URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/ue/imatunmai which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2367191
URL:	https://buffetegypt.com/ue/imatunmai
URL Status:	Offline
Host:	buffetegypt.com
Date added:	2022-10-13 15:28:48 UTC
Last online:	2022-11-22 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-18 13:56:12 UTC to abuse{at}hostgator[dot]com)
Takedown time:	1 month, 4 days, 20 hours, 25 minutes (down since 2022-11-22 10:21:35 UTC)
Tags:	BB01 BNO87 iso Qakbot qbot Quakbot TR zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-14	D2.zip	zip	143d188bc67500bebf812ef3e0ea5de3eef8414d6c42e55c015eb6e9d5f1425a	3.17%
2022-11-09	D8.zip	zip	6cc9d6939b1b6e2df72e79ca81a48a216d654fb269713c64e89c56b674a2f0ea	n/a
2022-11-05	D3.zip	zip	6042bbffa85780475e2f2467d960f97ea302864e920fd7534b62703b51842f8d	3.12%
2022-11-01	KT1.zip	zip	7685f0553715f5bfe21b1c5695405c21bb6e6dc07a62703f6f88e8afe5e4ab95	n/a
2022-10-25	Copy928.zip	zip	ef63adeba67ec98b8659d228276ddcf21c276e3dae58cdd8a6c4377b72be56ee	3.28%
2022-10-23	Contract91.zip	zip	f9b4c5f549052b848a5b8ce0cfe24d80504730778b531758c566f3f75be1942a	n/a
2022-10-18	AccItem419513853.zip	zip	1f226f006d271f41d0e31d020f891488d79b8154e5914faea36ef21b2e2e76e3	n/a