URLhaus Database

You are currently viewing the URLhaus database entry for https://ortopediawong.com/eehi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647741
URL:	https://ortopediawong.com/eehi/
URL Status:	Offline
Host:	ortopediawong.com
Date added:	2023-05-31 13:31:22 UTC
Last online:	2023-06-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 13:33:03 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 days, 8 hours, 2 minutes (down since 2023-06-02 21:35:07 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_C345_Jun_2.zip	zip	1a8be0713195da1bab1082cb006fd9965c7151fe11214645e0c99692d8e402f4	n/a
2023-06-02	document_A927_Jun_2.zip	zip	9741a5faa870761e9a43a882ea0a8efb85dbd44bc2ebf3c41532b5a11ef637a2	16.39%
2023-06-02	document_A375_Jun_2.zip	zip	0502db8b992358e693e2accad874322777b969cff70fb7cf5746fed53dc5b7dc	n/a
2023-06-02	document_E704_Jun_2.zip	zip	a93c73acc2198b7e34e2462b8e36e2de1388ea26f206116baaa3507d458a95d2	n/a
2023-06-02	document_E745_Jun_2.zip	zip	ff93f76f072795fe108eb3130bf6d11f615adab1ce4f7b0651884c4edf6f6ec3	n/a
2023-06-02	document_D578_Jun_2.zip	zip	19d7fafc002c65c49c2448d2e6799a80776dd3620a310dbb29294dbb337ddd48	19.35%
2023-06-02	document_B710_Jun_2.zip	zip	e84726c15a1cd5716f71c27bb6c65a42c75421b1dd15b6fd8a24be24c4db4333	n/a
2023-06-02	document_F765_Jun_2.zip	zip	6d0b2f82fc9d4ad1d2a1b6be893e56857887ecabaf36986b6870264fd4a573b3	n/a	Quakbot
2023-06-02	document_E108_Jun_1.zip	zip	a8effbc10b11c89e6c956c99d5141769b313d89738089d3259e72983e27baabc	22.58%	Quakbot
2023-06-02	document_A628_Jun_1.zip	zip	cee04df98744f112fb3a5c4f8f06966c84f06edd6b449cce1bada7deae480c66	20.97%	Quakbot
2023-06-02	document_F581_Jun_1.zip	zip	8f8e30707484c9c47680bc50c1d745c41fa01e54a27b492f667cea913fe476ab	22.58%	Quakbot
2023-06-02	document_B842_Jun_1.zip	zip	bc59402da8a16bd56b148eedf24a06ccac4fac24d944b1df269144739ac33a5d	20.97%	Quakbot
2023-06-02	document_D380_Jun_1.zip	zip	91fa0eeadb69ea4ab0b008cd34e83588aca0d1c358500361df9830afea5a6769	19.67%	Quakbot
2023-06-02	document_F208_Jun_1.zip	zip	d86fe31d1b6045c76ee42f82434ae6a673b4594e2b8ccce4d4c60a5201ac782b	20.97%	Quakbot
2023-06-01	document_F967_Jun_1.zip	zip	08b2ba76ee5cf65c4c1e4ad6a657a3a4f88909c1d62c6907d1fc6bbea906af75	20.97%	Quakbot
2023-06-01	document_A541_Jun_1.zip	zip	3f801b34927ea3091173ea8551511775713c1e8a29c019efbe6e28ba32c9c21c	20.97%	Quakbot
2023-06-01	document_A972_Jun_1.zip	zip	26af3948ad24fa29dea5523bb6a81c6904838ac5f8c65f1bdd26980053b4a966	20.97%	Quakbot
2023-06-01	document_E258_Jun_1.zip	zip	c61f5f267ccc7c771c60b7a4d334a5434c99a885f2001a21d8a056809edf5cdb	20.97%	Quakbot
2023-06-01	document_C971_Jun_1.zip	zip	91b98a31e45b86a2dda09f387c97c8ae42af659c56f2a099fe7e0f3e0f248d6b	20.97%	Quakbot
2023-06-01	document_B480_Jun_1.zip	zip	a64a248d4e443210cfdba74725ebeb22cc57a0df40ac69e9cf24a541f9e80291	20.97%	Quakbot
2023-06-01	document_C061_Jun_1.zip	zip	637f6cef18a0cba5d7912bb5b5671477913aead6b91c053cf298b216881a1bf0	n/a	Quakbot
2023-06-01	document_F619_Jun_1.zip	zip	2ed80e76c595e5a62f4e5b04d938fb470006f096d72903fffe63b7c76804d9d2	22.58%	Quakbot
2023-06-01	document_E324_Jun_1.zip	zip	061fcec5f4e2334bd0dfebc5aae2e7487899ea9c91d5d61a04249622f8004d0d	n/a	Quakbot
2023-06-01	doc_D329_May_31.zip	zip	4a4ed9d11e50eecce4a4421a926aa1a335c2f88c8868afd2663deb80704823b3	17.74%	Quakbot
2023-06-01	doc_C829_May_31.zip	zip	3bcd985dddbddcdd2030af3098e9fcd8262f35b4865246c9a9511b253e24c2ef	19.35%	Quakbot
2023-06-01	doc_D063_May_31.zip	zip	3a7610ca669f47840c4c783470e322fb581873ac99b136c698b608ff3b393708	19.67%	Quakbot
2023-06-01	doc_E854_May_31.zip	zip	0ed4eaf0efcfcb7de1e6bd462ae972481d620f8f56f4893708a4a18fbdb74415	17.74%	Quakbot
2023-06-01	doc_B692_May_31.zip	zip	d49625cf798a858160d277e6fe41f13c6fa105a43e106dbe67639281b1709650	19.35%	Quakbot
2023-06-01	doc_A417_May_31.zip	zip	6ec2b33407637e68031980d9909f62351bec76fd558d6f7a0d9fa1b5e4554b0b	21.31%	Quakbot
2023-05-31	doc_D973_May_31.zip	zip	2d3c167d8e11166072654824271439eb021a7ad07a01e9031c10cdbd14991f72	19.35%
2023-05-31	doc_B490_May_31.zip	zip	f4cc54d9f2f6d202c545792cefc5b9aeb42fb3db7002b70d81c85da53b5d175f	20.97%	Quakbot
2023-05-31	doc_B908_May_31.zip	zip	284df661282182f7ea9a5ae3a8cac61c61c1e5e274ffa9ff5bc3eee2c9835e65	19.35%	Quakbot
2023-05-31	doc_B190_May_31.zip	zip	f54b4ee218b7ce32e306f35dc7b45ee52746a9454c5723e77feb912b5b88b290	n/a	Quakbot
2023-05-31	doc_E795_May_31.zip	zip	9d9ac745561f097a22e111918abe65b6fd027d0eb2517d4f7918b8d473e69133	n/a	Quakbot
2023-05-31	doc_B270_May_31.zip	zip	cfdcd24612d840041b7173af6273cfc1d53367f8e24d55e9dee779e46a431066	20.97%	Quakbot
2023-05-31	doc_C670_May_31.zip	zip	e61e87d3769642b71ced459ab692b3acb2497db9c4e8443c5865b8ea5a2efb37	n/a	Quakbot