URLhaus Database

You are currently viewing the URLhaus database entry for https://drive.google.com/uc?export=download&id=1b6t1MjNJCvnDcY-MDQQ0NeqRBOcqYJu4 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1331376
URL: https://drive.google.com/uc?export=download&id=1b6t1MjNJCvnDcY-MDQQ0NeqRBOcqYJu4
URL Status:flame Online (spreading malware for 5 years, 0 months, 16 days, 14 hours, 46 minutes)
Host: drive.google.com
Date added:2021-06-06 07:32:15 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2026-05-23 03:10:16 UTC to network-abuse{at}google[dot]com)
Tags:encrypted GuLoader link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-01-07BLESSINGS_wxxYR101.binunknown 3bdd14a772f2a75ff4e031dd52f3d448a1d87fd6fc5a8463191ea072c1c28729n/a 
2024-01-03BLESSINGS_wxxYR101.binunknown 4d0445705acec51786eedd90c077b813b4ffb990cf3d28d914776ebf0fd19fcbn/a 
2023-11-17BLESSINGS_wxxYR101.binunknown 3d548622d152da09eb9e01b429810bac49d6070892d420e0b5e120a07a7dcea6n/a 
2023-11-13BLESSINGS_wxxYR101.binunknown cb12cdbf830a4d62bb6a0c0f4c8d287a12d1982ad8097cf549927a6ac0074c1an/a 
2023-11-10BLESSINGS_wxxYR101.binunknown b6818523f57009d5b686b77e09092298c9bb304e83d30b6a9372479fe8682d48n/a 
2021-06-06BLESSINGS_wxxYR101.binunknown 1788e0b37651c1986e1059b6559c984ab5af2df76f4c4e9b241d9d25d7e93042n/a