URLhaus Database

You are currently viewing the URLhaus database entry for https://prosoftitservices.com/lnt/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2650353
URL: https://prosoftitservices.com/lnt/
URL Status:Offline
Host: prosoftitservices.com
Date added:2023-06-02 15:37:21 UTC
Last online:2023-06-05 03:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-02 15:38:45 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 12 hours, 14 minutes Poor (down since 2023-06-05 03:53:11 UTC)
Tags:BB30 geofenced js Qakbot link TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-04document_E043_Jun_2.zipzip a958bfc34375e8471b20cd5acf270c605a0b5d377628c5cf7d988d8cce9eaf9fVirustotal results 19.35% 
2023-06-04document_B198_Jun_2.zipzip 8d3b05d3b2a6e04adaf3e0f4fef399caf97461598c213ed90b8685a703c29c64Virustotal results 19.35% 
2023-06-03document_A352_Jun_2.zipzip 0a41dd51cd0135c392790e47bee7a7a08d77fa94afe88ef87aa6f3395dd00784Virustotal results 25.81% 
2023-06-03document_A380_Jun_2.zipzip 535ceaf484ae123dafbf45b5c2c0c90bcbaaa88183ce1c204e1b2e60669aae4dVirustotal results 20.97% 
2023-06-02document_C691_Jun_2.zipzip df3eebb964a42a1d8caed8eb075ac858146dff213c986a84d13c0e56714306c9n/a 
2023-06-02document_F457_Jun_2.zipzip cd876233f27eb19e3b021f10702f731066a5b8ba0c029840c496997877046464n/a