URLhaus Database

You are currently viewing the URLhaus database entry for https://ar-albania.com/esau/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2625516
URL:	https://ar-albania.com/esau/
URL Status:	Offline
Host:	ar-albania.com
Date added:	2023-05-05 14:14:12 UTC
Last online:	2023-05-07 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-05 14:14:31 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 days, 7 hours, 0 minutes (down since 2023-05-07 21:14:37 UTC)
Tags:	BB26 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-07	Szpcx.zip	zip	b72f2f061bd59eca669804556004eebc274d4779653a4db6e685d95932272951	26.23%	Quakbot
2023-05-07	Rikuy.zip	zip	899ed7bd921c28ff2ae4bb7b2a1b76fd0809e75d72219f5ec959e2282c1333a1	8.20%	Quakbot
2023-05-07	Gehc.zip	zip	bdd310b490f45e543e3ac7302835c930d40d651b36e2bb220f5154e4bfd9742f	8.20%	Quakbot
2023-05-07	Nriqccl.zip	zip	c7151858e6a110b62dc4102a65df0ef9856ec137f678c7c40582c83c58589c21	4.92%	Quakbot
2023-05-07	Neopx.zip	zip	2b78cc543125cef3a854fb78c8699d0cf5acafdbfa495ff321bb5cd9d0a7d6c4	26.23%	Quakbot
2023-05-07	Rqbp.zip	zip	06ec0be69a355ce12c19b4db2950c2a53d856c275e5adc6581e7bf9a5d600115	5.17%	Quakbot
2023-05-07	Fcae.zip	zip	cb6cf172524e81fa93043da7df38fbc9549b3d7f2693a8ce5aee478ac3394a0e	4.92%	Quakbot
2023-05-07	Atmyr.zip	zip	133585f69416967cabf8d4d4a6b13620905eb579b32e6cd935e95209ccd7580e	8.20%	Quakbot
2023-05-07	Zqwoe.zip	zip	f8fda404b41f6f6ba487db8d201ec5c8bca59d79bcaad41d086f41dd4d9ba3c3	4.92%	Quakbot
2023-05-07	Uruvhli.zip	zip	70103d8df9f85f36162cd31b09ba41f6f35855b49348e2f23ca7ba7fd6a27930	4.92%	Quakbot
2023-05-07	Aalbkeh.zip	zip	7726e666c2cbe6b90d555821c2c0b6b977376326711bf7e904eefae0f97f8ac3	5.00%	Quakbot
2023-05-07	Hxibztr.zip	zip	88ebb625de7d892bf145bde2a491716abeb8bcf65ba5f7b2ba7046f2a59b1a97	4.92%	Quakbot
2023-05-06	Gkry.zip	zip	4d17d0f69b0ba26f1f4e88c6485b9867489af078d9811d2b98aa3a866da26288	0.00%	Quakbot
2023-05-06	Gzjiorfy.zip	zip	994d80e0f4e7ea4d27f956f6c9911f69f52242a84e5bff0d1d4aa01e2aef0ef4	4.92%	Quakbot
2023-05-06	Lzkpquwy.zip	zip	44eb8ca4de04b5bbea073357ea4f06e549bd04fa0057b11fd8dfaf04b170d8cf	8.20%	Quakbot
2023-05-06	Psqzdb.zip	zip	1221146d535884206a0adb8aa3d191e3aa1a261856862bdc759c6f3aeaf9f6f4	4.92%	Quakbot
2023-05-06	Mmik.zip	zip	307baac6fce8ab2cbde098e4a666c5f4e6c60375ea945b7ae5f4f28e179bd1ca	4.92%	Quakbot
2023-05-06	Xwisn.zip	zip	7e076c0cf112d610ad3e4a42e7c459534eb16568fd43198f9555ce59d1d76163	8.20%	Quakbot
2023-05-06	Pwuoi.zip	zip	35266f8cfb777ba52c690a730281bfaefda0289cb710f863c74f320e53a74b48	5.26%	Quakbot
2023-05-06	Gsos.zip	zip	bc572453d1c1bdb207b7d11298a324bf6dfa0e649593913a3713cb58f2626e01	6.90%	Quakbot
2023-05-06	Sitrc.zip	zip	a666b13f11c039b6407c86d9e4374925a756132751280c76237af9190f58c925	4.92%	Quakbot
2023-05-06	Fouxf.zip	zip	2ee38899697bfba307b513df9cbcd239d011748db13777fd192d28a849a24de7	4.92%	Quakbot
2023-05-06	Vixtj.zip	zip	eb9b8987a4e64e113014748586974f011397d4c96a5a033ab9e6972a90366fe5	8.20%	Quakbot
2023-05-06	Oetq.zip	zip	771d0eb22d6cd86c583b1ed5320e1ea9e10794b96227cd1e3b08c277d41f5b89	4.92%	Quakbot
2023-05-06	Hohb.zip	zip	8ac22a6c4e40b97c4a0d7e8081cceb1ddb6ee6cf5acb0f00b19607c4ef7654fa	n/a	Quakbot
2023-05-05	Jdzepmv.zip	zip	34f044e34ba9684847c9ce8e9dc747d0ccc181b8d8fa6087e77d46a93a8feb9e	5.08%	Quakbot
2023-05-05	Lfjlzve.zip	zip	dada64c9ece3c727c4326671631ef1e51413ec87318d93b7ab6e7807ec6be90d	4.92%	Quakbot
2023-05-05	Idae.zip	zip	433d5fc2e0f2cf2ea9bf6dca5f888c100abd8c3fd224d504f733b0b3a06693d1	5.00%	Quakbot
2023-05-05	Zlihc.zip	zip	ef9adde44569a9214c25f10ed039f4810f71bc80713a300c730277a839fbe2bf	5.56%	Quakbot
2023-05-05	Avdesuck.zip	zip	b6f51fed9cb1b56cb1d4d8f0cfb8ca4f182e15ff32950efee10d9e03f5bbbcd0	n/a	Quakbot