URLhaus Database

You are currently viewing the URLhaus database entry for https://prosoftitservices.com/cqe/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2645628
URL:	https://prosoftitservices.com/cqe/?1
URL Status:	Offline
Host:	prosoftitservices.com
Date added:	2023-05-30 12:09:12 UTC
Last online:	2023-05-31 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 12:10:57 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	1 day, 9 hours, 49 minutes (down since 2023-05-31 22:00:49 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_D807_May_31.zip	zip	a7b5b1753575d18738e9327f4a7af9a79c9e6fc7954d08224d246079b521852a	n/a	Quakbot
2023-05-31	doc_C650_May_31.zip	zip	1f553a3ecc81453a926a739d4ef2ecbcb776e92b57cfcaedb389758d4c729058	20.97%	Quakbot
2023-05-31	doc_D814_May_31.zip	zip	07810a70725c2a111a4a427f4a6a750c56c3afe24356690bda2d9ab3d48eb710	n/a	Quakbot
2023-05-31	doc_C651_May_31.zip	zip	c0615061365bf814db82c8eb976d9c8148afd5820c775912a56e4849e25d2301	21.67%	Quakbot
2023-05-31	doc_E709_May_31.zip	zip	9e21aa3a7c9ff4c1496d1b68fe50a4eb0d07bd0a94b920cfd36ab229c2236995	n/a	Quakbot
2023-05-31	doc_D210_May_31.zip	zip	025506f1ea42dff0c10710f03533413bf8bdbc5914ae7e9f82d6e9d2825b4420	n/a	Quakbot
2023-05-31	doc_A795_May_30.zip	zip	4e2b1721d32db12eaead98ab6a6fc57a1fc43df0ec916b139b685d40f05ca97d	17.74%	Quakbot
2023-05-31	doc_C812_May_30.zip	zip	88baeb9d7d566ff8c719c3af052b6a5e9b36b4d394999fcca1c1b0fad6c25377	20.00%	Quakbot
2023-05-31	doc_C645_May_30.zip	zip	bb97e8c4453885c8465c6b1f2705d9fd51f960cc40c1303f9fc10722ec481501	17.74%	Quakbot
2023-05-31	doc_E641_May_30.zip	zip	7b9732c887e5a20b342ea3c0478f0b75648243a6c9a691ec22bf1ef71213fbf2	19.35%	Quakbot
2023-05-31	doc_D574_May_30.zip	zip	1424223b2c5285652263eec3bcf4001b71c2bd7645c9508e11adc9d00330da0d	18.33%	Quakbot
2023-05-31	doc_D472_May_30.zip	zip	271c8f0ae809f1ab1cf7cfab73abecc9fb08f0fd9007a192c1890488367230b6	19.67%	Quakbot
2023-05-30	doc_A205_May_30.zip	zip	79b287d6430603e26a1efccb992ce8f7d61fa94d73e1510c7765402770dcc535	20.00%	Quakbot
2023-05-30	doc_D598_May_30.zip	zip	ba4e489bb1ee20e4c8b9e30a6d73063280e0fc5f4f1523d9362f7030f822c2ae	17.74%	Quakbot
2023-05-30	doc_A463_May_30.zip	zip	ca2fabf9e00e2607f4a51645f71378f36f90e978120dadc736766892f7201b76	19.35%	Quakbot
2023-05-30	doc_C891_May_30.zip	zip	0210c715c2b1b55aa24da271b1c5d640a860faa79300c59a5bf7fe899e14940d	20.00%	Quakbot
2023-05-30	doc_D803_May_30.zip	zip	5173749e378704f14c106cf3ca74e882fec8d71134ca97524c70e4c0fc1d4c45	n/a	Quakbot
2023-05-30	doc_E084_May_30.zip	zip	d6e1c8775ecc5a635bad588b2d4f2fef123b114f577f38b6090acda5d1fc9721	n/a	Quakbot
2023-05-30	doc_A139_May_30.zip	zip	efad22b4e72d1b36dcc9e0a76f610d371a825701bd20244ba0b20584c616a4d2	17.74%	Quakbot
2023-05-30	doc_F394_May_30.zip	zip	000b2485f77c9fee89914ebea1f7d1ae5650e4e02feb4929d969aaf39c3e6f6f	n/a	Quakbot