URLhaus Database

You are currently viewing the URLhaus database entry for https://wetryp.com/oeom/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2648261
URL:	https://wetryp.com/oeom/
URL Status:	Offline
Host:	wetryp.com
Date added:	2023-05-31 21:05:27 UTC
Last online:	2023-06-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-31 21:07:29 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 days, 0 hours, 26 minutes (down since 2023-06-02 21:34:24 UTC)
Tags:	BB30 geofenced js NetSupport Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_D261_Jun_2.zip	zip	2daf49eab6019c80cd1e63a4882857d44a6ece3a9ddaef96b1e38caeea220bef	19.35%
2023-06-02	document_B037_Jun_2.zip	zip	cf806d48aef5c872773531061b967f30bf0ed6eb2ee86f9e012c451189973b4e	n/a
2023-06-02	document_A963_Jun_2.zip	zip	46ed9141b94a94eaa9eb1256a2fe1c1622515bce2fe715acc907f28683073613	n/a
2023-06-02	document_B847_Jun_2.zip	zip	a9c0a783306c49e8f2965cb7ab73f5a29f6761dcb9b9862ee2618b6f1db76c01	19.35%
2023-06-02	document_A782_Jun_2.zip	zip	5443de6b4668cd315316169c408a8e9d92b4acb0677f9bb5595370325b985cdd	17.74%
2023-06-02	document_F475_Jun_2.zip	zip	651f22d9f0b257f147114f148e02cd6328e9909369cb714fe06e47d1c89fc9af	n/a
2023-06-02	document_B807_Jun_2.zip	zip	9b9ec2ed669c3904e6ee7c6c1f62759b42e70a434f4f4eed8ddf45fc59448e74	19.67%	Quakbot
2023-06-02	document_C109_Jun_1.zip	zip	7ebce2846feeb4213ee2e4dc5c6ac4be1687e81af310caccd70e2da9ae98aa3c	20.97%	Quakbot
2023-06-02	document_E870_Jun_1.zip	zip	c564fd3071c61ccc425a07f5d6929e08e1288d6119561698a0e138b27d3c3646	20.97%	Quakbot
2023-06-02	document_A597_Jun_1.zip	zip	6170aa06e2f8825cc67fa720b02305911d18efb665297aa893d14bd993466ec7	20.97%	Quakbot
2023-06-02	document_D479_Jun_1.zip	zip	396e068b87d5e8b96d76065ddd405b770f6476b7cd2b4a999917d0fe6e563f29	22.58%	Quakbot
2023-06-02	document_A706_Jun_1.zip	zip	a04222d2b09432f1812f283df1898afc20f671cd34979753c4a499de6affe242	20.97%	Quakbot
2023-06-02	document_E039_Jun_1.zip	zip	bdd1da523a198d1b80ec849dbb1cd5d7957e1058746ba5b5bae0bfdbfd65aa24	19.35%	Quakbot
2023-06-02	document_D041_Jun_1.zip	zip	2945759e862de34ba84d8d9de2694babc08af4fe42b77214417f0805fdc4d2ca	20.97%	Quakbot
2023-06-02	document_A025_Jun_1.zip	zip	64446a7fdb00ec0ea3aaf52b8198dcfc4c40d71e6b007abdfb3bbaf75ec21217	20.97%
2023-06-01	document_A810_Jun_1.zip	zip	1c0b816ef6af102881cd4576bc41f5b5d67a93d3700bfce656fa8ec3210d2246	19.35%	Quakbot
2023-06-01	document_F974_Jun_1.zip	zip	e10fa728f5122f9e33a7606f38249d6ba64e40efccfc1df7f680e5bd13f46aba	19.67%	Quakbot
2023-06-01	document_D537_Jun_1.zip	zip	f463d6b75daa0c018576560c739fe4c371b49e8d03c06ddbbdb2ac0217cc1ebd	18.03%	Quakbot
2023-06-01	document_B307_Jun_1.zip	zip	52032ce180ae0185522727f124a79f00b02ad055b33ce01ed0fc35c93d6dce10	19.67%	Quakbot
2023-06-01	document_D192_Jun_1.zip	zip	d0223a6461971d8306f0ba87b148b921d76ed5ae0979788e843d127440d8c90e	20.97%	Quakbot
2023-06-01	document_F175_Jun_1.zip	zip	f1809e510ea8573b0c23cf9c7453b16208e64c4f531aabb402dd9f06785bac8a	n/a	Quakbot
2023-06-01	document_F763_Jun_1.zip	zip	1c4c4a4a9b4c4745e77d7d449f5ddd15b124a2595111ad34cc5127cb6d4d778f	n/a	Quakbot
2023-06-01	document_D365_Jun_1.zip	zip	22746889a3cd767ae26c0e90c7daa100d42096948548d3217134f5cc56f447da	n/a	Quakbot
2023-06-01	document_C307_Jun_1.zip	zip	1ba52ec71b05156015555d441f3f18ead5a2d8cb8d80ff4e158d0037ef6858e7	21.31%	Quakbot
2023-06-01	doc_C072_May_31.zip	zip	90cb9a80f2fb095bf7e4411273f5c1f471abc052235d274667fbb9d85c540225	20.00%	Quakbot
2023-06-01	doc_D078_May_31.zip	zip	8770b232a57e9624c5b5d65d35c8ad8472c6f33bce0f15d85d6c0dd68db72398	18.03%	Quakbot
2023-06-01	doc_B190_May_31.zip	zip	f54b4ee218b7ce32e306f35dc7b45ee52746a9454c5723e77feb912b5b88b290	20.34%	Quakbot
2023-06-01	doc_F093_May_31.zip	zip	136088eab2ee629cb93aa86223bf42d93ef76f35fc7531bde702419ed1818862	20.97%	Quakbot
2023-06-01	doc_E673_May_31.zip	zip	cedf0af618e0314198c5c6d1f3165b993aaa3bd8c40d6f821cc0f6c2b3b8099a	23.33%	Quakbot
2023-06-01	doc_A815_May_31.zip	zip	72e97a53750dd1d5983fe4441c9d86440aa85ba8322df418b5f2b9a52281f1be	20.97%	Quakbot
2023-05-31	doc_D102_May_31.zip	zip	5ea41f655acedcbdfd9c7216fc3cb9d94145c0d08c29ca8593ce36650d6a3afc	11.11%	Quakbot
2023-05-31	doc_A932_May_31.zip	zip	85fadd40abd5f7a72810a2d81482e3d5e916af147be9bd4c53274a987ba7cf40	20.97%	Quakbot
2023-05-31	doc_B285_May_31.zip	zip	dc4bceea65f3abf7437828598325cb027e5b9bd5d33edc8b2371e82a4ac68102	19.35%	Quakbot