URLhaus Database

You are currently viewing the URLhaus database entry for https://uniquefragrances.com/tql/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2645797
URL:	https://uniquefragrances.com/tql/?1
URL Status:	Offline
Host:	uniquefragrances.com
Date added:	2023-05-30 12:09:51 UTC
Last online:	2023-05-31 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 13:43:08 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	1 day, 9 hours, 25 minutes (down since 2023-05-31 21:39:23 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_E825_May_31.zip	zip	fca1943a4f9ea8bc9fcd14084e2c07710374367bd16cae0d91131fbe212225a9	20.00%	Quakbot
2023-05-31	doc_F807_May_31.zip	zip	8332708c37eaa97cc7111efd3fbc6cdc2379159b50a2068ee7b051c774234041	n/a	Quakbot
2023-05-31	doc_E647_May_31.zip	zip	28c2a1d3286ed9027f00a878aa6989c94b68f80daf40d4b3e362fbe11f303b95	22.58%	Quakbot
2023-05-31	doc_A896_May_31.zip	zip	5ce9edeb0b72a319f39aea6a776b547b988fb90cb93180ad861923d9320f5568	23.73%	Quakbot
2023-05-31	doc_E124_May_31.zip	zip	64b34d36257981c1f268c0da8b0a630ebd75adad978c777527ddba5a66a0855c	n/a	Quakbot
2023-05-31	doc_C904_May_30.zip	zip	9184a33024151da37774a5aac1986ee02c4140c9c7cbe9357121fc0a09007ae6	19.35%	Quakbot
2023-05-31	doc_A529_May_30.zip	zip	4a86e26c72850f668615162eca236c9f27e83a0fa7744fc9a98164759bda0916	17.74%	Quakbot
2023-05-31	doc_A867_May_30.zip	zip	b26e5d1eb9d4fb31d89d244834c32be99968f5331c262fc7b02ae5a4292ed429	17.74%	Quakbot
2023-05-31	doc_A501_May_30.zip	zip	6da7dd5275eb3ccb6b5b0133b3c9217ddf7c9b7cedc86f14cbbe3a5400645a04	19.35%	Quakbot
2023-05-31	doc_E198_May_30.zip	zip	882fd497db6901527117b3e26315c32082040a591e526f9065303425592b51b2	17.74%	Quakbot
2023-05-31	doc_D830_May_30.zip	zip	402f57a2ef98b74a6465463cf24835cfa2cbc2924f233016d4e8de427fbc1672	19.67%	Quakbot
2023-05-30	doc_F349_May_30.zip	zip	4863e59dea37edd7befefeaef7f3c318f5be521b48826919ae7e0d62c9847971	17.74%	Quakbot
2023-05-30	doc_D809_May_30.zip	zip	e3c07adc32220f1234fa7d43a14720d8c40dcfe0b62e2044fb1127f0174a99b3	17.74%	Quakbot
2023-05-30	doc_E475_May_30.zip	zip	b18e2b57b64ef8ce09a6bb386d6c4f6d60a8c4f49869433b626882144640c369	20.97%	Quakbot
2023-05-30	doc_C862_May_30.zip	zip	44f8fee6e4c97b11521a1290779e50341cda1e895236585ec0fc43c3356a530c	19.35%	Quakbot
2023-05-30	doc_A312_May_30.zip	zip	47a4749abac79f50afcaa203dba148fe6644de716e61d7322c8ae03de337a663	n/a	Quakbot
2023-05-30	doc_B173_May_30.zip	zip	3ca40d854417d7da6cfa7b5250393a67c2d21759fa2cf774933015c267514eb3	n/a	Quakbot
2023-05-30	doc_B392_May_30.zip	zip	92572a2f2b5fb649ef208fb1e786305c173ba2dc5a0cdf678abd098b1cb2edb9	n/a	Quakbot
2023-05-30	doc_A521_May_30.zip	zip	2e12743d54eadd93805a5d9d80081f1728c0b39fed9d5a8b259b0323ecf1481a	n/a	Quakbot