URLhaus Database

You are currently viewing the URLhaus database entry for https://zedangroup.com/cte/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633019
URL: https://zedangroup.com/cte/?1
URL Status:Offline
Host: zedangroup.com
Date added:2023-05-15 17:22:13 UTC
Last online:2023-05-17 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-15 17:23:47 UTC to noc{at}a2hosting[dot]com)
Takedown time:2 days, 4 hours, 31 minutes Poor (down since 2023-05-17 21:54:47 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-17Efpw.jsjs bbea073ee85951ed23e95e826bbf93fe5f1cd1885d0b88476ba2cd5a1e6bcedcn/a Quakbot
2023-05-17Mdwoyamg.jsjs 92541d594f60bdb46e24073e3720e0deb32a8bb5a4409a44b650b790dbeda309n/a Quakbot
2023-05-17Cccqihgx.jsjs 9fb9192d902b2bec0253263ac7de12696284a3203d04c735faf491c94c94ed32n/a Quakbot
2023-05-17Lnow.jsjs f0ba5660e9ba7e62c93207a7b6fd775ee56ae1fa8dfc2ece0f169a6e96076681Virustotal results 25.00% Quakbot
2023-05-17Xrgx.jsjs ea84f700c5132b793e8bbc20dd9383bd71e86ffe8be7ec16ec7fd5ada9cfb33en/a 
2023-05-17Fkqaogb.jsjs 6a2c26dc0efdfc1c4fdf83525f29de723f3f77f866558ce277756af920925c89n/a Quakbot
2023-05-17Psym.jsjs cadf3b701a796ab414a9adb1d3c761ea95dd6b2b518dd9d9f1034a9982d8fc30n/a Quakbot
2023-05-17Qvwnw.jsjs 09e06dd63fdc3686337f6cc0069f8e61b8618bda66e0e7ead643d3e0b3bf1478n/a Quakbot
2023-05-17Qlxp.jsjs 1605bd530ecec30d2a5cc69dd7ce9e755622bad253ab1fdbddd7d106c2c118c1n/a 
2023-05-17Zujkikzr.jsjs 6eaf44bfbebb7da48b2f1be9bb08090097499b296f0215a1839f2a6f29af354an/a Quakbot
2023-05-17Tdis.jsjs 05fd12dbffd8b71c6262c82616cfa915150ba7567ca4e3d334b0a96d376b89fbn/a Quakbot
2023-05-17Vyggy.jsjs b3cb30bea0d64e9f1c5f29293711938052d6bdea79a97dca47f2ba5b86422d9en/a Quakbot
2023-05-17Jqjdfgk.jsjs 0cea5eeca40e75d97d6c2cada8a834cae671cc11c15d18c99b93bb0585c0aff6n/a Quakbot
2023-05-16Dimguofu.jsjs 02536ac3ea7e2395e33f73551ab3c1863cc59122981c1fb7c1ea0d66991435ban/a 
2023-05-16Xbcsmhl.jsjs 605e553605365175c65c5e5b31ae2f08ac0da8afd7cf164d5457814c0859aabbn/a Quakbot
2023-05-16Lbrurdvh.jsjs ada2b4c4c2373ab3a8e597ddcbaa4b0ccc07b2989806ca1aae59641f08560e52n/a Quakbot
2023-05-16Ahwwbndr.jsjs 06c03c0bf3a16225e49f621aebf8602313e6d80a30789d05241d542fe63b3848n/a 
2023-05-16Ciultad.jsjs 09cbd9a0c43a1bac2f766e36e045d02eeb9b2b48124a42e844d03f877535ce01n/a Quakbot
2023-05-16Wimauzo.jsjs bcbb41426ec3bd2accd10d5b3a24c9ffb0238fd449084d527ad67ca08201639an/a Quakbot
2023-05-16Xwkrim.jsjs d63dd030f098bfdff0283864f2b6741313ca1e03c881857ebbad0c4ba98020bcn/a Quakbot
2023-05-16Avthtw.jsjs ee19e6703948f3aff0eb48203ee3f225c5be53579344483b16a1a5f01507615fn/a Quakbot
2023-05-16Mllhhiqo.jsjs 837f0a8f58bfc6decb7b1cb280b927aad0846fa871ed80f0f05b205785907d06n/a Quakbot
2023-05-16Yymwmby.jsjs 0fb8753e9cfadc8c15c78ae5a9e276cdaad91e296f9c8d6fc9ee33cb6bc708abn/a Quakbot
2023-05-16Simabrpr.jsjs 77b37a11f05a74b39246ca7adb73f1c9d3d2cfc54a2d503a2dc82b15e572499en/a Quakbot
2023-05-16Zrrmxdlm.jsjs 116e5ddd6a87d4f5fff4206c931d3c44b1f0ab964da7235d64de3a6463f5b2c9n/a Quakbot
2023-05-16Xzblt.jsjs 990aa9bd5a280f79a8dfe3d0f4d90b05ffba410d18db5ff666f95bbcb62d7e58n/a Quakbot
2023-05-16Yxeid.jsjs eb2849404eb8c87cfc7da81397f8c69cbd94c678e9e56b628fdc8c0ee19458b3n/a Quakbot
2023-05-15Qxjzg.jsjs ee7729b9293921270655a02a92fbf0d3d6cb7d1d4ab822fc85694cd0620fe167n/a Quakbot
2023-05-15Zfszti.jsjs 495092850b50b2229d91810f922e95a09b25de0ed93b6487a4cbaa26663af500n/a Quakbot
2023-05-15Alnzs.jsjs a686551bc74e05266439efb0a7941925bfa25c89b12e22093d77a3c4a7e5cc14n/a 
2023-05-15Eymgfn.jsjs 124449d6efbb306b8a4c60c49d1f1fe698faaecc15031faa8c1c7cf529f8f239n/a Quakbot
2023-05-15Cmxirzce.jsjs 5ba1f25720a89481b6905f41564cf233313eb51206451ea5a852c787a939e20cn/a Quakbot