URLhaus Database

You are currently viewing the URLhaus database entry for https://chinargoc.com/ea/qmiuuc which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2317978
URL:	https://chinargoc.com/ea/qmiuuc
URL Status:	Offline
Host:	chinargoc.com
Date added:	2022-09-28 17:46:25 UTC
Last online:	2022-10-17 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-28 21:29:06 UTC to abuse{at}hostgator[dot]com)
Takedown time:	19 days, 1 hours, 51 minutes (down since 2022-10-17 23:20:50 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-10-11	N2290799997.zip	zip	dc6044fdaf5d5701be15f9c5b617b0427e196d164c1f5357a1fbb6f277a49cf0	n/a
2022-10-09	R3449543437.zip	zip	7c817dfe25453a5f5492caf22a292e3840323badb996e023a949e3c0b42be104	45.45%	Quakbot
2022-10-06	R1286139869.zip	zip	74724d9b6c9498deb92d19edb82d51761d9bd7a699d908e9047df4cf6e86187e	n/a	Quakbot
2022-10-01	Gall3067442475.zip	zip	a43b51de9b3c4665beabdde708de23aa67337fa7b36069164261e33e07fafa4f	3.28%
2022-09-29	Gall2922323540.zip	zip	bcd8c14f18f82e9c3820384a4cd780fd2abe8fb2f155769d681c36483fb74fee	3.17%
2022-09-29	G2494596729.zip	zip	0b293c0de6176240c02da5ff9a2d78d1d2d50bd9a67f1f6d0f40b873bb22bd75	1.59%
2022-09-28	G2019208125.zip	zip	6b8bfe37ba01c5b19fe139b35250ac6624e9d3e7935ab309c270fd47bb1f4b96	n/a