URLhaus Database

You are currently viewing the URLhaus database entry for https://dhillontrucking.com/nue/iearnpmlestlo which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2318360
URL:	https://dhillontrucking.com/nue/iearnpmlestlo
URL Status:	Offline
Host:	dhillontrucking.com
Date added:	2022-09-28 17:50:17 UTC
Last online:	2022-12-02 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 05:12:07 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 months, 3 days, 20 hours, 6 minutes (down since 2022-12-02 01:18:47 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-28	FMFogWEZDPPfPre.zip	unknown	de65ec0bdcc65a33d90326f93ab5b57b5e0c281d473b3e838bf26ababc142343	n/a
2022-11-21	DinQEVitRoGfGU.zip	unknown	79427f38548925defddd7c7751259b43ec8adadbecd4417a1713a96321e8e8f5	n/a
2022-10-26	nvgXLocDQvc.zip	unknown	857d6daffd4c8dd02831aad16473fc795dfb1f77cee04247019ebf25963c6b5b	n/a
2022-10-21	ulBQS.zip	unknown	e691437daab364c3fef8e914884c8319924f745ddfac5718bcf412b788b6fe4b	n/a
2022-10-18	NGXtwFCJpwEFaUlu.zip	unknown	1b78ce80fe65d2578814facaf95da6f24bb9c7b56618331dec7734ce4728a403	n/a
2022-10-11	Ssiiniliumqte1076146355.zip	zip	f4ac764c0560b8e6d8a492a3fa5632ec9f29d83f5d390031ac30a2f66f1f5f08	n/a
2022-10-09	R1841588544.zip	zip	5ebd7ede474d6ea4711b9b84bf5c05b40f6b74d8f770f6f14b8ff702c7e991f0	40.91%		Quakbot
2022-10-07	Co4034799896.zip	zip	3e85c723bf938e9c664130f6d534ab8dfe87ab0352870a98e50a47eae580b4f8	19.70%		Quakbot
2022-10-05	Co1416149982.zip	zip	abe79bee633736ca97d46aad04b73494f6c56f1c331c2a87b6c698006f594e1b	7.81%
2022-09-30	Gall3156822176.zip	zip	e4f4cb968f885e0d1cbe45fe5887443371f9bbe35b86b06f9e9b6a1f8b07ac7e	3.17%
2022-09-29	Gall72516983.zip	zip	ce1427afd13635993d38d50e765dfdd2aacf2e88944db803fa65e0bf2f07ef05	1.59%
2022-09-29	Gall509122684.zip	zip	c76c7b9f291d41e57f65a5037e3cbca3d27a8b52dbe367e0f6920e9dbf1e6f10	3.17%