URLhaus Database

You are currently viewing the URLhaus database entry for https://ramdungexpedition.com/aisl/uaqiaqreut which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2321325
URL:	https://ramdungexpedition.com/aisl/uaqiaqreut
URL Status:	Offline
Host:	ramdungexpedition.com
Date added:	2022-09-28 18:11:58 UTC
Last online:	2022-11-16 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 03:02:08 UTC to abuse{at}bluehost[dot]com)
Takedown time:	1 month, 18 days, 20 hours, 29 minutes (down since 2022-11-16 23:31:10 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-24	JfBrKXufoSfNV.zip	unknown	63c9436aa0feac16677ac382c3a0b812f853da0f60da58c2d214a9ba94b16a20	n/a
2022-10-22	FTBYxdwRXrjb.zip	unknown	7f2bb2a6dda515710327023e297bc20ce335f4bf4a864ad8addf0a5b066702b7	n/a
2022-10-17	vFBV.zip	unknown	38df6ecac1e5127fd26301e5c12ecfb8aeaa536d564cf760004dd787c79f38cf	n/a
2022-10-13	WxnakdFV.zip	unknown	7abaeda7bc566fc994e971adef93ec988aa8ecf6686026861f0659da9d42799e	n/a
2022-10-09	ArtItem1352139618.zip	zip	41eca56cb5104fa1a89c2143ff08355e5c67b58b8ee6556a0d051bb45c94bf68	21.21%		Quakbot
2022-10-05	Co2556216151.zip	zip	e3f5a32f7b0792d1f47449983ff19afbe177fd296e4907846cb1ed306df4004c	6.35%
2022-10-01	C655272725.zip	zip	6d0e3e0694bb5336ed237298bdae5624fc726e14c558e9073279310e1c5ce55a	1.61%
2022-09-30	Card1315422799.zip	zip	242154bb7f384836f2f8404ff8a4801c9c2d0a3a782d2549e0577eb31a906c0b	n/a
2022-09-30	Gall967759832.zip	zip	876947313545bf990474f8bb573d5843954362dc171c5a0c3c77aab2c26be7de	3.17%
2022-09-29	G2766093746.zip	zip	e2cdbe2f92716936471397ae716cb239874b53c9564ef137a55c1c09c20b1fa5	3.23%
2022-09-29	G547941560.zip	zip	e805a443ac04975250cf6aa1bfcb80d67de997576d01b46be7c028ecacfb9e9d	n/a