URLhaus Database

You are currently viewing the URLhaus database entry for https://peasx.com/uoa/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646570
URL:	https://peasx.com/uoa/?1
URL Status:	Offline
Host:	peasx.com
Date added:	2023-05-30 16:51:12 UTC
Last online:	2023-05-31 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 17:00:08 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 days, 4 hours, 10 minutes (down since 2023-06-01 21:10:51 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_A495_Jun_1.zip	zip	d3e27d5c7c2cab00ca52ad54140e4dae2e9accf07f10396a678ce05e76cbd243	19.67%	Quakbot
2023-06-01	document_A910_Jun_1.zip	zip	56a3193351a9822d69e561d297c43757f47f718afa9e2ad6d48e03afc35a933a	20.97%	Quakbot
2023-06-01	document_F823_Jun_1.zip	zip	79cde7eb35e36df96abd6b3b57587829ac0f0aecf9f92b1a6720baf57eb4476d	19.67%	Quakbot
2023-06-01	document_A241_Jun_1.zip	zip	c2d93493bcb46dd32f1d512f399c31b2a9c39c93f336a5b57863bfa76ce24c1d	n/a	Quakbot
2023-06-01	document_C498_Jun_1.zip	zip	0db9a858c79680fa99bc2cc756e7eef183780fd8d2f948f72de95119d0792c74	22.58%	Quakbot
2023-06-01	document_F265_Jun_1.zip	zip	2a0e70c6435fb3e11c737d89c0241b7327be727ca91c7871ecb14c5fbce6db4a	n/a	Quakbot
2023-06-01	doc_A943_May_31.zip	zip	0f24161028afde5078134573ec8ac121aa50497db33dd2e0616ddf0142bcd68a	27.12%	Quakbot
2023-06-01	doc_A718_May_31.zip	zip	f5cc66789cf964c0ddc5be0d71581574880499995304884453c0a88c2b98d58d	19.35%	Quakbot
2023-06-01	doc_A742_May_31.zip	zip	d2bca556080f7ee0d0f600ec21c993ed9dfef0f6bd93a9638e1c7148a8c75529	18.03%	Quakbot
2023-06-01	doc_E463_May_31.zip	zip	51fe501256cda1f860042b344cad07b0e29556e2ffbebbdb934e251ca87e6904	19.35%	Quakbot
2023-06-01	doc_D378_May_31.zip	zip	554b8d79c17ef80375835dc7779c0f702b5e4c81b7e0e498603bd6ad9274345b	21.31%	Quakbot
2023-06-01	doc_A412_May_31.zip	zip	77f2afe114b98420ef78aee9d6764ad48e58ddf192962098453736e9e78abc33	21.67%	Quakbot
2023-05-31	doc_E372_May_31.zip	zip	689fdd8159a9c309fe484540bcd56484bed46c94c70dad660f509041699ecdc1	19.35%	Quakbot
2023-05-31	doc_B942_May_31.zip	zip	d77e9be86b0c41b1990034b7231f9411f2972776462916095c86c3b6682673d9	21.31%	Quakbot
2023-05-31	doc_B172_May_31.zip	zip	a697a72aa4afd2a521933c51d45facf58886ef13a88829fcf3bfdd28366be065	20.97%	Quakbot
2023-05-31	doc_C865_May_31.zip	zip	a9ec54f06d24a95aab1915cc5f130053fa7c130044850d5b740fcb43b7c5d734	20.97%	Quakbot
2023-05-31	doc_C562_May_31.zip	zip	7e3760082aef17b4fc496d7f032daa95a327da8c3ca5c0d88db85e8a66f24fdb	19.35%	Quakbot
2023-05-31	doc_B709_May_31.zip	zip	99b177a57b4545ed78bffcfae8d4faec8b8534973d841bec3920f2cb28e727ba	24.19%	Quakbot
2023-05-31	doc_B795_May_31.zip	zip	33328cc545d5b6c97c6e9ae52d66a9fbdb95c688beea2b513bc48061305cfbd2	n/a	Quakbot
2023-05-31	doc_E170_May_30.zip	zip	8c9074e17eb1c4ee3ee551407274256c827ab2afff1e8a9fb7f67e5f94e4a1b2	18.03%	Quakbot
2023-05-31	doc_A840_May_30.zip	zip	92d2913692332440f942ea581eac0da9f32d63faa5ef88d0839935bf577282ff	20.97%	Quakbot
2023-05-31	doc_C067_May_30.zip	zip	da4b4d4a63cf3e5279c34dd6b1fe79bd72fc7e1d2ee68db54cfd018293d1631e	20.00%	Quakbot
2023-05-31	doc_B372_May_30.zip	zip	a22b3245cf55b11b1c1256e124929664bc2b9cab6a27a666ff2402665789b1d0	19.35%	Quakbot
2023-05-31	doc_F637_May_30.zip	zip	e0144fe7e5b97391f824dddc423e802f9b498725537bb3520133e028fc573575	18.33%	Quakbot
2023-05-31	doc_D836_May_30.zip	zip	73f7ea2fe703e8399d0e53d74d5eec69eb343771524acef52ef6be4efd936289	18.03%	Quakbot
2023-05-31	doc_F579_May_30.zip	zip	4de288e36c8fe3b547ae87796c16fcacabc2d0b7533af497ba4ab09929002367	18.03%	Quakbot
2023-05-30	doc_A167_May_30.zip	zip	43c61ea77a650758ed9b451bb7fb2b44c61c7b9ad33c337d0f7ddb7a491c80d3	19.35%	Quakbot
2023-05-30	doc_D421_May_30.zip	zip	94a180c38a699fdc1fc60c0d4f0067b57781b30a5a53fea6d5a58c0531fc61b3	19.35%	Quakbot
2023-05-30	doc_C843_May_30.zip	zip	457005bf5af75629436903c11e50bd45e3f8521d0c9390c1a3b8c94777378bf4	17.74%	Quakbot
2023-05-30	doc_A945_May_30.zip	zip	d12ef7e0ff544bab27fcbb0b0e47658a8851eabe258cfa6929ebbed8c08c8e43	n/a	Quakbot