URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/tei/sptimasi which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317837
URL:	https://buffetegypt.com/tei/sptimasi
URL Status:	Offline
Host:	buffetegypt.com
Date added:	2022-09-28 17:45:23 UTC
Last online:	2022-11-29 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 18:40:09 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 months, 0 days, 16 hours, 3 minutes (down since 2022-11-29 10:43:46 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-19	OjSLtIekKO.zip	unknown	92e78a35cac36a5711362886078e41556b74f0f6e7691685e2dda67080279ba2	n/a
2022-10-26	xGucyhmneb.zip	unknown	0d665108fe6b812fc223d6782dc00fd570cc25c1ab6d687a704c237fdeaefc58	n/a
2022-10-19	JdIIPXWomHFCs.zip	unknown	ee15ee0896b23ae2511e128441a838abcf92593dd5dcff18bdbc1a6938367609	n/a
2022-10-13	iEzbK.zip	unknown	c850ffc753db772731c2b9847667550aa6fdfc8597951cd9e2390f86e88a11ef	n/a
2022-10-09	Card1636448038.zip	zip	2c7e80ec115b62a7daf46096a65bc7bd7266c75138424580cc01647783088d5e	47.62%		Quakbot
2022-10-07	CA1618919450.zip	zip	ea2ce835f878e90c3b36033f204f99991cec3aaf28badd83ffd011332324d975	46.97%		Quakbot
2022-10-04	Card2029433831.zip	zip	87db6e10a5b969d90434f9c4986b985c40d665371ec4f51b5269675439521690	n/a
2022-09-30	Card2134672549.zip	zip	8fec2246f2756b23ea900a4d9e87d9f200b2550adfbfd81d141dd64595885a03	n/a
2022-09-30	Post1704888532.zip	zip	b9a1328f3107582e58d4fef064f2d3998b658ccc513f9e98a513f5606400d9be	n/a		Quakbot
2022-09-29	Gall705375315.zip	zip	fd212b4480bc201d433c2a984ef2321f385c3b71bea750e5891b179f6dd1b7d3	4.92%