URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/tei/tdeoorpllrlemau which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317753
URL:	https://buffetegypt.com/tei/tdeoorpllrlemau
URL Status:	Offline
Host:	buffetegypt.com
Date added:	2022-09-28 17:45:08 UTC
Last online:	2022-11-28 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-28 23:56:07 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 months, 0 days, 11 hours, 1 minutes (down since 2022-11-28 10:57:48 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-22	sRCAXvKmAnYdipkZPM.zip	unknown	cb03a572ee98fbea8d795742b0b5e504d60b9f4b973dfbf1f2016ea319e9e572	n/a
2022-11-18	dyMZnbsCXiNQJzhp.zip	unknown	dfc63d741b733ef995c95560ef266175691e97b59017c0c0661a3b1fb9c1a49f	n/a
2022-10-29	vSmAohiHZ.zip	unknown	17c8e9417ac0c099fc09ba6e014fe5e217246de743cbd32ad0af47ca481c72d6	n/a
2022-10-17	LapCvTHSH.zip	unknown	e508d91a64db537f3b50e8fc5dbb3a9b0dae1562cd993dca9e613df66aa38698	n/a
2022-10-08	R1087053836.zip	zip	5031d48136c5a7e300fff5e958c9fd5143fa7a0498316cf27cd64b132e2e482e	17.86%		Quakbot
2022-10-05	Co2082517530.zip	zip	d9c2f1bdc8c07a80c04fd8a491a8129da18b69053073a24c4f313c4703ea9a1f	19.70%		Quakbot
2022-10-02	Card1451409942.zip	zip	d9ed54e91ab64041ccc56154525143a1c8ca3b8d9f9be6a2b1ae09627208cfd9	1.59%
2022-09-30	Post3384568467.zip	zip	da8d12a88bd1c0c27355d1d4ac4aced7962a26b57c1e4cc6a2eee557f429fd5e	3.17%
2022-09-30	Gall782480176.zip	zip	dfdb854b0475ed29c38b7151226978510828c9d31b23d76e159b044811e3ec3e	4.84%
2022-09-29	Oditconsequatur923947290.zip	zip	583135f5cb9632c60778cb3ede5a40e17f5ce295fc6677104642d8732f0815c6	1.59%
2022-09-28	G604692800.zip	zip	836cf35c0aa6c21de8dfa80aa88bc05c1c57e649d8c5f8f7dbaf6d7941cff980	n/a