URLhaus Database

You are currently viewing the URLhaus database entry for https://greipmx.com/te/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646113
URL:	https://greipmx.com/te/?1
URL Status:	Offline
Host:	greipmx.com
Date added:	2023-05-30 16:50:20 UTC
Last online:	2023-05-31 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:53:33 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:	1 day, 6 hours, 21 minutes (down since 2023-05-31 23:14:58 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_F917_May_31.zip	zip	bd8019571bc28a46750499d521ee706fdf8c76958501ce07be56bb22c11f5d0e	22.41%	Quakbot
2023-05-31	doc_B041_May_31.zip	zip	f9620bf4a32717f1663ff27c9f4383c46f495540895a3ef8a29b4da5a51f1a35	20.00%	Quakbot
2023-05-31	doc_C819_May_31.zip	zip	ad44aedf3a17789cfe167dd82b8c4d22f7a64d25fb695da0c30dbd048063f4b8	19.67%	Quakbot
2023-05-31	doc_E792_May_31.zip	zip	a518dad7c96083fa45e3c60f9993ea26aa839f24ac6a73736f181183fd8de204	n/a	Quakbot
2023-05-31	doc_B174_May_31.zip	zip	794f1c4fbed37789b7cedad10cf82017cadb466426f54a79a12bccc4b9966362	23.33%	Quakbot
2023-05-31	doc_C981_May_30.zip	zip	d9771ab82af8866d0390ebfdce2f563f993b36bb67d6b2b051be483c85fd4478	17.74%	Quakbot
2023-05-31	doc_A239_May_30.zip	zip	18a9667ed8104a065758f303f577b63782e148bf1fc5992b9b45bb36e3b0c0af	17.74%	Quakbot
2023-05-31	doc_E039_May_30.zip	zip	8c14fae486116e0b745bdbac2cd92588bcfc61eb33e08b368e47030669cc7095	26.67%	Quakbot
2023-05-31	doc_A216_May_30.zip	zip	aec51cab343f5f1b0563f351472ad63911d6ebb3ea7b5e11ccb62665e68c06df	18.03%	Quakbot
2023-05-31	doc_C943_May_30.zip	zip	5720c340128ef434f12b46ee89701019621bfe86a3baeb42c61f54ee29b6c96b	17.74%	Quakbot
2023-05-31	doc_D120_May_30.zip	zip	71d0c93a6df83b8c835dfb8a8267ebcad84745cb4d4e232979afa85a33e0f0f0	17.74%	Quakbot
2023-05-31	doc_D862_May_30.zip	zip	6efc39d77ec6225965d09f545e5c27fa883a1b5a21a74edfabe017c71cce6b08	19.35%	Quakbot
2023-05-31	doc_F071_May_30.zip	zip	ad88fb8a6afbfd738d0281f03b75ace9fd546e0246b2af04e198b642b4d2721b	22.58%	Quakbot
2023-05-30	doc_C045_May_30.zip	zip	06193097bdc38c4021bcb798b13a921a2d816de62b9cc024179bd579e6902714	19.35%	Quakbot
2023-05-30	doc_C821_May_30.zip	zip	45b711ea457626fb07013729d19c9521be13d9cc9ce901a08a4a32066ee0aea1	18.03%
2023-05-30	doc_A205_May_30.zip	zip	79b287d6430603e26a1efccb992ce8f7d61fa94d73e1510c7765402770dcc535	n/a	Quakbot
2023-05-30	doc_C358_May_30.zip	zip	78fcddfd3fca52a396df244341f05e78bd7250a53633dec8d04e38a966b99afd	n/a	Quakbot