URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/tei/eipmuts which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317661
URL:	https://buffetegypt.com/tei/eipmuts
URL Status:	Offline
Host:	buffetegypt.com
Date added:	2022-09-28 17:44:14 UTC
Last online:	2022-11-29 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-28 19:01:07 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 months, 2 days, 2 hours, 50 minutes (down since 2022-11-29 21:51:31 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-25	RqxZKapcAESKTN.zip	unknown	df27fb3fc25fc98df627f7e0d675eb7fd9dfd68ce2692db0451dd1c3371da12f	n/a
2022-11-17	bstnZI.zip	unknown	9392576b02c40ed883ddb09358ac5c0c0212046945b0542f35686c8c6d642066	n/a
2022-10-29	hIhoTqbnWIzuTACCCrW.zip	unknown	770ab4de59c5c5eb5334acca1fbe40a30520e0b7761901c4ae1a48fe4700f3ad	n/a
2022-10-23	DcgTvsAIHGHtbCb.zip	unknown	ecf2da31fb6726fed383c9e30819eeac095bea66c5dbec4de8579d1203143652	n/a
2022-10-16	cncVhXJtYONt.zip	unknown	5139164905299fd7b201643eb62fa615014234ac8a017a3b3fd974c585a55923	n/a
2022-10-11	NE1297940471.zip	zip	8a948bb67b99b1da6062edc8943b7b7444e21522ecd91c63f6b0d45743d24693	3.23%
2022-10-09	R1065677062.zip	zip	b89c515719cad6a21156db566de131ddf1220a9bbd84c91a32972f7ee20b6450	48.48%		Quakbot
2022-10-03	Card270174003.zip	zip	7a6710d8f536bfa8133a782ad73f151ca6ad4aff6f4384f8c09358eb02940a3c	1.61%
2022-09-30	Card1822182889.zip	zip	65c8e1b0f0a0df0383161b1f85acc96f175d91aa46d97443bbb67ac9c2961a3b	1.59%
2022-09-29	Gall771946257.zip	zip	964faeebe8e2fba66597574e3c9ada95e0e55efdc76339fc0f4b8211571b3e73	3.17%
2022-09-29	Gall175198786.zip	zip	c8af9aa21f10dfcc4e269ff2e139b447aa8ebfb5469f6e5c41e9766f1242bbce	1.79%
2022-09-28	amutuC2601541487.zip	zip	bb87f26ea792f42118304907303150b199b8302685a28052bc157dc85ef017c9	n/a