URLhaus Database

You are currently viewing the URLhaus database entry for https://buildersoncall.com/eun/quiaaut.php which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2614849
URL: https://buildersoncall.com/eun/quiaaut.php
URL Status:Offline
Host: buildersoncall.com
Date added:2023-04-20 18:29:15 UTC
Last online:2023-04-23 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-04-20 18:30:24 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 12 hours, 10 minutes Poor (down since 2023-04-23 06:40:53 UTC)
Tags:671 BB24 geofenced hta Qakbot link qbot link Quakbot link TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-04-22Hnj.zipzip 4a110dab5ce45c7737a22546f39f08719efb72235ff9dd433ac795798ab31cd9Virustotal results 0.00% 
2023-04-22Dei.zipzip ec1d6d62e0b627e28923060a017b83829d1f7693868e2f0f8bd309b5eb7fd757Virustotal results 1.61% 
2023-04-21Gab.zipzip 950e386a84bfad1287986d787c284751f3c478247fe46c2e95136186064ff419Virustotal results 0.00% 
2023-04-21Vycv.zipzip 6b631a62d9c055af962a47a35af366bff1bbe539c42faf733ab869b151ac6ce3n/a 
2023-04-20G.zipzip 4e00c85b7405a0842dd53fa864466f7132012b034ebaf43f0bf9d864250a0ef9n/a 
2023-04-20Ogg.zipzip f72f6ed33bfe45f87df5abdd2aa73129abc023f5a5d165d197fb603ce277d315n/a