URLhaus Database

You are currently viewing the URLhaus database entry for https://datastatresearch.org/tosu/tosu.php which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2598502
URL: https://datastatresearch.org/tosu/tosu.php
URL Status:Offline
Host: datastatresearch.org
Date added:2023-04-05 15:40:10 UTC
Last online:2023-04-08 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-04-05 15:41:20 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 13 hours, 21 minutes Poor (down since 2023-04-08 05:02:24 UTC)
Tags:755 BB22 geofenced js Qakbot link qbot link Quakbot link TR USA wsf zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-04-07Oy.zipzip be6943b1752d899384b690c4e21460d4d9a031728bb97d41124e68edc1556931n/a 
2023-04-07Ywxy.zipzip 58aa552b4ba8bdd0b7318cebcc44d5d96bdbc957032c588a0ab23c225d687d9dn/a 
2023-04-06No.zipzip 84c0cda8ceaaf21108b9009834a2a83c80f667b33ec44e4223b71f1d3b96c40en/a 
2023-04-06OlR.zipzip 1780c590312a73462b09f6319d293b5b60ea2bc0412d66cb724f9be6aca75274n/a 
2023-04-05Weom.zipzip dfdc5d4cdd02e6d589f83a29d190e4f8dfb8127b44b4ffe1c6c6cc47f3a3f031n/a 
2023-04-05BBV.zipzip 12a26e5fe1ec7b64b87ac0a83b8fd27d3cabc0de31badce77193833804570e49n/a