URLhaus Database

You are currently viewing the URLhaus database entry for https://divinediamond.org/les/aotueslt which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2318476
URL:	https://divinediamond.org/les/aotueslt
URL Status:	Offline
Host:	divinediamond.org
Date added:	2022-09-28 17:51:12 UTC
Last online:	2022-10-10 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-28 20:43:06 UTC to abuse{at}hostgator[dot]com)
Takedown time:	11 days, 9 hours, 32 minutes (down since 2022-10-10 06:15:58 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-03	Doolvelemr2032213963.zip	zip	df28f409bba0eea0317c713587a93a51ace42dda6a790b89b2e0c2749f118cfd	n/a
2022-10-02	C3990954851.zip	zip	8f1d49f500121b7a13c798de0805403cfd3e366efdf819904e8e1dd71c2cd226	1.67%
2022-09-30	Card3601767756.zip	zip	8ab32a413cb384effedd998ee622f0ad2f8529fabe0b937f3f2d523b79b142c4	n/a
2022-09-30	cAuECsantJUhhCxIxcj.zip	unknown	0c9d8c632bb0b651d1b0ca774491e1d3899b3a6edac90a586d73aa158a5b68c9	n/a
2022-09-29	G3454493856.zip	zip	35a06796d1bde017a0c08d28818b935d61911f5ec0996d412941cd7a4f804ea2	3.17%
2022-09-29	G1392478567.zip	zip	25b08064db10eca699c4344991eb5c960348d9e85a8a1304eec8477e2ff502aa	3.23%
2022-09-28	Gall135609681.zip	zip	acd479683f8a85e8e2207425377cade42cb5c2f716e800c29a9b9ffe60112b98	3.17%