URLhaus Database

You are currently viewing the URLhaus database entry for https://meditourz.com/ousl/aaubuqmuimdsq which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2337405
URL:	https://meditourz.com/ousl/aaubuqmuimdsq
URL Status:	Offline
Host:	meditourz.com
Date added:	2022-09-30 21:30:30 UTC
Last online:	2022-11-05 00:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-09-30 21:31:15 UTC to abuse{at}hostgator[dot]com)
Takedown time:	1 month, 5 days, 3 hours, 19 minutes (down since 2022-11-05 00:50:20 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-10-28	nfaDq.zip	unknown	f038fd6b86423bc62e3810e35ecb540837c74beebd93091e3eeae0e4bd4d7e4d	n/a
2022-10-22	KfGfEX.zip	unknown	932fc49c46741ceb9164e565574bfb875334e3a12ade72635657232d2736efc2	n/a
2022-10-19	KDtJPZ.zip	unknown	de8484fb7f64607dfb6e6fa7db487f086e66e324f8becfc8d2d9d86661e926d1	n/a
2022-10-12	PCBuDRKa.zip	unknown	f6dff8d4a8862d388b640e6042e031d595461733b1ae005430ab85df2c0bddf3	n/a
2022-10-10	Co3491156199.zip	zip	1fb01dea2bfd58b82070ecdaaf250a775b4d6adfe953796e029d3c5fea751112	45.45%
2022-10-03	R2557010718.zip	zip	04a4b39165d063ec1182a4bea9c5c5ff6bd7920bd2dd4fed32c45a4d4bbc4d5d	4.76%
2022-10-03	CA2156901766.zip	zip	772cdf34b48143e93a3c06cb4dca8d5b289eade86ba7ed883a939131ecdcad6e	12.90%
2022-09-30	uoxZAOrZOqhwtXj.zip	unknown	567663cea7a419d1a55e031f10aee50ff538c28b3ffdac0e6804d074f837a795	n/a