URLhaus Database

You are currently viewing the URLhaus database entry for https://hscsac.com/ui/meestu which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2319441
URL:	https://hscsac.com/ui/meestu
URL Status:	Offline
Host:	hscsac.com
Date added:	2022-09-28 17:58:19 UTC
Last online:	2022-10-20 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 05:53:07 UTC to abuse{at}ovh[dot]net)
Takedown time:	21 days, 17 hours, 19 minutes (down since 2022-10-20 23:12:45 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-13	YfTLQRd.zip	unknown	2346857313f2f703d023409cd6830505852eef6998f4d91e67294fa8f0c014f6	n/a
2022-10-05	Co2421711123.zip	zip	1f3962b1e9e77574c1af44dcf5787561d080d9f99e951ded12dc3e027892f8ae	4.76%
2022-10-01	Card1714998050.zip	zip	ff9b5bca84212cc8b7ac1ab17c7ca653e46a856194d6aab5bf715b162f7d7bf1	n/a
2022-09-30	G1724816222.zip	zip	7a747fc0bfa71b8d75f9fb756131af7d84c17733401841f77264817f278287ba	3.17%
2022-09-29	G934098889.zip	zip	39a69644f54dd4dcfcddd7079362adabcf8bb2861a756bb62c40c8b1c238bd70	1.64%
2022-09-29	Gall3378200690.zip	zip	2ea0f6634fbf3477e675afa0abe236cb84ca95a13861c676febbf7f04a2467b2	n/a