URLhaus Database

You are currently viewing the URLhaus database entry for https://konam.ec/peib/tmuqau which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2314785
URL:	https://konam.ec/peib/tmuqau
URL Status:	Offline
Host:	konam.ec
Date added:	2022-09-27 01:04:09 UTC
Last online:	2022-09-30 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-27 01:11:06 UTC to abuse{at}hostgator[dot]com)
Takedown time:	3 days, 16 hours, 11 minutes (down since 2022-09-30 17:22:08 UTC)
Tags:	bb H436 Qakbot qbot Quakbot TR zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-09-30	Aliquidvoluptates3711618231.zip	zip	b95ddd2fb32f7e7a88c2323b24e0b12f2c7654f5449f06b1a36cd131283f8668	3.17%
2022-09-29	Gall1156811647.zip	zip	307a236b4395ea12b2c5803e9012259ab8d6944c3a48adb21fc6b655dadbfe81	n/a
2022-09-29	G35167707.zip	zip	793bc9c6f38fc42e5c6565dfd5dc352a483a9ccbe5cf0e17b5e17580655b4108	3.23%
2022-09-28	Gall1713843135.zip	zip	086afeb89d391e817ca3884390c4bb27a22a490949621d1721e4a90440a612c1	n/a
2022-09-28	Acc4279083147.zip	zip	d4197d3ec2fccf8cab6b2b6d6c9650d920960f786366f103f5ce622861e0a911	3.17%
2022-09-28	AccItem3965798234.zip	zip	387fc198d1eb46e93c31cbadab668c812b819c116a0e6cac84bb596289b2d3b5	3.17%
2022-09-27	AccItem1709260021.zip	zip	85d30ce0d633edc167d7e65c8f3c5dede1a2864baf2c73bcc974e3541268faca	n/a
2022-09-27	Articul413532669.zip	zip	e3e1f6263d49a0f8470842f930c7fc256cbd98326697ac9013c519e312dd128d	1.59%