URLhaus Database

You are currently viewing the URLhaus database entry for https://ecotasar.com/et/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646414
URL:	https://ecotasar.com/et/?1
URL Status:	Offline
Host:	ecotasar.com
Date added:	2023-05-30 16:50:53 UTC
Last online:	2023-06-01 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100124462 created on 2023-05-30 16:51:57 UTC)
Takedown time:	2 days, 5 hours, 57 minutes (down since 2023-06-01 22:49:16 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_E352_Jun_1.zip	zip	140f4917ddf2c331fd16b1c759f295682eac15c2c50bc710233e5277428c6a9f	20.97%	Quakbot
2023-06-01	document_E129_Jun_1.zip	zip	8e7c08e2337de20d21dcd616e60ef1d32ed17932632fca6c4af7607c20310443	20.97%	Quakbot
2023-06-01	document_D639_Jun_1.zip	zip	0f6f5297159e3cfe473fcf7c6ad7bc84121da7af28d9663004649e48d3af9ba8	20.97%	Quakbot
2023-06-01	document_A102_Jun_1.zip	zip	5841556b82b875b484166a9ade86305ad5cce7d096ffe9b5f8e42da5548a8c62	n/a	Quakbot
2023-06-01	document_D168_Jun_1.zip	zip	9e4fedf425e318d15d25d8af5f3aa8dcb944531d6b3efffb010db188bdc1e1d6	n/a	Quakbot
2023-06-01	document_C714_Jun_1.zip	zip	fe8128f7f5271a35430bd820463e1fd6988d49880fa14a48d83dd680e7275d25	n/a	Quakbot
2023-06-01	document_C052_Jun_1.zip	zip	0a2cc2a685bdb90abe6455bf238120fc3559aaa5e11c327835bb3354221bad7d	n/a	Quakbot
2023-06-01	doc_A906_May_31.zip	zip	a261db3ff74c0532647d4e1f6a15f7002dca7c77af50e69807ed18da18fbdb57	23.33%	Quakbot
2023-06-01	doc_F649_May_31.zip	zip	8421c5743a86b9f6d567f1ef4752b3b9e6ffb3d82a1f5998ea8d134b5e0b5dca	n/a	Quakbot
2023-06-01	doc_D571_May_31.zip	zip	d980406bf86e1cd1d62a00c03b27af54e23333213afc42bb3b5bbb01678a1e4b	25.00%	Quakbot
2023-06-01	doc_E059_May_31.zip	zip	048b49c71abb041b76eede804684f83872bfd11b3a37ce295b2a26e2c7533500	19.35%	Quakbot
2023-06-01	doc_E901_May_31.zip	zip	1da1026eb40e7ce7435e4aad58a729b761f77fdc942051fa0dff427747ec1875	20.97%	Quakbot
2023-05-31	doc_A420_May_31.zip	zip	e7c1a2e0d1545a8571b454b4347472b033d185318cc3ea1a2bc6fd058149608a	22.58%	Quakbot
2023-05-31	doc_D283_May_31.zip	zip	fec5b631dd3a7328cd7ac37aa3aa865b5e81c35ff435523722b95e6f9afeb7a9	19.35%	Quakbot
2023-05-31	doc_A017_May_31.zip	zip	d630e7bff1fe3ebe48f505eb3a7b46e3201a2535cd037069bf6346cd1c953a0e	19.35%	Quakbot
2023-05-31	doc_F523_May_31.zip	zip	b6ed12cf2562af87687b5acc3ac0cb81cc92c08e2a3bff5862ed7c97253ab8a6	17.74%	Quakbot
2023-05-31	doc_A549_May_31.zip	zip	a79e82122a7bb1a339eee6da7101b3fc45e26c6e6b9160d5ccac84223ca04512	19.35%	Quakbot
2023-05-31	doc_E613_May_31.zip	zip	4d7cc38b8267aa5a452ba1a02a2dad9dc90dfddfaadeda2137eaccf0ff61250d	n/a	Quakbot
2023-05-31	doc_F097_May_31.zip	zip	2cf01283b1112e641aa73273bb6e2f2f646efbf769f516511a477ad9e3f285c7	n/a	Quakbot
2023-05-31	doc_E640_May_30.zip	zip	4d7373a35e11edaff2f5df6f4c5d0ab35f1702e7aacf8ebc54f7fc38a7e0130c	19.35%
2023-05-31	doc_E342_May_30.zip	zip	c030fb9ad98c0da5a6f95de004fc04c973d11f491b47fdf3ad0a3c58dd51eae0	19.35%	Quakbot
2023-05-31	doc_A572_May_30.zip	zip	a7e7a7271bf1aad5b20da42e08755d4529ebd9861b494f60ca6005ffe4ef4848	19.35%	Quakbot
2023-05-31	doc_F139_May_30.zip	zip	0040d1fcb8a428032e5a195aa9f55363d40c632c9b62335320e5a0793a1e2d21	17.74%	Quakbot
2023-05-31	doc_A516_May_30.zip	zip	b1c573ccccdcb0a8f5be0c03200a9ba42140f103fc9cb9996e380698385b9cf1	19.35%	Quakbot
2023-05-31	doc_E592_May_30.zip	zip	8a2d1ca78d0a4fcffd21564cf4c7f5227c30e8b35d9ab72c75dd3a2e6a8367a1	19.35%	Quakbot
2023-05-31	doc_D563_May_30.zip	zip	71a849e80d10b21dec3b6d38d47961dd45ed4dead581da93ce71f179332b3d3d	19.35%	Quakbot
2023-05-30	doc_A718_May_30.zip	zip	aaa87cc35a66950c44de0f760332a0d8ff7f623bdda572fc4238a78da13862bc	17.74%	Quakbot
2023-05-30	doc_B726_May_30.zip	zip	bb6e5bd0ce383bcdb08f6b6577e293d75882828514389da541e440a44848fe9c	n/a
2023-05-30	doc_E432_May_30.zip	zip	d4a3d7f9dc65fa448b75b2458e5ec41ea2f1f0320cf53e9a31a0f5219aba6476	20.00%	Quakbot