URLhaus Database

You are currently viewing the URLhaus database entry for https://travelallegypt.com/qu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2625585
URL:	https://travelallegypt.com/qu/
URL Status:	Offline
Host:	travelallegypt.com
Date added:	2023-05-05 14:14:29 UTC
Last online:	2023-05-07 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-05 14:20:35 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 days, 5 hours, 42 minutes (down since 2023-05-07 20:02:50 UTC)
Tags:	BB26 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-07	Ayegufz.zip	zip	45cd1fa1cc447c4d12d25e49731b04736b65818ee64ff2e3e3ea7400a98715e5	4.92%	Quakbot
2023-05-07	Wmozm.zip	zip	a1427072573dbb79f068e364ac55923526f72a407b996b17d48ba6b514520e3b	2.00%	Quakbot
2023-05-07	Rxocrlm.zip	zip	d0532e7a9206274d69727e22b2780af03012c979192ca0a192c5e7e26bf43838	4.92%	Quakbot
2023-05-07	Zamywpx.zip	zip	b83da2b20a95dfc2f8210a5d86b66aadce6ddbb72d05ed3d16d3638922650f69	5.00%	Quakbot
2023-05-07	Bhag.zip	zip	68765e60e232532df59306df7d45d7574264ce39658e3c72ec48bb855ce6e5d7	4.92%	Quakbot
2023-05-07	Souefzwy.zip	zip	c09026867cafccfc54e3d64228481244cbf0392ad863bdfcf7bc5b523e05b3eb	4.92%	Quakbot
2023-05-07	Htanbx.zip	zip	8359abb6fcc7274e6160ca6bb81d7617a158a0eba601a73fba0e8db34be57c1f	4.92%	Quakbot
2023-05-07	Llfsnmcb.zip	zip	eba95b7cbca54f9b76200d8dc96eaa960f54b774d1fb4e80545e78eb8df53e4c	4.92%	Quakbot
2023-05-07	Hyaknjh.zip	zip	c17661d13adeb3919402228ec1d1fb37837451df0b25212a4bdc713b928f2793	4.92%	Quakbot
2023-05-07	Qzbuhs.zip	zip	f82965906bc535f9d85696ec1ab44b085e027ca5370a8d493ea74077ecc023db	4.92%	Quakbot
2023-05-07	Xpunx.zip	zip	def04058b6757312d7d72dcde2120f622ab01b3729d10bdf785d1bdbd20699fe	4.92%	Quakbot
2023-05-07	Bsmd.zip	zip	7e7097c25ba0059b6075e4a1921f7f92a62380a557300946ee3a6da33bab6d81	8.20%	Quakbot
2023-05-06	Aooeut.zip	zip	24f84d7cb73ec00b2cabca01f7737b4ab7babe498f90ee04f2428e6825dc9938	3.28%	Quakbot
2023-05-06	Culpuu.zip	zip	b3579768fd50b6ea332a02aa6c84aea9fefe53d3b53c0d0a5ab48c8d22a373ea	8.20%	Quakbot
2023-05-06	Kscokz.zip	zip	07af8e05906ec0c572e7224f7dde2498112fa80138d7c290f8083f25b60380f2	4.92%	Quakbot
2023-05-06	Ozhcl.zip	zip	78368a34a97d0be547b19db05ceea06a383e9c726cb1f4f947522cb86cdfd359	5.08%	Quakbot
2023-05-06	Nsdwsz.zip	zip	8b5f65bfee3a1859cd8532a4c3305f77686003248836f875c81314a19b4ae99f	4.92%	Quakbot
2023-05-06	Gpiguaav.zip	zip	f4dc383f6ac65b98183e9084d1047356dfd7fa4622d58eaba07ef45ae7c1aee3	8.20%	Quakbot
2023-05-06	Fdjafpa.zip	zip	dca35ad7a50a496d0869011a06ad856c857bda6504ed872413681b3ebd6c9f6d	4.92%	Quakbot
2023-05-06	Wbus.zip	zip	420c54d502a3c9def7927955d620a654227f66099d77278e654abdb519642d77	4.92%	Quakbot
2023-05-06	Wkyiqaf.zip	zip	1aac63d55f5a99b8e84ea610b9b7e9a1f60a509d86b31d7ecc29cbe588122701	4.92%	Quakbot
2023-05-06	Ulaya.zip	zip	7bda4094262ffe421aaa5a7102556d118c6b5f661b8445657e1500ed61582244	4.92%	Quakbot
2023-05-06	Zhrxta.zip	zip	06ec0be69a355ce12c19b4db2950c2a53d856c275e5adc6581e7bf9a5d600115	5.17%	Quakbot
2023-05-06	Rjkudpbx.zip	zip	d78d3cff273e66b043fecbda4b0f3b4189b0e5ca8499c59a0d3a6034813ea377	4.92%	Quakbot
2023-05-06	Bqdaf.zip	zip	249991a164cefd2bb637cb83b1cf3912b4c064e15132aa7fb1d5b6a7f16ddb89	1.64%	Quakbot
2023-05-05	Nezz.zip	zip	99f0714e104d6c59e44e9b3d1d4c7118a70ed5204b821ea448f9da37bb4021da	4.92%	Quakbot
2023-05-05	Ynvxma.zip	zip	b4c9dda062ccdd14a3426bf1c58f5354e2832c9240f38a240d4d015a73d5dc24	5.08%	Quakbot
2023-05-05	Aibylm.zip	zip	74351c76cab3e50af9ccd9c0eece52fd128fee0a7879f2b5f59ec7124f6447d9	4.92%	Quakbot
2023-05-05	Tyrcls.zip	zip	b95ba62a11837b569bef66ccdca5db4198fc5d4d64f38c90102265d219039ca8	5.26%	Quakbot
2023-05-05	Mcjn.zip	zip	23fab9359ca6d220af47017deb10c5932e6334bfb6234ba9e181e80ab1d6bcb1	n/a	Quakbot
2023-05-05	Oozxpona.zip	zip	a059f32267f0f2349cfcd2c28f3405fca060a4cebf2eaad4124b959833fae9a3	n/a	Quakbot