URLhaus Database

You are currently viewing the URLhaus database entry for https://raengenharias.com.br/ee/cnsdpeuiiqaie which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2339475
URL:	https://raengenharias.com.br/ee/cnsdpeuiiqaie
URL Status:	Offline
Host:	raengenharias.com.br
Date added:	2022-09-30 21:52:45 UTC
Last online:	2022-12-02 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-01 05:53:12 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:	2 months, 2 days, 10 hours, 31 minutes (down since 2022-12-02 16:25:11 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-27	hJjKk.zip	unknown	7339c157f7fa39ca0cfa72cee35e2a21f0afeb1b86df73c2f6d94641519dbb0e	n/a
2022-11-26	JoFdYO.zip	unknown	422226f95f9be274b79e1093938b4c511e4f66fd66cc312a633a1dd70f7c4168	n/a
2022-11-02	TxDmrzrGspQ.zip	unknown	c3344927dcc6db207f76fb5a6b3a4a71d538b6f47b51a4488f07bdc44df19f22	n/a
2022-10-29	HyAoOyJz.zip	unknown	7ed4fac510a55f36b563f5ee9fdd999bf4a66e96a07c1d1a3162f1aa2bb91455	n/a
2022-10-22	vVgLfDPJoEBFc.zip	unknown	8abfc4d4e82f8dccadc948d618c2aa593fad377b7b134353666ace45ed16c569	n/a
2022-10-17	KvEi.zip	unknown	6732e5a2ce3d0bf7ae12eb1a703aa2eb3ca8ce55f9abd90bc726c5bf604ad30d	n/a
2022-10-13	VglBFup.zip	unknown	7ed7977041649dc4768d0e2f25ab12a2bce618152dbadac1cff4b2feb099bafa	n/a
2022-10-09	C2531202444.zip	zip	21b32712bb8a971021b0a493606fc7719bb7914a6270e677859b2488d20bf064	44.44%		Quakbot
2022-10-01	Card1989172698.zip	zip	332d19ac9a571fee1feb875477d83c84910568b791fbeefe486bd6cc449fbd9a	n/a