URLhaus Database

You are currently viewing the URLhaus database entry for https://tagi22.com/acu/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646531
URL:	https://tagi22.com/acu/?1
URL Status:	Offline
Host:	tagi22.com
Date added:	2023-05-30 16:51:08 UTC
Last online:	2023-06-01 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:59:31 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:	2 days, 4 hours, 8 minutes (down since 2023-06-01 21:08:00 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_F312_Jun_1.zip	zip	a8c3ea8e9221b17bd2176618f4c9932e014d02af15087716f78abd9671c246cd	n/a	Quakbot
2023-06-01	document_A951_Jun_1.zip	zip	9973d08df4668a26e95f891547427143a878be8ca8576a1b7c1c20a4617643f3	18.03%	Quakbot
2023-06-01	document_F283_Jun_1.zip	zip	4a2ee014a72462b7c2a2bb845a87e90a5ff015f6a5d98f59588409038f3fe7e6	19.35%	Quakbot
2023-06-01	document_C429_Jun_1.zip	zip	8ef86d400f78e496e243b7f230717065877fd7b18bcbc98493aa98153cf26d3c	n/a	Quakbot
2023-06-01	document_A806_Jun_1.zip	zip	aa5b3db53eae3778106b4d13fb2f0ec6d3edbc1ec4d525c3a1482cdea9652d3d	24.19%	Quakbot
2023-06-01	document_F729_Jun_1.zip	zip	b2cb7e215b8cb6013223352300ea0d25fc8320d1c1eeaa25700b3b8471eaea70	n/a	Quakbot
2023-06-01	doc_B079_May_31.zip	zip	b792f4245978072bfd2e88d5078af9a3ff7cff5cbb2f09a6163d5d026f5ff9b0	27.42%	Quakbot
2023-06-01	doc_E629_May_31.zip	zip	db0636ae9936f3e97f535bbe8c980941350f3b87a34adfb1e10f1511c64aa986	17.74%	Quakbot
2023-06-01	doc_B604_May_31.zip	zip	78ed718c28ca8c991fb5ab6f75b8e107ecc38f72a6e233bcd99d1435eba4dccf	26.23%	Quakbot
2023-06-01	doc_C985_May_31.zip	zip	483da5837fb4783796650ce98319129471f818e83d15f2c399e52134cdc1ceeb	18.03%	Quakbot
2023-06-01	doc_D319_May_31.zip	zip	2f23adcbe2673e7c3367f10e877b1b6f333852f7066b85ac4b44b8a17e80afa7	20.97%
2023-06-01	doc_E560_May_31.zip	zip	095f0e340f97367a357f347f6a3c321d70e49a6690da8b7b2585de301781892e	19.67%	Quakbot
2023-05-31	doc_A029_May_31.zip	zip	65a5f1233c55fbdceb048939a1fd914022655f799932b301538ddf87c2dd1ced	n/a	Quakbot
2023-05-31	doc_C862_May_31.zip	zip	6a72e71d2ace5e6b8d039359f2f2692ed98fd482d2e992a714ea0882d1914033	5.00%
2023-05-31	doc_B814_May_31.zip	zip	7ce964e2b996658907dcd34676ce512007a9d4795a6922c35b8c71f6c1dd2c58	22.58%	Quakbot
2023-05-31	doc_B309_May_31.zip	zip	ceeab9806f10ffd41429083539de706d192f0917872814735668d4aeb274a543	n/a	Quakbot
2023-05-31	doc_E412_May_31.zip	zip	2296be3a58d02363053367ddddb52a09c6b25a9fb3e1fc61e50124711c6521a5	n/a	Quakbot
2023-05-31	doc_A561_May_31.zip	zip	c9993a0e50f23368141dbc7462138c3f3bb7023b273c543b39061f84f56bdc26	n/a	Quakbot
2023-05-31	doc_D514_May_30.zip	zip	7ce297fea9af3559664e9e71503e4471f3f96ec036e063a1d390ac126c520fb9	17.74%	Quakbot
2023-05-31	doc_A468_May_30.zip	zip	d43790f71afdaa28037b13a8f2df36009df74762fc57c1440e50df2fdd2581c2	17.74%	Quakbot
2023-05-31	doc_A097_May_30.zip	zip	477f238ddcdf2258395edc5cfddfbf768667a869611dcdba90256007876f6ec5	22.95%	Quakbot
2023-05-31	doc_B924_May_30.zip	zip	3b46a0f50840ef9b4716f486e700d99da313ec8ec7f9efc1d08687a7bf449431	18.64%
2023-05-31	doc_A514_May_30.zip	zip	1a68be770410e90fc0084e8a10097c2c9ce207079f82bd9b464af3d04dd04717	17.74%	Quakbot
2023-05-31	doc_C649_May_30.zip	zip	004a561138f7f587c0795a8c7794f33ddb27aabfd13a14a88ca7b2391c292174	20.00%	Quakbot
2023-05-31	doc_C386_May_30.zip	zip	51ee0a76011cc3bd65b634fbe9a5aac1a283d196bcbb945934485ccf315109a8	19.35%	Quakbot
2023-05-30	doc_C517_May_30.zip	zip	73764385310ad585dfddc0b4a8cb027a23de15675138a3e7e940deed679b4815	19.35%	Quakbot
2023-05-30	doc_D879_May_30.zip	zip	bd59bb7b811420cd53c359ae3cfad5be067bc29492bcd0d1982bf04473c0d79f	19.67%	Quakbot
2023-05-30	doc_A703_May_30.zip	zip	185b62601f919d4ec8decffaff9782f5d088aa9f03188e45b14239c6b8ab7cd3	n/a	Quakbot