URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/tei/piicrnoutr which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317818
URL:	https://buffetegypt.com/tei/piicrnoutr
URL Status:	Offline
Host:	buffetegypt.com
Date added:	2022-09-28 17:45:21 UTC
Last online:	2022-11-29 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 04:57:06 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 months, 1 days, 11 hours, 5 minutes (down since 2022-11-29 16:02:13 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-24	KNVbESO.zip	unknown	4ddb8dcf039a64e71a79cbd560652c911eb7ae80db328ae373e43f28eb03e447	n/a
2022-11-15	zMETkOOHeCPrMTgQHew.zip	unknown	eeb404ae55e7463a154b9201f490e2a083fc28c2d18cb2614a77458664092493	n/a
2022-10-24	mXRkUZtvN.zip	unknown	2a6f47724318ca7548d8239ec5c88e9c310f66f53399c7084bb455339af71b3c	n/a
2022-10-15	MDMJVqePUoyRG.zip	unknown	c47aa2caf0d8c246c439442be84fe4170ae9b663bdaf6b7051f00e91bd761140	n/a
2022-10-12	O-106429576.zip	zip	9f774fa6eb8dc63fccb5969072023925ac4c294ae1f38713855d1c71355d8d87	3.28%
2022-10-07	Co3897370772.zip	zip	00d0be118cdcdff69be514dcec2ddb9c67c0c4c56bd1026c9ab2523537c73f49	45.45%		Quakbot
2022-10-05	R2462366265.zip	zip	f779f62c74e0273949ee9460922eaf763a603969f79a4f0c8643417e964d2f25	21.88%		Quakbot
2022-09-30	G3822646454.zip	zip	e033cff4fbd45144c17076cc5513fca68e66d2110dd31581f78272428ce7aee0	1.61%
2022-09-29	Gall3184761216.zip	zip	e92f5685b24b315620ba46149be5194dae39c4f4c340d0ba99aec6854789fb45	n/a
2022-09-29	G1205359874.zip	zip	18a8435823b25f4e3c44a90fe06d7f65d2222e46447085e3e9ba0c897b122161	n/a