URLhaus Database

You are currently viewing the URLhaus database entry for https://essay-ninja.com/octi/idemdeocmuqolmroo which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2318752
URL:	https://essay-ninja.com/octi/idemdeocmuqolmroo
URL Status:	Offline
Host:	essay-ninja.com
Date added:	2022-09-28 17:53:22 UTC
Last online:	2022-10-23 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-28 17:54:15 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:	24 days, 16 hours, 20 minutes (down since 2022-10-23 10:15:05 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-10-15	MRXPtWUoloA.zip	unknown	faff3ea825ff4d3d714ed3e9bd65c8fea7b0902808e8957bed21d6029b6f4412	n/a
2022-10-14	lkTXFTCor.zip	unknown	9b1b7662433491c063481c4d9f20e8eade20cef2404590281bf264f3194fb42c	n/a
2022-10-10	Co2025497097.zip	zip	d6924adfab6ba7c36a3dd233062b93202592c6c354bd57d61a87f34683826da0	50.00%	Quakbot
2022-10-06	Estnon2180087271.zip	zip	a54c4c41eca36b6c48306873f5a6ead2ea732b483797515eabd08e62ddce2414	21.21%	Quakbot
2022-10-02	Gall3020210061.zip	zip	21299269b2c8d8b5217e1a7bca991b831238403d72016177691806860a681039	1.61%
2022-09-30	P2965463221.zip	zip	a4f49f41626bb2f37484075f62a6a50d9b3bdd69a200daba824360eabe276f44	n/a
2022-09-30	vZMBPRKfBHEgXoXjD.zip	unknown	16a8ef42c0536703200c0ee2e29191c655fdedb58b6b9ad736f92c5598e860e0	n/a
2022-09-29	GOvILepngAEmio.zip	unknown	cf2ca58012e806c8ef13ecc4f7b5cd807abcb653ccd56df56edaf54b12d55946	n/a
2022-09-28	KGITeCbLQIXrGBPOk.zip	unknown	bb4d549ba01762068d2830150acbe88dec67b6a547baa8f8a85a3ab6af073d35	n/a
2022-09-28	WEdsKASf.zip	unknown	024d291adaeded733ac9f2260bc7a42a9df29790f88fed0921ccf3c28b0d9651	n/a