URLhaus Database

You are currently viewing the URLhaus database entry for https://ideaspoint1.com/ediq/cetqcimdeaociau which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2319512
URL: https://ideaspoint1.com/ediq/cetqcimdeaociau
URL Status:Offline
Host: ideaspoint1.com
Date added:2022-09-28 17:59:10 UTC
Last online:2022-10-10 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-09-29 01:51:10 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:10 days, 23 hours, 12 minutes Bad (down since 2022-10-10 01:03:11 UTC)
Tags:bb H322 H436 Qakbot link qbot link Quakbot link TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-10-04RhhokVqZZghR.zipunknown ca31292c1fe5969724102ac6517b1d08951029bbbf73246274c77c481759986en/a 
2022-10-02G271632262.zipzip 68f3189200b6ab331acce2fe105eedbf471c68033c55f25e7873a8840028f8daVirustotal results 7.27% 
2022-09-30C615981503.zipzip 6248f2ec916d2f49d9643bd08db3d1a73e5eece0df75279360a1c3bb67b024d1n/a 
2022-09-30Gall355892226.zipzip 30b8c05aff168a61bf732ef782047b809f91c8bde2dc221f1b2bd1c7be6a55c7Virustotal results 3.17% 
2022-09-29G3381764158.zipzip 5cf5b36a790af0f5f4d620c9b5975c0d5ee7598ac19d809e74063ebc29388934Virustotal results 3.17% 
2022-09-29Omnisducimus140699063.zipzip a5ec6e401655225373e80965d6acca191393152ef6abf2acf88929c7330987eaVirustotal results 3.17%