URLhaus Database

You are currently viewing the URLhaus database entry for https://patmypets.com/stlu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2650168
URL: https://patmypets.com/stlu/
URL Status:Offline
Host: patmypets.com
Date added:2023-06-02 11:43:33 UTC
Last online:2023-06-05 00:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100126983 created on 2023-06-02 11:44:19 UTC)
Takedown time:2 days, 12 hours, 26 minutes Poor (down since 2023-06-05 00:10:19 UTC)
Tags:BB30 geofenced js Qakbot link Quakbot link TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-04document_D095_Jun_2.zipzip 9d2629417ab8d53e9036c9b726f39d1f20eb6c845a804fd814cf437a582b7e6bVirustotal results 26.79% 
2023-06-04document_C819_Jun_2.zipzip f5ddb3e04da6bba2c6b9ca4d0293e2aee2b70b1163a007f45bf13addf44dffc7Virustotal results 19.35% 
2023-06-03document_C941_Jun_2.zipzip 1577d2ce410e4141a5a338ec32bfdced15396e9f9881dd5d518de5044a0ec961Virustotal results 17.74% 
2023-06-03document_F518_Jun_2.zipzip 75bace3579bc98fc4aba2bb282cce51037b1a5c7306b23f2f334b990ee14dfcbn/a 
2023-06-02document_D023_Jun_2.zipzip bcd26f647bbafb9d64d26405cc81155ad8f585a5e418d1fd54e2484144c51a73n/a Quakbot
2023-06-02document_E217_Jun_2.zipzip 3563e963cc4dd69336900362d61fae667ba26fd327e899d2e025f550efad44fbn/a Quakbot