URLhaus Database

You are currently viewing the URLhaus database entry for https://rajtravels.co.in/tc/msquesuqati which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2321163
URL:	https://rajtravels.co.in/tc/msquesuqati
URL Status:	Offline
Host:	rajtravels.co.in
Date added:	2022-09-28 18:11:25 UTC
Last online:	2022-10-04 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-28 18:12:13 UTC to abuse{at}publicdomainregistry[dot]com)
Takedown time:	6 days, 0 hours, 13 minutes (down since 2022-10-04 18:25:46 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-02	SrfbdyQlR.zip	unknown	d009c87b0ef5d82ea7912a9465ae302490b512080ec965db59cfa1930951b7f2	n/a
2022-09-30	CA2291574529.zip	zip	999896de301ee8a861ebb49e8d95348da3fbfc1a3f8a9ec0235a42e97ead0c94	n/a
2022-09-30	G2167856084.zip	zip	df220be51ff760da7fd47360cfcaaa339dfad3ad192bdbb69b72b57b7365d59d	3.17%
2022-09-29	Gall2670837535.zip	zip	559bd3c42238c5e295b597570c69805fade24b43780c575265c536967c6bf74f	1.59%
2022-09-28	NeyP.zip	unknown	80d402e9a05727439d6f50f61f3e0a19100c45eea3c631fcf1254b3e1cf43be8	n/a
2022-09-28	YrAbPH.zip	unknown	b2d341d4d233c9d8560f02d5fcee81601e619b595869847aa02ea1a386aaa380	n/a