URLhaus Database

You are currently viewing the URLhaus database entry for https://vladimirmesic.com/irt/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647843
URL:	https://vladimirmesic.com/irt/
URL Status:	Offline
Host:	vladimirmesic.com
Date added:	2023-05-31 14:29:13 UTC
Last online:	2023-06-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 14:30:58 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 days, 6 hours, 51 minutes (down since 2023-06-02 21:22:40 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_C769_Jun_2.zip	zip	ef054cd5c31d7a5d6c18bb28cc16310a2442e9a73f49768127ed222c65947003	20.00%
2023-06-02	document_B174_Jun_2.zip	zip	a8ddb56f9fffcaae495192f3fc0dc5af4f41e4a8959bd3d3ba9bb862a2d7d72f	n/a
2023-06-02	document_D369_Jun_2.zip	zip	9b87fe3b71629870aa4f99ae32cef840cbce3a4c149fbc1956cc35500ecc865c	n/a
2023-06-02	document_D362_Jun_2.zip	zip	c44485d1a150efacdca864c8e842f7b93840635da493bf27b1d814c04ea58515	18.03%
2023-06-02	document_C759_Jun_2.zip	zip	2ef25c8d38af7a85c1ce365b8b74d8da6186c5048bb7cd67d9b79bcbebbc8b00	n/a
2023-06-02	document_E985_Jun_2.zip	zip	5ed57ce8cd6ea2b138c2186e36ef5c12577ffb228b5acddcf69aedcdee7312e7	n/a	Quakbot
2023-06-02	document_F852_Jun_1.zip	zip	902cbec8e7ada4b95292147a9fa5ffc4867a0d0edad89161535e6d96894bd13e	20.97%	Quakbot
2023-06-02	document_B574_Jun_1.zip	zip	a6f1ecb4613dfd37fc5312a2435cd00e09d1004aeb7d4292d014694c43f8718a	19.35%	Quakbot
2023-06-02	document_D896_Jun_1.zip	zip	45c164018fce447bec43712a838a7c2ff0c46d8cde10cce2d056a9a21fd84310	21.31%	Quakbot
2023-06-02	document_C496_Jun_1.zip	zip	0ebebef5d7c1f41775fc99f8bf5f631afacca1ca1908f6fde809ffb31255e053	20.97%	Quakbot
2023-06-02	document_E726_Jun_1.zip	zip	43a9b259392604645e3a586c57f3bfb5803725db0243869785b51909334f2630	21.31%	Quakbot
2023-06-02	document_C190_Jun_1.zip	zip	8ad0150f89e11eb30ff0d7162b8e8055d76b5ca0c5be8ff0760b1e86456983bd	20.97%	Quakbot
2023-06-02	document_A138_Jun_1.zip	zip	43b90d0e8e07d868b624d2f36bb4f9dbf10a90dea91025d3e7675f3c5459202b	20.97%	Quakbot
2023-06-01	document_B024_Jun_1.zip	zip	5fed69a7da8fbcaec008d3dc43e337d4c4b4e63674afedc3e49037b6684fdd4c	20.97%
2023-06-01	document_D506_Jun_1.zip	zip	eb1bd4e201ac512c4901c303b5fc1510775ee714f3b9323bfc4c931b5d165afe	20.34%	Quakbot
2023-06-01	document_E836_Jun_1.zip	zip	9922c5481028044499c3b45f4244235a07e17eae0bb3f5a2a2b7fa33f2e75dfb	20.97%	Quakbot
2023-06-01	document_C579_Jun_1.zip	zip	225e49b097dc5e21312ef7b835f1b9536dabe1a6aeca954946e0030da38e26b6	20.97%	Quakbot
2023-06-01	document_E670_Jun_1.zip	zip	707dc300102201e99cf3ed80ec8980ea8e478459852bc524c84956df1f88da2f	n/a	Quakbot
2023-06-01	document_E017_Jun_1.zip	zip	53ace16b43f72dcd12d20a9ad2cf6f4ef9f3b0f07f60652e13f66ae78d188929	n/a	Quakbot
2023-06-01	document_A560_Jun_1.zip	zip	48ce8865a4dde3905be2e7302d7ef51c4e309ccbc457864b633fe936f654e797	20.97%	Quakbot
2023-06-01	document_E731_Jun_1.zip	zip	b103ab725f66cee1ce8bfa6a0154da16969109f7b381c88229fd37d9f3c63f2f	n/a	Quakbot
2023-06-01	document_F724_Jun_1.zip	zip	3d2a9cfda5c2c103db1e75443d8232e9908930c2faef37523cc8d7a32b7dbdf9	n/a	Quakbot
2023-06-01	doc_E427_May_31.zip	zip	1bb94c0c8cc109199fb96ea016f1d00407da15e8a1291c2dea3c0a273b317478	17.74%	Quakbot
2023-06-01	doc_A947_May_31.zip	zip	f6c9877bfe84e397ec357fda5052e9b9858226850b6d139884554831c804a9f6	20.97%	Quakbot
2023-06-01	doc_F491_May_31.zip	zip	d97446c62192197cfb7bc5ecc86d25c352e5591cb560e5a797356bbea9f14a94	17.74%	Quakbot
2023-06-01	doc_F573_May_31.zip	zip	b5c5b5d014083af057978f1be4e146933c590f13b980222d2bf66a80d61d8114	17.74%	Quakbot
2023-06-01	doc_C917_May_31.zip	zip	2cc1888ced0edc468a0cc6bfbf004fc18df13f7f43e9c247ac4696c3ae0465ec	19.35%	Quakbot
2023-06-01	doc_E153_May_31.zip	zip	d3d6a1236ffa99b436ded7707eb51a895cfa503e58a9218595dea17a4a16ce1c	19.35%	Quakbot
2023-05-31	doc_D241_May_31.zip	zip	7af20a4dc82c372130640cd0ca1eef25621ddef938b939ab4351c648b44acdee	21.67%	Quakbot
2023-05-31	doc_F729_May_31.zip	zip	e100f6c6c568233108820459a1608be765d469d2e8f38684dcc28b7c5ec45255	n/a	Quakbot
2023-05-31	doc_D561_May_31.zip	zip	655dbd3ef954a309adc127d182b520543441c9dc96f644c92535a13198df5c23	19.67%	Quakbot
2023-05-31	doc_C712_May_31.zip	zip	bd991eeea20091bac05521ef0bf752904cd7572700376a47ad64b1d830639374	n/a	Quakbot
2023-05-31	doc_E972_May_31.zip	zip	073a2338754b3801a1e0cb3f8975e33befd3c72e41e3fab22e0a822b0b37bb0a	22.58%	Quakbot
2023-05-31	doc_D423_May_31.zip	zip	0be48f4226ca116632566f6ccf020510ca03f8626c07371add5519f0c5acd207	n/a	Quakbot