URLhaus Database

You are currently viewing the URLhaus database entry for https://idrogeolab.it/oaem/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2640716
URL:	https://idrogeolab.it/oaem/
URL Status:	Offline
Host:	idrogeolab.it
Date added:	2023-05-25 12:00:16 UTC
Last online:	2023-05-27 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-25 12:01:48 UTC to abuse{at}register[dot]it)
Takedown time:	2 days, 10 hours, 22 minutes (down since 2023-05-27 22:24:38 UTC)
Tags:	BB29 geofenced js Pikabot Qakbot USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-27	671.zip	zip	554f63cf90efd48c4f9f12f45009fd6b4b8cdf30e448cd87535db81125dca4f5	20.97%
2023-05-27	921.zip	zip	7a7a06cfcaaac758feb46130f040151cd34231c780450565ff5a27ac4a3deab7	27.42%
2023-05-27	354.zip	zip	5c95d74a8f4b5b38aa9e4bc0feaeeb63278de2e3ed6b6269f21e82596382dc15	19.35%
2023-05-27	233.zip	zip	74dc850934bde1dbf5296898cfc577bf128d7fbc56545c7929c50aef7c725ec0	21.31%
2023-05-27	197.zip	zip	e36ed36f59d9f591f6cdd2bd38a28cd405a7270c3d17c7e7ee8f0eeed51b58a4	19.35%
2023-05-27	475.zip	zip	d61e8aefe1de0fa7df53a790207c9b646e7740015514568d6c8f984f9a03f213	17.74%
2023-05-27	188.zip	zip	0c4bcb4e446eeb924946b82b4b5044b7f40f1ba0137166871487bce23207020f	24.19%
2023-05-27	881.zip	zip	c40adcfb00e3a2342bcdc0cfddac2992584a7b09623a86589cdad5cc88baf3a3	n/a
2023-05-27	657.zip	zip	8e2608a33af421b00c3c5ac059965bfd07807a88e8dc835af31a3a35039b36c8	20.97%
2023-05-26	164.zip	zip	c8c0e42335d2cdfea7f50e3366110b20ae3a1ec09eae3ab14c102ce450a8c445	25.00%
2023-05-26	799.zip	zip	35ccc3ead43c81f9ec75bcea373dcb0617854daba6e773ed31aa9cbd8be19ac9	24.19%
2023-05-26	176.zip	zip	b1646fa3136c4fa3646607578fcd786b51d264ed2f6113c1445d3920f8cc2c82	19.35%
2023-05-26	203.zip	zip	22c6aeec61abc8544e82a1654cb1f1b1ca67402e7c57a992b760299c0a0c8032	17.74%
2023-05-26	62.zip	zip	3ed2185fbd1c6200de3b6c7377fa8b50dc7bc7781a3dbf30df6b56b8ddc4a056	24.59%
2023-05-26	697.zip	zip	c1a5657dcd2a12dbb7b1dca5847963e72661f8aa2059ccb16233f656101f9c9f	22.58%
2023-05-26	611.zip	zip	4bd30ab0cb4ccf1001cd067868407244ca9335d893108c9afe7859b7bbd90c67	14.89%
2023-05-26	521.zip	zip	4fe32958940ced183573e6d8ad9006b33bc4214dd172c2444987b8616c487514	24.19%
2023-05-26	502.zip	zip	6655567cd9c19359a968fe4f4cd3f383a5476572fa207b3f1872ac1e0e28fd2b	20.37%
2023-05-26	411.zip	zip	f3920a7006602ca491ae98ebdbbb0e959684bf7a591c35547c9564b01be31d95	16.36%
2023-05-26	845.zip	zip	93d4354431b3e348d540575eb7ca40710ec6421ca3507a753a23027dfc6fd7e7	23.33%
2023-05-26	951.zip	zip	9dc5367565f24c2cfaa99d38a11602cbc648c42415f40c1294182a9debe1e7d5	n/a
2023-05-26	40.zip	zip	f3660b535d433a943447087142d7d7926a1a1121f704a75367865abe01180b0e	19.35%
2023-05-25	264.zip	zip	b7b72574296dcca82af706abb0972d151cdc86a171e2a08398fb0c35d64d39ce	18.03%
2023-05-25	589.zip	zip	c451ff54f253df1412fec3913fc1b216484f6a9bc69d95443fd40ceee9056bc6	27.42%
2023-05-25	696.zip	zip	c8d9d7b0f3b124f9b4c34c014f6e3d0f4f7206064db553358e60c1ab03f817e2	17.74%
2023-05-25	190.zip	zip	df08c1da8851745c641eaf64d4b930804f8b1e200ff4da8fcbb3f0b483057b6b	n/a
2023-05-25	450.zip	zip	01f1b2ff4e523ea5ae56c8439962a030f05c1ee4096be5d93231a2830d22378b	n/a
2023-05-25	741.zip	zip	3257e69fb1e0c27d7cac1ce85f2c4156797be1979e33744e991a1e1998a3b281	n/a	Pikabot