URLhaus Database

You are currently viewing the URLhaus database entry for https://draleccheng.ca/rduo/lapcooiiircssrf which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2356684
URL:	https://draleccheng.ca/rduo/lapcooiiircssrf
URL Status:	Offline
Host:	draleccheng.ca
Date added:	2022-10-10 18:15:22 UTC
Last online:	2022-11-21 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-12 02:51:10 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:	1 month, 10 days, 4 hours, 3 minutes (down since 2022-11-21 06:55:08 UTC)
Tags:	bb iso Qakbot qbot Quakbot TR X353 X873 zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-11	shfKGKoRIDQJj.zip	unknown	b849e7c5173d9f70ebd90d98d52d7e1a44ea19afc2074c59c0cb4c4edeaf58b7	n/a
2022-11-05	pFhAAsqFnImz.zip	unknown	3e492570e5e721919a90a8d5ebcdbd5c289393f9327d0ce58cf6df21af180097	n/a
2022-10-25	owanyBEwGbORSPEkI.zip	unknown	b1740a7dfe0219064c664a05e105348cfac0a83e4772b2803d35f0b0d4a7aea4	n/a
2022-10-22	YGSJizWlTYmeJqxG.zip	unknown	dd55e8c38825b6a13b135e7ad2342ac5b22b93f9b5b4922b245382e775525e9e	n/a
2022-10-16	jZTmcbCACQSVJwLY.zip	unknown	0a5f716fe34f687fe4726733c8af90852d24da3a89719c0ec0d41669080e7e32	n/a
2022-10-12	Of3773864830.zip	zip	928096ca606685dc960f27a17f5a6d1d31ac4425c23546229045168e2ff2bf94	1.56%