URLhaus Database

You are currently viewing the URLhaus database entry for https://xaydungmtcons.com/peca/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646864
URL:	https://xaydungmtcons.com/peca/?1
URL Status:	Offline
Host:	xaydungmtcons.com
Date added:	2023-05-30 23:38:09 UTC
Last online:	2023-06-01 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 23:39:07 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	1 day, 22 hours, 42 minutes (down since 2023-06-01 22:21:24 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-01	document_A142_Jun_1.zip	zip	dbb3a53716adf6249aeceab37bc9c940f3261b7bb4bb769cce36d9cdf17fac67	22.58%	Quakbot
2023-06-01	document_F086_Jun_1.zip	zip	78a3f66aeb8cf20f6f5982889773269c18e664dd3b60c9b136b7986d52ac921c	19.35%	Quakbot
2023-06-01	document_E950_Jun_1.zip	zip	b4ca86f4865c3bf585d4cb406d9b4d9190991c20e1af0943b6da6a74d3d40c9b	19.67%	Quakbot
2023-06-01	document_E690_Jun_1.zip	zip	216db4382c3b7ad66abcc78bee2281121e82d15cef5a5505268a19463242b9fe	n/a	Quakbot
2023-06-01	document_E427_Jun_1.zip	zip	d3910eb2b2da8c2850fb837d69ebda0f1e36475ba96f748f56bd896a70c1ef1e	n/a	Quakbot
2023-06-01	document_E254_Jun_1.zip	zip	0d94cbf03a55addee6f47ff64c53a6c55079e2caa8ed52db2db098678b158e11	n/a	Quakbot
2023-06-01	doc_B310_May_31.zip	zip	084836211e800c5c0af80b202610f145b8146d0933a4eb0a66263e836da1cdee	20.97%	Quakbot
2023-06-01	doc_E190_May_31.zip	zip	373c496bab4b9dd8f304b29ee49f0eeb3a7e8edb165d567e5736c9fcc5c32100	18.03%	Quakbot
2023-06-01	doc_A932_May_31.zip	zip	85fadd40abd5f7a72810a2d81482e3d5e916af147be9bd4c53274a987ba7cf40	20.97%	Quakbot
2023-06-01	doc_F561_May_31.zip	zip	f9a4eacf4a6388a19c59b8d7ea1c691fe492429bf475eae090d0b7fd662bbf5f	25.81%	Quakbot
2023-06-01	doc_E185_May_31.zip	zip	89522dfce422df034883aa7be367e8977e2e2d08f2155b61a51cd137df5385f9	17.74%	Quakbot
2023-06-01	doc_E638_May_31.zip	zip	d93b2a88b77e6a72f889f131161e78e6005eb74731b89729fca4a328342bb5b0	21.67%	Quakbot
2023-06-01	doc_A712_May_31.zip	zip	addf4de4b796dd93394602e13eb2dc2aa7da06ffd0bfcbb6cf317e6bef6c9134	19.35%	Quakbot
2023-05-31	doc_D589_May_31.zip	zip	fa88b1003c26d2a57464f6b632430db8f5e6fa644be9b6f189b7b930e4cd44b8	19.35%	Quakbot
2023-05-31	doc_B093_May_31.zip	zip	e3a7f2b1c2a7850240904a4f9a401f60ef7d8b7cb3ab492f7f42ce8215feca37	25.81%	Quakbot
2023-05-31	doc_F849_May_31.zip	zip	642a2a8e8455d38a0f98a4019a5699c3ba299bb5919e400c2421e3481e3f8205	n/a	Quakbot
2023-05-31	doc_C769_May_31.zip	zip	cc4c9d57d038a9a39561a6b7676bbbdb80146c0011a29fc26bb6eeac4cbee730	18.03%	Quakbot
2023-05-31	doc_A648_May_31.zip	zip	a182358d474d073ee4b01d31dbcfe5d074c8a317d981293482a3eab7f8f756ee	n/a	Quakbot
2023-05-31	doc_F901_May_31.zip	zip	97812d4385145c47221a958b6c1e5a50a469fa9b6e888b617b25ad527054a05d	n/a	Quakbot
2023-05-31	doc_A869_May_31.zip	zip	fad3e979dc5f4014acb3905ec73301913ead25edd470d9edcd83407af9e372b3	n/a	Quakbot
2023-05-31	doc_C026_May_31.zip	zip	8e694e844c68cad467183972291bca05bc70c061ef43d8d58fdddf1033de6310	n/a	Quakbot
2023-05-31	doc_F928_May_30.zip	zip	188916b372280dd9e62b94475de419c1c7d7e65123682f417e071ec0522aa9e6	20.97%	Quakbot
2023-05-31	doc_C932_May_30.zip	zip	de92e593cefddc1d75ff7d24b0dec7a212ccf9d699e321ffb6e8cde6fffb9402	19.35%	Quakbot
2023-05-31	doc_B079_May_30.zip	zip	4c95a351730c5e5653d6a6da53fe8c4c51d06cb8d83d237d75af8ece302dc473	18.03%	Quakbot
2023-05-31	doc_B296_May_30.zip	zip	0a379ae6ea52cf9d3dd0a51b4b409ae547d5da922e7cb03b6c10970385efc50e	19.35%	Quakbot
2023-05-31	doc_F061_May_30.zip	zip	e03641463b68b5716b9f0cc90e8347c0afc5e5151920259d7848df9b26f6df7f	19.67%	Quakbot
2023-05-31	doc_B015_May_30.zip	zip	3f4be9dc2ee2ce0ff6606e2aef8839d9eba9e413b005f4f2f09ff16632a30f8d	19.35%	Quakbot
2023-05-30	doc_F947_May_30.zip	zip	fa543084ef956ba1093d9f0b1dc0bf01de8aa3e91e8ba0e6e17c977b42f0f0f3	17.74%	Quakbot