URLhaus Database

You are currently viewing the URLhaus database entry for https://turkmenulastirma.com/nhs/ncstuouqariiens which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2249945
URL: https://turkmenulastirma.com/nhs/ncstuouqariiens
URL Status:Offline
Host: turkmenulastirma.com
Date added:2022-06-25 03:48:26 UTC
Last online:2022-06-30 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-06-25 05:34:10 UTC to abuse{at}hostlab[dot]com)
Takedown time:4 days, 18 hours, 32 minutes Bad (down since 2022-06-30 00:07:06 UTC)
Tags:aa Qakbot link qbot link TR U523 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-06-29Main3058343241.zipzip f632d60c852b649b93ca6c263ead2243000fab50be241c087155dd8abbe25c4cVirustotal results 1.72% 
2022-06-29Main4186625070.zipzip b669cd4d52f94160a993952e6a2d187d5e569946ee592d546c9e8a43edc7b43dVirustotal results 3.45% 
2022-06-29Main443291949.zipzip 0d2694ba768ff5badcf8eee4fd3d6924fff040a906bf245f4691ec0823b7f437Virustotal results 1.67% 
2022-06-29F2631533058.zipzip 42cd052e220efb24ba0877b7bb8e8393f7a6117d57261666d3b521041a637832Virustotal results 1.67% 
2022-06-28Main2516271760.zipzip 1039dee289bcd930814b22431773bf6d8cdc793addd96abad2c991da280c05c3Virustotal results 1.72% 
2022-06-28Copies34803220.zipzip 0f38311d688892f5adabb93722bc7f8cef1382c0bfdbfba054c97ccb11b13494Virustotal results 0.00% 
2022-06-27Copies1581970327.zipzip d6dc6f82610b6fa74c66d9b14119dba67eefd147e4ab27f574b8d090f1961a95Virustotal results 0.00% 
2022-06-27Copies2618042895.zipzip 6dcc2da7f01bb84186d4c52fa48fb5dfe78de961d9d94a643e17c2edcf50f284Virustotal results 1.69% 
2022-06-27Copies2459521845.zipzip 438b13f142ce3394a0652f7f818e369637f4ede5b2ba8639cdf6aece58dcc8c3Virustotal results 0.00% 
2022-06-26Copies2884058496.zipzip fff497a2a55672d34b4c007630f7c7a654ab5e5337b7dccfb519e960aa545e23Virustotal results 0.00% 
2022-06-26F2801940919.zipzip 883a28676ae5beb808667c7b9dce7803a620d539d43cd02329f07ea773708366Virustotal results 1.69% 
2022-06-26Copies881475037.zipzip 47179cb6b4d1c74dcd0c52c1b59d99612e9b36fc11cd7f97df0568bd0e9ac4e8Virustotal results 0.00% 
2022-06-25LL2695493891.zipzip df912ddba24f1896cd66fea8b27fc8c2941ce40950433b90638271ac05322dd0Virustotal results 0.00% 
2022-06-25Copies1374555604.zipzip d3ef7d81e232855a3078c8311458158d3d6d07b07cae4bf9ec6e2ec519a2963fVirustotal results 0.00% 
2022-06-25Copies3985687951.zipzip f38b8bf767f408e21fd8eed20f5fc0c01794e406c77bbc147b4ca04642a0460fVirustotal results 1.69% 
2022-06-25Copies1752876642.zipzip eeacc3e6bd023cbc69959f966b51e3814c87cf1b311fd483b988abdb858c5377Virustotal results 0.00%