URLhaus Database

You are currently viewing the URLhaus database entry for https://crediwash.com.br/to/iqteau which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2147953
URL:	https://crediwash.com.br/to/iqteau
URL Status:	Offline
Host:	crediwash.com.br
Date added:	2022-04-14 14:04:13 UTC
Last online:	2022-04-25 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-04-14 15:54:11 UTC to abuse{at}hostgator[dot]com)
Takedown time:	11 days, 4 hours, 19 minutes (down since 2022-04-25 20:13:34 UTC)
Tags:	Qakbot qbot Quakbot TR

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-25	iqteau.zip	zip	064b0cc306aababd92c0eaa96dfc1be95c219d6ac594c148da40f08817f9eece	n/a
2022-04-24	iqteau.zip	zip	54df1ac672d12b69e06a00f42d53b2099f2c562887166c4b5a416ba6eaa9d710	n/a
2022-04-24	iqteau.zip	zip	747c8892733a34e606215f0bd2ac07eea8688a2fec3b048a56561f6eeb0b994f	24.59%	Quakbot
2022-04-23	iqteau.zip	zip	bf6c04d77c89a5655532ba1d092ac7f9cb6e4aa0bd1f793fa7d192955221e482	n/a
2022-04-22	iqteau.zip	zip	23f04740ba31ecfbbbc0df0ab4c78b95778ad422a309df506c7983b54b90b509	19.35%	Quakbot
2022-04-21	iqteau.zip	zip	7d576d99f583c6c9de4772b9e13aa45af275eaa7ef558216c5c59514ab810380	16.13%	Quakbot
2022-04-21	iqteau.zip	zip	506ca4204c6020e171a38bc405412a60d30b92c269890816e5c039206db8a175	34.92%	Quakbot
2022-04-21	iqteau.zip	zip	1937ea2b5eed948e2e510caa6095e6de46d52c72f60e03f6def5cae14c9a5172	29.51%	Quakbot
2022-04-20	iqteau.zip	zip	8e55d8d080d12270c288a0d103a0388af256f48e6e989bde322606ee35e58a22	20.63%	Quakbot
2022-04-19	iqteau.zip	zip	f75b943fab221ffccd81d7051f404430e5b0457a4f34121e00b3d6b13149a3c6	n/a	Quakbot
2022-04-19	iqteau.zip	zip	4e1a2ec36a058b8eec058ff61ec347be4a7da3478eac0d342824307bc1de3059	n/a	Quakbot
2022-04-19	iqteau.zip	zip	a0a1f4818c4a703e3dd3ac46ad002b4e9659546842f3fe5b56a4ec6785fb5c3b	n/a	Quakbot
2022-04-18	iqteau.zip	zip	d9e2a62e79d1459e0de36cb2ac3f89059a30cd1cce826d6a58b6e01305ac877f	16.39%	Quakbot
2022-04-18	iqteau.zip	zip	bdd008883c03caf30e8994c2e44651f0ad033afe4a3f8830a4094f003d1f676d	n/a
2022-04-18	iqteau.zip	zip	ef4f8cdf1dfc8d243fd1b103aa0bcde3c6b9e651b568df946970e4c3fe674afa	23.81%	Quakbot
2022-04-17	iqteau.zip	zip	fdf5a7e4425fa39ec8c535ccc2d26809d3941acad312722e0206f43d2659104b	17.74%	Quakbot
2022-04-17	iqteau.zip	zip	cbe1253b1ea7bdeafc482302197b990d062b011542238f26d89c7922d8334798	20.97%	Quakbot
2022-04-17	iqteau.zip	zip	6f79328cbee1c54faf60268c415d30f3fd52278b4050903fd848440e00e0e0b2	n/a
2022-04-16	iqteau.zip	zip	b8e0a81dd7a507f2c8c1a90fddbe67ea9098f9940f2c5aa2a2e63682684d8536	22.22%	Quakbot
2022-04-16	iqteau.zip	zip	1f6f999c2b728f3e3bab3e367607511b92914d7aa80b972e6b4ce85450bd121a	20.97%	Quakbot
2022-04-16	iqteau.zip	zip	e9f62d42ea3155d79e5b57a0a882ac69a4eff75189d52b3140896a2307db1432	22.22%	Quakbot
2022-04-16	iqteau.zip	zip	d728d675bf2a7374379e8f282cfaa0d2d0cbe04e38de4c1514bf929f8c74b524	n/a
2022-04-15	iqteau.zip	zip	fe947ec6e9dea2b025a1247db7c333f6decb44d53a9d5a66aac393fe73402b9d	22.22%	Quakbot
2022-04-15	iqteau.zip	zip	17fe1a1d8e9893cced8d67abbb4c34d2492dea70ab067f2ca41a40862ad55fba	22.58%	Quakbot
2022-04-14	iqteau.zip	zip	303586e0226226f0f7b9817d74cd92320ef0d7431847fa5f1d4f5fd8fa2b9fd7	n/a
2022-04-14	iqteau.zip	zip	5371e28a21b045ccefe7a841c583b3ea5cbbab53f2e14be811439fdd33263b94	n/a	Quakbot