URLhaus Database

You are currently viewing the URLhaus database entry for https://bibianos.com/oes/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2649238
URL:	https://bibianos.com/oes/
URL Status:	Offline
Host:	bibianos.com
Date added:	2023-06-01 17:07:12 UTC
Last online:	2023-06-03 21:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-01 17:08:34 UTC to abuse{at}hostgator[dot]com)
Takedown time:	2 days, 3 hours, 58 minutes (down since 2023-06-03 21:07:32 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-03	document_C429_Jun_2.zip	zip	920267fa3937a74913a3451728ee8372e2db6cbadd69d30b9900a69ba69e2aef	20.00%
2023-06-03	document_C029_Jun_2.zip	zip	416636cdb3506652832a13c5e79a86473d1908cb00d5c0b42e189b10d57cbf3b	28.33%
2023-06-03	document_E512_Jun_2.zip	zip	0c030626741f9c4770e5193eedf520aa68aa0a0fbf58970e95ff8a74d8aab7c6	24.19%
2023-06-03	document_E089_Jun_2.zip	zip	01ddb973bb7e2a8addc83fb7a01dbdbe0e6853cf348ab717e91f1a0c25f24d84	21.67%
2023-06-03	document_B635_Jun_2.zip	zip	d9df71fd6d1b6af010b00f401eb459733cb2deafb97c5429ff8d91369264eedb	26.23%
2023-06-03	document_E892_Jun_2.zip	zip	1aec8fb2a8d69cd73d55aec7d9505d2e3b7ebb2083d88e2a3ad1b02da34155b9	25.81%
2023-06-03	document_E482_Jun_2.zip	zip	53584f55d9e48f1eccf94699fc011a17604231df0f8c2fcc1442a6a337def0cd	22.58%
2023-06-03	document_F956_Jun_2.zip	zip	5016484707e34d55a1c8a2133b7aa8d14b2634a80251b43cf70e873470171b2b	22.58%
2023-06-03	document_F026_Jun_2.zip	zip	89852ff15a7964255a2e18ee39b3ad32e7b0cb12bbe30ea96c7272973a81372a	20.97%
2023-06-03	document_C837_Jun_2.zip	zip	86c2af91a0df87f2ba3c790cbc4c3a6561fcfe2273bbf770c1cd90694c36dd64	20.00%
2023-06-03	document_C351_Jun_2.zip	zip	9241fddaf5e9963b977a740f9288c43f383722a099b1d6724c3b2c8c30d8fdb3	17.74%
2023-06-03	document_C895_Jun_2.zip	zip	d970b46adaea48a1ea8ce879ac557b0028e0ac48d823aea9db68165847de4aa4	19.35%
2023-06-03	document_E902_Jun_2.zip	zip	c8b67e5500e9b034756bc4ea7758fd363a901745a58a627d6346a50a57ccc769	25.81%
2023-06-03	document_B651_Jun_2.zip	zip	6a7c47b589748c2cc7b7e115682939a302644ac4170d26e62b9fd12c977e683f	21.67%
2023-06-03	document_F498_Jun_2.zip	zip	57c78a0af6464d3633a2b30a364a4c858c834940dd1db0a4236ab5b598fab9b2	20.97%
2023-06-02	document_E184_Jun_2.zip	zip	13212eccbcdca2aa9e44672c848af1a005a3bee8b426d46d2405628b211d661f	n/a
2023-06-02	document_F759_Jun_2.zip	zip	cea40c4ce2ab1d7452804ac190018c9144c8b724219a1fa045c6864db2eec909	n/a
2023-06-02	document_F649_Jun_2.zip	zip	a016218146e5c11fad6825858ae8ac81f23f72ae688f2d1eb4bb27689bfda73c	n/a
2023-06-02	document_B473_Jun_2.zip	zip	936c2b69b12e30c02f6de467531823151b1ce69898cc02c77a9d2822cc280237	n/a
2023-06-02	document_E703_Jun_2.zip	zip	d9d6d2568a3361a447ec2c31c2d1f1dd6f6407baf30f4f0ab89b40ae1c3b400e	n/a
2023-06-02	document_E820_Jun_2.zip	zip	9f20a4038fc213eb14e4782ab3ce8632fabc91bbbe798687ed594fcb16fad3a4	n/a
2023-06-02	document_B092_Jun_2.zip	zip	a5d0fcb86a5d1552a6afac5718bcac2d16996587e91a45aef50feea503705b2f	n/a
2023-06-02	document_E381_Jun_2.zip	zip	2dbff92067d7f2e9eae28731fd55e1aea0238881547a5ae8c502a06bcbe77096	n/a
2023-06-02	document_A950_Jun_2.zip	zip	5c344fdd4c9b2ed40c6b93f2acf4404b5b2a667a317489f5ec45cc4abb4e429f	n/a
2023-06-02	document_A508_Jun_2.zip	zip	1637346966026e2595cc922260a02d10668881214e7eb742908fe6245160ee2e	n/a	Quakbot
2023-06-02	document_F031_Jun_1.zip	zip	1b68b799b99758e734f110bc07d2510f53bdb3b5ca0023cb9f369c06403de90e	20.97%	Quakbot
2023-06-02	document_D129_Jun_1.zip	zip	b6f5696e65f45a0639e1a1cd502788de40364dcc8c74207de3a4fd9e967d38ee	20.97%	Quakbot
2023-06-02	document_C842_Jun_1.zip	zip	3bab6eea400bc7a02e1b9b71d7a7e0ae8735e57f3a3f1374d20bbad1938c52d3	21.31%	Quakbot
2023-06-02	document_B361_Jun_1.zip	zip	66c9fd6918ed7a87f5807c86fbddd771e638a19d53118a0dd2b8c6449f83c661	20.97%	Quakbot
2023-06-02	document_B783_Jun_1.zip	zip	169629c0d3f5c96d1b988f52b2afa1a42881ecbd35d7b0a19a1680e384ad4784	22.58%	Quakbot
2023-06-02	document_C149_Jun_1.zip	zip	bad2e66dd7b9a3ad1c848fce34c6477a4ef0b56b2cddc62d047fa19c43206120	20.97%	Quakbot
2023-06-02	document_F980_Jun_1.zip	zip	2033b687950263d3c6b1f76d9c5e5b18a9735eb041bb99c1e17cd7e6bc5c2d58	20.97%	Quakbot
2023-06-01	document_A984_Jun_1.zip	zip	5b10c3d9d3e3d7f2078f614f34f4a8fea1c7a09b3a94d83b2ba2e47bb11c35c5	20.97%	Quakbot
2023-06-01	document_C713_Jun_1.zip	zip	6d765c9ace5e3879e7c0f89ad6313440b6ebfcc17e1fa34836d2490d5a1c74b8	n/a	Quakbot
2023-06-01	document_B967_Jun_1.zip	zip	a6d121eba1aa7676eec4f3fbd27e73425411fdfe360a6d824abbddb1c386164f	19.67%	Quakbot
2023-06-01	document_A840_Jun_1.zip	zip	f0aa1f2ac0981e917c6c8dd9ff7c9330bb7b2ab8f9053c7d6dd93ea84bf3ddc7	20.97%	Quakbot
2023-06-01	document_E039_Jun_1.zip	zip	bdd1da523a198d1b80ec849dbb1cd5d7957e1058746ba5b5bae0bfdbfd65aa24	19.35%	Quakbot
2023-06-01	document_C106_Jun_1.zip	zip	7764bef6fa3f06e645f143e6e8c5e5c99da95f3c83e4aa2d341cd4394a4fc673	20.97%	Quakbot