URLhaus Database

You are currently viewing the URLhaus database entry for https://fmalegal.com/qe/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647655
URL:	https://fmalegal.com/qe/
URL Status:	Offline
Host:	fmalegal.com
Date added:	2023-05-31 13:31:13 UTC
Last online:	2023-06-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 13:33:33 UTC to abuse{at}godaddy[dot]com)
Takedown time:	2 days, 7 hours, 48 minutes (down since 2023-06-02 21:21:59 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_C563_Jun_2.zip	zip	d952ac13b0f62bdaabaf4ceaf9cac5025c72796aed091719fa6e58c787696cc0	19.35%
2023-06-02	document_F302_Jun_2.zip	zip	6e8a92bcd5954f5191b031676fb349add57efcfd6b751f95c6851aeea26e3775	20.00%
2023-06-02	document_A529_Jun_2.zip	zip	ff117c74efa8ce0d0f07eb9f8e7a7380c0d5e6a62431ea67bbe3089b8a099726	n/a
2023-06-02	document_B034_Jun_2.zip	zip	c6decb4e0b570d593567f265ee1e32f0e03d90acda42b13d3cdc5e056de6615b	n/a
2023-06-02	document_F615_Jun_2.zip	zip	352f7b472888e9070e7e1b1aa647ccf2e8d3cbc31a1716ca4d9d1c45459044d2	n/a	Quakbot
2023-06-02	document_A760_Jun_2.zip	zip	fbebd34b85b4c1aa490de8848719b98a8445fda3e35a18c3df265413b99e6efa	n/a	Quakbot
2023-06-02	document_E048_Jun_1.zip	zip	f0e0ce672325dafde153c36fd8dca2c6c2475c3484b37f647f156bd7550f8fad	20.97%	Quakbot
2023-06-02	document_A891_Jun_1.zip	zip	11988431748cfc755f83c69d7a6883781d0a26a075c2bc6116abbc1cd5dce9ac	19.35%	Quakbot
2023-06-02	document_E263_Jun_1.zip	zip	ed38ae4592403f1463c1c15f775851dd674d646eada7c39f6868c4a73de0d875	20.97%	Quakbot
2023-06-02	document_E718_Jun_1.zip	zip	f9f2adf68cee6fe8f5ccaea3c1aecfbc4fa643f51d1f06eb79d625ad1cc27042	19.35%	Quakbot
2023-06-02	document_D725_Jun_1.zip	zip	0345ff5d0ae858f4effb4701a8215e9b6585026c35f060aa04b9d501c196c7f7	19.35%	Quakbot
2023-06-02	document_F124_Jun_1.zip	zip	9e3d90a0e9805f9974cf556ff680cd1d6c9268407d0372f0987fa8416151f55e	19.67%	Quakbot
2023-06-01	document_B837_Jun_1.zip	zip	96b837370c9babd613a9d4e20bb0b0f6df0a2f75a5bfcab305d8e7bcb2b5bda2	20.97%	Quakbot
2023-06-01	document_B485_Jun_1.zip	zip	1626184c9001deaa24b7951484fc3b3d9445823f24c37336660ac8f76b2f5459	20.97%	Quakbot
2023-06-01	document_E926_Jun_1.zip	zip	39f1fd8bdaf284723bdab6413ec1d60e91558641f72474b005cf09d0babf472b	n/a	Quakbot
2023-06-01	document_B702_Jun_1.zip	zip	cad2fc52ba4b3f3815590394a981c22f7d67e9b757455df2f4a469f178b51a4c	20.97%	Quakbot
2023-06-01	document_C450_Jun_1.zip	zip	e887983bc52e6b7f7b462a44917a9f7500ae61176b5d18ddd8c96e31eecd1500	n/a	Quakbot
2023-06-01	document_E486_Jun_1.zip	zip	d11271e69d65ade3ec0bd8a71c70289d68acaf7bb451ae2b75b4461f038e0724	n/a	Quakbot
2023-06-01	document_A457_Jun_1.zip	zip	74089221c65561bb7c998996b205e716d5449eae92d762cae088b9e7cab37cd5	n/a	Quakbot
2023-06-01	document_C630_Jun_1.zip	zip	3af0dff4fc2e551c8387392b4b043d6fb59194ba84150bac6cefab96bae0de18	n/a	Quakbot
2023-06-01	document_E304_Jun_1.zip	zip	8f03beb0274cef5f4a160f6fe4a1386ff9933515daf968e325074f51fb906eb2	n/a	Quakbot
2023-06-01	doc_C061_May_31.zip	zip	0e531f15ebbe96705d96a884f6d41bb6bbb5d21048ddcb162db035af492bd70f	22.58%	Quakbot
2023-06-01	doc_A189_May_31.zip	zip	39dc66ed240caedfb0f66d343320710f6ad2835b66c744572e59ed81fe75fa7e	25.81%	Quakbot
2023-06-01	doc_C908_May_31.zip	zip	811254a4b808a4372d1b549dab8c36285165396853ec61af75834e5fceff3e56	17.74%	Quakbot
2023-06-01	doc_C018_May_31.zip	zip	cac6886bed689e4818f70216ec8c152c05b07baf074110cd91b4de450909593d	22.58%	Quakbot
2023-06-01	doc_E347_May_31.zip	zip	bf08f80aea07a499b34fe8c5a2b5b5961c5f34198cbce1aec40d19daeee3d166	20.97%	Quakbot
2023-06-01	doc_F495_May_31.zip	zip	9104e7407097693029f186295a6a605fc7aa02a5c6affc3fe6e75a59b7dc15ff	17.74%	Quakbot
2023-05-31	doc_D386_May_31.zip	zip	6e7fc1eacc8833961f52ab5ef2ff71571105d05118288332ce9bba53245cb57e	19.67%	Quakbot
2023-05-31	doc_C769_May_31.zip	zip	cc4c9d57d038a9a39561a6b7676bbbdb80146c0011a29fc26bb6eeac4cbee730	18.03%	Quakbot
2023-05-31	doc_A205_May_31.zip	zip	8854d997eb77f8a0776cf8f616305a0913581f18b58b124addaa093d4188801b	19.35%	Quakbot
2023-05-31	doc_C487_May_31.zip	zip	ac58ea07dbd1070249fcc792635eec4492c857dd2a3783f3e4466c34a1cac866	18.03%	Quakbot
2023-05-31	doc_D291_May_31.zip	zip	783cae8f4d086735cf56f4e62fab13535c0e9514e93f71ae6219b6e4a2b7bf1f	n/a	Quakbot
2023-05-31	doc_D207_May_31.zip	zip	9fa31f26ad68cb8b914300f86cdd30c4a77ebe46ab0fed5c8824977221058d48	n/a	Quakbot
2023-05-31	doc_C185_May_31.zip	zip	83ad539e2c8d487f727f4ec24c0dad21b2353ae97959951ce6ae1d5677b30ce8	n/a	Quakbot