URLhaus Database

You are currently viewing the URLhaus database entry for http://newvitec360.com/suqu/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2725087
URL:	http://newvitec360.com/suqu/
URL Status:	Offline
Host:	newvitec360.com
Date added:	2023-10-24 17:46:43 UTC
Last online:	2023-10-26 06:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	k3dg3
Abuse complaint sent (?):	Yes (2023-10-24 17:48:41 UTC to abuse{at}bluehost[dot]com)
Takedown time:	1 day, 13 hours, 10 minutes (down since 2023-10-26 06:59:13 UTC)
Tags:	Pikabot TA577 TR

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2023-10-25	nq.zip	zip	d2a3b6a7cc468aed60f8d092f8e3cf9ad810c5538b55dc576ab589bd7566a866	1.59%
2023-10-25	sz.zip	zip	f918c9aba1b42ca224d871b8f6bf3b33cdd57a1b4bda3032183cb5dcee822029	4.76%
2023-10-24	zf.zip	zip	a34e258958b1c26af1d6f47e8aad4dd21508b3862de5e34f2b7e573d77710271	1.61%
2023-10-24	c.zip	zip	703224222dc23b0fb87317f7495cacd97dc39713f63e5331ae9be73e5e3907f3	4.84%