URLhaus Database

You are currently viewing the URLhaus database entry for https://reposebay.com/vlta/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2645607
URL:	https://reposebay.com/vlta/?1
URL Status:	Offline
Host:	reposebay.com
Date added:	2023-05-30 12:09:11 UTC
Last online:	2023-05-31 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 12:10:38 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:	1 day, 9 hours, 28 minutes (down since 2023-05-31 21:39:18 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_C059_May_31.zip	zip	e0ab39afb808bda724a42ec40476d313b3a82104dd300b8aaf52ff9f78f1aaea	20.97%	Quakbot
2023-05-31	doc_C168_May_31.zip	zip	d76b9a6aca6f418cabd7bd81a2eab9c4bf8634ae9a112551713ce1faae841060	n/a	Quakbot
2023-05-31	doc_C128_May_31.zip	zip	46cefb05a544b05f161d0e6b82b4767a63ad63044f9285ee22bc988ec3ede860	22.58%	Quakbot
2023-05-31	doc_B083_May_31.zip	zip	3b651458a90a4682c66630aec823896addbe7e3e62011fb03e5649020d5c3464	n/a	Quakbot
2023-05-31	doc_B239_May_31.zip	zip	033810a191bfc1f66d4fd6507cb86fdee6bee2d975aa853fe9b9c41501bfc139	n/a	Quakbot
2023-05-31	doc_C528_May_30.zip	zip	148580179ca52675c896504849e8b4ca4590f80523490cdd6d0d07da54430768	20.00%	Quakbot
2023-05-31	doc_C792_May_30.zip	zip	d6376efffb23799c409931cabed23dd46a60f12311907af201a615d2d4180d45	19.35%	Quakbot
2023-05-31	doc_F047_May_30.zip	zip	7a7b08b33fbe6193651d402c14f72d03475eee3ffa8787551f8e31ba6f263890	20.00%	Quakbot
2023-05-31	doc_A895_May_30.zip	zip	263effc681e4f833d87cd0d172086f06ca615b29e4e21a470bb9ea8317f9b814	20.00%	Quakbot
2023-05-31	doc_E356_May_30.zip	zip	b384a58e611e9d9dda1075c5155649ee177959178fbd64e77398de90eef0c663	19.35%
2023-05-31	doc_C936_May_30.zip	zip	5b4d4eb09148e4061b96502ee6d99f864ee7ba428589221e03ff70dd06a93815	20.00%	Quakbot
2023-05-30	doc_C109_May_30.zip	zip	0c6e968f2b954540ea3cda66cf4f86978f0895ddb6b2d4bef005d48e6a991a2c	17.74%	Quakbot
2023-05-30	doc_B923_May_30.zip	zip	efbcfc01f47caeb52a21b7b94b238d70fa928a74e9e2d237356341c4ba037bee	n/a	Quakbot
2023-05-30	doc_D862_May_30.zip	zip	6efc39d77ec6225965d09f545e5c27fa883a1b5a21a74edfabe017c71cce6b08	n/a	Quakbot
2023-05-30	doc_B874_May_30.zip	zip	4b3cb9364dc6cec8e6afd70eda1e5a8fe80881fab2ef2e425ff0a1c812235386	n/a	Quakbot
2023-05-30	doc_F256_May_30.zip	zip	01216be7087ea5da724598504502784daaeb259669848dc3a59f6c5c989f8275	n/a	Quakbot