URLhaus Database

You are currently viewing the URLhaus database entry for https://maragiaexpress.com/rts/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2625363
URL: https://maragiaexpress.com/rts/
URL Status:Offline
Host: maragiaexpress.com
Date added:2023-05-05 14:13:33 UTC
Last online:2023-05-07 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-05 14:15:59 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 7 hours, 39 minutes Poor (down since 2023-05-07 21:55:48 UTC)
Tags:BB26 geofenced js Qakbot link Quakbot link USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-07Xjpcg.zipunknown 130a885bf9c9fca5bad69782685c624def60c7e7f71e6796710cb075d414da1an/a 
2023-05-07Lztqh.zipunknown 3bb5b915abea914aaac51e2aec54da390bedbd72cfea3e01bed24f2bfa0191dcn/a 
2023-05-07Emewape.zipunknown 164abe49add8b22efec39cf0f67a3579320bdd396c2f867198e229c8acd13845n/a 
2023-05-07Ueqjqtp.zipunknown 68ce74d0bcfbfe2115523e9c0696a5b3d051c7a44080193a16fb27e47ad84386n/a 
2023-05-07Rulsfg.zipunknown 9626c6db311e241e5f752e6e8b5c2d13ea6517d0b75b5c77bb11d55ef5716b27n/a 
2023-05-07Kolpfgz.zipunknown cf598970150b855bf87b76c044b5e8e7abddf65152229386a95037de16e6a991n/a 
2023-05-07Anqoi.zipunknown 5294187d76ddc753239716540f3a8c95f7bc3f752e8a95d46280045ebf1cbcd4n/a 
2023-05-07Kxup.zipunknown 86f5df5aca1ba4711ce20e5dc92b1c80419988acba2d33ce762e654e61191ffen/a 
2023-05-07Egozyvdd.zipunknown 74fb64616403b527d464526a88e7272553c8504f95cc26bac25e58673d97a8dfn/a 
2023-05-07Ydye.zipunknown da7bca16e2df86fd41c5dd7434bab38a65699b016b4bb77efbbd98a75672defbn/a 
2023-05-07Doettxxn.zipunknown 6814059c481ba3d57c508fee7090637950e3bb3dbf03074c1cceef57a60906bbn/a 
2023-05-07Qghyqg.zipunknown 2909203f7a8f7c1df0a12f2b083c5a006c644f1d77e811522a51286221a0ff63n/a 
2023-05-06Yqpdlww.zipunknown 74b70124ae197221e4929a29fad3666fd8374f3ee807b901be241abc64e907b8n/a 
2023-05-06Qrqvwbbr.zipunknown 1663915a2ca4536eb17ed2b8dfa02e82930180ebd7f1c2cb9cb2ae0d685a2345n/a 
2023-05-06Pvhs.zipunknown 0fe61ad41bc64b28a4a0f1ab0bee13078083364f9a44f70c500a0d5151e9beccn/a 
2023-05-06Ggepxzq.zipunknown 78d4bcda36071828bbc2be05ec52251819f48afa1832d48ebb657e193cbfe3f7n/a 
2023-05-06Jcgvprtf.zipzip 9d67f215daa8b747e6f9bbb8195abcfd3c52173f85f8cc051cded92128721f4dVirustotal results 5.08% Quakbot
2023-05-06Obzv.zipzip afe824be624ec9c7cc9ffb0df89650abad46972b22d94c26690ff0e4efe595d9Virustotal results 4.92% Quakbot
2023-05-06Wvxkgh.zipzip e2a5ac351eaa1c6dd4cec9b4b722cf68c571c92c5d901a8b517a683ab0fc58f2Virustotal results 8.20% Quakbot
2023-05-06Jdlxblyd.zipzip 6158d7946e7c476bf2ebb5978e6814d1613caff75bfb153e8596ed0ec19c2ceeVirustotal results 5.08% Quakbot
2023-05-06Bsurrl.zipzip 0fb5f3aee616efa9ec88620ebb681291fb747442d3ef55fea74d27b7cfba367fVirustotal results 4.92% Quakbot
2023-05-06Wluvipe.zipzip 243700939599382a78a13d8a5d8911645d79107f293d40c31d19b10739429de9Virustotal results 4.92% Quakbot
2023-05-06Rpitit.zipzip 6d4bd7d1a9f3128bb5efee74bcdbcb5bd6a7e9868d05d191624c8671e3908fc6Virustotal results 5.08% Quakbot
2023-05-06Fhnob.zipzip 82e68a7559da474317b4619e14bae75e5ed306f644c33448ff9100124c96cf7aVirustotal results 4.92% Quakbot
2023-05-06Ptxvujg.zipzip afcd84be4d601b1c0883692fd64b4138d36058b35c31fbdab55824438367bc37Virustotal results 8.20% Quakbot
2023-05-06Bxin.zipzip 377fd3c42bd669e2996f2a244e7000074b21ce60d54eb2239b683aea08766e67Virustotal results 1.92% Quakbot
2023-05-06Uhenhow.zipzip 565df047cd5c91421c6a2c231e17efa2e0f11926125f49c9a7a233202f3b48a3Virustotal results 4.92% Quakbot
2023-05-05Jpxcqrvj.zipzip 2e586a3d87ca82d057448ee6d9a11f5629903b03cb00700bb885ed7787a45ae9Virustotal results 4.92% Quakbot
2023-05-05Qjvcr.zipzip 2bec415733abbbdbdee50666293e2587100940839f8d565c48fbf61ba1081699Virustotal results 8.20% Quakbot
2023-05-05Lxcfjn.zipzip 7157a00344b0fb0c413edff1aa0160e1abaacb0eb4de75f478c918b968fd589aVirustotal results 4.92% Quakbot
2023-05-05Zyjiv.zipzip 7023f822d113e11a8dbeef673340db8142285db2a799ccbc4442799734e365c9Virustotal results 8.33% Quakbot
2023-05-05Tusayi.zipzip 75e86e31c113b5b74707a73b939d631355a5696270c1cc9fd3997a3751826e09Virustotal results 5.08% Quakbot