URLhaus Database

You are currently viewing the URLhaus database entry for https://abovemediamarketing.com/uxti/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647751
URL:	https://abovemediamarketing.com/uxti/
URL Status:	Offline
Host:	abovemediamarketing.com
Date added:	2023-05-31 13:31:23 UTC
Last online:	2023-06-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 13:34:59 UTC to abuse{at}bluehost[dot]com)
Takedown time:	2 days, 7 hours, 36 minutes (down since 2023-06-02 21:11:04 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_B489_Jun_2.zip	zip	d3f0cb5da4e6b29d501a0a048eda344889079ade2499bd170b59f1d5f840e0e6	n/a
2023-06-02	document_B675_Jun_2.zip	zip	0e3f7504646627f65ad9f086c3bf8394816d6554b849a5fbbc65ef63e66463a0	20.34%
2023-06-02	document_C591_Jun_2.zip	zip	c8bbd28659778d6e6c04603cce168b5b8693c66704ba617ac4a9f88281e95d45	17.74%
2023-06-02	document_C605_Jun_2.zip	zip	baa92b6a07423e38d895c0a94fff5f5b00a3f74c3a412ab0b4ac0fbb02b22ae8	17.74%	Quakbot
2023-06-02	document_D435_Jun_2.zip	zip	2b696e111a2c7a2ed03f543c2882de2c824e9544f03d1302f0cfb292820dd87b	18.03%	Quakbot
2023-06-02	document_E857_Jun_1.zip	zip	6b5b72ad3c0cf6492a5d7be54beefc2a3b740244874962a1d40aa45f52b38f1a	20.97%	Quakbot
2023-06-02	document_B739_Jun_1.zip	zip	588878a493db858b993e9a6e30fbe97e686f31642f3454fecd487d61985eaf21	20.97%	Quakbot
2023-06-02	document_D709_Jun_1.zip	zip	6054a727f9df62ae983666b64f76e9084cd6d5698b027d3f8fcfc48abdc8ee50	21.31%	Quakbot
2023-06-02	document_D815_Jun_1.zip	zip	c40dec274f7567564d9fb6ae3cdb06ace23b3d5955c5d9199c5189a1800015da	20.97%	Quakbot
2023-06-02	document_B253_Jun_1.zip	zip	f9bb5bd31f088f24ccdc21190751eeacfd39ac03705d04be090c1e0c37a871fa	20.97%	Quakbot
2023-06-01	document_C082_Jun_1.zip	zip	314e4f80c4009a9efe90dd06f2fe879b7efbc4b9078fa7936702006964f6b522	21.31%	Quakbot
2023-06-01	document_B384_Jun_1.zip	zip	d9266ce7605e395ca41129a6b90a034e8c4198343029517341a10d980f555822	19.35%	Quakbot
2023-06-01	document_B634_Jun_1.zip	zip	09a60ae50125ae5648d7357b20f24345ffcfadab6f8295113738e7e229225012	21.67%	Quakbot
2023-06-01	document_F215_Jun_1.zip	zip	4ec521c1ae6aa1ef66f730b5befdb29a76ec45c809c95da2fb587dbef01101bf	22.58%	Quakbot
2023-06-01	document_B702_Jun_1.zip	zip	cad2fc52ba4b3f3815590394a981c22f7d67e9b757455df2f4a469f178b51a4c	20.97%	Quakbot
2023-06-01	document_D615_Jun_1.zip	zip	1bad8529156ae3c3676d03c5d79482eb9eb9059f5d16a3bd853e5d65cf41db82	n/a	Quakbot
2023-06-01	document_D367_Jun_1.zip	zip	6e67c370bacdb87d585d86370ddaba75c2029b73de48b5598df7f777046665bb	n/a	Quakbot
2023-06-01	document_D961_Jun_1.zip	zip	f183b36e4facc65396f77055c3ef421f2f3dfce20d4745cea3c93419ec97ebe2	n/a	Quakbot
2023-06-01	document_D079_Jun_1.zip	zip	dd4eb182e9acb667936779a07e3894bb477cd493901b862127fa8e9b43e50c9a	n/a	Quakbot
2023-06-01	doc_A459_May_31.zip	zip	7967e54a6bec438b212e873903b8efa62d2431b4671e9dd54bc1ba027fd239e4	19.35%	Quakbot
2023-06-01	doc_A603_May_31.zip	zip	c92d035488adefb909f446638261f890e2da6559a3c23a3d05e19f2bb4a865d0	19.35%	Quakbot
2023-06-01	doc_A815_May_31.zip	zip	72e97a53750dd1d5983fe4441c9d86440aa85ba8322df418b5f2b9a52281f1be	20.97%	Quakbot
2023-06-01	doc_C078_May_31.zip	zip	ce23f49e520eca3bf4d49ca463e105782b4b28cccfac7d74399d6a9186ee963f	22.95%	Quakbot
2023-06-01	doc_D102_May_31.zip	zip	5ea41f655acedcbdfd9c7216fc3cb9d94145c0d08c29ca8593ce36650d6a3afc	11.11%	Quakbot
2023-05-31	doc_C345_May_31.zip	zip	92953336a23d52f20ed4e6a9ed0a2acbc79407a3b2719848e03539fd5953e469	17.74%	Quakbot
2023-05-31	doc_F038_May_31.zip	zip	c7dff11c5051c7a6646cc12efec92aa46633961c74ba53c1675a9bddda4fa47a	17.74%	Quakbot
2023-05-31	doc_F961_May_31.zip	zip	e5e64bfa27f5f3a7bdc12fa20b67728a7f84ba5bc26a4c505506347ddf8a9684	18.03%	Quakbot
2023-05-31	doc_E678_May_31.zip	zip	161db0fa1f7c2ab8d9b5e7f43f8a55b1ed2d888fd22f08dbb16c273e12a12605	20.97%	Quakbot
2023-05-31	doc_C742_May_31.zip	zip	9c724c953bcdfdbac1ae515cd816d084eb11f6b215422c06afc521ae16e899fd	n/a	Quakbot