URLhaus Database

You are currently viewing the URLhaus database entry for https://nladfk.com/ba/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2648909
URL:	https://nladfk.com/ba/
URL Status:	Offline
Host:	nladfk.com
Date added:	2023-06-01 11:49:14 UTC
Last online:	2023-06-03 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-01 11:50:42 UTC to abuse{at}axgn[dot]com[dot]sg)
Takedown time:	2 days, 10 hours, 21 minutes (down since 2023-06-03 22:12:36 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-03	document_F485_Jun_2.zip	zip	9abd1638d567efa1c4728eafb4a1646e23d2b22e0efe30b129a934f0cc72785d	18.64%
2023-06-03	document_F507_Jun_2.zip	zip	e85186e9c3827318b4c4cc3444e8442310cf95faa5cbedb09d6498c3a0b63c8c	20.00%
2023-06-03	document_A527_Jun_2.zip	zip	b12b6770b51700b5238b3b0736d1de09158b3e1939e0d7d22e4ce0104e24a026	21.67%
2023-06-03	document_A612_Jun_2.zip	zip	ae84be2b3a79212e12e554ff6a929691b92acb59dc0be6f77a9a6af17eded4ef	24.19%
2023-06-03	document_E247_Jun_2.zip	zip	795ec9edf613bf346145ddc9b0e915933a9b033a00597c0589cfff73c121eb6b	n/a
2023-06-03	document_B715_Jun_2.zip	zip	beacdde0547d7d77dadd0053ea5dbd0116e19d08f744c92a15c89ad168a9df7a	19.35%
2023-06-03	document_D954_Jun_2.zip	zip	a526e3f4ca292b17c1b8e19e1918c433024c76f4a20518e7ea3266dd022e9363	19.35%
2023-06-03	document_C694_Jun_2.zip	zip	158026c3a370e1d9bdf8ed0729b8a8d2f32a6aa621bcf1621cf26a7a2b722a4d	18.03%
2023-06-03	document_A586_Jun_2.zip	zip	83d7177098a58274ba7cbdb86b5064489c6d8f2303a51318aa05f14ef1d1abe2	n/a
2023-06-03	document_D756_Jun_2.zip	zip	d8d6e847473f8e0a4ca04066303cb36a3964991cc1d0cc77585b4abc5a3fa5c8	20.00%
2023-06-03	document_C429_Jun_2.zip	zip	920267fa3937a74913a3451728ee8372e2db6cbadd69d30b9900a69ba69e2aef	20.00%
2023-06-03	document_E947_Jun_2.zip	zip	f16baaa0e469093c05e5ab7db897976328175517fffea7b9bb8261f4a66283d5	n/a
2023-06-03	document_B687_Jun_2.zip	zip	d17ae88e111052a9646d801b715cebf398116261e04667000f23a45436454468	n/a
2023-06-03	document_C312_Jun_2.zip	zip	fbf0dc83b109dcc3c691a63841fc6279d22e9f7ecb5ca941d9b1d2c71f09d2e7	n/a
2023-06-03	document_A490_Jun_2.zip	zip	afa396addb15923c47c855184609e9aeb3dc3d36e872ab5ea9b9da40d3726625	17.74%
2023-06-02	document_D953_Jun_2.zip	zip	b8d6dc5303e1cd381311e5237360d7d8784db4ad32d1d060a420d84686381b3a	n/a
2023-06-02	document_D931_Jun_2.zip	zip	e8b0e3dc706ec4bf54ae9738d2ffe2ee98798232a0f40afb61bec4797224e1a1	19.35%
2023-06-02	document_D174_Jun_2.zip	zip	3fd6bdf1556be634f3e451e61ad0f250c7f3c6086c5f1fd8fcaca5e455df38c7	17.74%
2023-06-02	document_E473_Jun_2.zip	zip	a04a43c5faaa1eff61aa91d0a661fdae7e8e93c062fc63deca814564f2904336	n/a
2023-06-02	document_F143_Jun_2.zip	zip	5e9f3cb4bbe8e98072ed4b0d6c42937d1283eeb96904075e5aace708857ecfd3	19.35%
2023-06-02	document_D389_Jun_2.zip	zip	e33564331dea5179a0e2806bd35fcd3e8a4b862b40ef7e36523deb8201e99807	n/a
2023-06-02	document_B234_Jun_2.zip	zip	f21a2ad09c005f5070c9e93800a94a7e6cd8082480e08279a3954fc7522232f9	19.35%
2023-06-02	document_B145_Jun_2.zip	zip	22e17291cf2dacd5d318066380f239828b7146a6516b785cc4c02ffd7dd52f0d	n/a	Quakbot
2023-06-02	document_C091_Jun_1.zip	zip	90aa07491069b56733173f8076d41f16d22257eda2188b67e3a612d7b0d6bca1	23.33%	Quakbot
2023-06-02	document_D850_Jun_1.zip	zip	7c6e77c05f74ad2794ff7c1059987209e1b4b4a03ed4f0e7a30b927fb7451eda	19.35%	Quakbot
2023-06-02	document_A620_Jun_1.zip	zip	cca679a402ded2ba8e9829620c9e723b0ca79bb3e35def028a5e9b7a7553d0c6	19.35%	Quakbot
2023-06-02	document_C310_Jun_1.zip	zip	bb0f90f23b65702768531f3577bddbae7de9d78758b77d7bf4d9503bf383279c	20.97%	Quakbot
2023-06-02	document_D762_Jun_1.zip	zip	8933dcb3b79a5db30d77086c1ca4bb7738949e702bf117ec287511abec059cc1	19.67%	Quakbot
2023-06-02	document_F852_Jun_1.zip	zip	902cbec8e7ada4b95292147a9fa5ffc4867a0d0edad89161535e6d96894bd13e	20.97%	Quakbot
2023-06-02	document_A106_Jun_1.zip	zip	232e31e9faefabb75751f3c774e4cd57d29dce4087ac552a94cc44f0c4753332	22.58%	Quakbot
2023-06-01	document_B573_Jun_1.zip	zip	c51f6d06c1bf647e50f94343095543c056d899fc5d815e47bd24b7814c9684a2	21.67%	Quakbot
2023-06-01	document_A942_Jun_1.zip	zip	8b05404ba69ce33ee24fd71b6af63b1c578b9c7107a7325bbc90d6dcdf98643b	22.58%	Quakbot
2023-06-01	document_B843_Jun_1.zip	zip	fec26a1f706e835c3ebf9fb681da1f72dacc2bbe56475ff212bca919faa81059	23.33%	Quakbot
2023-06-01	document_D952_Jun_1.zip	zip	ec66f8ac18eb7cebb6f3943cb7061e9071619e4c38c0b4857deafe7d190c2fa7	19.67%	Quakbot
2023-06-01	document_A937_Jun_1.zip	zip	fb693b15ec8213950c5192e613b3e49acf7c4808e0093c9fba49db181cc2fc7e	20.97%	Quakbot
2023-06-01	document_B329_Jun_1.zip	zip	289d6415019817546ab629863677c1efb873a059beb6041ab82363a48fb14083	n/a	Quakbot
2023-06-01	document_C415_Jun_1.zip	zip	1e21bff9b3ae131dacc2e1feefcdeae9f29e39d95b8baa2685e129ca3fbdb4c1	22.58%	Quakbot
2023-06-01	document_F230_Jun_1.zip	zip	10a242f42c396dbdb7d90a547819e65ebc2b73821b8d38696c19af4edc3bdbea	n/a	Quakbot