URLhaus Database

You are currently viewing the URLhaus database entry for https://raengenharias.com.br/ee/eltlepqiarua which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2339489
URL:	https://raengenharias.com.br/ee/eltlepqiarua
URL Status:	Offline
Host:	raengenharias.com.br
Date added:	2022-09-30 21:52:52 UTC
Last online:	2022-11-28 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-03 17:07:11 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:	1 month, 25 days, 17 hours, 27 minutes (down since 2022-11-28 10:34:25 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-22	KcWN.zip	unknown	316505095b2b774ee43fd734332ca3c284fd0b78c5d8217e1ba9377ccf96061b	n/a
2022-11-16	ScilNZr.zip	unknown	30930a3df6e32bd3c39fa80a90bc8390f5098649aff35a75c9f58239c583cead	n/a
2022-11-04	qtwgMkpqb.zip	unknown	3ee92c52d3150e2acb6c2c47f0d1fde2feb6d6dc24232291ad22803f0f7b849e	n/a
2022-10-29	tDqtMdCAFDkE.zip	unknown	d31fec915a615f4c5b5f31dd9823d823438199cd49dfd7c2ac948a502edb9be0	n/a
2022-10-23	MPnSsrWvzfTeYevpgEU.zip	unknown	9ee73aad2f6aeac82a31b53522c94957e6d90f86bdcadd1f34c1d3960a514a07	n/a
2022-10-17	jtIXyge.zip	unknown	03fe234315d708b8c16ada23acbafae0fc1d00dcc6bf8ebf2195f6f15fa96232	n/a
2022-10-11	NE4286715480.zip	zip	0d182210a0f43febeb4fdf017a786f57a0a886bf279cafc3668d10bcfde1969b	n/a
2022-10-10	Co1597231570.zip	zip	d761614e009604637b10668de4800248847f42f8511254ea6d566dccf4d1c286	47.69%		Quakbot
2022-10-08	Co48127384.zip	zip	036ae8b7785506d52013db4397da8e1c63acde449319a2afade758a54cb89843	42.42%		Quakbot
2022-10-03	R4237993750.zip	zip	61fa1490b00d8efe3c760905c520d36a93b27a3aea5d37a3119433cfe2c03914	n/a