URLhaus Database

You are currently viewing the URLhaus database entry for https://dowsa.net/aig/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647619
URL:	https://dowsa.net/aig/
URL Status:	Offline
Host:	dowsa.net
Date added:	2023-05-31 13:31:09 UTC
Last online:	2023-06-02 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 13:33:03 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 days, 9 hours, 5 minutes (down since 2023-06-02 22:38:33 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_D319_Jun_2.zip	zip	50a73333f950b8053562f8a0d602185060a6ec3398df02bbfb424ed45346681e	19.35%
2023-06-02	document_B381_Jun_2.zip	zip	6487c78b52115dd8d6e6ed9b94a2a95aec3374486830f1e572f08413cc1d510a	n/a
2023-06-02	document_E753_Jun_2.zip	zip	65dfcacd76c4e233fc1017c6966309ddfdea9593dd975fd9fec11de20508c979	21.67%
2023-06-02	document_B723_Jun_2.zip	zip	13326e203efd8196e16b53cf67e0b54fa67bb46680508ffb6dcfdcd6c8ef0619	n/a
2023-06-02	document_B978_Jun_2.zip	zip	74cd7086b027c7d0260230146a60b6e2ea11b0c7ad21feb3dbd7402c1c481304	n/a
2023-06-02	document_E142_Jun_2.zip	zip	4b890d2e1f1c57a9bf2d7930d79b67b12c1ef317d187e5f1d70e2f5183bfe8d4	19.35%	Quakbot
2023-06-02	document_B012_Jun_2.zip	zip	35473c5c6d0f69972c964cfa8da34672a5f0003917acc9a7cd4436403a88073a	n/a	Quakbot
2023-06-02	document_D819_Jun_1.zip	zip	00dd903917624c1aef8abb46a49e627267c13fd473ea3af3b94388c8c8345919	20.97%	Quakbot
2023-06-02	document_E697_Jun_1.zip	zip	1e22adc2da7ce49e1f0a45b221e6e3b2962bc2be9b1c75ffe5e16d459f6efc2f	21.67%	Quakbot
2023-06-02	document_A762_Jun_1.zip	zip	dcae8c35a473212b77339dde28ac1d61f15ac408964b0984bd74c0a7be56a533	23.33%	Quakbot
2023-06-02	document_C046_Jun_1.zip	zip	3503037d41d539a006d82b41fe7db4e77c4e1c482d2fa791f22dceb738e80da5	23.33%	Quakbot
2023-06-02	document_D801_Jun_1.zip	zip	4fda53580d95d194d32e6555dcada4d4cdd2bdeb0b4a10edc9933c15481451d7	22.58%	Quakbot
2023-06-02	document_D658_Jun_1.zip	zip	03d15ea6b4808dbeba7ae34f7ce97a00a2fefde36331a19c2d62c0ff306ce9a2	20.97%	Quakbot
2023-06-02	document_A012_Jun_1.zip	zip	0e4322df2d93a9d4e6572dad38ee7a65b674350ff04ee7b390e0c5098b5f103d	22.58%	Quakbot
2023-06-02	document_F012_Jun_1.zip	zip	440b9034a43f9094107fa012566c69713dfc0232ea7cbc52cf584ed88be54465	19.35%	Quakbot
2023-06-01	document_A753_Jun_1.zip	zip	44c1b2bd5ea148070bb5b67683e65c6fb26656a26c8e3ba50acde3b7c6863f27	21.67%	Quakbot
2023-06-01	document_B746_Jun_1.zip	zip	8e4f583b86d651c12b3fc8dfb098a1e3b156812fa3da6f412756c74f6f98bb84	22.58%	Quakbot
2023-06-01	document_C134_Jun_1.zip	zip	72a58d24f0a79417ce382bb550faeedea387c0e656a73ffdeda3cc49c300febb	20.97%	Quakbot
2023-06-01	document_D679_Jun_1.zip	zip	f2d04322d54a5423dd91330d08f7e5363b15c8a4b88bbc4f1b950feef92a7f22	20.97%	Quakbot
2023-06-01	document_E192_Jun_1.zip	zip	6e2a0b33e670b2d7185778d320ee3759c4136fb9cb13cb318a795ea9b9b959f2	n/a	Quakbot
2023-06-01	document_C836_Jun_1.zip	zip	d9fdc1aed365866473a51da70f4e7f507eed60d9e5acc832f23499ed4e3b20b3	n/a	Quakbot
2023-06-01	document_D245_Jun_1.zip	zip	b9ac19d71be5544254ec54236fc51490222238ab5eb66f1173bfc542c57b1681	n/a	Quakbot
2023-06-01	document_D215_Jun_1.zip	zip	42d795d2ccdc04ac6a8e1ecdbc2622c49a143b8aefbc7f3eddf39af7487332da	23.33%	Quakbot
2023-06-01	doc_D052_May_31.zip	zip	dbe3052b5078b9cd295b82c01f161cf539b4a23869d8c1ce41c40e1276154218	16.95%	Quakbot
2023-06-01	doc_B320_May_31.zip	zip	fb82083f38a5e1ee4416810ba46aeb7aaea5a5f269b99314e437a070d3e3e35c	19.35%	Quakbot
2023-06-01	doc_B204_May_31.zip	zip	c058c13c292c842ab4601b4599efe6493f57f8efe96adfd95db66a5ced82a6c5	20.97%	Quakbot
2023-06-01	doc_F296_May_31.zip	zip	b745197aaa79eb8c42e3a95ef8738a3cc14a285568eb112867be70f6f37c37d6	17.74%	Quakbot
2023-06-01	doc_C514_May_31.zip	zip	a78bb58446fd25e799751ac375cde81965668c80deb715a30e400ff0e6e5c1aa	8.89%	Quakbot
2023-05-31	doc_A502_May_31.zip	zip	0097db902968ea80a267f014d798ad41dc4831cafc4d035ce7833d3ba4f29ecd	17.74%	Quakbot
2023-05-31	doc_C072_May_31.zip	zip	90cb9a80f2fb095bf7e4411273f5c1f471abc052235d274667fbb9d85c540225	20.00%	Quakbot
2023-05-31	doc_A345_May_31.zip	zip	418791d99faa59755580ea3c60fad4f3641c2619278b393ae111a0e923da2086	22.03%	Quakbot
2023-05-31	doc_A294_May_31.zip	zip	ae79564645fbf0a69f111da93bf53a7040ff540b07d34f001d27c66ccb9cdb28	17.74%	Quakbot
2023-05-31	doc_E592_May_31.zip	zip	12a7eb44753bcf1b5d7a92ede757aa07ba623eb83be5d28169c4ec63ab5914ad	n/a
2023-05-31	doc_D325_May_31.zip	zip	bad75e63f89ccf0730a8536369a3eccdacb5fb5765e7591788bc0e7ccf5db78a	n/a	Quakbot
2023-05-31	doc_B960_May_31.zip	zip	ac77a00f6473de46f166718a79fb2527dc6b8e42abc98c0f76d2aa74b2d88743	n/a	Quakbot