URLhaus Database

You are currently viewing the URLhaus database entry for https://essayever.com/nimo/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2625506
URL:	https://essayever.com/nimo/
URL Status:	Offline
Host:	essayever.com
Date added:	2023-05-05 14:14:10 UTC
Last online:	2023-05-07 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-05 14:18:21 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:	2 days, 7 hours, 13 minutes (down since 2023-05-07 21:31:42 UTC)
Tags:	BB26 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-07	Dxhgqw.zip	zip	4ec87bc058cca2a52ac094466508ca892efe311df016afbb8eee291eeb653b27	4.92%	Quakbot
2023-05-07	Dzihoa.zip	zip	0c72074c41c483903bc94628944b4cfa7b3b1f6214c0c37b8ed7af03889176f9	3.39%	Quakbot
2023-05-07	Gpizqknz.zip	zip	c305ea70df2652b239cdf5aab0097977ac6e08e5066c14efc0735cd405ce7b8f	5.08%	Quakbot
2023-05-07	Fefmyjex.zip	zip	7d05e263b090abdf51526a9458c89e72e611d4361a3e6d5980d58303eaab948d	0.00%	Quakbot
2023-05-07	Mqbx.zip	zip	85984de8e09a62c68c5d20eb36864694efcf6fcc17fd4adc61b96fce6a152d46	4.92%	Quakbot
2023-05-07	Ccqi.zip	zip	1fd36f67e148ca358e03415a7bf7a232ea50998a55fed0ea33e64b1e376c53dc	5.17%	Quakbot
2023-05-07	Tpqveul.zip	zip	44229344c5ca031c5167424b61355efa5648419327495fd1af85ba28ef06fa50	8.20%	Quakbot
2023-05-07	Plfa.zip	zip	1221146d535884206a0adb8aa3d191e3aa1a261856862bdc759c6f3aeaf9f6f4	4.92%	Quakbot
2023-05-07	Lmbpm.zip	zip	fceafe41f3a8fab90c038ee6b0a89738ad8330d525743b80402ef31812a15ec8	4.92%	Quakbot
2023-05-07	Kyhekgql.zip	zip	7023f822d113e11a8dbeef673340db8142285db2a799ccbc4442799734e365c9	26.67%	Quakbot
2023-05-07	Ddeggqby.zip	zip	a666b13f11c039b6407c86d9e4374925a756132751280c76237af9190f58c925	4.92%	Quakbot
2023-05-06	Fmftvyt.zip	zip	711cd18ada4f54bf5711f078eb49d549eb484909f1558b00baecae0323d7cce3	4.92%	Quakbot
2023-05-06	Ebuzyzl.zip	zip	d13ceeaa3b0731a5ad4f3db3d725dd208dba0cefdde09daf72de03bd8b30a2f5	3.28%	Quakbot
2023-05-06	Huumlc.zip	zip	ce5062702c5f385ce9cb24d9995ef0a52f9892f7d461e18289244ab19f39f7a4	4.92%	Quakbot
2023-05-06	Vcsy.zip	zip	d2852dda62e9a4854404b79b6b5a606759cbeb7be17d814d663bae8f89711c99	6.56%	Quakbot
2023-05-06	Fntwaj.zip	zip	06ec0be69a355ce12c19b4db2950c2a53d856c275e5adc6581e7bf9a5d600115	5.17%	Quakbot
2023-05-06	Gwierea.zip	zip	21c091c5c1b5cb8a97ba7c98116fb075058fe2f1b78d66be6ad242d5cf07ea4c	4.92%	Quakbot
2023-05-06	Jujiwpf.zip	zip	2854e32d82affd16937c49ed5abb7f546a4cb7cbb81febc86d669fff5f416a75	5.00%	Quakbot
2023-05-06	Nyfdybgt.zip	zip	435700f0bd5b8f714ba9ab84220d9ccff1352f192b05d2fb9249a986aa8b89ac	4.92%	Quakbot
2023-05-06	Whyci.zip	zip	78b4900798f88264028a32451063a086dc911adae43c6484b41b368439c23672	4.92%	Quakbot
2023-05-06	Ostb.zip	zip	d19bdd05135021c6359b90f69ee922e15e9a6e8121d0fc873a7d32b56c9c325b	4.92%	Quakbot
2023-05-06	Cdbcai.zip	zip	f763a4c02382f96b4d8afb8f6d7b0e3e2a6d0aa9b7c433722b0a7c6b753dcc9b	4.92%	Quakbot
2023-05-06	Adfvdnmm.zip	zip	573d9793d4c2bec7d343bf1d72da52c412147768a5ac439b78924b34b4883457	4.92%	Quakbot
2023-05-06	Yzwkkjpr.zip	zip	c7151858e6a110b62dc4102a65df0ef9856ec137f678c7c40582c83c58589c21	4.92%	Quakbot
2023-05-06	Psuzyn.zip	zip	54ad513c66097bb3b7b944cd72ca5e0aa7ce880268ef96c53b9be8c03b1c478e	6.56%	Quakbot
2023-05-06	Dxlakan.zip	zip	37343b385c1a84bc82dd38e6eebcec742cbd983fbc1bd9d48393dfed2dc560a3	8.20%	Quakbot
2023-05-05	Mjbggmbj.zip	zip	78714fae1bbb099ddc0671299114221e0e96aa8962b51d318181ad69ba8a54fd	5.08%	Quakbot
2023-05-05	Kvszdvp.zip	zip	74f9d9121881c62a74a3c4d2cf54a94d5f09ccbb71bea4f84ca685438e410b10	5.08%	Quakbot
2023-05-05	Uzid.zip	zip	bb1cae071f4e5c38a3b82204c72d29d592247e28428960ed0768c1ebb3908162	4.92%	Quakbot
2023-05-05	Wwftpy.zip	zip	f52a52933f06239cfd60a948a9c7e6e0f8e33bbb14ff794a654afde0f76bbb34	4.92%	Quakbot
2023-05-05	Namscc.zip	zip	de05c6d13140f8e3e5187e1dc8be9d0e7eda892e2b77c8d2d66c186bb50eb2ee	5.00%	Quakbot