URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/tei/besta which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317660
URL:	https://buffetegypt.com/tei/besta
URL Status:	Offline
Host:	buffetegypt.com
Date added:	2022-09-28 17:44:14 UTC
Last online:	2022-11-28 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 11:12:07 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 months, 0 days, 9 hours, 50 minutes (down since 2022-11-28 21:02:33 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-23	rYDbRCNBkVCH.zip	unknown	667fe5168ea319fd097af61bb6655084e06492fe8b0c226fdc7e36ca2e62f616	n/a
2022-10-28	XZrSpBiF.zip	unknown	58bebbb7cf5457345f827249662ab440e5425669133a79518c176045bb92abea	n/a
2022-10-18	eCRsBJJDWoRyfPPLz.zip	unknown	024b66ea30e31fb66e3032e7b3ba89b27fe08abc1b30cce56cde6089457c73d9	n/a
2022-10-13	kPMIhUneVtlXc.zip	unknown	108b1cde4d49d02ca354ded2ea22914796f061b1524334606bb83c32654853c0	n/a
2022-10-08	C3186958406.zip	zip	223b5701dde996d1947622e3bbff170c5318717171426711572d1fffcacd1a51	34.85%		Quakbot
2022-10-04	Co1425790834.zip	zip	2c7d425b87d8a684cfaf061f75c9a01bd977e7cc83a577aac32c402a40b33bb1	n/a
2022-10-01	CA2131365949.zip	zip	300f70ba69a93adab4f1787e206f59e21ff34b180aa5e6470e8ad677fc5f0b8d	11.29%
2022-09-30	Etearum4048623569.zip	zip	2cd922cf9c5d4c824c5d8050b856133e17bfbedd9c9c6f2eb2689f6806cab192	n/a
2022-09-30	Gall368218338.zip	zip	1d231f211e386f35e8fb77222f9dd53337eff68d0f2a710ac8ced5459b5c78fe	3.33%
2022-09-29	Gall3645215182.zip	zip	bcd8c14f18f82e9c3820384a4cd780fd2abe8fb2f155769d681c36483fb74fee	3.17%
2022-09-29	G3954628072.zip	zip	45484d6ef5dab893384e705939c73d523cdaa9b6da19f9e96376b740a9cb1fe1	3.17%