URLhaus Database

You are currently viewing the URLhaus database entry for https://success.org.pk/li/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2650400
URL:	https://success.org.pk/li/
URL Status:	Offline
Host:	success.org.pk
Date added:	2023-06-02 15:37:35 UTC
Last online:	2023-06-05 03:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-02 15:38:45 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	2 days, 12 hours, 4 minutes (down since 2023-06-05 03:43:15 UTC)
Tags:	BB30 geofenced js Qakbot TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2023-06-04	document_C981_Jun_2.zip	zip	e18f6bb93fe69569bebfa652ba3643be8e6aa31ea9be32687dffac41082a2278	22.95%
2023-06-04	document_A917_Jun_2.zip	zip	4ee8d1e682bae0bd247886c52d097a00ee58661989be4d5b6a4390741bc1dca0	19.35%
2023-06-03	document_F841_Jun_2.zip	zip	2621d65081c397637a205b0b8af700554091f157eb3a8670908a131ed549b475	n/a
2023-06-03	document_F183_Jun_2.zip	zip	ba9c0bf53615170eb854657636afb6ea612d1c28ee229c91610501fa86c4c98b	19.35%
2023-06-02	document_B401_Jun_2.zip	zip	cd52851bad576241a61f5d689fadd3e1874b322866e1fed0c0717fde8a17a37a	n/a
2023-06-02	document_F849_Jun_2.zip	zip	dcc8e5decb9581bded6c4d8d3aeef268696823025b60fb611c386adc365d04c7	n/a