URLhaus Database

You are currently viewing the URLhaus database entry for https://meditourz.com/ousl/eanasstdauum which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2337393
URL: https://meditourz.com/ousl/eanasstdauum
URL Status:Offline
Host: meditourz.com
Date added:2022-09-30 21:30:28 UTC
Last online:2022-11-16 01:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-10-02 04:49:09 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 month, 14 days, 21 hours, 2 minutes Bad (down since 2022-11-16 01:51:51 UTC)
Tags:bb Qakbot link qbot link Quakbot link TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-10-31plhM.zipunknown 8defbd5ad8b9e25b5120001dbe82bf45e5bbef9e5372201dc32a18351fad6d9fn/a 
2022-10-25NuQhyMhANVc.zipunknown f74b480bb56baa29a09d6e067d356677840f63153b375a043363b1ce675f6f20n/a 
2022-10-16uabkfwzWr.zipunknown 652de2a0909166faa2bdf430f1b8d5d02de26e430ac045598aa25bca0180cf75n/a 
2022-10-12O_1003529885.zipzip 5baf37bc82c44203e99c4cb35df21d1c0efc0a436b2507458105f863c764c1c1n/a 
2022-10-06Co189453084.zipzip 31c06fe79789bbbd361e444108f73b203ce7e9c61fb8f6c03b5540e6ab525936Virustotal results 22.73% Quakbot
2022-10-02Card1965646116.zipzip fc4f7c2e89850b6d020823de5496036fe52f555aff69a29c06a007ecd0f79ad0Virustotal results 1.61%