URLhaus Database

You are currently viewing the URLhaus database entry for https://hmtdtechvn.com/pati/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646294
URL:	https://hmtdtechvn.com/pati/?1
URL Status:	Offline
Host:	hmtdtechvn.com
Date added:	2023-05-30 16:50:40 UTC
Last online:	2023-06-01 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:56:25 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	2 days, 4 hours, 4 minutes (down since 2023-06-01 21:00:48 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_C678_Jun_1.zip	zip	c97d86a7166ed4936eabfb1cc6c9cbbd8a22903b9feaec623ccdd73e862a58f5	21.67%
2023-06-01	document_F098_Jun_1.zip	zip	c75cc2a56b634d6261b300aa2343e099bde3350e915770871e882f3a5b0d0577	n/a	Quakbot
2023-06-01	document_C190_Jun_1.zip	zip	8ad0150f89e11eb30ff0d7162b8e8055d76b5ca0c5be8ff0760b1e86456983bd	20.97%	Quakbot
2023-06-01	document_C248_Jun_1.zip	zip	2181f4d85a82b4af910ec3370b7c43d82be428c51184bef12b8fd5146decbb05	n/a	Quakbot
2023-06-01	document_F159_Jun_1.zip	zip	33f4edb5cac080330748197a8aa7a7f15dcd1b665d6251eb2c370b7dc42109e6	22.58%	Quakbot
2023-06-01	document_B597_Jun_1.zip	zip	212f831806dd850071d7ab230a4685d34a19ae23d55d444ec4190e44b14749bf	n/a	Quakbot
2023-06-01	document_D725_Jun_1.zip	zip	a15ab954ecb8ea94175d1e999b23de14dd2e094b576cd36832103b771dbe76fa	n/a	Quakbot
2023-06-01	doc_F745_May_31.zip	zip	0c831354becfe23955f5ad852f25b72fcf63d1b5a3185560bd59f98637c3b939	19.35%	Quakbot
2023-06-01	doc_A690_May_31.zip	zip	7eeacfbc9d34b58c9ff0a0b0c9ab19c5e810f9c67144a689db34ffa589a75234	19.35%	Quakbot
2023-06-01	doc_D386_May_31.zip	zip	6e7fc1eacc8833961f52ab5ef2ff71571105d05118288332ce9bba53245cb57e	19.67%	Quakbot
2023-06-01	doc_C587_May_31.zip	zip	36b80bfa2fed9ebf6641ccbe412064fc4d2fff3b16e9fba9b41179cef15282c2	18.33%	Quakbot
2023-06-01	doc_D368_May_31.zip	zip	094554d78420c20318839051c2072d93222b1c245e8ada58b4b93aab3c350cac	20.97%	Quakbot
2023-05-31	doc_B604_May_31.zip	zip	78ed718c28ca8c991fb5ab6f75b8e107ecc38f72a6e233bcd99d1435eba4dccf	n/a	Quakbot
2023-05-31	doc_F413_May_31.zip	zip	1e335bbe1c3e6241e2addde0e9964a6d7f5f3cf19df098f4642c64e522714861	22.95%	Quakbot
2023-05-31	doc_E861_May_31.zip	zip	546fb12b0f784b4be480b9a380c2839863d4eb10f62ea6e1fecff952b9d8263c	19.35%	Quakbot
2023-05-31	doc_E694_May_31.zip	zip	334b1018ba9507b24eb08239ea1e14bddf8b6927d7131cba08c4935898c3ed9d	n/a	Quakbot
2023-05-31	doc_E810_May_31.zip	zip	1d37d8f289360d0417be4c78b84adbf13781325dc0a2746d086fc85717f51ec7	22.58%	Quakbot
2023-05-31	doc_E209_May_31.zip	zip	da1ce6bef72ebca01f1202cd541c5ecba8a9ae173754969ed4dae44c17407eb0	n/a	Quakbot
2023-05-31	doc_D724_May_30.zip	zip	0948ca166a3b983b07409c9a86f522ace51387fd33487fd6366f6a6ce2b53e09	20.97%	Quakbot
2023-05-31	doc_E207_May_30.zip	zip	23fe552a2ec61a671bd56e98f11354139f9940e02647225e963b80fa50ef7d24	19.35%	Quakbot
2023-05-31	doc_F018_May_30.zip	zip	58abcec9adb8a9899d37ebad9cd1376499910bcf6f0ce0f9774a8245c3474ea7	22.58%	Quakbot
2023-05-31	doc_A479_May_30.zip	zip	fa5192d456f4249b69d2f115035852cf9e1c87aa8a34cc67c849645b7ee653af	19.35%	Quakbot
2023-05-31	doc_A172_May_30.zip	zip	1b0ea04ad694d447297bc0def95108df0f0383762e9dce8b339e389932701be9	19.67%	Quakbot
2023-05-31	doc_B598_May_30.zip	zip	548c2d2b8ec1868201d026c420736a30e66a6d6965f31dd60ec05127bfc1085a	17.74%	Quakbot
2023-05-31	doc_D816_May_30.zip	zip	ae76388d86cab0594d6b7900b9c725059c0a6bc32ab236188f93e1d3da4548b8	19.35%	Quakbot
2023-05-30	doc_B195_May_30.zip	zip	f1e7871a4f3994140b05f1e9042e4da4e71e14452097b6ae77ef6a160fff8487	19.35%	Quakbot
2023-05-30	doc_C751_May_30.zip	zip	d57f175161a087a32c5b503ede7204ca2866c492eb6525e830d8c45cb03a033a	20.00%	Quakbot
2023-05-30	doc_F104_May_30.zip	zip	97bd1e90357ffb856c5db8ae7763a25ca262af13906a3386ed33c463f425ab32	n/a	Quakbot
2023-05-30	doc_D563_May_30.zip	zip	71a849e80d10b21dec3b6d38d47961dd45ed4dead581da93ce71f179332b3d3d	n/a	Quakbot