URLhaus Database

You are currently viewing the URLhaus database entry for https://raengenharias.com.br/ee/oalultieq which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2339996
URL:	https://raengenharias.com.br/ee/oalultieq
URL Status:	Offline
Host:	raengenharias.com.br
Date added:	2022-09-30 21:55:41 UTC
Last online:	2022-12-02 18:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-02 01:40:18 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:	2 months, 1 days, 17 hours, 4 minutes (down since 2022-12-02 18:44:38 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-27	mTuV.zip	unknown	f1a8241d4470409efcfd12cbf26f4dadfff620a607191e2073d1f975c947905b	n/a
2022-11-24	faGwTUAQRGguIq.zip	unknown	a5c7de72162620b47b2b427f087808c514a9de14b1e726150e11006425c829fe	n/a
2022-11-17	NvrTplcrSNYzPEZOy.zip	unknown	de39373cc9e0098fbc216f2629dcae849650c570af1b86115c6e8206e1a03484	n/a
2022-10-31	kGNXyCJLM.zip	unknown	bd67e5100efc60744f574cffce1d68e5108eadaa131b62800aa87f5a065c2a93	n/a
2022-10-26	fzrrTESAvyTGsUyMem.zip	unknown	6114a127fa92a8fb27ee1509163de9b75d12bda13719bdfe2860589297c3324e	n/a
2022-10-20	OvjW.zip	unknown	0ce55ffccb4fc626193f343092bb3a325b45f030b4ad11ecef4103326be7925d	n/a
2022-10-13	rbuPs.zip	unknown	207f5baf6643b85d960257107b3959827a7fc1a547566bf9aa7fe74c7d818776	n/a
2022-10-09	Co3364630110.zip	zip	c69e335630f6d822755fb9d0fedadbd48f4c5eb50156fd0603009426d255e198	46.97%		Quakbot
2022-10-04	Co3430486345.zip	zip	f22835c5f73c12058fe09182a82a288c9dbf5dbade13a48dd2f78d3f8cc9de7f	3.23%
2022-10-02	C1859055517.zip	zip	ece0234f376f90489b0ff06bea60a1e78c5a93cf7c0c4b4dc6dd5686f79645ab	3.23%