URLhaus Database

You are currently viewing the URLhaus database entry for https://cuellargalvez.com/anam/ulaqsmdornoume which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2318219
URL: https://cuellargalvez.com/anam/ulaqsmdornoume
URL Status:Offline
Host: cuellargalvez.com
Date added:2022-09-28 17:48:36 UTC
Last online:2022-10-08 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-09-29 03:27:07 UTC to mochahost{at}cloudequitygroup[dot]com)
Takedown time:9 days, 12 hours, 32 minutes Bad (down since 2022-10-08 15:59:30 UTC)
Tags:bb H322 H436 Qakbot link qbot link Quakbot link TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-10-03VIcduIrEbaZZRme.zipunknown 6a2d7afb63181adcec7e9259809abf2c75807af78bb4729db8cf3d62b33ae649n/a 
2022-10-01C1821364675.zipzip b953c337abbb5d0938b917e108ab0fd0e01054f15d05aef68404f5329ecd3e89Virustotal results 3.23% 
2022-09-30C470898839.zipzip 21646b51b3dce81de6d1903c91d737328865a6d74ddd684c0491ef755783a50fn/a 
2022-09-29Gall2085313272.zipzip d885145bd2a299df2a09106b6b7309ac13a3ba6610f2c75895b669159c16a4d6Virustotal results 1.59% 
2022-09-29G1886818596.zipzip fbdb77b54cc5f61e35f2f1ac7a694d95ad4f5028da2d93b1ede8cc7d31e02a14Virustotal results 3.28% 
2022-09-29Quaerataccusantium3184704244.zipzip c859332f620be060f6dc100cc59957d97c07b6720a986cdbd638433671cfed93n/a