URLhaus Database

You are currently viewing the URLhaus database entry for https://yarrowenterprise.com/niin/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2648255
URL:	https://yarrowenterprise.com/niin/
URL Status:	Offline
Host:	yarrowenterprise.com
Date added:	2023-05-31 21:05:26 UTC
Last online:	2023-06-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 21:07:24 UTC to abuse{at}godaddy[dot]com)
Takedown time:	2 days, 0 hours, 8 minutes (down since 2023-06-02 21:15:30 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_C981_Jun_2.zip	zip	e18f6bb93fe69569bebfa652ba3643be8e6aa31ea9be32687dffac41082a2278	n/a
2023-06-02	document_D603_Jun_2.zip	zip	4519534513752101e443399fe0792a413081868c4867bee11cd5e787b2636281	17.74%
2023-06-02	document_C251_Jun_2.zip	zip	cee03cdf2843013d869bf1cdd86b89a695b74412227d99a5a1c56372e06cba94	n/a
2023-06-02	document_C312_Jun_2.zip	zip	fbf0dc83b109dcc3c691a63841fc6279d22e9f7ecb5ca941d9b1d2c71f09d2e7	n/a
2023-06-02	document_F162_Jun_2.zip	zip	79af4a01fbfbba81fbf70f6989c832212da06e81e01c7f2b901e70a0e37612dd	16.28%
2023-06-02	document_F571_Jun_2.zip	zip	46149dbf15d93fe08a910bbe569cc72220c6a7cc82ba3943f4512c6b5ceb02c8	19.35%	Quakbot
2023-06-02	document_E029_Jun_2.zip	zip	7e8795333a98930daa52f43dea031ab4b24bddca2df9516fad4f44940edca32f	17.74%	Quakbot
2023-06-02	document_C275_Jun_1.zip	zip	098975380a6349621549564f721fd9cdeafc4c393b1e9e08f59534cdcb7342ee	19.35%
2023-06-02	document_E718_Jun_1.zip	zip	f9f2adf68cee6fe8f5ccaea3c1aecfbc4fa643f51d1f06eb79d625ad1cc27042	19.35%	Quakbot
2023-06-02	document_A365_Jun_1.zip	zip	5c872cd4fc4836eee4764b57285bfba04a9de1cb04ce138ec6218a7034890503	21.67%	Quakbot
2023-06-02	document_F760_Jun_1.zip	zip	dc5997a3e8111bfa166855c32d4541102f3e58270df547d994f578f154624078	21.67%	Quakbot
2023-06-02	document_A752_Jun_1.zip	zip	29f59ee59f5e50ac1a1f9409d7002d5eeab0c284aa3d09b4349b93d6d2d55439	22.58%	Quakbot
2023-06-02	document_E670_Jun_1.zip	zip	707dc300102201e99cf3ed80ec8980ea8e478459852bc524c84956df1f88da2f	20.97%	Quakbot
2023-06-02	document_A253_Jun_1.zip	zip	d2aaa7b5598a5913185ebe4db7c46e28e1f9bb34ccc39a78a62a2604724997ce	20.97%	Quakbot
2023-06-01	document_B496_Jun_1.zip	zip	c11fa90d9bcf2fdd34bf71d16b8d55256fcd7aa23858116f2732d9110033530c	19.35%	Quakbot
2023-06-01	document_E943_Jun_1.zip	zip	0a1927d798ccdf8f7a95a8ede1b3b5549737ec5132687124f8810174586c52d0	20.97%	Quakbot
2023-06-01	document_C178_Jun_1.zip	zip	682163d735fc93070f7523f3d02e20becb5b11d5674ca4045072a945675d347f	21.31%	Quakbot
2023-06-01	document_F236_Jun_1.zip	zip	b76a2adf0dffc45b5b005ee718564685de95cad546a2000fb8bc57d95682e113	21.31%	Quakbot
2023-06-01	document_D819_Jun_1.zip	zip	00dd903917624c1aef8abb46a49e627267c13fd473ea3af3b94388c8c8345919	20.97%	Quakbot
2023-06-01	document_E492_Jun_1.zip	zip	f45f719f530096fa0f8eb63e28419ddfa2d23448b26a343f784bce4b9388dca2	n/a	Quakbot
2023-06-01	document_B963_Jun_1.zip	zip	6742b10593214f3b02d26ef484ff39dc522bcedf70aaf1b05753e7537214225e	n/a	Quakbot
2023-06-01	document_C934_Jun_1.zip	zip	0fdc4de2d2f92f27c393167e95585ec07d240163021561725c084cd31af0a430	20.97%	Quakbot
2023-06-01	document_B581_Jun_1.zip	zip	df99dc925161c827e9382c9d2d3d790e68525645d18e408bd630a0a493b2f7be	n/a	Quakbot
2023-06-01	doc_B310_May_31.zip	zip	084836211e800c5c0af80b202610f145b8146d0933a4eb0a66263e836da1cdee	20.97%	Quakbot
2023-06-01	doc_D714_May_31.zip	zip	79dc6ed906ca56a67c3813bfb74e0603032ab89ff9818834755fae37497c3b66	21.31%	Quakbot
2023-06-01	doc_C760_May_31.zip	zip	dc5defee69d6d01b1ee773546d24f94858c902da9bb6caf378e594a8194e2494	21.67%	Quakbot
2023-06-01	doc_B417_May_31.zip	zip	fa2ab980834ef401c457f337540009cd778da8aa74bcc18f08dad313dda2a6ef	17.74%	Quakbot
2023-06-01	doc_E752_May_31.zip	zip	1b7212fd30c2e3bfdf84536a7ffe756b0462860d00e2d2b066fa55b8400bc7a9	17.74%	Quakbot
2023-06-01	doc_E213_May_31.zip	zip	80ac4851003eddf1c69efc1565bc74ab5f198225dd26266b24f323a5bba949cc	17.74%	Quakbot
2023-05-31	doc_C903_May_31.zip	zip	b74f214127ed4d472fe03d220b51399bde9dfa09d83b8a6db191c39ba7c945ff	19.35%	Quakbot
2023-05-31	doc_E153_May_31.zip	zip	d3d6a1236ffa99b436ded7707eb51a895cfa503e58a9218595dea17a4a16ce1c	19.35%	Quakbot
2023-05-31	doc_B267_May_31.zip	zip	b05a0e401acee47f367f7c124299ab2f705a86dbf06bcda58a671538384ce2c7	19.35%	Quakbot