URLhaus Database

You are currently viewing the URLhaus database entry for http://shreesaiseva.org/oia/oia.js which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2570124
URL: http://shreesaiseva.org/oia/oia.js
URL Status:flame Online (spreading malware for 3 years, 3 months, 14 days, 4 hours, 34 minutes)
Host: shreesaiseva.org
Date added:2023-03-14 16:10:14 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: pr0xylife
Abuse complaint sent (?): Yes (2026-04-24 18:14:13 UTC to abuse{at}amazonaws[dot]com)
Tags:BB19 geofenced js Qakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-06-07oia.jsjs 9345a52a6f86f5da07158f219a27bd214fa64b2df6c1f2cdeebf1ac978f7b1cdn/a 
2026-06-06oia.jsjs 4e657d4ad062c3846719571cbe104de3c6b357043caa479c7d12bafdd45d48c9n/a 
2026-06-03oia.jsjs d369c0a7b4e9cb11a032c533557cbb4e48bf11940224e0c6291eb25658772802n/a 
2026-04-30oia.jsjs 9f0694337f3ebf9b3691742494b2bfd69c442f3f85be5b3e806ec8a2818cea45n/a 
2026-04-24oia.jsjs 6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023n/a 
2026-04-14oia.jsjs c1e6b5621c6bb38148c6d140dfcb142e7de966459bd76db3fd51967610312d14n/a 
2026-04-08oia.jsjs 0f52e42903cc13c0dd4daf56093d320a733a13020a58707096cafe9afa924d47n/a 
2026-04-03oia.jsjs 54c7322ead0f178bd700675dc47cf972a43835e7a530e2c26a3ef3d846acabd3n/a 
2025-08-16oia.jsjs ee08416c707a7b0d6a703f10f333743ba5351af01aed65a795ba0035084366e1Virustotal results 0.00% 
2023-03-15j6410a27a38c7d5.10909785.jsjs a87757ba699ad2fce14f71399e7d870991c09770adf47019698289d12c6b971an/a 
2023-03-15j6410a25e39c396.33237862.jsjs 7cb074bf1126259535bb447842d028ebb05b8740d66c737454982826a7a707a0n/a 
2023-03-15j6410a249d13da9.55838366.jsjs 5972794b80ef8c3575ac14d90a2d928c482f16b28b68988cd111f2186bae7892n/a 
2023-03-15j6410a2320514c0.43341820.jsjs e5b253049d2bc698c44fd9df23eeda73f9d24de4a4a0b6f0e079ee2fdcbd7ddcn/a 
2023-03-15j6410a215150d61.68395115.jsjs 50c88d58d559fa4bf793a19da7ad0aa004fc57656deb3b3ca21a709650c85c8en/a 
2023-03-15j6410a20b6ec6b3.93588486.jsjs 2b0b412fa10ab43f8a268c3e8e2e3d92d7240ad678bcc919d662c06647a628bfn/a 
2023-03-14j6410a1ed5983d7.58090312.jsjs 9d6b1511d60bfc404a8005ba9c25820e1647e0a88cca21ef6433fc8545543d24n/a 
2023-03-14j6410a2785b7c00.56669828.jsjs b52d3584af505b0b41ec876e69261a45f79b354ba514835cafc464827f281a2an/a 
2023-03-14j6410a1f221d518.13302199.jsjs efd7982b1e9aa6cb7665d6030ae7f93042fedbd8f0db16d5c6e3554f828e1b15n/a 
2023-03-14j6410a29f921328.42402682.jsjs 585520210093740e0aa9fcf2b30e23c153a76a35f24563b6917ae1d0dfc8d5c9n/a 
2023-03-14j6410507c356445.27155966.jsjs f78b2998775b68fd6705ec6c49ca44315812d6809f73ec55974dadbbb38a2adfn/a