URLhaus Database

You are currently viewing the URLhaus database entry for https://tudien.org.vn/ueen/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646536
URL:	https://tudien.org.vn/ueen/?1
URL Status:	Offline
Host:	tudien.org.vn
Date added:	2023-05-30 16:51:08 UTC
Last online:	2023-06-01 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:59:35 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	2 days, 4 hours, 42 minutes (down since 2023-06-01 21:42:12 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_F463_Jun_1.zip	zip	631412fb8feac08841a605dd92180b9db5eba82d98b19a0b334e5c9a350d228f	22.58%	Quakbot
2023-06-01	document_C685_Jun_1.zip	zip	7f527a13e482dc80023355cb5738eba9aae6deba794fe36c0a6763c218c53de4	n/a	Quakbot
2023-06-01	document_D750_Jun_1.zip	zip	f803557398f4d1c524a866570ff0a130e768c6aee82b15b49edd237dd44600ee	19.35%	Quakbot
2023-06-01	document_C389_Jun_1.zip	zip	20a935843e764165ab7bf8ae9a0fb0a6238e16e4f567ce09f7da1336f57a6aaa	21.67%	Quakbot
2023-06-01	document_C936_Jun_1.zip	zip	80db9f6f24148c38711ab6e0e2a45808e5967a1d88da7e448d0c04a82cb9db26	19.67%	Quakbot
2023-06-01	document_B083_Jun_1.zip	zip	838c6423a8363a04a9ab18cf1f95769fcce33153df1551d01f0075639820e849	24.19%	Quakbot
2023-06-01	document_A016_Jun_1.zip	zip	ce2eb103e4a8c813408ce101f5adf53af07160407a68ebce46c26ed54de384d8	n/a	Quakbot
2023-06-01	doc_C019_May_31.zip	zip	d48a0f9841b2045a22d35880c48326e94153a29f54984798b8e4e530c7a382b0	17.74%	Quakbot
2023-06-01	doc_E762_May_31.zip	zip	23e251d7798d5e46666dea2dc8b50ba8f3dcb830f379266c931f1aae09302f10	20.97%	Quakbot
2023-06-01	doc_F580_May_31.zip	zip	e0ce80fcbba0b2e1c4d0aeb9aee441a60f0dfca958234e6bf4a36b0baa6525f6	20.34%	Quakbot
2023-06-01	doc_B130_May_31.zip	zip	35f259504a3df4af0b8cd9badf05c3b5914120e3b337dd8ea32a4e2cf7f4eaa5	27.42%	Quakbot
2023-06-01	doc_E917_May_31.zip	zip	af908ad486cdd7a2d0d70a609241d321e061831bd713b3b8064f934ac3a34813	17.74%	Quakbot
2023-06-01	doc_A218_May_31.zip	zip	99f42665a34e2ccc80ffee3418f7700c142f15541d0ea26b8a1d272bfcd4355d	19.67%	Quakbot
2023-05-31	doc_E638_May_31.zip	zip	d93b2a88b77e6a72f889f131161e78e6005eb74731b89729fca4a328342bb5b0	21.67%	Quakbot
2023-05-31	doc_D968_May_31.zip	zip	be10f41c61518289e152897c7fed2974ffb05ca0cc0f4d63642b01d6c1ddf8a2	19.35%	Quakbot
2023-05-31	doc_B360_May_31.zip	zip	2102621e34358f144ec09a1c0625542c1a610490d2a23392a19cb9bdb0ec0355	18.64%	Quakbot
2023-05-31	doc_D950_May_31.zip	zip	765a386fdbd63676efdae0b0378dc05a7e0ece50d2a5952d86331eb14506d0b3	20.97%	Quakbot
2023-05-31	doc_C308_May_31.zip	zip	937d0241ea8dd7a0a404676489b239556ec1187729c8f9af2f7cf54ebff03ef1	n/a	Quakbot
2023-05-31	doc_C689_May_31.zip	zip	3855c54b2d4bf90e83163c011938142dedd196a6cd750043ffec2141c57b8dda	22.58%	Quakbot
2023-05-31	doc_F065_May_31.zip	zip	e71b3e6b291e12b69863498754971a9c087ce2e7082f58adc109a0b7e85b2815	n/a	Quakbot
2023-05-31	doc_E081_May_30.zip	zip	fd93b157ac04e892fb34130da2ce68b1f26e6e89388c9fe2e413035809751e7d	19.35%	Quakbot
2023-05-31	doc_C749_May_30.zip	zip	1bf260f59af29dc67743cca9bec294459344c188a77974a912e2ae402f30d2f9	19.35%	Quakbot
2023-05-31	doc_D743_May_30.zip	zip	07a21b38d0d10591c7c45c30bd5bbc8e49bb887dfecf6462f89cfb64fd36f85f	20.00%	Quakbot
2023-05-31	doc_B054_May_30.zip	zip	f45c0d06913461692e88baa9501c6a6ac493a8d5ba694eb3adb5997d17bb0cc3	19.35%	Quakbot
2023-05-31	doc_D172_May_30.zip	zip	9c5e9d183bcadd4b7a89a6b61d8632cef79b2ab5e89b2d53b6b44a3ff2ea0ece	19.35%	Quakbot
2023-05-31	doc_C357_May_30.zip	zip	f9bf9e5b2622de3f5861ef8170cb2bb7ff6ccec49ca09df91f11c820da2521fb	19.35%	Quakbot
2023-05-31	doc_D781_May_30.zip	zip	14b2d80f61d6a8dd3cb191e32d08e65a44ee1c6e53125eb468376bb76737cfd3	20.00%	Quakbot
2023-05-30	doc_A426_May_30.zip	zip	2832a07f523a3d152bf2c48f694d8510eeb011ae34adad4ab801b1e3d409a82a	19.35%	Quakbot
2023-05-30	doc_C104_May_30.zip	zip	b5e6534f65a9b5bab52e9707ade9b8d9746c0142c45ddc80411ac56853d85e11	17.74%
2023-05-30	doc_C465_May_30.zip	zip	489500941de692861b7fd7d7d5f591d7c73994a0756ef5470d8297c5b88d708e	17.74%	Quakbot
2023-05-30	doc_B593_May_30.zip	zip	47a5481751c2f5d2d36e2e1c20264feed19dc06ea820444cb7310b22e268e8a2	n/a	Quakbot
2023-05-30	doc_A620_May_30.zip	zip	7812a9272d6b44b0ea4145ee7e31453bc026e30591c418089df1e0470d398319	n/a	Quakbot