URLhaus Database

You are currently viewing the URLhaus database entry for https://cuellargalvez.com/anam/tuuteusrnoqac which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2318204
URL:	https://cuellargalvez.com/anam/tuuteusrnoqac
URL Status:	Offline
Host:	cuellargalvez.com
Date added:	2022-09-28 17:48:34 UTC
Last online:	2022-10-13 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 01:35:12 UTC to mochahost{at}cloudequitygroup[dot]com)
Takedown time:	14 days, 18 hours, 17 minutes (down since 2022-10-13 19:52:18 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-05	Co238419801.zip	zip	84bf3a7c7ec4b2e735500de4a279fb5cf51358af9f667aca9d8e1450e6711399	6.25%
2022-10-03	CA4066406369.zip	zip	36570e71db4a2be4e16d6d318bfcb6eb8c9f9ca89da7b3bc8ef88889168f118d	1.67%
2022-09-30	Etiure4161698947.zip	zip	bbdb440fe50f21950b8e4a2bcdd77c610ec6486203b39873949f993a7b4008ab	n/a
2022-09-30	Voluptasenim220105897.zip	zip	b9a1328f3107582e58d4fef064f2d3998b658ccc513f9e98a513f5606400d9be	n/a		Quakbot
2022-09-29	Gall3027891824.zip	zip	b89d62030551232ca960e9c74508087f53e823bdda4b37eec289182a3df34c99	n/a
2022-09-29	Gall3150141942.zip	zip	2341d1703bef8385c270d23a22625ec22ea2280a8c42c4a803dc811f400b6e3d	n/a