URLhaus Database

You are currently viewing the URLhaus database entry for http://mercyhealthfamily.com/ul/mdsnsuoibicu which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2251634
URL:	http://mercyhealthfamily.com/ul/mdsnsuoibicu
URL Status:	Offline
Host:	mercyhealthfamily.com
Date added:	2022-06-28 07:06:06 UTC
Last online:	2022-07-03 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-06-28 19:27:05 UTC to mochahost{at}cloudequitygroup[dot]com)
Takedown time:	4 days, 18 hours, 42 minutes (down since 2022-07-03 14:09:43 UTC)
Tags:	aa Qakbot qbot TR U523 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-07-03	Main798900730.zip	zip	e1a5f475145e4489c719b06920c22519d35e2ca4121e01e259a5f89552e0eb37	1.67%
2022-07-03	Main2765956115.zip	zip	13c283f10d5f7f89369a1aae4ec09aed28c9a9b78be05f6ffb757d5afe85e63e	3.33%
2022-07-02	Main2097701776.zip	zip	b605ef66efb098bba5846d03f8929fac449d9860ef4e61c588f6b3859a938610	3.39%
2022-07-02	Main3532924414.zip	zip	47a2f3210b16ba95755e80390890d54d003d4a7ff864955b371789957c1b5224	1.69%
2022-07-02	LL3982267623.zip	zip	1d36f1a3d95bc80cbe54cc3675044029c4140ea5a4f74022fee1b843de442e38	3.33%
2022-07-01	Main2246258002.zip	zip	7ef7b93a7734e8a39a581d1c024ad5f7bdadc3ed6c1ac69e3b73afb43a2831e4	1.67%
2022-07-01	Main774617327.zip	zip	3cf7f06aaaa2dac8599b3a0099c143c45ede773449a882cb37c5b54d215c2e50	0.00%
2022-07-01	Main492370319.zip	zip	319b3c983822e4af564ed28ad957ecb7961d2e84740db71f4b9335843891845a	1.72%
2022-07-01	Main3743981938.zip	zip	5f0bb05e92980c90b6acc7e4e2878431210601571ea7f7f5f9a3c4b4b20e8256	1.67%
2022-06-30	Main1646671657.zip	zip	c8fe26ee0482ede82f5da048c4788fac3f9adcfec6121bc85f26cbe37c832d87	1.67%
2022-06-30	Main1910287903.zip	zip	9d07e2ef0e786aab3f41a3e6561fe9150b6e83f4e495636bf83d7f863b71237d	3.33%
2022-06-30	Main3312097880.zip	zip	38fef1a343f1fd4eb07a52734b808219b92519f165c70e0568c11fd8f1ef7cc9	1.72%
2022-06-29	Documm3248194869.zip	zip	cc46d36de10c12c418037e7858b862190339e009981dcfbfd58432aaa4ff5dcc	1.69%
2022-06-29	Copies1640333618.zip	zip	26752b4d59c2129dd5cb4193a486eb1e0759c747e2b344ee3555bd3dbcc96dfa	3.33%
2022-06-29	Main2606244286.zip	zip	f2e6a5f6a9a86475737fde7122498f2c4c454faf105836fdc3ee25e0ee733247	1.67%
2022-06-29	F3157826187.zip	zip	571b57bbe55822ebd55250433ac8f6c7c530c3c6238fc18b906ed5ba57938477	3.33%
2022-06-28	Main2269041243.zip	zip	9fde7c424dd8610f79fd15dc2bf6eca6dbf39c9aab1764823c20c772ab9419f4	1.69%