URLhaus Database

You are currently viewing the URLhaus database entry for https://buffetegypt.com/ue/tsitebuid which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2367275
URL: https://buffetegypt.com/ue/tsitebuid
URL Status:Offline
Host: buffetegypt.com
Date added:2022-10-13 15:29:27 UTC
Last online:2022-11-30 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2022-10-20 18:00:13 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 month, 10 days, 14 hours, 41 minutes Bad (down since 2022-11-30 08:42:12 UTC)
Tags:BB01 BNO87 iso Qakbot link qbot link Quakbot link TR zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-11-19NE745053069.zipzip e65e7b8f7ab985a71f1c76e877b4f0ad70feb4c11a7cac5a4f108c1f6762f2b6Virustotal results 0.00% 
2022-11-17S4.zipzip 2c10636cf0268701147aa3c9a0e039f4187324ac7fa7a6bbe7b0c3ed91d42d20n/a 
2022-11-09i3.zipzip 61db288d3740aeabb7cc2affb1213746624eebedff5e9211a715ba819f67e1ffVirustotal results 3.12% 
2022-10-25C419.zipzip 3da09dbb7b995a8ab50781fa897d1fd61e590cc491c42d1afb01642fede4ab68n/a 
2022-10-23CA3464210891.zipzip fd53673463e31c0315a743d55c9d266295c5fc3527ceb1a148610084ce740afen/a 
2022-10-20Con263.zipzip 70ba5d3e38a58f0a5e94b1a509dcbd905ab12215b3cfc192a21b06494b7e26b5n/a