URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/ue/offerLindsey which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2367268
URL: https://buffetegypt.com/ue/offerLindsey
URL Status:Offline
Host: buffetegypt.com
Date added:2022-10-13 15:29:25 UTC
Last online:2022-11-22 12:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-10-19 09:08:10 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 month, 4 days, 3 hours, 41 minutes Bad (down since 2022-11-22 12:49:19 UTC)
Tags:BB01 BNO87 iso Qakbot link qbot link Quakbot link TR zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-11-18P1.zipzip 524ef9e6b0b409504f09be00e27e5552a2b39f010aab2466ec65d42e09b24684Virustotal results 0.00% 
2022-11-13D6.zipzip 367ae034a15ff33b5e45089d53e82fd6a2d0e783161082d9a6c89dc73c3083b2Virustotal results 3.12% 
2022-11-10D4.zipzip c78c8c814970f7de1b10c880bbf2138ec5b53f81fd1e3c2e8be8893b5955d312Virustotal results 3.12% 
2022-11-06k5.zipzip 1d0011d397b641386366525d29148ef0b94d31635b8eced37a0864dc33aadddbVirustotal results 3.12% 
2022-11-01DE10.zipzip dc175227fba25e32924e5c32ac33a833f7ef7de6e0222c721bda2cf3145b1ab7Virustotal results 1.61% 
2022-10-19C1910221207.zipzip 1abf40abaa4bb76815e763f0e4b05737db3d52ede73a29966908186da2473b0eVirustotal results 1.56%