URLhaus Database

You are currently viewing the URLhaus database entry for https://sudaksha.com/pi/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2650456
URL:	https://sudaksha.com/pi/
URL Status:	Offline
Host:	sudaksha.com
Date added:	2023-06-02 15:37:48 UTC
Last online:	2023-06-05 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU100127101 created on 2023-06-02 15:38:36 UTC)
Takedown time:	2 days, 12 hours, 35 minutes (down since 2023-06-05 04:14:01 UTC)
Tags:	BB30 geofenced js Qakbot TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2023-06-04	document_E715_Jun_2.zip	zip	f55412c18a488aa6017d83c2aa7a2ba5a5e506c03bf66042780c3e08dc7a99eb	22.58%
2023-06-04	document_C297_Jun_2.zip	zip	6c20f2f1a77cb6d3abe519da579cc8914cbbf8d74b5cbe89ec46d683eeaab7f3	n/a
2023-06-03	document_D506_Jun_2.zip	zip	b8a43064506839970f6db28916bf818e0802538fa4fdcff547d1cfc44db350ea	19.35%
2023-06-03	document_C597_Jun_2.zip	zip	1d1596a2d7b6eb9c94729fe11d759f8a29e392f624a5ef6c71193ee2e0581f49	19.35%
2023-06-02	document_E820_Jun_2.zip	zip	9f20a4038fc213eb14e4782ab3ce8632fabc91bbbe798687ed594fcb16fad3a4	n/a
2023-06-02	document_A268_Jun_2.zip	zip	45e86d11a7bde2d40157d815574d1f36846556af5f58e990e07db061e23d90b1	n/a