URLhaus Database

You are currently viewing the URLhaus database entry for http://novo.skelt.com.br/webindexer/15o0ueqMKHqWMDbSuOqxMPfHAbbhBOr0AEzk/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:945685
URL: http://novo.skelt.com.br/webindexer/15o0ueqMKHqWMDbSuOqxMPfHAbbhBOr0AEzk/
URL Status:Offline
Host: novo.skelt.com.br
Date added:2020-12-30 16:28:09 UTC
Last online:2021-01-04 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-30 16:30:10 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:5 days, 7 hours, 18 minutes Bad (down since 2021-01-04 23:48:34 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-30YHWNEPQG4EJ5.docdoc 1945af426236644e59e05d740730d942c8b1f318aacf9f983a9f6e4bcbf55f37Virustotal results 44.26%Heodo
2020-12-303X5ZNDPXN.docdoc 6aac95dd3f2a6b9cdc5ddfbda6e548ab8d93a61f48640d3a0a98a312fad42e56Virustotal results 42.86%Heodo
2020-12-30GK08FIV1WT1.docdoc 75e6fc7e5c98a20bc64f7944d2bead6901f575fe20135e9aafe210ee2e1e2c49Virustotal results 42.86%Heodo
2020-12-30NF1L1WS95K.docdoc 69cfcbc8cdcaf6fb79be3d871779d709afb32745e7e7ab35db31dcce9f6bcb80n/aHeodo
2020-12-30I3MLEQI4R5.docdoc 14eef594729b6784626929323d1f4a040cf76e3774ad5b77a16c28449db182cfVirustotal results 43.55%Heodo
2020-12-30G8SUW70FUC.docdoc c531afa39691d1fec216f1c5c1016c155176f104b4b83189b1f4ca82efcdec60Virustotal results 40.32%Heodo
2020-12-30B8YKEZY2AVDLP.docdoc 9d7889fe83c60f08711f29825a62cc029f17329e4008a7298e7c3ba5cb6ae8ffVirustotal results 41.67%Heodo
2020-12-30MR2S0U94ATHC.docdoc c3995c2fa8060e207a999e9ba7fac45ac419f717a024eb0bc1059e197a595595n/aHeodo
2020-12-30NY84457BDHSCF5SZ.docdoc 62ab4ab746aa32f2fc56a4441eb18d109e5174400f6eec250495e2b513ac63c9n/aHeodo
2020-12-3083WK0PJV7G15.docdoc d2178edbfb636aa2baf306d59be6a8c651aa2167f67893e6ee70469cc13de307Virustotal results 34.92%Heodo
2020-12-30RTJYJHR.docdoc 24b9b439815155d6b338c75f2ae2d92deb41c580a893dac9153f5042abc8b702Virustotal results 31.75%Heodo
2020-12-30U8QS132ZBR.docdoc ece0d267bc9cfa2b32d2d93569757b8895f379ef0b752fdafdb457da534a0de9Virustotal results 31.75%Heodo
2020-12-308IUCCE525PJF1BRL.docdoc 48cbbf0f9680ad78df8965f1b76d756f88912c653711968364b7f7eb3f5795b0n/aHeodo
2020-12-306AT2OZ2IMFIKMYW.docdoc 643eeead31f1c79f2a2d191699189bd671ca0169fff0feeb3824ff0b57281e3bn/aHeodo
2020-12-30GLVDZJOY8MNV8K.docdoc 8c39bdef7f9491fc985afb40906aa1f0d4427bb9cb2299ebacd5511b442e9982Virustotal results 30.16%Heodo
2020-12-30RS8WS6AI9.docdoc a2bee4290712595f0afb87e5a247cafe694d279fb7350e43bc163630e926aaa4Virustotal results 27.42%Heodo
2020-12-30VWBUGXNN.docdoc cecc306de3cae60a1f3d988356054754d0d3dcf8666045f718d5cfbf53e6a730n/a Heodo
2020-12-30PXGSZDAGAOGQ.docdoc 74aa8c23f8dd77cacfebbdb1173e5dc164f1f441bbfc2a3045a3936ff133e007n/aHeodo
2020-12-30V0SQLUUS344D.docdoc ea32c0e98b96ac84d67ce92162c923944c124e335e920f9a4fa6d5c18fd732cfVirustotal results 31.75%Heodo
2020-12-309U6MVAOAV5.docdoc 2badabcc2c4dfb7a924c0530bf5f067915c4ecf9d74c21fd9c1b9a4b7124aba3n/aHeodo
2020-12-30I7BMOB.docdoc 5f6b7c56f5a98721b71d91dcd9a177298006b37c11ca8dc6b0bacae198e17feen/aHeodo
2020-12-30S15Q4CT.docdoc 2a21ff7a18b4f0acbed3e8bb4f2b3bd74388c458e0953be7c9a21c9986dd72d4n/aHeodo
2020-12-300TVK3JVQCKGOS5.docdoc 102752bacabf212b2d93d7dab6e84615f2e94a7c17f88f88c23cd2e87643da1cVirustotal results 29.03%Heodo
2020-12-30LAE3DUK4ST3RDWK.docdoc 63a9349a502e7e3e7a78488b5fef1649c62dd1fca5e72c79dd92e0bd89327105Virustotal results 28.57%Heodo
2020-12-3088K9SJ0NZV.docdoc 2e986e4cb07980f9225eb5e25529d2dbf45a90c5b57b74653efefe53ce972db9Virustotal results 28.57%Heodo
2020-12-30HICK9IIATT04XLTO.docdoc 0d90ca158eabbf8ebd00e4093c2ccbd118833f31c3c6902dc7cc079b6ad27560Virustotal results 28.57%Heodo
2020-12-30A4X0I8Q.docdoc 285ab195d27a5ec3299bbf17ad460e833b3c265c80b1450bba5accc059d6cf7eVirustotal results 29.03%Heodo
2020-12-30Y6ZZXBP1TLSGZN.docdoc ff851095aca5969d1f70e5be1a645bf840e10b191b9037c50da8be304f5c01baVirustotal results 29.03%Heodo
2020-12-30YZLMOD4.docdoc 13f1c66896a1c40f53f90c4132994a55c9363a7044989a67b6ad42a8965f69eaVirustotal results 28.57%Heodo