URLhaus Database

You are currently viewing the URLhaus database entry for https://theheadsoccerunblocked.com/ule/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2650381
URL: https://theheadsoccerunblocked.com/ule/
URL Status:Offline
Host: theheadsoccerunblocked.com
Date added:2023-06-02 15:37:29 UTC
Last online:2023-06-05 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-02 15:39:50 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 12 hours, 20 minutes Poor (down since 2023-06-05 04:00:21 UTC)
Tags:BB30 geofenced js Qakbot link TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-04document_E532_Jun_2.zipzip 4ee2c8ea0d07496f89126f8bd9f879c51929dccce679591469a8b2c65ea7d77bVirustotal results 24.19% 
2023-06-04document_B415_Jun_2.zipzip 3fc78f0e482fb48ef88136ca690bf2566f2decef07554362e39f8c409b6d61eeVirustotal results 20.97% 
2023-06-03document_C691_Jun_2.zipzip df3eebb964a42a1d8caed8eb075ac858146dff213c986a84d13c0e56714306c9n/a 
2023-06-03document_C237_Jun_2.zipzip ff393a29ce08b5a865dbc9833f009e91b6172be8b6539d28186f0d56915b2c3en/a 
2023-06-02document_A016_Jun_2.zipzip 709c913197a498b736b632d3b52baf5dec1c559d8e8b211d5c7bc3f407f091bdn/a 
2023-06-02document_F689_Jun_2.zipzip 1c0966ba6e50d2647a143d4b972cdc2b892596f97e365d809d8474c3e74b3f84n/a