URLhaus Database

You are currently viewing the URLhaus database entry for https://thirumularresearch.com/vfa/euseiemdsq which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2322066
URL: https://thirumularresearch.com/vfa/euseiemdsq
URL Status:Offline
Host: thirumularresearch.com
Date added:2022-09-28 18:17:46 UTC
Last online:2022-10-12 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-09-29 04:29:13 UTC to abuse{at}hostgator[dot]com)
Takedown time:13 days, 3 hours, 52 minutes Bad (down since 2022-10-12 08:22:06 UTC)
Tags:bb H322 H436 Qakbot link qbot link Quakbot link TR U425 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-10-05G3559512.zipzip 08166d74ab79162afbe6af7d65963861d197ecf670f21bdb4b56a8e730aaacc7Virustotal results 13.33% 
2022-10-01G4213933241.zipzip 06128d94857a1feda0334e621a014b3a601e0b69e4d97f2a0462577d325b036fn/a 
2022-09-30iueRcrnrirpottheedepr1758281704.zipzip 9c8741a05ab7924309c56fb381b6f8da542302d50bfa5a0193c0a51afcb34db4n/a 
2022-09-30G2395104635.zipzip 98fb3ed29a800c4ac20f3898cd938ef9925e17c8c7655134795c642746644b03Virustotal results 1.61% 
2022-09-29G1223271851.zipzip 448fbe5bfd4f7934523637812b951a2f3e97844294ab102289a584b6e47517ccVirustotal results 1.59% 
2022-09-29G2923443222.zipzip 5376f1187a6b9b71e1cc9983ea30653e52d4dc965f10e04e44be81544532f0d5n/a