URLhaus Database

You are currently viewing the URLhaus database entry for https://prauditores.com/ut/qusiti which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2339357
URL:	https://prauditores.com/ut/qusiti
URL Status:	Offline
Host:	prauditores.com
Date added:	2022-09-30 21:52:14 UTC
Last online:	2022-11-28 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-03 02:41:12 UTC to abuse{at}bluehost[dot]com)
Takedown time:	1 month, 26 days, 9 hours, 39 minutes (down since 2022-11-28 12:20:48 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-21	gydlVcRSYOEvWiQpXGM.zip	unknown	4d20de84ba7faca401d9cd26684c5daf985d522a3b55ea9c09652f19ccc3dfa0	n/a
2022-11-05	dMEAvwtCGdwgZc.zip	unknown	203f322b64331c4f0960c23cc42b214539d3633d6b9c126279e44b86b1a68d8a	n/a
2022-10-29	cytiXbcV.zip	unknown	f16c1c8614e9f59138285207ea96afb9f009c71a81177f769d9d18cb0bcdeef8	n/a
2022-10-23	TFDCPxInOplMzr.zip	unknown	0861cfcf0358dd25d4335d9f049ad542765b36be0654e435b0bbccf8a753f571	n/a
2022-10-18	xgAbHbmONpOlzn.zip	unknown	193d6396c7e314568dba69ea853422f2bf4fb003f60508c8abc404c491359348	n/a
2022-10-12	DaAX.zip	unknown	6821b3a60a156a34e510f6ee3ffb49e23943ba34806ad8906557abf4ee188e86	n/a
2022-10-09	R2096340477.zip	zip	ca194bc1d5f82f4ce46117da36e14757310f62b5bf8e96f2a6253b40cde1b0c4	48.48%		Quakbot
2022-10-06	R391672586.zip	zip	dbb9a009d2f4cb82f179d96ed02eaf5d068fb121f6cce937c391529a2ed2b1d4	22.73%		Quakbot
2022-10-03	OAYRcUrms.zip	unknown	490fa048cd00e01c0435eeec940d1a7a89d9e14e53157042c91213ae61f5676f	n/a
2022-10-03	CA3133602353.zip	zip	d31b0504fc25bf867ef0b09ed389670cb94c8018d38ec178b50debf79ba0db17	14.52%