URLhaus Database

You are currently viewing the URLhaus database entry for https://thetuxedoshoppe.com/mted/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646426
URL:	https://thetuxedoshoppe.com/mted/?1
URL Status:	Offline
Host:	thetuxedoshoppe.com
Date added:	2023-05-30 16:50:55 UTC
Last online:	2023-06-01 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:53:07 UTC to abuse{at}bluehost[dot]com)
Takedown time:	2 days, 5 hours, 20 minutes (down since 2023-06-01 22:13:17 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_F296_Jun_1.zip	zip	18eafff7d269516ce3f6428aa559398e907198b4f83aaa6374937b22427af331	20.97%	Quakbot
2023-06-01	document_B539_Jun_1.zip	zip	b758c98b9ef3b399d7e75317fb897169c530b11336eafac678825cdf1ce4fe38	19.35%	Quakbot
2023-06-01	document_A840_Jun_1.zip	zip	f0aa1f2ac0981e917c6c8dd9ff7c9330bb7b2ab8f9053c7d6dd93ea84bf3ddc7	20.97%	Quakbot
2023-06-01	document_D812_Jun_1.zip	zip	420706fe307c0e56752e691dec9d17a4a4f7ca439768a5f029e9a08b80156a38	n/a	Quakbot
2023-06-01	document_C146_Jun_1.zip	zip	b01f38c6f8cade3360cedc633f3bcbdd6904d425961790a67dcf60e1397e85ba	n/a	Quakbot
2023-06-01	document_F657_Jun_1.zip	zip	baf7760c62eabcabe69ccd3939c2d443331740212e208ed9ea347ce3e38aa82c	22.58%	Quakbot
2023-06-01	doc_B293_May_31.zip	zip	4ff46bff58bfa583f48fe02b029c9e45cf7ff6b00659355528c3557f7bcf3924	20.97%	Quakbot
2023-06-01	doc_C961_May_31.zip	zip	4933c5af31878066a50af061094193fedad7943ab37746959e2b8a9d8e0540c9	19.35%	Quakbot
2023-06-01	doc_A798_May_31.zip	zip	19e815e38cbcb1670889dd1169479569798c4cb0db5af5218eda92acf1c39aa7	22.95%	Quakbot
2023-06-01	doc_E305_May_31.zip	zip	38628fe5849faeddc96755349c80b953de9e89c7c15161c91572b4bd209649b1	20.97%	Quakbot
2023-06-01	doc_A069_May_31.zip	zip	26657adafec63cce818235e801e0d8cc5e6beec6527734422a2f416908173f58	17.74%	Quakbot
2023-06-01	doc_A075_May_31.zip	zip	583b9963dd9a8576e42b144c3f92df9995ccfaa65cc3db66325290af7d470a95	18.03%	Quakbot
2023-06-01	doc_A689_May_31.zip	zip	4d9a8a1072c6289cf6b88016ef45bed2602ffe49b18dcdc278b8eec93b26f206	22.58%	Quakbot
2023-05-31	doc_E407_May_31.zip	zip	a00fb5a5eb8fcb114d8fda81cd5a063bed3a358c21276c8db267613028eee312	20.97%	Quakbot
2023-05-31	doc_B610_May_31.zip	zip	5139f6415b94faabd7bb68a316c1d056373852be6f9ad1febddafc4f23bbad66	19.35%
2023-05-31	doc_E105_May_31.zip	zip	904075e80c2bb8940112ce944ea5bb61a4ca197cb7229defdc3219f099caa8af	17.74%	Quakbot
2023-05-31	doc_D968_May_31.zip	zip	be10f41c61518289e152897c7fed2974ffb05ca0cc0f4d63642b01d6c1ddf8a2	19.35%	Quakbot
2023-05-31	doc_C819_May_31.zip	zip	ad44aedf3a17789cfe167dd82b8c4d22f7a64d25fb695da0c30dbd048063f4b8	n/a	Quakbot
2023-05-31	doc_A281_May_31.zip	zip	e529ee2685019e0e72e9b3499cd9a2c73e91afd803246c85aee9893f7cd765ad	13.73%	Quakbot
2023-05-31	doc_B425_May_31.zip	zip	3e4384abe64f394fbd3f74abd82d0eedaa50d53b99fd7198bcf4425c4c686953	n/a	Quakbot
2023-05-31	doc_B694_May_31.zip	zip	e7efa706509f92254aa6ddf5bafd9f453487b079b0498f582e2a613ba59d768c	n/a	Quakbot
2023-05-31	doc_F461_May_30.zip	zip	557290fdb24b48d7bb571f0a1e843ad6634e1f233721d0fed8ac3781058ffc69	19.35%	Quakbot
2023-05-31	doc_A917_May_30.zip	zip	fb3e79bc14505928366d3d5f7600509da39b76b22154a82910a71b035ae2f956	19.35%	Quakbot
2023-05-31	doc_B317_May_30.zip	zip	f601fd5c13f18dbaf1614a9759a4f38f7b9337d3aa026718f2ef490bc26d0ed7	19.35%	Quakbot
2023-05-31	doc_C918_May_30.zip	zip	d9b063f062c89fcdd1525e0d863ad7e28effef99d729bb8d1432040053f4e4ab	21.31%	Quakbot
2023-05-31	doc_E136_May_30.zip	zip	b8e8a62634e21ea37128fd9df5c7cd0b90d14a2da341e4b82f808269a8834f66	17.74%	Quakbot
2023-05-31	doc_A186_May_30.zip	zip	8ac8b397427c81ffb2d0904f645d2b64ce90540220b0f4dc89601279dbb4af3b	19.35%
2023-05-30	doc_B057_May_30.zip	zip	cfa0be9543da14ad9e8f73ee9cf3f15293c95fd1ab29a97f07a3583d2b8234b1	19.67%	Quakbot
2023-05-30	doc_D486_May_30.zip	zip	7771a1bc1abc89dc9c242d20778ff1eab9827a6213456a80684aeb0aa28b69fc	20.00%	Quakbot
2023-05-30	doc_E480_May_30.zip	zip	4ef6f22e35b7b9796a08de7fb5d08c8608605bab6d051704d46b11f1c59e1402	19.35%	Quakbot
2023-05-30	doc_B678_May_30.zip	zip	ddac8848142f844c9f9e526dfa36894a88498a6b49397bda959548153d2c9d41	19.35%	Quakbot
2023-05-30	doc_E531_May_30.zip	zip	4522028bb16b9a7b3b93524240c6efc2d3802c14d95540db05c1047752482cc8	n/a	Quakbot