URLhaus Database

You are currently viewing the URLhaus database entry for https://maisbolsabrasil.org/nthe/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647594
URL:	https://maisbolsabrasil.org/nthe/
URL Status:	Offline
Host:	maisbolsabrasil.org
Date added:	2023-05-31 13:31:06 UTC
Last online:	2023-06-02 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 13:32:43 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:	2 days, 1 hours, 39 minutes (down since 2023-06-02 15:12:15 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_F637_Jun_2.zip	zip	479370679681267d7af4c1545048c1d68ab59749bffb34871b1ba6faf0e49f31	19.35%	Quakbot
2023-06-02	document_B814_Jun_2.zip	zip	43efc4e344fcc33a506425be01b68daf7e6bb65f60f23231ce90ac36a8e7f779	n/a	Quakbot
2023-06-02	document_E169_Jun_1.zip	zip	df755e7245a25142b78e86fb7c074513bca86685d59dfa5043ebe4a3bb5f6ac3	21.67%	Quakbot
2023-06-02	document_C275_Jun_1.zip	zip	098975380a6349621549564f721fd9cdeafc4c393b1e9e08f59534cdcb7342ee	19.35%
2023-06-02	document_B290_Jun_1.zip	zip	905303874339324c9a39f9bf66c8a2072a26f2e52dde3e5fada2c070a35672ce	21.67%	Quakbot
2023-06-02	document_C524_Jun_1.zip	zip	c3629621dba8e8dbcde52ae76965091503f86dd4748caf09e8947b1ad390b406	22.58%	Quakbot
2023-06-02	document_E857_Jun_1.zip	zip	6b5b72ad3c0cf6492a5d7be54beefc2a3b740244874962a1d40aa45f52b38f1a	20.97%	Quakbot
2023-06-02	document_F312_Jun_1.zip	zip	a8c3ea8e9221b17bd2176618f4c9932e014d02af15087716f78abd9671c246cd	20.97%	Quakbot
2023-06-02	document_B207_Jun_1.zip	zip	51f703fe26c05019536839facc8582ce24c78f966b758835163de884f7aa89f6	19.35%	Quakbot
2023-06-01	document_B273_Jun_1.zip	zip	37313eea023bfb80d305117c0e6447f495f87be4168513402495cbd652f2ced4	20.97%	Quakbot
2023-06-01	document_B967_Jun_1.zip	zip	a6d121eba1aa7676eec4f3fbd27e73425411fdfe360a6d824abbddb1c386164f	19.67%	Quakbot
2023-06-01	document_C501_Jun_1.zip	zip	e8d8664fc68207e98ddb60d1f20f781c7895639c5cf2396d7c32fc7d5f087d3e	21.31%
2023-06-01	document_A938_Jun_1.zip	zip	fea2a4e3a126a99916d398008386de8d7222e10330f3b8d339661da09db1a0ab	20.97%	Quakbot
2023-06-01	document_C397_Jun_1.zip	zip	5be9bc74aa4208e4331b55b0a1911da2fd301333976d1a765f409301ec19b9db	19.35%	Quakbot
2023-06-01	document_E180_Jun_1.zip	zip	8269fd20203033185df139bfef93e722bac5d3c0b4e3b53a68f767869ff2d794	20.97%	Quakbot
2023-06-01	document_D563_Jun_1.zip	zip	053a6d0574f9439a5b1764b02bbe8608b2b07e4cc3de6cdc4b4ce8dff8d9d8db	19.67%	Quakbot
2023-06-01	document_F815_Jun_1.zip	zip	6209f86c4ba6a552cc07dec5b51ae87f7a4d357d0d7daa65fec855906853d134	n/a	Quakbot
2023-06-01	document_E482_Jun_1.zip	zip	15131574f9d11ab416353ecabb9debee5cad007d99bf3fb48be5b62b68a90886	20.97%	Quakbot
2023-06-01	doc_A294_May_31.zip	zip	ae79564645fbf0a69f111da93bf53a7040ff540b07d34f001d27c66ccb9cdb28	17.74%	Quakbot
2023-06-01	doc_C063_May_31.zip	zip	95a95fcdd9ba862dfe8ebee2bb155b8c0d9a7c10de4fda202bbeca4dcf06f387	22.58%	Quakbot
2023-06-01	doc_D475_May_31.zip	zip	4494f1a2f861a06ad94c6d3a95d6833f670e741b4a8bf6c1256078084e797a6d	17.74%	Quakbot
2023-06-01	doc_E812_May_31.zip	zip	13abd65cb3b35c3b3dd3cf28e4bce3d238f98411ef45e414bf703671a8cb2d82	19.35%	Quakbot
2023-06-01	doc_E473_May_31.zip	zip	bee6532acf1a05972173b6541df5fd45afef6b5c1e92d4b21446647f639e4632	20.97%	Quakbot
2023-06-01	doc_E189_May_31.zip	zip	2db26561126667917058348084538d35ddbe4f0bd1746f6a78d5d68857e5646d	19.35%	Quakbot
2023-05-31	doc_C369_May_31.zip	zip	2eaa757b311618aad086e43c229e58cfa4bf5729497d23feffe0ae0268ad7a38	24.00%	Quakbot
2023-05-31	doc_E058_May_31.zip	zip	4542f12b012016af7f70a15f3cb509f2a4fa4f1ec4f86d9c754ddc6636780cf7	20.97%	Quakbot
2023-05-31	doc_E578_May_31.zip	zip	de19e6654a6d646ace4b7fb0cc67d1e6ffc3f2e92cdd394434e9482e4fa0d044	n/a	Quakbot
2023-05-31	doc_B719_May_31.zip	zip	d6d46f9673b166c1439329e81d78aec934b7ce6a963ffe5349c7cfbe845d49e1	20.97%	Quakbot
2023-05-31	doc_B908_May_31.zip	zip	284df661282182f7ea9a5ae3a8cac61c61c1e5e274ffa9ff5bc3eee2c9835e65	19.35%	Quakbot
2023-05-31	doc_D184_May_31.zip	zip	b4b63ae634db8a5f105da139b43ac5521b1a1a01b7e0b6ddb60837fa7c2a587b	22.58%	Quakbot
2023-05-31	doc_B843_May_31.zip	zip	c372f92691dc79377893d85d1d2365291e9d41fbeebc2647d0b1cb9974afbb8a	n/a	Quakbot