URLhaus Database

You are currently viewing the URLhaus database entry for https://floresdemaio.com/eipm/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647589
URL:	https://floresdemaio.com/eipm/
URL Status:	Offline
Host:	floresdemaio.com
Date added:	2023-05-31 13:31:05 UTC
Last online:	2023-06-02 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 22:05:09 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 days, 9 hours, 20 minutes (down since 2023-06-02 22:53:00 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_D475_Jun_2.zip	zip	fda3ac0f6570e5e7237d6c0d3817b3bb2713c921821f26e25f2b61231d78a332	n/a
2023-06-02	document_C437_Jun_2.zip	zip	91260379162f6de7fbeb5a39fb6f46762f63a8f613b10f02c9fa822adcd4ef93	n/a
2023-06-02	document_C684_Jun_2.zip	zip	09f20f9b3e91ea4250aeeddfe01d8b0541c68418ca0981fa1b288d639ec24768	20.97%
2023-06-02	document_F641_Jun_2.zip	zip	c917ae5768021f2295c9a2043c22387c3982d0eb1b2cfca22f5b035cb8032a99	n/a
2023-06-02	document_E703_Jun_2.zip	zip	d9d6d2568a3361a447ec2c31c2d1f1dd6f6407baf30f4f0ab89b40ae1c3b400e	n/a
2023-06-02	document_E471_Jun_2.zip	zip	9355814a572a9919dd2a6b24a5be6db323379e8d87b24912a1b520267d415120	n/a	Quakbot
2023-06-02	document_C587_Jun_2.zip	zip	f2b69d301634791853ae638eb1a380c3f4e837cdf28b2f7f0b47172ab834b2aa	n/a	Quakbot
2023-06-02	document_C109_Jun_1.zip	zip	7ebce2846feeb4213ee2e4dc5c6ac4be1687e81af310caccd70e2da9ae98aa3c	20.97%	Quakbot
2023-06-02	document_E074_Jun_1.zip	zip	c2fbc48438e9037059aede46cc7a9c5c5b88cdf93c5fa2de9c91fa2e28cf4cfd	n/a	Quakbot
2023-06-02	document_B614_Jun_1.zip	zip	02852bf23dbe5b299d72a3ef1b7bc4993f5fc9b30b1eaab9eb4f06fb20a89428	20.97%	Quakbot
2023-06-02	document_D079_Jun_1.zip	zip	7572ef614ebb7f74f38fd69400874ec336df1e0ff9a21b293cfa3510399e85f1	21.31%	Quakbot
2023-06-02	document_A138_Jun_1.zip	zip	43b90d0e8e07d868b624d2f36bb4f9dbf10a90dea91025d3e7675f3c5459202b	20.97%	Quakbot
2023-06-02	document_E843_Jun_1.zip	zip	cb2cb905bc33eb3d4cf6829c09b6528295fc443071f2e2d8e27c7f1364532099	20.97%	Quakbot
2023-06-02	document_F760_Jun_1.zip	zip	dc5997a3e8111bfa166855c32d4541102f3e58270df547d994f578f154624078	21.67%	Quakbot
2023-06-01	document_B236_Jun_1.zip	zip	2d32c4c248c6d15020483a0d05973f9db5cc3877ff7f1ce817d273e331d2559f	19.35%
2023-06-01	document_B452_Jun_1.zip	zip	5f021104c51ef6051a0e376f122bcfa600e57a2e3ed2f07f704512cf9f9e4341	20.97%	Quakbot
2023-06-01	document_B104_Jun_1.zip	zip	797b826447715de2b29cce89708428f28b89de76fbf03c85a3ba2d89877d3612	20.97%
2023-06-01	document_F614_Jun_1.zip	zip	77515587c3766a015541062cd8b87a0694cc9835a5dd89fe01be6a8fbb3fe957	n/a	Quakbot
2023-06-01	document_B602_Jun_1.zip	zip	95607dfc0c397bbc1f02902b94726353a7b7b67f2b5d1e049a18e2d9d99224b3	20.97%	Quakbot
2023-06-01	document_C817_Jun_1.zip	zip	1d325007088ba61ef6eefc078b8d842cd54b8ffc44b1602bbafb5d07c4248dac	20.97%	Quakbot
2023-06-01	document_C729_Jun_1.zip	zip	01bfac314a27af4fbae3ff6219737aeb661b96f4c0fe77d67fa775108ce84367	n/a	Quakbot
2023-06-01	document_D378_Jun_1.zip	zip	2b85c22a1ff8cc2c0e3f7243be7ccc69241bde8b499c027c4e256a6498e6afd7	20.97%	Quakbot
2023-06-01	document_A304_Jun_1.zip	zip	8d8e2bb39f7fc291138ede2ed040c3b41100c11c0d47cc55ad8f3bebc2c16353	23.73%	Quakbot
2023-06-01	document_F695_Jun_1.zip	zip	31777e5a55dbe3df96aa97a88161bfc6a61b5dfc185a49fd6aeb441aada2864c	n/a	Quakbot
2023-06-01	doc_D258_May_31.zip	zip	45e9ec11e1612e298c8c28f66d9473bda1837a84a83f4b4f4894097a39a8b722	19.67%	Quakbot
2023-06-01	doc_C876_May_31.zip	zip	50f13b98e74982ad59a4976b2218170bf564ae6a004e4856f33c0c1fdd0ec01b	20.00%	Quakbot
2023-06-01	doc_B645_May_31.zip	zip	278ee16e04a46f2bc21d589851bd27a00d3475a9018a125701e89d3c70a57e96	25.81%	Quakbot
2023-06-01	doc_F821_May_31.zip	zip	b6443136ca6571e14500f1bab3a4177a3f9d4cc4435e216dfb680ee6de49f7f8	17.74%	Quakbot
2023-06-01	doc_B934_May_31.zip	zip	1ea99f3a54222af795667955ced8074d4586a5c04abd6e2d07e892d3c154b16c	20.97%	Quakbot
2023-06-01	doc_E578_May_31.zip	zip	de19e6654a6d646ace4b7fb0cc67d1e6ffc3f2e92cdd394434e9482e4fa0d044	24.59%	Quakbot
2023-05-31	doc_B814_May_31.zip	zip	7ce964e2b996658907dcd34676ce512007a9d4795a6922c35b8c71f6c1dd2c58	22.58%	Quakbot
2023-05-31	doc_B846_May_31.zip	zip	7bef4296abc4e31dab9382bd364198a39dda6e1840fda0d056fff7c9a3ea9d32	19.35%	Quakbot
2023-05-31	doc_C920_May_31.zip	zip	091b58511fa80b0cd12e8b471ffb0dc51cad0135977e617fdbf9aa87a8d2d2bb	17.74%	Quakbot
2023-05-31	doc_E812_May_31.zip	zip	13abd65cb3b35c3b3dd3cf28e4bce3d238f98411ef45e414bf703671a8cb2d82	n/a	Quakbot
2023-05-31	doc_C514_May_31.zip	zip	b169f48ed68a8eec640fb00e1f96816a0d72ba67407d98d2238045c1a4af36cd	22.95%	Quakbot
2023-05-31	doc_B819_May_31.zip	zip	21127b9345738cd9ecf4dcf5eb18d85ae401d2976a085689779c69379104490d	n/a	Quakbot