URLhaus Database

You are currently viewing the URLhaus database entry for https://koionrekber.com/srue/elssiaat which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2336430
URL:	https://koionrekber.com/srue/elssiaat
URL Status:	Offline
Host:	koionrekber.com
Date added:	2022-09-30 21:22:33 UTC
Last online:	2022-11-29 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-30 21:23:08 UTC to abuse{at}idnic[dot]net)
Takedown time:	1 month, 29 days, 21 hours, 0 minutes (down since 2022-11-29 18:23:44 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-26	gVdpXGBBPMgMyMBr.zip	unknown	04de570bf41bb3e44d5a9362ea8c5cf4946ed962f56ef737f74d1e4e8d81efae	n/a
2022-11-17	NuhooUZHfJx.zip	unknown	aed223e1a7509620a95f2095bdb0694927530784202ed90c46310ff8d178aa67	n/a
2022-10-29	riqBR.zip	unknown	f6f2c880e58372152e71ea46c4880a0f61acde207e73c7d5a3f19f75b3aea7c6	n/a
2022-10-15	TZBkjYyvZ.zip	unknown	060ed8a5631f1f131275fed70d05567d1b13458d09e1ad3d9fe6345916336cda	n/a
2022-10-08	R656187431.zip	zip	61036b437e48ea608b30d1f65d65ac135c37dc03252f8d39735321865c6651c1	21.21%		Quakbot
2022-10-06	Co745545044.zip	zip	6da905c2ab58ecc3ed5d6b06c007560cc31d9262467c0e072379cd467cde423d	22.73%		Quakbot
2022-10-06	R918579346.zip	zip	9ff72a288924e53504d25ddd0743f1de20df8195ecb5d10595cdc161527c326f	n/a		Quakbot
2022-09-30	oYRmBqsIPwKe.zip	unknown	a5910f4b3b548c7d160c9996f390f1030b75f6a18b8fd4d4ab6b7e2b4ff2fc06	n/a