URLhaus Database

You are currently viewing the URLhaus database entry for https://ramdungexpedition.com/aisl/tupsmeatobroslui which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2321211
URL:	https://ramdungexpedition.com/aisl/tupsmeatobroslui
URL Status:	Offline
Host:	ramdungexpedition.com
Date added:	2022-09-28 18:11:38 UTC
Last online:	2022-11-23 02:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 01:21:10 UTC to abuse{at}bluehost[dot]com)
Takedown time:	1 month, 25 days, 1 hours, 30 minutes (down since 2022-11-23 02:52:01 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-26	FVljOidktprzaqM.zip	unknown	de275f7c993578fd566837d95184b3c362373029662a3b79145e3f35fca1d6cc	n/a
2022-10-23	vNmivOQooG.zip	unknown	491bbd8cc4afac20ba43cacb416eff3b5931a5a7e46edd5ba7b998e2ab7b8c73	n/a
2022-10-20	jEXyyTZIOUTbp.zip	unknown	cbd632b26f9a41fc546c0cd434f0c0286e6cb782aab6ab401b69ede184713e41	n/a
2022-10-14	yGQPmabgVFjs.zip	unknown	14cc2932dff7c1d80bd633ba1e2fe3a123c8988d311ef096db25a77b36647722	n/a
2022-10-10	NE77335662.zip	zip	0d21bda5a0aab544571100dcbb92aae79433cd2e23de659359fe93c7d70e4796	n/a
2022-10-08	Co1799374998.zip	zip	2d8486c0901382d6b361a23a0c5aabbc9a685d9afdd99b4443aaa6601432fde9	50.77%		Quakbot
2022-10-04	ntesmEi1667680279.zip	zip	64918a593f0c25317e88a441d31cfcb794e5ff743adb4df28eac232820a8275b	5.00%
2022-09-30	G674359719.zip	zip	531d01bdab9e65f1f75575d86d2d9eee132ff8285e4bfc5af11699984fa54e0b	3.17%
2022-09-29	G3383194811.zip	zip	73d99f2542e9c0ce08034a415e60e5e2222e5c11cb3bee396c29899844206a3f	1.59%
2022-09-29	Eiusminima218795718.zip	zip	78315914875fa5043905d81032fb08e08869f3e3f5f45793b4c9226fdae3a807	n/a