URLhaus Database

You are currently viewing the URLhaus database entry for https://ecotasar.com/ua/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2647937
URL:	https://ecotasar.com/ua/
URL Status:	Offline
Host:	ecotasar.com
Date added:	2023-05-31 15:57:11 UTC
Last online:	2023-06-02 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100125784 created on 2023-05-31 15:58:03 UTC)
Takedown time:	1 day, 17 hours, 54 minutes (down since 2023-06-02 09:52:29 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_C049_Jun_1.zip	zip	6db75d1358f6b315c2c54bbe0cfc5d20b7644bde47856e718bbbd954a2b174c8	20.97%	Quakbot
2023-06-02	document_E321_Jun_1.zip	zip	2c658f14a90cb201998322f63fde0cbc02874dd991f09cfeb447b882655b5a27	19.35%	Quakbot
2023-06-02	document_B826_Jun_1.zip	zip	fb33077d38e34a2d3b8a9ff20fd0a687e5f90ee62649836fdbf3bc6a2cbfba59	20.97%	Quakbot
2023-06-02	document_D856_Jun_1.zip	zip	0187b91017ab99749fdb23664cdba89990cba82e626beac38ac861da77826a06	21.67%	Quakbot
2023-06-02	document_D564_Jun_1.zip	zip	8ec5c75b9d894a70816d72808bbcaca57fd492336c57aa3c3c26bda2f9848469	18.33%	Quakbot
2023-06-02	document_F941_Jun_1.zip	zip	9471df99cc0001627fd4928af5f378d1845699297035c09400bb7cf2b352d832	22.58%	Quakbot
2023-06-01	document_B516_Jun_1.zip	zip	93051fc0bb77d0ac0ca53909a0c9982b9dca3b8a7942fd63938a99946e194919	20.97%	Quakbot
2023-06-01	document_E780_Jun_1.zip	zip	f07a39eb84966decd71f136391d508c7d989732661aeda9a45d117be37902586	13.16%	Quakbot
2023-06-01	document_B823_Jun_1.zip	zip	b68b800971404a2d689dc62d39dad9c01870c865f651166a8864e93c9fb107b3	19.35%	Quakbot
2023-06-01	document_A452_Jun_1.zip	zip	5fa22f91c75866cdf222df7abb1b046125fa551d8fe1b4e48800080470e89176	19.35%	Quakbot
2023-06-01	document_A864_Jun_1.zip	zip	77ff966b2c64d69952c94dc51eae4fb9ba4c17ebf746ea820ae87531fbd35f2e	20.97%	Quakbot
2023-06-01	document_A093_Jun_1.zip	zip	e47ddf603fae0f9e2ef1f6990c1c0f7b12827762755a11a13036858fb2f4ddc0	n/a	Quakbot
2023-06-01	document_A935_Jun_1.zip	zip	c537c8d0e4f54db46a29a9450aecb4f6de400af1a5331ad7ee24f789c5bcb2ec	20.97%	Quakbot
2023-06-01	document_C053_Jun_1.zip	zip	4ba8023d0d97fd2857aea6483f7e61431286a39464f1c6467327e087bdced055	25.00%	Quakbot
2023-06-01	document_F937_Jun_1.zip	zip	de7aab82b730398800150b165284e522d58f3a85c7e953bc83a3a1c49ab1d18a	n/a	Quakbot
2023-06-01	document_B701_Jun_1.zip	zip	9937dc9537c760619a837b5f615d1d0c1814f8f1be0b1712feffeb0983a03026	n/a	Quakbot
2023-06-01	doc_B251_May_31.zip	zip	2482a4f364d9b1af6ab7c1ad93adb0c0c8dfbb4afde061177d49b71835ac6395	19.35%	Quakbot
2023-06-01	doc_E813_May_31.zip	zip	dad75d64ab71b0581fe5dc60e48e871a2168a7c554605e4db77464126f92b3ba	20.00%	Quakbot
2023-06-01	doc_A186_May_31.zip	zip	4a7caccef9da5a666ec9c9a1a0b977746796ba6d5005626b802eec0b05b73948	17.74%	Quakbot
2023-06-01	doc_D273_May_31.zip	zip	b7da8c21d4ed3b06a7d07028db4084c22b30a3fcc6088c4509dbfc702ed0ef03	19.35%	Quakbot
2023-06-01	doc_C217_May_31.zip	zip	ab26e38b78ff38d24651a580f28ad0d8c77d51c9abae81e56f2d6ec76fb78d62	19.35%
2023-05-31	doc_D708_May_31.zip	zip	71927ca55d144f73aa04984c9009154f43491d7a7bf6c6c785e31090130556cf	25.81%	Quakbot
2023-05-31	doc_B857_May_31.zip	zip	9e5d0ec8366038b2dbc43f6996188f8d7fcf98e1aa746ab07458c9e550fbbf9f	19.35%	Quakbot
2023-05-31	doc_B035_May_31.zip	zip	13e55767a31563c8bcb3edd3ed8b36dbe60a3ee7c97d35738ab4d0c2088a5099	n/a	Quakbot
2023-05-31	doc_C627_May_31.zip	zip	933c85083a69efd058d75fa1b06b68fd253b26abbbaa10b6ba3aa19c2fba9b0c	n/a	Quakbot
2023-05-31	doc_E072_May_31.zip	zip	ec78d513824161e580be17d5ad43b0d209e015d8eb303a3f120b0a7a951c432d	n/a	Quakbot
2023-05-31	doc_A915_May_31.zip	zip	6cdaa2e3f3deb1d709d4e4ccb9e0d04a39a9dc12186905d72ced3bc60ee0783c	20.97%	Quakbot