URLhaus Database

You are currently viewing the URLhaus database entry for https://drpetertio.com/usa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2650368
URL: https://drpetertio.com/usa/
URL Status:Offline
Host: drpetertio.com
Date added:2023-06-02 15:37:25 UTC
Last online:2023-06-05 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100127085 created on 2023-06-02 15:38:20 UTC)
Takedown time:2 days, 12 hours, 36 minutes Poor (down since 2023-06-05 04:15:13 UTC)
Tags:BB30 geofenced js Qakbot link TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-04document_E703_Jun_2.zipzip d9d6d2568a3361a447ec2c31c2d1f1dd6f6407baf30f4f0ab89b40ae1c3b400en/a 
2023-06-04document_C642_Jun_2.zipzip b4226389ccc9bc5772783d8949b0b05b47dede270feb956d7a84f326b585d47aVirustotal results 20.97% 
2023-06-03document_D783_Jun_2.zipzip c75e9268062913fb4c4d441103fd86f22bd6b7982fff9452e35e0985ed402ae8Virustotal results 17.74% 
2023-06-03document_C591_Jun_2.zipzip c8bbd28659778d6e6c04603cce168b5b8693c66704ba617ac4a9f88281e95d45Virustotal results 17.74% 
2023-06-02document_A607_Jun_2.zipzip cf658ead22149f203c49fdb520094c9044e6de7fdef3d2291f96cd36ae10e657Virustotal results 20.97% 
2023-06-02document_F540_Jun_2.zipzip 37fc5c486d1a170834c7cbd77e0bb8072e1567beeea68b49a104a39f06d93958Virustotal results 17.74%