URLhaus Database

You are currently viewing the URLhaus database entry for https://getyourboardingpass.com/ete/iuestrin which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2319206
URL:	https://getyourboardingpass.com/ete/iuestrin
URL Status:	Offline
Host:	getyourboardingpass.com
Date added:	2022-09-28 17:56:32 UTC
Last online:	2022-11-30 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-11-25 15:45:13 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 months, 2 days, 6 hours, 56 minutes (down since 2022-11-30 09:33:30 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-22	WErHpWjDokcvUv.zip	unknown	a8e3cca9ad5bd3252ff0a6846c7ea967a73de2edba187220b9c516b8972997d3	n/a
2022-11-17	qwxfPUDcPgjG.zip	unknown	9f5e65b4a6886013567cbd5cc80bdc34e3966cb8cc32d804e7737f2d0bb6563a	n/a
2022-10-29	NGLpzm.zip	unknown	d7368b4cf62f7e2a1c54e5fdc74f190d540053f45bf7f8bf0d80cc6a1dd2ea58	n/a
2022-10-20	tZpqocA.zip	unknown	cf8d46e6b8b872ecb9f70cdd2ca38bff24efefb33d332d504b800992b1cb9271	n/a
2022-10-13	MLINHIgwgyQfaW.zip	unknown	7b8e87ca7b1dc1d4eed6c37bdf1b108d0ef79c48f925dcc877479fe76241326e	n/a
2022-10-10	N3987380843.zip	zip	45e5e11ac3453808de8c996a18cdf9a9cc1e55c46d4938aaf502be1adbc353fc	n/a
2022-10-04	intnenumiIcd2145880580.zip	zip	e3f5a32f7b0792d1f47449983ff19afbe177fd296e4907846cb1ed306df4004c	6.35%
2022-09-30	C3155395720.zip	zip	5229a2627311d56654f578058ee277eabf4249d70064bd7a7ad1a771186b6fac	1.59%
2022-09-29	G1572701484.zip	zip	d23ea9bd03171728546bc34cfb6a203c936bff81b60abf1ffb29683467b1393b	4.76%
2022-09-29	G1737974745.zip	zip	99e7689369363c904b096018f55f391dccdcc54c2ed329b71d5071588e5a407a	n/a