URLhaus Database

You are currently viewing the URLhaus database entry for https://wallowemb.com/qat/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647643
URL:	https://wallowemb.com/qat/
URL Status:	Offline
Host:	wallowemb.com
Date added:	2023-05-31 13:31:12 UTC
Last online:	2023-06-02 08:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 13:32:42 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 days, 7 hours, 45 minutes (down since 2023-06-02 21:17:46 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_E810_Jun_2.zip	zip	fc2613c48304e9183ffb33e7c1fdffc99a896b334d9d21f952d7873af62943f2	19.35%
2023-06-02	document_F789_Jun_2.zip	zip	7625d1dcc8f2dd1c43d774c2652cd9fc38ea2c3dad021cca749bca9daf306d7a	16.39%
2023-06-02	document_A317_Jun_2.zip	zip	e8082e62ec253d66bba8b965571719fbb0f254da1504dde56ea216fed32a9b4a	n/a
2023-06-02	document_F841_Jun_2.zip	zip	2621d65081c397637a205b0b8af700554091f157eb3a8670908a131ed549b475	n/a
2023-06-02	document_D378_Jun_2.zip	zip	07e5feb3683a91f4a04a20948d17748145d412d326f8621c3b3cc9adf01ed9d3	n/a
2023-06-02	document_F542_Jun_2.zip	zip	b032f6c317fda9de1a1193d3d4697dc2055539c052f9e806c7e3429b8a51bdef	17.74%	Quakbot
2023-06-02	document_F873_Jun_2.zip	zip	3d7f9827bc50b8ed3e38aebb314439eebf4f4191cec14e9eeaacc34e87b560e1	n/a	Quakbot
2023-06-02	document_D415_Jun_1.zip	zip	0dbe8a39a1b10a657978addec47d28ec5db716ca08ae1dbe033e1eab1b91360c	19.35%	Quakbot
2023-06-02	document_F651_Jun_1.zip	zip	3adc392ce8fff5f019972844cd7181c22b0203a0c3052e3ff80445eda44cb478	22.58%	Quakbot
2023-06-02	document_E237_Jun_1.zip	zip	8dabd0325a38ecd7a2d04f794e4adee990ca794a4b124236bfae08c08e6a051f	20.97%	Quakbot
2023-06-02	document_C809_Jun_1.zip	zip	38735116b94d946d3b8fea7e0e6cbcc00e2d9a1e0efb9e74b51fa0b90650ef8d	20.97%	Quakbot
2023-06-02	document_E975_Jun_1.zip	zip	fd80cfcb84cea70bb18349105afd4d2c31f5938551147d962834a3609ab54fc0	19.67%	Quakbot
2023-06-02	document_F376_Jun_1.zip	zip	efb8a8c1bdf7a4700780e51c217ae115e158ec6462d906106b82bd3993a14071	22.95%	Quakbot
2023-06-01	document_B348_Jun_1.zip	zip	5a43c30355473d1402bd4862f304ccd932bb13266a7809b1986e0fd1d9db5350	20.97%	Quakbot
2023-06-01	document_A937_Jun_1.zip	zip	fb693b15ec8213950c5192e613b3e49acf7c4808e0093c9fba49db181cc2fc7e	20.97%	Quakbot
2023-06-01	document_A721_Jun_1.zip	zip	1a8f00b68739523861c81b6863a4de5bf9e793cf7cca07336e05bb50a45ee05c	20.97%	Quakbot
2023-06-01	document_F368_Jun_1.zip	zip	1a22cfaaaa6800df1f3c766dd5a8a6a0137e6b1effc3a28918be178aa8933b56	n/a	Quakbot
2023-06-01	document_B409_Jun_1.zip	zip	1a8d7b881c90d3682a5820c6a849d4f08915925c8fe306237f07813ce1e404f0	n/a	Quakbot
2023-06-01	document_C795_Jun_1.zip	zip	d3374deb40fd164e94c4bfa809a385b4deea3f908c48f18b42dc4ebbdcd4adc6	n/a	Quakbot
2023-06-01	document_A590_Jun_1.zip	zip	2749cae9b0133954e7c93f35afddc07b4f0a0fe7293e428ab87c20c4ca872769	19.67%	Quakbot
2023-06-01	document_E438_Jun_1.zip	zip	e696c1d897e538655d14c171ec8a45225a27e99d41f1b0645cddb63cff46b0b2	n/a	Quakbot
2023-06-01	document_B754_Jun_1.zip	zip	e9d0ef7d10017c5408c923ee61023d701fa21cb4c9e8e89f1370345d9cdd2030	n/a	Quakbot
2023-06-01	document_A091_Jun_1.zip	zip	5f5efbb53c4905a4c3e5c92c19c9ddef2e82d5156d80089b5e5c62bc95e812b9	n/a	Quakbot
2023-06-01	doc_C980_May_31.zip	zip	fab7ca158a048c1ba0bbd9b16c994aad451890ea13eeea7d5f414d59053a8744	19.35%	Quakbot
2023-06-01	doc_B051_May_31.zip	zip	2ec47766bfbb052c557f34ef1350b12d00a77c7410a7729a90aa19d152b2988b	20.00%	Quakbot
2023-06-01	doc_A405_May_31.zip	zip	c540a0ce040d8a17b473474e20da5505b722db9d26d6797ad3a0093c70dd28dd	19.35%	Quakbot
2023-06-01	doc_C592_May_31.zip	zip	c925684a14fb0a0460ce00e5b7ff2fc48c17779d6be5ead680a0b270772b5709	20.97%	Quakbot
2023-06-01	doc_A769_May_31.zip	zip	90db7950d8f057ad3039552891e105d8f377b8a7702ac9a985d63f73aef81c08	17.74%	Quakbot
2023-06-01	doc_F491_May_31.zip	zip	d97446c62192197cfb7bc5ecc86d25c352e5591cb560e5a797356bbea9f14a94	17.74%	Quakbot
2023-05-31	doc_F270_May_31.zip	zip	2fd35cb6ac1b8ca3aaca3a4320cfc762672da8cc79f0ffd0af64c19a30a330e8	23.08%	Quakbot
2023-05-31	doc_B645_May_31.zip	zip	278ee16e04a46f2bc21d589851bd27a00d3475a9018a125701e89d3c70a57e96	n/a	Quakbot
2023-05-31	doc_F405_May_31.zip	zip	9cb273bfa33f335e3b41548c690bb1ab0cbaae3bc22bea467a36a88c4136f1aa	n/a	Quakbot
2023-05-31	doc_A278_May_31.zip	zip	b751c22b2679cf009f3aab78a00bd34867778f73836077ba306df5d2e20541b6	19.35%	Quakbot
2023-05-31	doc_E492_May_31.zip	zip	c49223eadbea0e33f92fd564beccbf412331199cee9b79e2529a35cb11cf47f0	20.00%	Quakbot
2023-05-31	doc_C098_May_31.zip	zip	bf64f1f91e686b9f2902b1b374f70dc945b0d4c94b5123927e10b38806fdb82a	n/a