URLhaus Database

You are currently viewing the URLhaus database entry for http://zkevd.com/od/recoieplurexotds which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2247973
URL:	http://zkevd.com/od/recoieplurexotds
URL Status:	Offline
Host:	zkevd.com
Date added:	2022-06-23 13:05:16 UTC
Last online:	2022-06-25 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-06-23 13:18:05 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	1 day, 18 hours, 20 minutes (down since 2022-06-25 07:38:11 UTC)
Tags:	aa qbot Quakbot TR

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-06-25	Copies297182200.zip	zip	8ac4e50e3d0a07d1715956cd2374cf33735b2c49de4ba0c85d4f6c00cdab7774	0.00%
2022-06-24	Copies1287196402.zip	zip	596b7fbed385b4a251e2fd2aeb46ad81f8a410355715984829b1b7684349b1cc	1.69%
2022-06-24	Copies421707733.zip	zip	1954eed1f4f434dfdf28aad33c1cd52fc7af8e4c20005ed786a05983e7bc69ce	n/a		Quakbot
2022-06-24	DataS3536778896.zip	zip	06a2b20d269d3794dda51a93ba05550962de5890a27196a665c28dbd6e2689db	0.00%
2022-06-24	DataS1036466067.zip	zip	e9f31b0312bbde01eed7b6e86547eebaf1c70bcc868580706a7846597c316343	0.00%
2022-06-23	DataS1552025496.zip	zip	2f482b14545e51e79902c1a0c19f056ae15c660bfb0ebadadfd7fede39251406	0.00%
2022-06-23	DataS1660421647.zip	zip	5a20dcae683a61f0ed8efda36d5ee95970645192049a07bba9e912476bd336e8	0.00%