URLhaus Database

You are currently viewing the URLhaus database entry for https://wetryp.com/ta/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2646517
URL: https://wetryp.com/ta/?1
URL Status:Offline
Host: wetryp.com
Date added:2023-05-30 16:51:05 UTC
Last online:2023-05-31 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-30 16:59:22 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 6 hours, 28 minutes Poor (down since 2023-05-31 23:27:33 UTC)
Tags:BB30 geofenced js Qakbot link Quakbot link USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-31doc_E726_May_31.zipzip 947d73892032d7d01d46eee1fa2e2ef2492782085a1c63d0a542c373288e1ef8Virustotal results 23.33% Quakbot
2023-05-31doc_F746_May_31.zipzip 872ed618351b1f4f1c9803c91a1005b3e5b7f96605871c8ae8facae1c03a7f3fVirustotal results 19.67% Quakbot
2023-05-31doc_C623_May_31.zipzip 656403850048544218a1c98b189b3fd50ece25f63d98669a1f814bea7dd40c71n/a Quakbot
2023-05-31doc_A830_May_31.zipzip f53d88ea993af032e472dc5d19579dfd1027a19700cc42969516261841e3a496Virustotal results 22.58% 
2023-05-31doc_B039_May_31.zipzip 495e3580694af6dbb0a8f67882350178f238af01f56dc6e02ff8864e23cd0ad6n/a Quakbot
2023-05-31doc_E865_May_31.zipzip 79262e6dc586e3000e75eca19eda8ddd6daacd62e64ceb355117748a9680c7c3n/a Quakbot
2023-05-31doc_A506_May_30.zipzip 94549e93d73f0a253b256f98c91a0bbccc78a19d43cb89bbf6a5f09cde61b717Virustotal results 19.35% Quakbot
2023-05-31doc_A463_May_30.zipzip ca2fabf9e00e2607f4a51645f71378f36f90e978120dadc736766892f7201b76Virustotal results 19.35% Quakbot
2023-05-31doc_B039_May_30.zipzip ae335a1f48ccc0123d4e2de528317efa692d016d51217d4a3706a79b16209acaVirustotal results 19.35% Quakbot
2023-05-31doc_C937_May_30.zipzip 39426ba419e2234ee3998d09bb2d85a89cca07d447e4f11b68be352ba72e8035Virustotal results 19.35% Quakbot
2023-05-31doc_C568_May_30.zipzip 8e340312aa20a48f22515245b3297bc1e7796a86422f2eb05a61e6866ed5acfeVirustotal results 20.00% Quakbot
2023-05-31doc_B162_May_30.zipzip 03f525bd9d31fb34668135f53ae10803faac06942d153d866b6f9d1ee99211e6Virustotal results 21.67% Quakbot
2023-05-30doc_A268_May_30.zipzip 786cdbd1a9aaf0e3b7f8f16af28e51498a5236804928ff077acedd99af2ac89bVirustotal results 19.35% Quakbot
2023-05-30doc_B240_May_30.zipzip 97f8352b1b45a72c9bbe6912eeb9406a6008ec0f3f3a2032f3f23c1149353e8bVirustotal results 19.35% Quakbot
2023-05-30doc_E403_May_30.zipzip 93f05a98862649c07f6fdbd32d84bf6d0bc18645582a22911e7e057e7a13e05cVirustotal results 19.35% Quakbot
2023-05-30doc_C965_May_30.zipzip 5b932c9287f79ccf89c9ceaa19181d1f7a7841d2d2754f965321197a923e4809Virustotal results 17.74% Quakbot
2023-05-30doc_A109_May_30.zipzip 4a8667b76adbcc7d1c45b6e24dff50904be7ae165c4e3fd0533daf0b26887b30n/a