URLhaus Database

You are currently viewing the URLhaus database entry for https://ortopediawong.com/iai/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2645652
URL:	https://ortopediawong.com/iai/?1
URL Status:	Offline
Host:	ortopediawong.com
Date added:	2023-05-30 12:09:19 UTC
Last online:	2023-05-31 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 12:11:18 UTC to abuse{at}hostgator[dot]com)
Takedown time:	1 day, 9 hours, 29 minutes (down since 2023-05-31 21:40:55 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_A490_May_31.zip	zip	f3c88102537a39b097545fbe1d483a99b3afed9e000045b84af1b02d8822811c	17.74%	Quakbot
2023-05-31	doc_F369_May_31.zip	zip	efc088e22dc5c5cbc46bc16199c0a96e31d033b2e978a0662b7385f6ff42c2a7	n/a	Quakbot
2023-05-31	doc_A804_May_31.zip	zip	c908cf76bbcfb57c8cf329473659e248639faf231c1f6da936f18d96a6b8f8a2	n/a
2023-05-31	doc_F783_May_31.zip	zip	b16be3423e2fad35afd209b6c085ce3b8c0e542fc0e6278f29ffe22da2532de3	n/a	Quakbot
2023-05-31	doc_F825_May_31.zip	zip	3adfec6c1c674f1f688cf751a1015179e8a30bd1a7883c32c965f232a51eabc4	n/a	Quakbot
2023-05-31	doc_F624_May_30.zip	zip	cdb124089c19dbd22b9ebe01d1f08f436c147a76f13f652580a7cff35fe5215f	17.74%	Quakbot
2023-05-31	doc_F270_May_30.zip	zip	7f18aaf2b6dfa650047bba74a25fabdef9c2d2f769cad97b275dddf494260a46	19.35%	Quakbot
2023-05-31	doc_C413_May_30.zip	zip	5ca8c9840cf72649809650b6439efaefd839c960ab31ffba92d79a7acef46831	19.35%	Quakbot
2023-05-31	doc_F062_May_30.zip	zip	69fed9d28ae3edd49c6abc5ea553d6f997cdf96a8acdab77bb45390a00291621	17.74%	Quakbot
2023-05-31	doc_D401_May_30.zip	zip	1cfdb0b578578a3ef3ff839a46bee0b8fcf7334c6437fea1c74e7966ac6e2c61	17.74%	Quakbot
2023-05-31	doc_C430_May_30.zip	zip	ddf4a945fdca3cbe8022aba958decbcf2c147751a36b32ce0abb8d4b5111b0f9	19.35%	Quakbot
2023-05-31	doc_F794_May_30.zip	zip	6f015409ae881e08814f6aabe17dcf93a37249fd0820fa0e5f932af67848b50f	19.35%	Quakbot
2023-05-30	doc_B034_May_30.zip	zip	88df59bd33d87b6819df11e144c97172de1ea6dd1174b63d512b311d97ebeb03	17.74%	Quakbot
2023-05-30	doc_B048_May_30.zip	zip	ac093215c7cae84e5a0e99186a8038f0526839f1fd1a8564d78c00f2182e1796	18.03%	Quakbot
2023-05-30	doc_C149_May_30.zip	zip	02226a8f5fa4c02a85889f513ad21dfeb90f72b6731ca2345192f8e47058129e	17.74%	Quakbot
2023-05-30	doc_C082_May_30.zip	zip	8c9b34d4cb7d40982de49ad0976fc7e4413fdcf231b43c672855d43101bd66de	n/a	Quakbot
2023-05-30	doc_B519_May_30.zip	zip	c9fef9cf478ae9a843018ef1c7fed0b024168b6a83ceb59797d339fc74b9ef44	n/a	Quakbot
2023-05-30	doc_A485_May_30.zip	zip	7630eae42413456d1f5e75eea184dd62bd66a464cf05d5ad34d6e1e9527958d8	n/a	Quakbot
2023-05-30	doc_F574_May_30.zip	zip	6701cefb9f629ac2e836e40c7f650754e5f3d0ec02365d170e9a941d7039602c	n/a	Quakbot