URLhaus Database

You are currently viewing the URLhaus database entry for https://peasx.com/bup/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2649290
URL:	https://peasx.com/bup/
URL Status:	Offline
Host:	peasx.com
Date added:	2023-06-01 17:07:30 UTC
Last online:	2023-06-02 01:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-01 17:09:21 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 days, 4 hours, 1 minutes (down since 2023-06-03 21:10:47 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-03	document_E934_Jun_2.zip	zip	c4c70491630c5b01de9dbf382065f0162ac44afe28d25bee42ef8e055fc48086	25.00%
2023-06-03	document_A512_Jun_2.zip	zip	1039d027237f587f07732338d965c848737dc9a14efa46b244756147a3fb74ee	n/a
2023-06-03	document_B149_Jun_2.zip	zip	e68f07ea4b65616c3dca5b47a1c6cc8bd21cfe77335763bee6c93c2b41cd6b3f	17.74%
2023-06-03	document_A938_Jun_2.zip	zip	4ad1fb03076968f0b67d995ad005272334dcf9cb0d9a31123e3821cbcb4b7c6f	17.74%
2023-06-03	document_F527_Jun_2.zip	zip	48c536726b3be7c55db59eefff0cbc387f89e9e5cfca0ddf6183fb895c9bd73e	n/a
2023-06-03	document_B168_Jun_2.zip	zip	830e6b41ae37df7fe7170018791931f43160917e3a9c1753b7d5a23685e6b0f9	19.35%
2023-06-03	document_D875_Jun_2.zip	zip	fcf4bd2d1b4f2d0af1a71a65a85bf1490399bbd7574905498c526cd19407591b	20.00%
2023-06-03	document_F851_Jun_2.zip	zip	eeaeae95753b45550b278671628c021bb32a6ef390f5c1f9207141113a66af7f	n/a
2023-06-03	document_C349_Jun_2.zip	zip	069decfeae089e134470be2d021b45a613f0af084af45cc693710f22d3a1c5d2	20.00%
2023-06-03	document_C673_Jun_2.zip	zip	44d34f8b19d2720ef9ef35e02d8918767838d3682439eb3647d52fd7b8257ebd	17.74%
2023-06-03	document_C370_Jun_2.zip	zip	2273cdca392135972eaffcf65d334cb775a99ab9801f136ab72ecccb1e2a9479	n/a
2023-06-03	document_F510_Jun_2.zip	zip	f2696c530f0f51661607361d6fff141371e9593e852f27d5fd15678ffe1d928a	n/a
2023-06-03	document_D614_Jun_2.zip	zip	78eda06b0182ea8790b76211cba1469a43e368bad306f17d74f3b0be01321c8a	19.35%
2023-06-03	document_E765_Jun_2.zip	zip	3ab60d495fbe0359a4dc07b5285f6e928f3efea63a5670c46f3a2b8884f37c5b	n/a
2023-06-03	document_C672_Jun_2.zip	zip	86b2e9d04a71067fb23c8863062730530a623d68e24017d18ba44493dc8242c9	19.35%
2023-06-03	document_E295_Jun_2.zip	zip	103b62677d0a77dce5daae1f7d7eee916fd18f4087e9ec7e06862d78e4537460	n/a
2023-06-02	document_E531_Jun_2.zip	zip	f32b314b6b4591bc75ba4b8325425a9d87e4eafb3a97076df294538921b6d9c5	n/a
2023-06-02	document_D368_Jun_2.zip	zip	99d3b7d0569976e3837cee0646b2fe1d12d600b37c19eda7c2936e03272210c7	19.35%
2023-06-02	document_D942_Jun_2.zip	zip	c71a0c4cd4c9593f0a9683dc3d0213bbb52bfe704d3dbb4c1027f1fb41ed71c8	21.67%
2023-06-02	document_B478_Jun_2.zip	zip	8634de7894f9caffbb3a5d96b800e2094b1612a5d65b63805b27f14915b53428	n/a
2023-06-02	document_B195_Jun_2.zip	zip	f291111430cfd9270d8f77a05b13f0299cb01051c810fea2cc4d55244cb6c0fa	n/a
2023-06-02	document_C268_Jun_2.zip	zip	4b86812c14c2744ee23abe2147ce17904a9a401689724aa7285836581da2fdd8	n/a
2023-06-02	document_C629_Jun_2.zip	zip	69ca6848329b1c1d4e068c16bf5756b0e46f86b1b3dfa7ed8893dbbdc0e39708	n/a
2023-06-02	document_D934_Jun_2.zip	zip	bd43c1dfe8a50dd7bd1c5c61fd057348d49fe1ee5615cc925e77887f5aa5ebf9	19.67%
2023-06-02	document_A693_Jun_2.zip	zip	387d5598b47e507e28b3477d7477573460064ca61b6e4bd615d6fcdadc2467db	n/a
2023-06-02	document_A140_Jun_2.zip	zip	6cc5a95745a6c4a5e9eee84c0e71876cca5564613b860d923bbb29704b1d2210	n/a	Quakbot
2023-06-02	document_B089_Jun_2.zip	zip	da0108a5bb5344b40e9dd9f54ed2fa13aebd8339d48e7211f95b4afd2018d8ef	n/a	Quakbot
2023-06-02	document_E519_Jun_1.zip	zip	a90426ab98192138a970355cfa3862f8da7c8239d7ffc854d3c73d1e8e8b7354	19.67%	Quakbot
2023-06-02	document_E246_Jun_1.zip	zip	1e009a9f78c51de4f5db76559500b16b68ea8600b97ea55feb8c6b80c14ac217	25.81%	Quakbot
2023-06-02	document_B941_Jun_1.zip	zip	2ee8cc23d87da52d36d0b1a0fe1c12c81b0b0134a04e1abe420d607920163855	20.97%	Quakbot
2023-06-02	document_D107_Jun_1.zip	zip	6bc22c9e8c6fedcc9ab93fc3ac05a65d6ad24e2457bed88eef39746460abd856	20.97%	Quakbot
2023-06-02	document_F951_Jun_1.zip	zip	dfc4592348043512335c0465a0912357268fb556c5f47284b79a669c7b0a2ed5	19.35%	Quakbot
2023-06-02	document_A012_Jun_1.zip	zip	0e4322df2d93a9d4e6572dad38ee7a65b674350ff04ee7b390e0c5098b5f103d	22.58%	Quakbot
2023-06-02	document_C716_Jun_1.zip	zip	d85e30d2a7762630cdb3d992e9a2376d33a6654041833c3124627905beb0680d	23.33%	Quakbot
2023-06-01	document_B573_Jun_1.zip	zip	c51f6d06c1bf647e50f94343095543c056d899fc5d815e47bd24b7814c9684a2	21.67%	Quakbot
2023-06-01	document_E987_Jun_1.zip	zip	5218783f0aad9a021a774a48c87504a429e4277d7c7e2fcc1e1b5e60ca916e64	20.97%	Quakbot
2023-06-01	document_A916_Jun_1.zip	zip	eb598950ee6abd7471cf945b3483e32beb636348a8a2a5432065733e2f35e1be	21.67%	Quakbot
2023-06-01	document_A365_Jun_1.zip	zip	5c872cd4fc4836eee4764b57285bfba04a9de1cb04ce138ec6218a7034890503	21.67%	Quakbot
2023-06-01	document_C071_Jun_1.zip	zip	8c2400f9801aed5bdd0e524c97a8d24bbaa8e57c222d64189123be34d0eb89d5	n/a	Quakbot