URLhaus Database

You are currently viewing the URLhaus database entry for https://shilhaandara.com/oedr/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2648275
URL:	https://shilhaandara.com/oedr/
URL Status:	Offline
Host:	shilhaandara.com
Date added:	2023-05-31 21:05:34 UTC
Last online:	2023-06-02 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100125953 created on 2023-05-31 21:06:19 UTC)
Takedown time:	2 days, 0 hours, 33 minutes (down since 2023-06-02 21:39:32 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-02	document_D931_Jun_2.zip	zip	e8b0e3dc706ec4bf54ae9738d2ffe2ee98798232a0f40afb61bec4797224e1a1	19.35%
2023-06-02	document_B698_Jun_2.zip	zip	51e4480079cdad268e191d32f8155b42fcd450735be4d12bff9624c68df8e22a	n/a
2023-06-02	document_E740_Jun_2.zip	zip	8d17d7d1e079fd9e90d6229c5de2e4e875c5ec90fb12931e51aab77c2ccb4ca7	21.43%
2023-06-02	document_E746_Jun_2.zip	zip	fc705f2d23052f6d3c18ca2cc6ca609f812bfa4f2527b8386b7b36e677541541	n/a
2023-06-02	document_B438_Jun_2.zip	zip	2883a0d3392be412863f5a15c0111aeda31a9123d533c510cac76999dfe7c873	n/a
2023-06-02	document_A286_Jun_2.zip	zip	92e24f937e42debe2729b3b1620b14d1a390cc308f7796532c1a9c8cc48fa381	n/a
2023-06-02	document_E805_Jun_1.zip	zip	a96219a9209fc1da125d7c84713a261175e43503fda52c3527a150cbc0a4dc53	19.35%	Quakbot
2023-06-02	document_E496_Jun_1.zip	zip	ba1d3966acfa7007497caef6bd79a9ada9ec46920231c49302ef5c4d23bb9b66	20.97%	Quakbot
2023-06-02	document_B243_Jun_1.zip	zip	3fa373faf81cd3b597e2f0d2d870db97b0326c89d27c572dcbbe675de32f18a7	20.97%	Quakbot
2023-06-02	document_F157_Jun_1.zip	zip	c5dc25c010c69e670981ee5cfbd705e03b11f0c5d7dcf984f5f0c6e754082e4f	20.97%	Quakbot
2023-06-02	document_A312_Jun_1.zip	zip	c27a65b015c611afff4ccc69fabb66616a25b64df291aa60c5b672a41beff0bc	19.35%	Quakbot
2023-06-02	document_D394_Jun_1.zip	zip	ed934d7fdd2ab66caa3ea16554ed1dfb88af5a917b3406d4123df30a7e5f8bbc	19.35%	Quakbot
2023-06-02	document_D419_Jun_1.zip	zip	7f70ae4ec2a69acf9985f5e8eb3c2c33335fd98d0919d9d9a26bea4aa0b4f5e0	22.58%	Quakbot
2023-06-01	document_B739_Jun_1.zip	zip	588878a493db858b993e9a6e30fbe97e686f31642f3454fecd487d61985eaf21	20.97%	Quakbot
2023-06-01	document_B382_Jun_1.zip	zip	be729574f7c91c7b9304ff32790f2071c5bce0af8ce969f797135c49ccc48bf6	20.97%	Quakbot
2023-06-01	document_C836_Jun_1.zip	zip	d9fdc1aed365866473a51da70f4e7f507eed60d9e5acc832f23499ed4e3b20b3	19.67%	Quakbot
2023-06-01	document_B458_Jun_1.zip	zip	ae710b2096cc497c7c09ed6723a9c99c7553f4521862a187b6c93aec48a6f1b5	n/a	Quakbot
2023-06-01	document_E796_Jun_1.zip	zip	75e8d3080214d6027f3e4b57a79993bbcb78a2425459d861d00b438c2087983b	21.31%	Quakbot
2023-06-01	document_E103_Jun_1.zip	zip	a651725f4a60eb61cfc82766c713766d2c25de1f3e0936e77fe57a2994148819	n/a	Quakbot
2023-06-01	document_D591_Jun_1.zip	zip	3d3b14dddfb16656cc890523f46820ba3b78d23bb9628492ce5e03aef91782dd	24.19%	Quakbot
2023-06-01	document_E482_Jun_1.zip	zip	15131574f9d11ab416353ecabb9debee5cad007d99bf3fb48be5b62b68a90886	n/a	Quakbot
2023-06-01	document_F156_Jun_1.zip	zip	f85a4ddf9036005ab798b85e8a08e5dc3dde55cc76153b5b74239c203edabaaf	n/a	Quakbot
2023-06-01	doc_E053_May_31.zip	zip	ac963fb5fbefd60f3e363adfc259bd293a611198b308914efad94ce831e0f9c0	20.97%	Quakbot
2023-06-01	doc_D614_May_31.zip	zip	26e6b7392118278a0b7f11511fa68c248b174a0054aa211d6507f73550c8e417	17.74%	Quakbot
2023-06-01	doc_D165_May_31.zip	zip	598e959e932ee35d0e977dd80991b57ddebe8ec5a74e118ee75625dd7c4c8282	20.00%	Quakbot
2023-06-01	doc_D796_May_31.zip	zip	60370cc15280317df7ab2b3a8bcc0422fe4de6ef9b627e92ecedf56f449182ad	27.87%	Quakbot
2023-06-01	doc_E705_May_31.zip	zip	33d7d73c91c3ec4c824d329d0b5e5037af2689a3e08daef5b71ce32365616507	17.74%	Quakbot
2023-06-01	doc_B960_May_31.zip	zip	b4525fb4ec8ba6afd58dee37d00073b4bfc84269177d813589b55357e1c415c9	20.97%	Quakbot
2023-05-31	doc_D314_May_31.zip	zip	658ec60d2f78752284f660bc5405efccbde9548bd55e7d28b17190703ea035cf	18.64%	Quakbot
2023-05-31	doc_B406_May_31.zip	zip	856e5dc7ffbdbb8896f500611cd159f9e02e5fdb60e1f3eecf1f7256c62f2348	17.74%	Quakbot