URLhaus Database

You are currently viewing the URLhaus database entry for http://zkevd.com/od/tcoeidltoprduaie which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2248328
URL:	http://zkevd.com/od/tcoeidltoprduaie
URL Status:	Offline
Host:	zkevd.com
Date added:	2022-06-23 13:06:12 UTC
Last online:	2022-06-25 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-06-23 13:37:26 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	1 day, 18 hours, 22 minutes (down since 2022-06-25 08:00:11 UTC)
Tags:	aa qbot Quakbot TR

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-06-25	Copies3311990085.zip	zip	5d3bab1b85a8fabf8ea5564d61e01f051cf56cb14d248dba710dfeefa1b3a7bd	1.69%
2022-06-24	DataS2683224729.zip	zip	de06542e378ca536ebb21f9b07d5ebb764c0a56346599f5c2ce67cb4a8e9d7f0	0.00%
2022-06-24	Copies2373182247.zip	zip	47179cb6b4d1c74dcd0c52c1b59d99612e9b36fc11cd7f97df0568bd0e9ac4e8	n/a
2022-06-24	DataS2045170811.zip	zip	dacce53d5375d7c58e7298440f943e1d279812ed58dda45523281b45e8c4427b	0.00%
2022-06-24	DataS973738430.zip	zip	546c738af167bd7a764cf1a47e93559c0239d4109e4c198e3c188e3992e7aea7	0.00%
2022-06-23	RH-3931402460.zip	zip	ba7b4598d244f24c2e17b990091c8f2b5ecf4968128aab396ded12950f35dbe0	0.00%		Quakbot
2022-06-23	DataS1891970894.zip	zip	8138eb1d0580d1e797d1aeb7844d5523d47a9e695d8a7a2b854d8d6a40665cc3	0.00%