URLhaus Database

You are currently viewing the URLhaus database entry for http://zkevd.com/od/rretvuielm which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2248237
URL:	http://zkevd.com/od/rretvuielm
URL Status:	Offline
Host:	zkevd.com
Date added:	2022-06-23 13:05:57 UTC
Last online:	2022-06-25 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-06-23 13:33:09 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	1 day, 18 hours, 17 minutes (down since 2022-06-25 07:50:15 UTC)
Tags:	aa qbot TR

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-06-25	Copies4180222783.zip	zip	f3bd69895e6e3e9f1492eb717fffd277096addd18e4ad79a1dd63274f8e5fc48	0.00%
2022-06-24	Copies4162096272.zip	zip	bee10a5fdbaea8982f8c28eb1ef2430b7299158f1dfe629f6b7ac2e4305db891	0.00%
2022-06-24	Copies3627497060.zip	zip	c027f30be0ca02a490f29b7ce707157b4cceae11f0b85e4a0d7ad7b5ccc3725b	n/a
2022-06-24	LL1249058200.zip	zip	4e035b392b075566ad08ea1e11d4aad22bc0ea848f7c57b5be575241803d36d7	0.00%
2022-06-23	DataS3540720336.zip	zip	34b1360d138cfe3fbd5f99ea7688444b6cdc2366e2e4fd26caefc405e858db30	0.00%
2022-06-23	DataS1499688965.zip	zip	88dc3ded423ea6a829e4cbf9249e7c7c393c40e053a7c0fcf8fc4a0dc26ed6c2	0.00%