URLhaus Database

You are currently viewing the URLhaus database entry for https://articlesmonster.com/mi/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646340
URL:	https://articlesmonster.com/mi/?1
URL Status:	Offline
Host:	articlesmonster.com
Date added:	2023-05-30 16:50:46 UTC
Last online:	2023-05-30 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:57:05 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 days, 4 hours, 42 minutes (down since 2023-06-01 21:39:53 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_F654_Jun_1.zip	zip	b9b53034bafd0c7ac18938cd1e4123021d153eddff7cea855cc6943a4c372ed3	22.58%	Quakbot
2023-06-01	document_F250_Jun_1.zip	zip	cefa2c53569cf30ae62d95fbc25faa69a2344b87d08b74174cf6c82e82a725d4	20.97%	Quakbot
2023-06-01	document_C465_Jun_1.zip	zip	65d0edde79413111c2f65253527203affb13571e2d260947a88c8472a2b74bb2	22.58%	Quakbot
2023-06-01	document_E271_Jun_1.zip	zip	f0b36a63f67cf86268f90c805d7b2e8865041c40a14fdadd01821fea6cdd1958	n/a	Quakbot
2023-06-01	document_A025_Jun_1.zip	zip	64446a7fdb00ec0ea3aaf52b8198dcfc4c40d71e6b007abdfb3bbaf75ec21217	n/a
2023-06-01	document_C647_Jun_1.zip	zip	2e46bb38994bf41a2fe9bf68c72658a6beef12768440b3c108bbd7bc22c3ce53	23.33%	Quakbot
2023-06-01	document_C872_Jun_1.zip	zip	ef3e30f1295cf80e912dde0f8b6c1636a9b5a85ea27f4d89910a853d600d9fe8	23.33%	Quakbot
2023-06-01	document_C715_Jun_1.zip	zip	f6a574aeaa0d7b5f3dd25e4af3c428ca185ee75fc4153a71f72c7dc45a5768c3	n/a	Quakbot
2023-06-01	doc_E938_May_31.zip	zip	8d5ab7085163800d1d596414a8425f386b910157938e9b3894423e7b33150a3c	19.35%	Quakbot
2023-06-01	doc_A591_May_31.zip	zip	03bb9d6838c1d0306488fbca05f3da33581dcb19e93f945effee0c8a6b287a5b	20.97%	Quakbot
2023-06-01	doc_D365_May_31.zip	zip	f6531b85520c613ab9b690b458acac69c302d75bdb6343e6f4b0b2b60a8b0d44	17.74%	Quakbot
2023-06-01	doc_A017_May_31.zip	zip	d630e7bff1fe3ebe48f505eb3a7b46e3201a2535cd037069bf6346cd1c953a0e	19.35%	Quakbot
2023-06-01	doc_A692_May_31.zip	zip	b791262082d3e6cd202e676c0813baf2e35219061cbb474f950d1c0a4edefea2	17.74%	Quakbot
2023-06-01	doc_D714_May_31.zip	zip	79dc6ed906ca56a67c3813bfb74e0603032ab89ff9818834755fae37497c3b66	21.31%	Quakbot
2023-05-31	doc_C514_May_31.zip	zip	a78bb58446fd25e799751ac375cde81965668c80deb715a30e400ff0e6e5c1aa	8.89%	Quakbot
2023-05-31	doc_F784_May_31.zip	zip	9d0909a2f987b896a8e713b3413cbffec8095e61d840c0c27ee59971f6a146af	n/a	Quakbot
2023-05-31	doc_C578_May_31.zip	zip	3b6c58b3084c41235d86c59fbc0597003b811d14bd6951ac3d464f74f249c276	20.97%	Quakbot
2023-05-31	doc_A379_May_31.zip	zip	26202857ddbaf5544a57fc3e25cfc551faeebac9fd3c3c589ef6c58744f36d76	n/a	Quakbot
2023-05-31	doc_E317_May_31.zip	zip	59fd4d35f574e03cd1968bc7b2c44e9337dd43653d75317bb11bcd6cb11ef396	n/a	Quakbot
2023-05-31	doc_A642_May_31.zip	zip	60c29a70fca45f7384c3e78906e0e5ea64b109f192eb1624007d2f22ed4f43dd	24.19%	Quakbot
2023-05-31	doc_F018_May_31.zip	zip	31b66d7b42067140de5d9a5a630a1ac54beb8e02335929a325141bd472c8b1af	n/a	Quakbot
2023-05-31	doc_A173_May_30.zip	zip	c2292466ea568bbfff4a94888fea4db23bf557c07de35dfbefd908fc7705839c	20.97%	Quakbot
2023-05-31	doc_A764_May_30.zip	zip	9984241fa4179e812a1370bffdfd34d98b5110071d56f73d9ccf370ccff8ed80	17.74%	Quakbot
2023-05-31	doc_C192_May_30.zip	zip	b75a0ea4364f230fec24e834bbc531bd5bc975ab62d1b9721edb3c584cc570f2	20.97%	Quakbot
2023-05-31	doc_C250_May_30.zip	zip	613c10d931d2970722825c26e95eac150c42f76ce826f92a920c5e334f4b6401	20.97%	Quakbot
2023-05-31	doc_C365_May_30.zip	zip	181a677ed1dd30f356c44c000b847826808a92890d67f6aea88ff58e8f6fb0aa	17.74%	Quakbot
2023-05-31	doc_F104_May_30.zip	zip	97bd1e90357ffb856c5db8ae7763a25ca262af13906a3386ed33c463f425ab32	20.97%	Quakbot
2023-05-31	doc_C645_May_30.zip	zip	bb97e8c4453885c8465c6b1f2705d9fd51f960cc40c1303f9fc10722ec481501	17.74%	Quakbot
2023-05-30	doc_B628_May_30.zip	zip	584a07bbcafab77ae1583498200a79699aefd1676e8f6f57f4ac9a700f9e5fca	19.35%	Quakbot
2023-05-30	doc_D892_May_30.zip	zip	4088bda2e406396aa0a9be804569fb17b776aa4f344893e85faeed566412f02a	n/a	Quakbot