URLhaus Database

You are currently viewing the URLhaus database entry for https://cgscoaching.com/blli/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646139
URL:	https://cgscoaching.com/blli/?1
URL Status:	Offline
Host:	cgscoaching.com
Date added:	2023-05-30 16:50:22 UTC
Last online:	2023-06-01 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100124419 created on 2023-05-30 16:51:25 UTC)
Takedown time:	2 days, 5 hours, 43 minutes (down since 2023-06-01 22:35:21 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_D759_Jun_1.zip	zip	d2d9765aa5a52887c44afdd41164a645b5d08d2c106ef5653c62ceb1ca3d5a7a	20.97%	Quakbot
2023-06-01	document_C109_Jun_1.zip	zip	7ebce2846feeb4213ee2e4dc5c6ac4be1687e81af310caccd70e2da9ae98aa3c	20.97%	Quakbot
2023-06-01	document_A391_Jun_1.zip	zip	d819d729642f5ff27a542ad43f6561b30528177d74196b50c250c5b450f9c82c	20.34%	Quakbot
2023-06-01	document_F692_Jun_1.zip	zip	ae32880c957beec05adc65608638e8550be19c12e7dcb20579042812a780c2e5	n/a	Quakbot
2023-06-01	document_F183_Jun_1.zip	zip	d52f59ae6f0831bf4b6590fc41f62244c1f7208bd5b37bc00f1194064001b38a	n/a	Quakbot
2023-06-01	document_A651_Jun_1.zip	zip	c7cc6cd56283bcad30b8d41efa6300a36c87679a25d60399a0073c0b67f17205	n/a	Quakbot
2023-06-01	document_C467_Jun_1.zip	zip	a74c19cfe18477f668852d04c522b83f23417ce92d0f927ad7a1af8acde38764	n/a	Quakbot
2023-06-01	document_B641_Jun_1.zip	zip	1419c6bc7154559303eab9602b042009993a9a77cc7c72350ced869d8a117b0a	n/a	Quakbot
2023-06-01	doc_F481_May_31.zip	zip	9b1c7c151336140a7fda7af168f52ac2c4513b9e3804e60bcd03db85d9bce405	29.03%	Quakbot
2023-06-01	doc_C517_May_31.zip	zip	b2f3c5e72016770918cc9e558c7a9a12ae591f17f757dc8c68a3bc4cc780560c	19.35%	Quakbot
2023-06-01	doc_A465_May_31.zip	zip	98956b13d2f8c1c83838379ca5c17105654735c5cb0e2d34649683e1c8a12486	27.12%	Quakbot
2023-06-01	doc_A791_May_31.zip	zip	8ebe5c4ab6efe10fb675570640b846ef0bfeb6d9d962c4e004cc5ed96521b1cb	22.58%	Quakbot
2023-06-01	doc_A186_May_31.zip	zip	4a7caccef9da5a666ec9c9a1a0b977746796ba6d5005626b802eec0b05b73948	17.74%	Quakbot
2023-05-31	doc_E645_May_31.zip	zip	7ab433c3bcb3d16bc3bef77719f4114cca3081535e54881f267cdd71a44f29a6	20.97%	Quakbot
2023-05-31	doc_A601_May_31.zip	zip	86f19a945b2874d7f6add092cd919d70eca88af3b173e3e50832f0cf1e168ea6	22.58%	Quakbot
2023-05-31	doc_E587_May_31.zip	zip	0a3e7f461ee5e0596a2141e13d63fb928a97b872f7d8e83e378939553a4a06dc	21.31%	Quakbot
2023-05-31	doc_D389_May_31.zip	zip	6358c169c1e9d90c4d232924c156f4efbca3a8510d16ce3e562c53dfc5d73659	20.00%	Quakbot
2023-05-31	doc_A269_May_31.zip	zip	1e5fad9b2bcfd798411d6c3bca51e7992125bb57f372aaac05a642aa2b507a5a	18.64%	Quakbot
2023-05-31	doc_C364_May_31.zip	zip	320ed32b87a7700c617afc2051bb3f134b8bb8189950d377f590c514e89d52cd	22.95%	Quakbot
2023-05-31	doc_E321_May_31.zip	zip	dc26a1824218e4a683bcb5c8bbc1971d3eef453fd2e03b197948d70d841bf1bb	n/a	Quakbot
2023-05-31	doc_D513_May_31.zip	zip	63abbc200a235fb142405dc80aa54919e835abca34ecdff775f2311b853794c6	n/a	Quakbot
2023-05-31	doc_E231_May_30.zip	zip	79770d1c152de2c75d2e9b0f34c9cae34e00da3cb1783981100755ebc5394497	21.31%	Quakbot
2023-05-31	doc_B627_May_30.zip	zip	79ffc134706762b36f6f5f0b7702b1eee06c98831717a119ee6ef9835aa3fb26	18.03%	Quakbot
2023-05-31	doc_C073_May_30.zip	zip	cd2d8ac82f1382c52b64ea1a02027c71c59186688a7df385fb52964d0f50b35c	19.35%	Quakbot
2023-05-31	doc_B421_May_30.zip	zip	afab896cbf91b3303215fd1c7702767ebeb53e490ba123db837f1458fbbac356	19.67%	Quakbot
2023-05-31	doc_C780_May_30.zip	zip	b4377c3a2b5bba057702c37b296dc7ed799909676cf1f3d0c145a8e9d7912c4c	17.74%	Quakbot
2023-05-30	doc_B964_May_30.zip	zip	5cc8965f244fadc58663a27675ebb219e322fb13162f476565206b922fbf2a28	18.03%	Quakbot
2023-05-30	doc_D879_May_30.zip	zip	bd59bb7b811420cd53c359ae3cfad5be067bc29492bcd0d1982bf04473c0d79f	19.67%	Quakbot
2023-05-30	doc_F594_May_30.zip	zip	2ba184c1c88ff5b7ef4d674068b882e604e72dbdff5b305d30ff4c3a4c4ccd57	n/a	Quakbot
2023-05-30	doc_C469_May_30.zip	zip	b29ce45faa874ca2ea0086265d533025b64555bec9883b0035c3d8f4bed1ffea	n/a	Quakbot