URLhaus Database

You are currently viewing the URLhaus database entry for https://sufirfan.org/armu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2640708
URL:	https://sufirfan.org/armu/
URL Status:	Offline
Host:	sufirfan.org
Date added:	2023-05-25 12:00:15 UTC
Last online:	2023-05-27 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100121493 created on 2023-05-25 12:01:04 UTC)
Takedown time:	2 days, 10 hours, 31 minutes (down since 2023-05-27 22:32:26 UTC)
Tags:	BB29 geofenced js Qakbot Quakbot USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-27	494.zip	zip	c79d3fa03186207f3c442ec766a94e930c04d9f1000812b6ecfa253ceb1eae99	20.97%
2023-05-27	210.zip	zip	a850620d57d610c57609e8106ba15c02f17be2bdf12236542362ad6138b236bd	20.97%
2023-05-27	928.zip	zip	a887a4a78b67f6d1f3886eb7baa35edf3ddf3e6fef23460c4e29702c74532175	17.74%
2023-05-27	499.zip	zip	349d6ee5664444813d9f6a1f306e95f1299ac83676c843579980b878f0009487	25.81%
2023-05-27	176.zip	zip	b1646fa3136c4fa3646607578fcd786b51d264ed2f6113c1445d3920f8cc2c82	19.35%
2023-05-27	192.zip	zip	1511b9d6b807a4944554cf60ad74f86ff22a966a601008466ced8cf35e854a6e	37.10%
2023-05-27	472.zip	zip	b19d86b29c80ef6aa3d8a5f108a1f1ef609d5a4a5c199a6dce25a414cad9f662	22.58%
2023-05-27	287.zip	zip	3f2ea3eb7964e6dfa79a2fc3fc2397f4e81c18302bcf73742f24a8b0bc14a60f	19.35%
2023-05-27	564.zip	zip	7b81bf8b0df96aa957d3629db34ab5ebd45edc39fb8afe5aa4dca2d596aa96f4	20.97%
2023-05-27	155.zip	zip	093577e2e8e5b1b1d9d5d3b64a59a657833136e41cb1332d24d73c125caa52b2	24.19%
2023-05-27	454.zip	zip	6165b0936e28f05ed2de1d1a9c90d090a5bc0ded107a94c841b1afb68afa37f3	21.31%
2023-05-27	297.zip	zip	cd8b0a90db2e8a2cd5b7b73ffd8913ef1059cc7d5e5fbcda32e0044081a6a20c	22.58%
2023-05-26	969.zip	zip	5ce5e799c161e625eaaa7b9d64c0647e8afa921f29b2e0494e73182e715aa52d	24.19%
2023-05-26	78.zip	zip	d3b2b0e5545803cb47da1b4146a7147f44b1cc322a6cba1c8423a778d30544be	22.58%
2023-05-26	380.zip	zip	07092a9412a12b027de92e525c8583481568bb92c5673f5e4cede11fa322eaf5	22.58%
2023-05-26	234.zip	zip	c71fdf2ca8a665268f063935e0728a1803c53742cb5aa7e6b7961da3e9e6181d	20.97%
2023-05-26	858.zip	zip	44f0ec4b0e64ba1b536e314fdf3f54329673eb6ccc6b4f24f59166a07e9a7da6	22.03%
2023-05-26	337.zip	zip	9b9aad7753529dbefb21800bb6d68f4f2d7e597afeef8ccbd81817ba7ea3ca30	17.74%
2023-05-26	496.zip	zip	231e2c97c5958c2974dee3b508a815920b9c789df2d13d5f537514c39ff3dfe0	20.97%
2023-05-26	856.zip	zip	d5a8ba93b726671ad35125b50fbafc9c3bca1b2e0f897de772b5d6a3703825e3	20.97%
2023-05-26	171.zip	zip	0a4deb2419c57f3ebebad57c8851e8ad5d46393d5a0f8d300c36d38eeea5a61e	16.00%
2023-05-26	304.zip	zip	a3facf35d97b7d2a26af14108964de40a8e57b885c6c1ac2d62a65b66664ee33	19.67%	Quakbot
2023-05-26	516.zip	zip	ea43fb89577d4e3c92bef86919bcf94ffb1338bfe9e2e25588c1236af8448fbc	20.97%
2023-05-26	933.zip	zip	f1ad11da084094b4055835def3f79c28df36fd96c300267f961cf02facfaba95	20.97%
2023-05-26	748.zip	zip	996499a26e2560db9c9f81e64f4efa88b7acf980c0bf1672f9abee4ccb861dbc	18.03%
2023-05-25	174.zip	zip	4a3bfbb3d956f8ec98dee7c8db05f0d83ec96f2762611e64f5657ba3055e5ccd	25.86%
2023-05-25	601.zip	zip	f0ff6721edaea7a07332284483fa2db170d6e91a884df609915c2875e964ed03	22.58%
2023-05-25	37.zip	zip	32b1dc43ec75d20bb02faaed421e3ea631353a67d8acfde895bb3bfdc10e1938	25.81%
2023-05-25	335.zip	zip	32b6d586107c81572fab9d8bbe24bbae1a3da14e83ea5db6126b319c68d1e19f	22.58%
2023-05-25	361.zip	zip	3ca2f31000b66cb200b03b4a00986860a087bcf28d1282c2ec62808261d0c3be	19.67%
2023-05-25	545.zip	zip	c0dc7a065cb3ef184107f4e4ccfc8de47cd5d740ce8983a526ae83ef14c69b21	21.67%
2023-05-25	133.zip	zip	a8d0cc86fbe9dd1eb0101f5d7c27d8c7602711db1b45743a2b59a0de794f3416	17.74%
2023-05-25	726.zip	zip	069e5d686886895977b43113d5f48dcf14db64b7852ca8dc385d3f4fbc3c640c	n/a