URLhaus Database

You are currently viewing the URLhaus database entry for https://sol-fa.ir/qisu/teut which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2251927
URL:	https://sol-fa.ir/qisu/teut
URL Status:	Offline
Host:	sol-fa.ir
Date added:	2022-06-28 07:08:20 UTC
Last online:	2022-07-03 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-06-28 07:32:18 UTC to abuse{at}netmihan[dot]com)
Takedown time:	5 days, 8 hours, 23 minutes (down since 2022-07-03 15:55:35 UTC)
Tags:	aa Qakbot qbot Quakbot TR U523 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-07-03	Main1612100722.zip	zip	17e8a76ffcf7d8681a73e638431512f448023b074d7d3d50043314d750fe4be1	1.72%
2022-07-03	Main2665668258.zip	zip	d4c400bfed1ee5252cba6ebbe53085e6cc558bb6491fde4d43216cfba8f5316c	1.67%
2022-07-02	Main3223647726.zip	zip	43498cc85f524b30a1f7ca18b0415fc53c17be56fa589e1f51b64ff71ba187c3	3.39%
2022-07-02	Main2674138060.zip	zip	04e04cee9e9e5c5ea7bf23da331b709f12547430ce8b8c539a008eac951ad437	1.67%
2022-07-02	Main2187917471.zip	zip	c8fe26ee0482ede82f5da048c4788fac3f9adcfec6121bc85f26cbe37c832d87	1.67%
2022-07-02	Main3466533192.zip	zip	3fb01b6f0defb7c93f2328e68fc46cccb437807df67f07aacafe2e2ad0e364aa	1.67%
2022-07-01	Main219099615.zip	zip	63ac04d150cd4a723ede8c2ef3bbae95f2645fe53a0ba12b89e5a805cab0a8c4	1.67%
2022-07-01	Main2305475848.zip	zip	c8b44bbe52a233768eff57f330bb03b3e934a1593cb6633c4ca2dbc7594f880a	1.67%
2022-07-01	Main246673716.zip	zip	fb9e5400914dd3418224e6cb413e9b15fd51939c1814940c1a9c63b0611d82a3	1.67%
2022-07-01	Main834335390.zip	zip	d6ea455300378617f44d03d9288d05d6db5dd71bb13fa8776a8880ad2fd392a9	1.67%
2022-06-30	Main3751170641.zip	zip	01ce735cba65f4e7aeb28cb390b234fd842e428389210b8e8d3deed5631abe72	3.33%
2022-06-30	DataS33836557.zip	zip	aee3a344e594842d16d743ee9b74bb117edf3dbfdd87bee89f812e87c9ff5541	1.69%
2022-06-30	Main3291041527.zip	zip	1394f6cd3da8134042fa5bf8583343cc13984c739419660fa5c936d637727558	1.72%
2022-06-29	Main576403956.zip	zip	30713da74afca383eda55da86d409b2957ecadb96826ad04614dd43bbb6b8ddb	1.72%
2022-06-29	Main2756406578.zip	zip	5ae50a6511db2aa34d1d042b217bd62df00d4f368d460fbc48e511f2487e7450	3.33%
2022-06-29	Copies1491305218.zip	zip	a8322c219b3c2af72e0f64ace653cb8207acd04cb448b6ba7439bac2f58a0765	3.33%		Quakbot
2022-06-28	Copies1975478824.zip	zip	5a954c4617723a6e680b15db6f7ab9c356d14333b45677a1637a2a44a01835cf	0.00%
2022-06-28	Copies2041594970.zip	zip	dccf368ece142c5927520ce1db02c0af4ba07252e0c2e0f576560cf17555c48b	1.69%