URLhaus Database

You are currently viewing the URLhaus database entry for https://bibianos.com/dn/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646619
URL:	https://bibianos.com/dn/?1
URL Status:	Offline
Host:	bibianos.com
Date added:	2023-05-30 16:51:17 UTC
Last online:	2023-06-01 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:54:18 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 days, 5 hours, 55 minutes (down since 2023-06-01 22:49:24 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_F965_Jun_1.zip	zip	92e2610c319ea17a236af319cdeaf2fc4b9e1f3d5b51ade5cb419914717f641a	20.97%
2023-06-01	document_F281_Jun_1.zip	zip	07dc733754097099d31ffa11d068239c5849509f970fd62d826ffee632932833	22.03%	Quakbot
2023-06-01	document_D598_Jun_1.zip	zip	20a4b7ef910419535d7391c06791a5bab72e37c5db028533e6df39cb47697c3c	16.67%	Quakbot
2023-06-01	document_A520_Jun_1.zip	zip	4c11171134801e26099f6de8166e4f723b847b416cb805123f7527d225d468bc	n/a	Quakbot
2023-06-01	document_F641_Jun_1.zip	zip	5c07598d65e374bd68226a17c94b1e5e578ed607e5264848c031435321cecefe	n/a	Quakbot
2023-06-01	document_E071_Jun_1.zip	zip	a4c8192cf48e3b10404b14c4440a2ca62ca0f43751ffd7947e46f8d8b2eb16fd	22.58%	Quakbot
2023-06-01	document_E047_Jun_1.zip	zip	aaea90ddb1386db31628f03be32348acf99505b1cbb463ce962ab6e53fd6fe74	n/a	Quakbot
2023-06-01	doc_A286_May_31.zip	zip	d6a7e31bfcb228de58c372045efa0f7537fee48d47c71aa4b49d92d1068215e2	20.00%	Quakbot
2023-06-01	doc_A547_May_31.zip	zip	5cebca76daeb5dc5af061298ad7809067e6724548a32cece8f3947182a5951f6	19.35%	Quakbot
2023-06-01	doc_F413_May_31.zip	zip	1e335bbe1c3e6241e2addde0e9964a6d7f5f3cf19df098f4642c64e522714861	22.95%	Quakbot
2023-06-01	doc_E645_May_31.zip	zip	7ab433c3bcb3d16bc3bef77719f4114cca3081535e54881f267cdd71a44f29a6	20.97%	Quakbot
2023-06-01	doc_C805_May_31.zip	zip	de08f96772849f4ec76f04300ce81058c7b2d572fe74cb111602a2d7e8bb56b6	20.97%	Quakbot
2023-05-31	doc_E381_May_31.zip	zip	06b1008a014eb6d92fb538cf42beb8686b7a02f7fb909f14095e617087f4afdf	20.00%	Quakbot
2023-05-31	doc_E051_May_31.zip	zip	c75b2974932c2708a6a2b3dc72ebf3d48b80403b7ba0ba9a98208930cd0bb790	19.67%	Quakbot
2023-05-31	doc_D091_May_31.zip	zip	91e70a824a6ef42c6af65e38cae4cae20844d84b2fb8c862b825de5611721253	17.74%	Quakbot
2023-05-31	doc_B579_May_31.zip	zip	7d16c6c9b52a28085321c4112ffa98ee3093d6dc3e2ad2fc4a895018a6f1e0d2	n/a
2023-05-31	doc_F437_May_31.zip	zip	8457c0ae0bbff80577698e9aba44677dc4bed21b25fed338e3d56f40846b879b	n/a	Quakbot
2023-05-31	doc_A162_May_31.zip	zip	970587d8759afdea50f38df8593217b5e23c630f89ff7efb1cd4abebf8290349	22.95%	Quakbot
2023-05-31	doc_C851_May_31.zip	zip	f3c8a7b6b8cb7fbc9ee04f04e96e117aecfbf96d8191c4e31813c3035d47c66f	22.58%	Quakbot
2023-05-31	doc_D508_May_31.zip	zip	e2ea69a943fc2ac19912e90731b7b1ce86b4b8e603e62836cbb795bb8c3350c2	n/a	Quakbot
2023-05-31	doc_E617_May_30.zip	zip	088a63baeaed0ec397735b3cd01829bf86d8ab710059acb593eb79504d1a2146	19.67%	Quakbot
2023-05-31	doc_D105_May_30.zip	zip	6e8b23ec4c399acaab4007b853db10e112d2a4b76eb48b7941d930209f9df287	19.35%
2023-05-31	doc_D438_May_30.zip	zip	f3e63c36f038c0874b0212908ff62218a9145d04d5b342a015d551100630b578	19.35%	Quakbot
2023-05-31	doc_C104_May_30.zip	zip	b5e6534f65a9b5bab52e9707ade9b8d9746c0142c45ddc80411ac56853d85e11	17.74%
2023-05-31	doc_E591_May_30.zip	zip	1d42be85ccf9fa534c0c2e6e125bc8b9742a50280592846935a034009f6e17ae	19.35%	Quakbot
2023-05-31	doc_E401_May_30.zip	zip	265ac681379556a9b9fa9b9cb4a3007920236500b0d7c566daa312fd7bae54d4	19.35%	Quakbot
2023-05-30	doc_A572_May_30.zip	zip	a7e7a7271bf1aad5b20da42e08755d4529ebd9861b494f60ca6005ffe4ef4848	19.35%	Quakbot
2023-05-30	doc_C031_May_30.zip	zip	78f6d4a7a4f14920ebbe18d4003e85d6a0c77d4dfb0181a61f898f906ce19d37	19.35%	Quakbot
2023-05-30	doc_B586_May_30.zip	zip	377e251d96d41b30c38e33dac29936ebf4bae7644aff04647eddc932eb79dcc2	20.00%	Quakbot
2023-05-30	doc_B278_May_30.zip	zip	5ee2d18b6d98a401b8cf9a047ef2d93386c4c67ab36fddfc75789ec5a1e61847	19.67%	Quakbot