URLhaus Database

You are currently viewing the URLhaus database entry for https://stasimax.com/iert/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646496
URL:	https://stasimax.com/iert/?1
URL Status:	Offline
Host:	stasimax.com
Date added:	2023-05-30 16:51:03 UTC
Last online:	2023-05-31 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:56:49 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:	1 day, 4 hours, 39 minutes (down since 2023-05-31 21:36:21 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_D673_May_31.zip	zip	7b5d2abc67d22a6185eb11cf5602d758f161647bfc9cac8231e9af645debca97	19.35%	Quakbot
2023-05-31	doc_D791_May_31.zip	zip	cbe4de80d3a7f894ec50b9b566002889656f27710a677c877c7b2c63828558a6	n/a	Quakbot
2023-05-31	doc_E342_May_31.zip	zip	3120e57eb79ed68e1485b4b7eaae616c35071a5fa74c7d9b756e62a86bec8c81	n/a	Quakbot
2023-05-31	doc_F045_May_31.zip	zip	07bb1c86d4ea9da381ee463b9c81e99e545fc608d40e70232ff4dbb2b55a2cff	22.58%	Quakbot
2023-05-31	doc_C403_May_31.zip	zip	c69cb30b3a8adde95e9d307ba1259462ec377150f0c929a466ada52f363f14d6	n/a	Quakbot
2023-05-31	doc_B958_May_30.zip	zip	67e123a0c67a7d7b0ec9032b0a97c7868172e845bd0fa4b7e890a5109955a013	19.35%	Quakbot
2023-05-31	doc_E970_May_30.zip	zip	78cc4f4c003d63bd6ddce3d1eca5bb733a54d3095c5acfc23cba32796d79a2a7	19.35%	Quakbot
2023-05-31	doc_D298_May_30.zip	zip	49e47cc5ba896e6652423d5e158051b83a0d453d5c39c0444b211e3bd03112f0	20.00%	Quakbot
2023-05-31	doc_A107_May_30.zip	zip	672eff3bc0a9f25124c15d5cfe9e0985ce50baca66571ff9c20d10f175f2e282	20.97%	Quakbot
2023-05-31	doc_E327_May_30.zip	zip	cd72c7cb6e73362e50075e2466f0bd36243d4afb19bac07b733c6dbb07dd004e	19.35%
2023-05-31	doc_B631_May_30.zip	zip	8de938c806305c9c88546c45c307de3b3312683beee6f5579f7ff80010dc7ffd	19.35%	Quakbot
2023-05-30	doc_F048_May_30.zip	zip	395f85d1b5f6de3090c8ae93975f396a2c651641c7cf0e5348e40e1b62077529	17.74%	Quakbot
2023-05-30	doc_E947_May_30.zip	zip	84a4e53214af53992f4a8dc775233b2582ab62bf5d533e8d9e3f8c1529bda9e1	15.69%	Quakbot
2023-05-30	doc_E273_May_30.zip	zip	eaaf549de02657c886a50539a40078ed05cfc16bbf08b5d6879fbe0bddcd2b8d	20.00%	Quakbot
2023-05-30	doc_A462_May_30.zip	zip	4f519cff064dd0282d26f2a8f0b8692f3f6d6f821bf31795c883f04c723f2afe	19.67%	Quakbot