URLhaus Database

You are currently viewing the URLhaus database entry for https://raengenharias.com.br/ee/utreemuetn which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2340104
URL:	https://raengenharias.com.br/ee/utreemuetn
URL Status:	Offline
Host:	raengenharias.com.br
Date added:	2022-09-30 21:56:07 UTC
Last online:	2022-12-01 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-03 09:19:09 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:	1 month, 29 days, 11 hours, 58 minutes (down since 2022-12-01 21:17:58 UTC)
Tags:	bb Qakbot qbot Quakbot TR U492 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-27	mEBMTyLvhslmdaWxbK.zip	unknown	30a9319a88a6d00b865f3b6d8b92ed9a9c74f6c4ecf9d888021f6cbccadd425c	n/a
2022-11-21	ApuRTQBwJ.zip	unknown	a69802f46113efe1a529a9230191b6ad2394cbc25608a3605f4d6f1c5cf264a4	n/a
2022-11-17	EnilWVKnyUX.zip	unknown	362869f6065fe872cb8bf5400e86cf972b74d0e440c053fce3f6c1c7ae6cb7c8	n/a
2022-11-04	AEyuwTPSugT.zip	unknown	c879ea26652cf3607bb0290c3ccb4c507c0fb9415c957e630693c7f7192a1ba3	n/a
2022-10-29	tIAk.zip	unknown	c65295caeccd5da22e107fd21e8ae11081a4398657b0cc1f745a38a467e59068	n/a
2022-10-19	YzUh.zip	unknown	e3ff9c56736817a3871a45cb125c9b30b678c3e99501af969b74a3b20fef3f18	n/a
2022-10-09	R1366853480.zip	zip	115449725739087cf224f4c0a858a38459aed5eb890cf23e7928b95ee36ad24d	46.97%		Quakbot
2022-10-06	Card2576352642.zip	zip	3e613a8033c3d49652c02ae3d8aa05b87ada83c655c5835e629b52d24a72909a	19.70%		Quakbot
2022-10-05	Card3515320575.zip	zip	82f8a28d4b268d2f302d9b31a081dd27a81e8113e5d81c9cd2cdc49c398d8b42	14.06%
2022-10-03	CA958369180.zip	zip	bb9fbd4e0cd3211e16628c68cede6e4e9f4622be58be5ba3a6cbf5186ff29651	3.17%