URLhaus Database

You are currently viewing the URLhaus database entry for https://chinargoc.com/ea/iscituepst which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317907
URL:	https://chinargoc.com/ea/iscituepst
URL Status:	Offline
Host:	chinargoc.com
Date added:	2022-09-28 17:46:15 UTC
Last online:	2022-10-21 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 04:41:06 UTC to abuse{at}hostgator[dot]com)
Takedown time:	22 days, 11 hours, 58 minutes (down since 2022-10-21 16:39:23 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-16	ppvKwreQeRjpbVHxUS.zip	unknown	f62a157149e1ecec03f9d27db22ba64aeda7591cd595cc39396f73e205c84666	n/a
2022-10-12	Of2075493903.zip	zip	16508dbfbdcce6f3cd4f65273580b3e32e3f5bc196acfde12f891cb69a303c9e	n/a
2022-10-04	Co1681016385.zip	zip	7b4a26262d6d7d6bd9aeadd39457ccf41125051d70ac852e9353ab74db4af59a	n/a
2022-10-01	CA873317274.zip	zip	fa2118cdfd595a90a3b9b3a87a432804660dcc9b14998844d1c0275fd93763b7	n/a
2022-09-30	C469025342.zip	zip	2316c1a115a8a7eb93b8658e0a2352d029f27afac4feaca229216474245b2f4f	3.17%
2022-09-30	G1746531070.zip	zip	5ea92f673bd81b91c55ee7289b8e667c3ecbc39a7dc873a403bf97cb2284bfef	11.48%
2022-09-29	Gall1270098300.zip	zip	d04ccfa666a70607a7d711ad5e988ba020b6b2823ee18b1ccd976bd6e5c9ce02	3.17%
2022-09-29	G1327051425.zip	zip	f3aa79319e4078a56d8867ee6fe26c13de9e68c3762e13001ae168d6e97c95f2	n/a