URLhaus Database

You are currently viewing the URLhaus database entry for https://divinediamond.org/les/uveltiden which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2318609
URL: https://divinediamond.org/les/uveltiden
URL Status:Offline
Host: divinediamond.org
Date added:2022-09-28 17:52:16 UTC
Last online:2022-10-07 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-09-28 22:31:12 UTC to abuse{at}hostgator[dot]com)
Takedown time:8 days, 22 hours, 54 minutes Bad (down since 2022-10-07 21:26:06 UTC)
Tags:bb H322 H436 Qakbot link qbot link Quakbot link TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-10-05Card2342235854.zipzip 200445fbaaf5e9c7640b772703e533cf7cbe9ac6abe8ef748e1d8e5d2da528ecVirustotal results 4.84% 
2022-10-03Gall3523900650.zipzip ac42bcf70d12cc0adf6f5d6c9a1fee653ae7192add32a2e451b38398bbc1d10bVirustotal results 3.33% 
2022-09-30C2921860806.zipzip 6d7bafe3de83525cd2e25153a7378f026609e473a6715999f91400e7b78a5eaan/a 
2022-09-30G3637995449.zipzip 8f52582317f2f68b50cd79258e96520746ac0769136693806386ebdb92b49485Virustotal results 3.17% 
2022-09-29G3741500961.zipzip c32c09d7e1d04cd3a5d8de9f5acff5fe6f602cd63171702042834cd1f5e290bfVirustotal results 3.17% 
2022-09-28Gall2046234379.zipzip 84d7ad1def336552d02702317c82d3b6d9917a03af95c802785102eef136579cVirustotal results 3.23%