URLhaus Database

You are currently viewing the URLhaus database entry for https://cgscoaching.com/vedu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2649277
URL:	https://cgscoaching.com/vedu/
URL Status:	Offline
Host:	cgscoaching.com
Date added:	2023-06-01 17:07:22 UTC
Last online:	2023-06-03 11:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100126482 created on 2023-06-01 17:08:20 UTC)
Takedown time:	1 day, 18 hours, 5 minutes (down since 2023-06-03 11:14:15 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-03	document_D204_Jun_2.zip	zip	2966e61e30cc94974ab92b04f8e0fb31237bd7430c895eb20dc999629a44129a	n/a
2023-06-03	document_F321_Jun_2.zip	zip	4161a742560fc558d22dcbaf158a55a0add73f3d9d78468c00f0961debf1a3bb	n/a
2023-06-03	document_E934_Jun_2.zip	zip	c4c70491630c5b01de9dbf382065f0162ac44afe28d25bee42ef8e055fc48086	25.00%
2023-06-03	document_C530_Jun_2.zip	zip	b90e4616c6c77ec7937e8067ccf9afb4aef6ccf3a5f50e5cb7b48224dc3584ff	17.74%
2023-06-03	document_A684_Jun_2.zip	zip	c515c0d45c779fe584420cde5ac657f32a8b0a1be9622b38889dc84d0128ab8b	n/a
2023-06-02	document_B974_Jun_2.zip	zip	aad160dc4277965908f1bc57a4d8adda65898706888dff34d59bf77d54e7e4f9	17.74%
2023-06-02	document_D426_Jun_2.zip	zip	f1bc2281f182abc5b9c4cd687f35f537e7f0bc53b72c4561b3323e5c131af827	n/a
2023-06-02	document_E701_Jun_2.zip	zip	6ac6a657b31850ce297d34fa214322803329c12ed9845d4822777cec229328f3	17.74%
2023-06-02	document_A873_Jun_2.zip	zip	d5f4d64ca8405532eb1a5315c25cce25c97cb26ff7924eb221e484447a64e5bd	17.74%
2023-06-02	document_E046_Jun_2.zip	zip	957c281eaa2b81ee00e00d31362fbe047e105bed4b3026b3a350a24b29502bda	n/a
2023-06-02	document_D503_Jun_2.zip	zip	a547043c41c30c3c2ea35d8d1d1497726a30f4f213a7c99bf15fdb0001ba2da7	19.35%
2023-06-02	document_C732_Jun_2.zip	zip	0822548e7857be667fe6f057f9752afd6fea6f6ccedca4d47860504025b02723	n/a
2023-06-02	document_D482_Jun_2.zip	zip	78897895d64d057c6be07883bb9cbf38af97dfa49feee67bda5fdec7499b3008	n/a
2023-06-02	document_B094_Jun_2.zip	zip	bc4a6d725d50561c48d31f78cf12241fca9e6b3c5cfb4850c2550731a34c16bc	n/a	Quakbot
2023-06-02	document_B684_Jun_2.zip	zip	cc1703760c22d4c423d0ba0d64bae96261b7021bd5bede13748de81521e8358f	n/a	Quakbot
2023-06-02	document_C134_Jun_1.zip	zip	72a58d24f0a79417ce382bb550faeedea387c0e656a73ffdeda3cc49c300febb	20.97%	Quakbot
2023-06-02	document_B845_Jun_1.zip	zip	2f4bfb73ab2e37eaa6decd5dd83bac46ee7446332b60a79dde6a25e1d643f79e	20.97%	Quakbot
2023-06-02	document_A652_Jun_1.zip	zip	1257e99f2ee33015004ee5c622de5ba60c44c679c19b6f89d3819fa2be96c6ea	21.67%	Quakbot
2023-06-02	document_C524_Jun_1.zip	zip	c3629621dba8e8dbcde52ae76965091503f86dd4748caf09e8947b1ad390b406	22.58%	Quakbot
2023-06-02	document_B798_Jun_1.zip	zip	af6bf218a4c0bc7aa0121b9eea2004d7c3cf8d8918be463fa928077e200b5614	22.58%	Quakbot
2023-06-02	document_D413_Jun_1.zip	zip	78f9c7536dde57f524f14cdd1a266d62c390cc91d1bfa3d8e96ccd8d46cc6e5f	20.97%	Quakbot
2023-06-02	document_A836_Jun_1.zip	zip	69f8722ff34f6b499e8556b5143f337d7f9e88a77b10959d9113216b12ffb8a9	19.67%	Quakbot
2023-06-01	document_B569_Jun_1.zip	zip	52a235327d7e4444818aca0aa36523695f73a371380fca845de489c35242de25	20.97%	Quakbot
2023-06-01	document_A615_Jun_1.zip	zip	c7b625bcb19beff62de0dfcd70906f62f5a62655a156e9f0d216823b1df2478f	21.67%	Quakbot
2023-06-01	document_D658_Jun_1.zip	zip	03d15ea6b4808dbeba7ae34f7ce97a00a2fefde36331a19c2d62c0ff306ce9a2	20.97%	Quakbot
2023-06-01	document_C046_Jun_1.zip	zip	3503037d41d539a006d82b41fe7db4e77c4e1c482d2fa791f22dceb738e80da5	23.33%	Quakbot
2023-06-01	document_C971_Jun_1.zip	zip	91b98a31e45b86a2dda09f387c97c8ae42af659c56f2a099fe7e0f3e0f248d6b	20.97%	Quakbot
2023-06-01	document_C130_Jun_1.zip	zip	ff0c90d9ee3bef92205434c658a9da9a0e3a75fdea45354563d7295423475ce8	19.35%	Quakbot