URLhaus Database

You are currently viewing the URLhaus database entry for https://drpetertio.com/nmam/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2645895
URL:	https://drpetertio.com/nmam/?1
URL Status:	Offline
Host:	drpetertio.com
Date added:	2023-05-30 14:42:06 UTC
Last online:	2023-06-01 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100124321 created on 2023-05-30 14:43:05 UTC)
Takedown time:	2 days, 7 hours, 39 minutes (down since 2023-06-01 22:22:48 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_E192_Jun_1.zip	zip	6e2a0b33e670b2d7185778d320ee3759c4136fb9cb13cb318a795ea9b9b959f2	22.58%	Quakbot
2023-06-01	document_C460_Jun_1.zip	zip	5a88b4ab3698fc7d9e4b03f3a36d34fdf05fea05454cf262c9249cf20849178c	22.58%	Quakbot
2023-06-01	document_B096_Jun_1.zip	zip	677051c707b836620b214972db238a7462b7f46f8993badce5f541b3d4d35375	21.31%	Quakbot
2023-06-01	document_B941_Jun_1.zip	zip	2ee8cc23d87da52d36d0b1a0fe1c12c81b0b0134a04e1abe420d607920163855	20.97%	Quakbot
2023-06-01	document_D931_Jun_1.zip	zip	e219b8def9dff479cf3e16ecbf2c999fa5072ced553c3b1a6babefbb74d8974e	20.97%	Quakbot
2023-06-01	document_A968_Jun_1.zip	zip	68e3d7597950cd7ae8a10ac93470268661ec7d1ac73cea6fed4d723df5838709	n/a	Quakbot
2023-06-01	document_A930_Jun_1.zip	zip	3e5856cfd29b4798661da53e42fc3b7cc44c228d0141a8c89176d657d8457108	n/a	Quakbot
2023-06-01	doc_C048_May_31.zip	zip	b316a9e5721b0c4bbc375a8e30cd7709f6b8460c98b456fb75b6c6746d3d65c3	21.31%	Quakbot
2023-06-01	doc_F921_May_31.zip	zip	eaa157642118c7c08be8c0189eca0ea8b554f09b91be79a46f24373f814f6a68	22.41%	Quakbot
2023-06-01	doc_B425_May_31.zip	zip	dc2f998c3de804f72da5306de40e8336d7a8ee6e027e8d6e3bd376d93743055d	24.19%	Quakbot
2023-06-01	doc_F354_May_31.zip	zip	a5bbb51a0fef3daaa39dcf3f1a818671764b1e7198b20badbbe2d11d5f750fd1	21.43%	Quakbot
2023-06-01	doc_B957_May_31.zip	zip	9b03c41b7b01416f06f58b7d4f612819d75b74fdc65fbb74e5ab77f654840e3e	20.00%	Quakbot
2023-06-01	doc_B130_May_31.zip	zip	35f259504a3df4af0b8cd9badf05c3b5914120e3b337dd8ea32a4e2cf7f4eaa5	27.42%	Quakbot
2023-05-31	doc_D453_May_31.zip	zip	fb6797414c4cd993334a175a02991b1868132d608339036896aaed6a9cc80124	20.00%	Quakbot
2023-05-31	doc_B816_May_31.zip	zip	bf0ee2e6758f13d1136a118f34eb41445ca14d60334d56ea45c9e6e86dd49ed5	22.58%	Quakbot
2023-05-31	doc_E782_May_31.zip	zip	79cb06de30200ba85e838a1d8eab4b932557f870a719bccae3e0705843939c4a	20.97%	Quakbot
2023-05-31	doc_E206_May_31.zip	zip	5179b7924583975f7ea09d3df9ac06b79088963333cb2e50364b80784a6b1e6a	18.03%	Quakbot
2023-05-31	doc_E678_May_31.zip	zip	161db0fa1f7c2ab8d9b5e7f43f8a55b1ed2d888fd22f08dbb16c273e12a12605	n/a	Quakbot
2023-05-31	doc_B804_May_31.zip	zip	7af3886da010e365fca2047012f714906fd2dcce5e8c642042afe116c78fb2b6	24.19%	Quakbot
2023-05-31	doc_B736_May_31.zip	zip	bf3efd0c156bbd347ed81137e3e8b2921e3e09da362abd43d9dc664e7369cf83	24.19%	Quakbot
2023-05-31	doc_E023_May_31.zip	zip	684256a2e75321dcd7699f6daecfc15bcdc152eb25e34f766cc81c04f8a077ae	n/a	Quakbot
2023-05-31	doc_D078_May_30.zip	zip	f451e2b76271e19c1a6423f134f4e1120e9e0afeda889b5fde918fdc8a2453a2	20.97%	Quakbot
2023-05-31	doc_E937_May_30.zip	zip	05f0c28a2f04ecac802ae3ec7f9eb4f2aeb9ee3c2a17d888f7dd1efc12e6011d	17.74%	Quakbot
2023-05-31	doc_D275_May_30.zip	zip	b9b80097876c242100bddc0510713058ee21792beb7715bb79aca8140ff2bf79	19.35%	Quakbot
2023-05-31	doc_C846_May_30.zip	zip	d75784b04ceade0b58fe4bbf2be58e57ed42bc36ecd11d4833f845b3a4e85ea1	19.35%	Quakbot
2023-05-31	doc_A376_May_30.zip	zip	9d3eb1ec8dd42b555786e764e9e1dd33fac0c3c5f9a12563d2b10beb970a7610	17.74%	Quakbot
2023-05-31	doc_C675_May_30.zip	zip	ac80f0db62512390bcdbcd417fc133aaebeb24367f249908574a33c711100a4a	17.74%	Quakbot
2023-05-31	doc_D439_May_30.zip	zip	5bbebdb22bfb2e532e0a0c3146a1bcdab67e7d4bc8091457e9b518932b9f6b55	16.95%	Quakbot
2023-05-30	doc_B863_May_30.zip	zip	01796538a7a73564c055d57e6189735bff98ca1b5802e1a9658e62bce27e20b8	21.31%	Quakbot
2023-05-30	doc_C416_May_30.zip	zip	216f215820f9db9d24679fdd412e511912134138c37f6d3c8e245ffdf657e4b7	17.74%	Quakbot
2023-05-30	doc_B953_May_30.zip	zip	cc67e4cc3a63622812aec76355607e046ed716c11906a97690f0a14bf42c5f23	19.35%	Quakbot
2023-05-30	Cancellation 583255 May 30.js	js	de7387b3e6f15595826e3e0bb56533e9b57ee37f5e6bba505ce6a43cb6cc5bfa	n/a	Quakbot