URLhaus Database

You are currently viewing the URLhaus database entry for https://mentorialegado.com.br/mnm/ievltte which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2320475
URL: https://mentorialegado.com.br/mnm/ievltte
URL Status:Offline
Host: mentorialegado.com.br
Date added:2022-09-28 18:05:38 UTC
Last online:2022-12-02 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-09-28 18:06:23 UTC to abuse{at}bluehost[dot]com)
Takedown time:2 months, 4 days, 14 hours, 24 minutes Bad (down since 2022-12-02 08:30:45 UTC)
Tags:bb H322 H436 Qakbot link qbot link Quakbot link TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-11-27JHAwZTxgGX.zipunknown d97c99d74adb20f7258c18175dee98d94e24cb822c84d524711a22969046f15en/a 
2022-11-25qOlovWjvZk.zipunknown 4adc116de615552bc1ce5df83e6d27e7f5a5d7cb70ccb66b57afb35461672a99n/a 
2022-11-16CbUQLkGJwjsu.zipunknown 64e1a2458209841e28ed98b557b6704bbed10dfcaaf6dceac525346344a0bf12n/a 
2022-10-29dqlgitaPsBcLeVTH.zipunknown cb53f521252d7c4ff92e73f694952cd0af95e08e0b3ccc46f1a9dba2852dd25bn/a 
2022-10-23EDHKhLoGwAmJCekxx.zipunknown 9849923b72a45c7562d990ae1889b3358f0fd2e5bc414b10843f9960f039195cn/a 
2022-10-15YKzgGME.zipunknown d1dc3cf8bacf5bb2e030895445e99b37af9b0d82eea428e7bf0308d93cc4aeb8n/a 
2022-10-09R1840662186.zipzip 2615349d37ce9d4ebe8d97cd9f15a54a08d6bf3cec68bfec5b3543b3d927b0a9Virustotal results 46.97% Quakbot
2022-10-08R1326101013.zipzip 712816947a97ed5200f00be2b36cdfd87cc5835374e52dd0bdbb58a8fa8ca75fVirustotal results 45.45% Quakbot
2022-09-30Card1990705052.zipzip ab631b694a63a21702a4b6b6424c4a982b35139f734779e1fe505badf11a309fn/a 
2022-09-29ezbPJNLACPHanL.zipunknown 07cf043d5ce5fc5e55028f19cea4f3848027f606833b1d522a47d6c279d18c22n/a 
2022-09-29kzMlSfDHVEM.zipunknown 4cd37e44d43f2f90630a6b94cd94b0a020c88bf311163f8a91642ad9f171753an/a 
2022-09-28VzFzcn.zipunknown ec567f2a0a8a8c39ab59fbca7ad892f3188c0a70dd0994118570588f74310229n/a