URLhaus Database

You are currently viewing the URLhaus database entry for https://prauditores.com/vuee/offerTenut which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2370086
URL:	https://prauditores.com/vuee/offerTenut
URL Status:	Offline
Host:	prauditores.com
Date added:	2022-10-13 15:56:14 UTC
Last online:	2022-11-26 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2022-10-15 20:18:09 UTC to abuse{at}bluehost[dot]com)
Takedown time:	1 month, 11 days, 5 hours, 27 minutes (down since 2022-11-26 01:45:56 UTC)
Tags:	BB01 BNO87 iso Qakbot qbot Quakbot TR zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2022-11-17	X4.zip	zip	9d0d891dc4c1c9b8babd686b70fd3cf547953adb39495ec6267d146f34ec8011	n/a
2022-11-14	k9.zip	zip	50f3f4c130db3e254d175a00dd9ad490a358e0759c63a3965718a6a287be63f9	4.69%
2022-11-10	D6.zip	zip	00bda9b65404a68cedbd753833c23c6f2b06608e615e13576b2295a15c03b772	3.17%
2022-11-06	k9.zip	zip	1aaf6465c79cd694bcbdf8d1ba48a4b1bfeb21bc4dd0d5906af63792e8e614f0	3.12%
2022-11-02	COR9.zip	zip	913807d645eb96db41243ebc164058b52b05a35480d93321ac29492c0c87b1c1	n/a
2022-10-29	Detail3.zip	zip	3ffe7ba208311bfcc82c49fa6e86a1da914314e6f30d6aa5fe5e6e5eb6f6d514	3.12%
2022-10-15	OR1510222316.zip	zip	7dcc02a5947410627d94c50ed37a500335ccd9d7b30cd540e174457096a54a1e	1.59%