URLhaus Database

You are currently viewing the URLhaus database entry for https://gtec24.com/0mqp0yN6/kk.html which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	1177185
URL:	https://gtec24.com/0mqp0yN6/kk.html
URL Status:	Offline
Host:	gtec24.com
Date added:	2021-04-28 00:20:10 UTC
Last online:	2021-05-04 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	lazyactivist192
Abuse complaint sent (?):	Yes (Ticket DCU003520783 created on 2021-04-30 20:17:05 UTC)
Takedown time:	4 days, 2 hours, 38 minutes (down since 2021-05-04 22:55:46 UTC)
Tags:	b-TDS dll Qakbot qbot Quakbot SilentBuilder TR

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2021-05-04	n/a	dll	2f7d29be2d877a68803d29ca5ca64d84d5f0e49705c1ff84f0bd5dfc91fbced9	n/a		Quakbot
2021-05-04	n/a	dll	4920b2f647aa16bd4e806c88a1af679fbfec0c6790372ceb878efa787a5e55bb	n/a		Quakbot
2021-05-04	n/a	dll	afd1a2fc63a9ddd3966388d4ab4230eeb6350bcdb1540b6b3496eb89dabc6527	n/a
2021-05-04	n/a	dll	1385a6d17e4d8b34894c99e6540b83b7ad3bc64450f6f99b58bb66ef30ecc5e6	n/a
2021-05-04	n/a	dll	ade0d29989c5e4f5db521f8352c9b4b6e64272a74d1f1ba933aaf2058212ae14	n/a
2021-05-03	n/a	dll	915819517f645a9fe5226ca1236f67f9163f2ff1a13fffc60e794256623e224f	n/a
2021-05-03	n/a	dll	fc763ef6242dc4413db6454a1ee29bc126c9a4db45d8bec9c317a9dae006ebdd	n/a
2021-05-03	n/a	dll	f4636a2d4bbe9c50b6ce3e8b74f16f90796b8174d4407933e30fe79f1543be87	n/a		Quakbot
2021-05-01	n/a	dll	944bf32d169a259a6c6836d79401a1664d607d8d89be26b6af61c598b5353e9b	n/a		Quakbot
2021-04-30	n/a	dll	885583a0d1aba855c69cd0b3b36c745fa78e5aa056c8e562e262c3846fbbb174	n/a		Quakbot
2021-04-30	n/a	dll	eebe36c9188674db8fcd8cdefd729426d586d8936c3659dce91509b3001efe20	n/a		Quakbot
2021-04-30	n/a	dll	75816b4b5c30f004cdcf1bcbd354188fd1153b9d0bed321bc18e0d2acbb4c6ae	n/a		Quakbot
2021-04-30	n/a	dll	911f9bd59edb96b58ff9a8a0771e6d1b630efcd9a7afd03b35126badf7f1db7a	35.29%		Quakbot