URLhaus Database

You are currently viewing the URLhaus database entry for https://taluja.com/sbo/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646143
URL:	https://taluja.com/sbo/?1
URL Status:	Offline
Host:	taluja.com
Date added:	2023-05-30 16:50:23 UTC
Last online:	2023-05-31 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:54:00 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:	1 day, 4 hours, 46 minutes (down since 2023-05-31 21:40:37 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_C829_May_31.zip	zip	3bcd985dddbddcdd2030af3098e9fcd8262f35b4865246c9a9511b253e24c2ef	19.35%	Quakbot
2023-05-31	doc_F416_May_31.zip	zip	f4e90a6cadb60ca37c07c6608d94f6232ef0c556fed471f50f458d32b5a2dab8	n/a	Quakbot
2023-05-31	doc_A126_May_31.zip	zip	b459c9f104a73651fc66580a62ac3e7639db1314e8c43060af4f206694be48e2	22.58%	Quakbot
2023-05-31	doc_B987_May_31.zip	zip	729662be3eda3b7056d29f32b670779698ac7b6fdfb932a0aeba312e5a2d21ba	n/a	Quakbot
2023-05-31	doc_B491_May_31.zip	zip	849caeb39133c58943d0cbb9e6f46beab68f0c5b2e1782eb79cb0b1c05d06dea	n/a	Quakbot
2023-05-31	doc_A180_May_30.zip	zip	033a65987c8f63be66ef6ce7c74ac7edee865c03270badabfa564f3802de68ee	17.74%
2023-05-31	doc_D012_May_30.zip	zip	a2c26ca3da34afe7310c79c7693783d60edbfc699bcd1d7f581a07bc2ad2b3cf	20.97%	Quakbot
2023-05-31	doc_D914_May_30.zip	zip	b4887f6385886504d6632406d07d4c0e9a9454814c5a947033e96da3d92c1d9a	21.67%	Quakbot
2023-05-31	doc_F947_May_30.zip	zip	fa543084ef956ba1093d9f0b1dc0bf01de8aa3e91e8ba0e6e17c977b42f0f0f3	17.74%	Quakbot
2023-05-31	doc_F402_May_30.zip	zip	42f6af074162a385be1ffa8acfc1b9b8c611a7f268476731da90d9e2397f1bb1	20.34%	Quakbot
2023-05-31	doc_E674_May_30.zip	zip	47c8c00dd13ed29ec7276c31cf74c2065a454c18ca54abb3179581c63d0ab8fd	19.35%	Quakbot
2023-05-31	doc_A426_May_30.zip	zip	2832a07f523a3d152bf2c48f694d8510eeb011ae34adad4ab801b1e3d409a82a	19.35%	Quakbot
2023-05-30	doc_D105_May_30.zip	zip	6e8b23ec4c399acaab4007b853db10e112d2a4b76eb48b7941d930209f9df287	19.35%
2023-05-30	doc_F532_May_30.zip	zip	5d77f3784af6144008ab8e851f06730ea86046be1f9eac4cc0287bf337c75502	n/a	Quakbot
2023-05-30	doc_F468_May_30.zip	zip	2b4c682918eae5c0be5ec786cd1504bc93d98dce3389e2d1f3555f1a9e3fd6e0	n/a	Quakbot
2023-05-30	doc_C517_May_30.zip	zip	73764385310ad585dfddc0b4a8cb027a23de15675138a3e7e940deed679b4815	19.35%	Quakbot