URLhaus Database

You are currently viewing the URLhaus database entry for https://bladna24.ma/fsin/ancsuntiesgsiitiebeeld which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317745
URL:	https://bladna24.ma/fsin/ancsuntiesgsiitiebeeld
URL Status:	Offline
Host:	bladna24.ma
Date added:	2022-09-28 17:44:25 UTC
Last online:	2022-09-30 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-28 19:44:11 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	1 month, 0 days, 22 hours, 17 minutes (down since 2022-10-29 18:01:31 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-20	hBFN.zip	unknown	c7e2a29d5e1642610ceb1876a5d229a3f8c33701df59b7b00d9d188f3fd884eb	n/a
2022-10-13	SFBdF.zip	unknown	3502833679c5dfcc3f3643333023707ad00d05fb984fe603ed65ec91b52d6742	n/a
2022-10-10	C1815834493.zip	zip	8af54f3cefe5bd2a5750814b8fcb87684a2c2ac99c5ff1636c82f5b51046b89f	n/a
2022-10-04	R3796672644.zip	zip	ff4deb101b527e5c7e432dbf18f0270000839faa76a675cf09ab4a0d04f2cd9b	3.17%
2022-09-30	Post374049191.zip	zip	bf76c73c66bed4cc7e865be5f87fe2c44580aa354ceb2f611c3fb1015ed6b905	n/a
2022-09-29	Gall349045403.zip	zip	42f6b8366cc1b4ceefa23460943f547565c5b2a8714aea19f436a99ac0fd55c6	1.64%
2022-09-28	G3283773262.zip	zip	c00842dba1abf7574c2fe0cf3214488f67a553c7c0aa535984b93045a503fa5d	3.28%