URLhaus Database

You are currently viewing the URLhaus database entry for http://zkevd.com/od/urratemu which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2248367
URL:	http://zkevd.com/od/urratemu
URL Status:	Offline
Host:	zkevd.com
Date added:	2022-06-23 13:06:17 UTC
Last online:	2022-06-25 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Anonymous
Abuse complaint sent (?):	Yes (2022-06-23 19:44:06 UTC to abuse{at}amazonaws[dot]com)
Takedown time:	1 day, 12 hours, 6 minutes (down since 2022-06-25 07:50:16 UTC)
Tags:	aa qbot TR

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-06-25	Copies4172506411.zip	zip	bee10a5fdbaea8982f8c28eb1ef2430b7299158f1dfe629f6b7ac2e4305db891	0.00%
2022-06-24	Copies3825417415.zip	zip	c130d8cdb461240371a349c78c6bfd09ee43b8c14a6d6e2ad718df82f8cdd53f	0.00%
2022-06-24	Copies170854885.zip	zip	52f1046cf98660f464ecf15b00279f0e9338d9c5c3240b7f7cac87f1964d1653	n/a
2022-06-24	DataS1958787354.zip	zip	f4db302dad1b21bcd1fd4c659b9cad45247b7d7e0df3b3a7fecdd995d516e16b	0.00%
2022-06-24	DataS328090829.zip	zip	031e9f147b0901c591642b00a8d805948d82f68fa5c32fc3ec42385d8bd091b1	0.00%
2022-06-23	DataS1753056891.zip	zip	6838adc50367def16731f423072f818169ad6c78cfd8ee11620334bf49d0a5be	1.69%