URLhaus Database

You are currently viewing the URLhaus database entry for http://flipkenya.com/cwbkqo/t/3h186uJ0r.zip which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	384972
URL:	http://flipkenya.com/cwbkqo/t/3h186uJ0r.zip
URL Status:	Offline
Host:	flipkenya.com
Date added:	2020-06-09 17:38:40 UTC
Last online:	2020-06-09 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2020-06-09 17:40:03 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	3 hours, 12 minutes (down since 2020-06-09 20:52:36 UTC)
Tags:	Qakbot Quakbot zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2020-06-09	3h186uJ0r.zip	zip	76a7b7d357c5e1f994c9f4ca70f4f8cd67e39997a5e3e9b8d9ca102a437937dc	4.84%
2020-06-09	3h186uJ0r.zip	zip	3605749cfe12cb2342eba87e24e94173f926f4363570cc21d2844ebe5e4458c4	9.68%
2020-06-09	3h186uJ0r.zip	zip	f4e56d742af065c74625956918f602620ca550d4cc8f22da3bd760abb525f8b8	4.84%
2020-06-09	3h186uJ0r.zip	zip	82b3e98551ea2e0bb0363d707caa79d3b732917e0616f0e47751f0c5a1947cfc	5.56%