URLhaus Database

You are currently viewing the URLhaus database entry for http://defineoverseas.com/cida/qiohcu which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2249302
URL:	http://defineoverseas.com/cida/qiohcu
URL Status:	Offline
Host:	defineoverseas.com
Date added:	2022-06-25 03:43:17 UTC
Last online:	2022-06-29 05:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-06-25 10:54:05 UTC to abuse{at}publicdomainregistry[dot]com)
Takedown time:	3 days, 18 hours, 27 minutes (down since 2022-06-29 05:21:08 UTC)
Tags:	aa Qakbot qbot Quakbot TR U523 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-06-28	DataS3128452356.zip	zip	22af9e8da70c63c0a2494dc0ad34fd15faf68ec6c8df08adb6777359e274206e	1.67%
2022-06-28	Main512026280.zip	zip	e068053eba3cb21e6a8cc8829187545873bb11066dfedfb24b835f2f3ffbe940	1.72%
2022-06-28	Copies2642084828.zip	zip	d1c8c09ea228832cf9eb159059dd0f1171951142781ecb77df869021d852ecfa	0.00%
2022-06-28	Copies1809303735.zip	zip	8148fa509a1dad01f9b40ad8c2c319651d5f1586ca299a8816114809fc379932	1.72%		Quakbot
2022-06-27	Copies4153787115.zip	zip	b6f72faa73cc5b8016fe5c6896476b1ffe0c1ecb127b54b06827aabf4391ccfb	0.00%
2022-06-26	Copies3400646039.zip	zip	c635bf0b7906cff28e6972c8148a32961175e02da334b687a4b337ac65c0bbee	0.00%
2022-06-26	Copies2897084448.zip	zip	a3e412b386fe6a86ac75cd9d27abda294ddb1ad2531b6cd88d447a2ae442368f	0.00%
2022-06-25	LL183667417.zip	zip	522605269f0aba99df9f9c524fd6a6ede53570a9cc25cecae27d55599c19df1d	0.00%
2022-06-25	Copies57637778.zip	zip	43241a39d09d25cabfe65655d026de1ccb77c75a95c5076ec36543e3aaec086a	1.72%
2022-06-25	LL373342480.zip	zip	ecff0fa6b3e97cb81f283cc17c3778d0ddbd29b3f43fc8bb9b71af86f0dad67a	0.00%