URLhaus Database

You are currently viewing the URLhaus database entry for https://armieaccessori.com/eerd/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2650436
URL:	https://armieaccessori.com/eerd/
URL Status:	Offline
Host:	armieaccessori.com
Date added:	2023-06-02 15:37:44 UTC
Last online:	2023-06-05 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-02 15:40:40 UTC to abuse{at}serverplan[dot]com)
Takedown time:	2 days, 12 hours, 36 minutes (down since 2023-06-05 04:17:29 UTC)
Tags:	BB30 geofenced js Qakbot TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2023-06-04	document_E960_Jun_2.zip	zip	fbc7e41f171ae548cd1b9065d9942393d396dfaa9b0fc041481c8e70af1126f7	n/a
2023-06-04	document_C730_Jun_2.zip	zip	229653a8edfe80b373d85ba8649f8872b3df53021b2aca39433a3308cb881a46	17.74%
2023-06-03	document_D850_Jun_2.zip	zip	33652c1bb9165af9d5878aff5f504a97359398fa3b076edaeefd9153d399d6a9	20.00%
2023-06-03	document_C629_Jun_2.zip	zip	69ca6848329b1c1d4e068c16bf5756b0e46f86b1b3dfa7ed8893dbbdc0e39708	19.35%
2023-06-02	document_F125_Jun_2.zip	zip	773c774c1e7332062f143de4f39780edf70a15c1d0666fd306ea193c28e724ba	n/a
2023-06-02	document_A137_Jun_2.zip	zip	1fc6ba047624647fe55fbd55fe0798e94553692e83819eab87941d7d932f73b4	17.74%