URLhaus Database

You are currently viewing the URLhaus database entry for https://saitech.com.np/ao/cinumterirop which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2321514
URL:	https://saitech.com.np/ao/cinumterirop
URL Status:	Offline
Host:	saitech.com.np
Date added:	2022-09-28 18:13:39 UTC
Last online:	2022-10-22 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-29 04:01:08 UTC to abuse{at}hostgator[dot]com)
Takedown time:	23 days, 4 hours, 14 minutes (down since 2022-10-22 08:15:54 UTC)
Tags:	bb H322 H436 Qakbot qbot Quakbot TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-15	hhRBfZbqoAvptWPl.zip	unknown	edcbd1f0b643a8463d2161a694db914968f1e8325e09e5f4d5d5e9ce2e2eff35	n/a
2022-10-11	R3258671273.zip	zip	969a3d0ee19a1118a54ddb0e38c96cf0b187f49f201c91460c78bf917b8da135	n/a
2022-10-03	Co3823411531.zip	zip	db384e9f38378a38715f236e754024136ebf2ecb1a8a98b5a8096ef5ede8ba91	4.76%
2022-09-30	CA2634218226.zip	zip	496b015f5b51851ea0d6f8c80e831b34e801c6971d555122372cb0d5fdbf90bf	n/a
2022-09-30	G2510533447.zip	zip	62de3358cd1d6919482a9d819e1b78b2159aee656a9cc375562919bcfb87eff5	3.23%
2022-09-29	Gall1875722332.zip	zip	57e675b591452e0f8e825e18cb0587904177bc39c0695a851afd45f502df0742	3.17%
2022-09-29	Gall1154586092.zip	zip	2127f3ecd732fac25346a59be9c38a1c85d4d2e3b2a7faecff4e6a2ba6b8530f	n/a