020-12-22M0021 invoicing.docdoc d6eafb3302ea4be1c81daa77a07d5fbaaaee3a5f056825816d3072ba722d6c1fn/a Heodo
2020-12-22Payment.docdoc 609fdc1b6c9331c7bac529b941f68b1bac376b57a630dcdcf074eb6d2f8d5440n/a Heodo
2020-12-22invoice.docdoc 77ea53dcb5a6b878159c9f8965c113addeb53d2cc9b3b1c84c0c831d2f6612f8n/a Heodo