URLhaus Database

You are currently viewing the URLhaus database entry for https://sahityaclasses.com/ixia/nemodicta.php which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2614872
URL: https://sahityaclasses.com/ixia/nemodicta.php
URL Status:Offline
Host: sahityaclasses.com
Date added:2023-04-20 18:30:22 UTC
Last online:2023-04-23 06:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-04-20 18:31:26 UTC to abuse{at}godaddy[dot]com)
Takedown time:2 days, 12 hours, 15 minutes Poor (down since 2023-04-23 06:46:29 UTC)
Tags:671 BB24 geofenced hta Qakbot link qbot link Quakbot link TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-04-22Uyf.zipzip c695ee4eb5b7b6e36704e76f7c5f4466c1d290e729b371be7bb9b56217d06c6aVirustotal results 0.00% 
2023-04-22Cdmm.zipzip 5b4626bd8e80e44bc310d1fdbc51abfa6cdf56625ad1e30d365057a0acf40975Virustotal results 0.00% 
2023-04-21Px.zipzip 548bccea0d316dad05aae5b51bc00414e76af45770181c1c56448eaa023d57b2Virustotal results 0.00% 
2023-04-21Bm.zipzip 52b88c5259e7cde5936f321bc5e509840e9b7ff2942e3102959c0becbb9399c6Virustotal results 0.00% 
2023-04-20Yjnz.zipzip d61ea8a721e095551ed7101976282b0871963a92a89567852a99f43e5439e376n/a 
2023-04-20Cij.zipzip 1318ea83b6850e4d848aac9589b9316910fe747d29f8f1160e093d0687d0b6b8n/a