URLhaus Database

You are currently viewing the URLhaus database entry for https://prauditores.com/ut/narutsnomeaueasdcsqu which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2339786
URL:	https://prauditores.com/ut/narutsnomeaueasdcsqu
URL Status:	Offline
Host:	prauditores.com
Date added:	2022-09-30 21:54:05 UTC
Last online:	2022-11-29 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-03 11:21:13 UTC to abuse{at}bluehost[dot]com)
Takedown time:	1 month, 27 days, 4 hours, 22 minutes (down since 2022-11-29 15:43:46 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-19	uBoXBpyQzuhxpO.zip	unknown	97b2507668d7f049ac39622785c6307f0eb1020f0ba34af2b9df67a31b5209f3	n/a
2022-10-27	sYMjL.zip	unknown	c887898e80f8f23f46991ddfae094b861f2f25428982cb00b465437196e72c29	n/a
2022-10-23	wzaBeJXFQMj.zip	unknown	e3d2584bbb6b6f5c0ef0339f79ad1e30ee4ca215e029c78e62033efb4fa2b121	n/a
2022-10-16	iOIDQPchpX.zip	unknown	8a862a06ec6d7f982f5f783ae0ff808596010a2cc74f512bdf37057cde44de08	n/a
2022-10-13	FGLysMHUPbMjPgIlhlu.zip	unknown	0aad70b5b41868f9caa0a7faf21f92ce8ae79d6cbaac79f542a7b9ba6ce45779	n/a
2022-10-10	Co3765868368.zip	zip	fa40911639a8d935c76315f11f3ef1cdcc4b66dce824e990d1603cf440df7e8d	16.13%		Quakbot
2022-10-08	R289630131.zip	zip	f88e8b19eaad2ad04787b50b752e01072b49c26b3f514bae57e8530d31401bc1	48.48%		Quakbot
2022-10-05	Co1875476694.zip	zip	50b85a2618aa97c3dc39c9b7600587dc31a1574dd0edfb4654c32bfd2427eb7e	n/a		Quakbot
2022-10-03	Card4068564226.zip	zip	5f482673a5b392c5958df300c8760af275a0d0a9c64ce984294ecf21fddf9680	1.64%