URLhaus Database

You are currently viewing the URLhaus database entry for https://britqualis.co.uk/uedm/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2629015
URL: https://britqualis.co.uk/uedm/
URL Status:Offline
Host: britqualis.co.uk
Date added:2023-05-10 17:11:11 UTC
Last online:2023-05-13 05:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100113423 created on 2023-05-10 17:12:05 UTC)
Takedown time:2 days, 12 hours, 8 minutes Poor (down since 2023-05-13 05:20:58 UTC)
Tags:BB27 geofenced js Qakbot link qbot link Quakbot link TR USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-12Wztrqt.jsjs 148f81f03a90430e74cfb685b2916b6b626ec5b70a61437d27c752dfaa0a850en/a Quakbot
2023-05-12Edzpbb.jsjs 52a2962d3774f0b3af14e13c90d7877131cc44b5a969dc7b750c2cb88a8a1e59n/a Quakbot
2023-05-11Jxgzj.jsjs 29835e7ec243b2bab6c2e985d1ea092eddfe8331a9ab005fc681a4e6caef7219n/a Quakbot
2023-05-11Zotdd.jsjs 8c1b19fb11bf569e6dde80c5c6d244349f0d850cd805f9773a7b7a2786513af8n/a Quakbot
2023-05-10Agnpgxs.jsjs a60006128f4ec2d33bc3aa05d21a1507f80e4951344ec11cda94790cb7233869n/a Quakbot
2023-05-10Sash.jsjs 3fff5e1253fd2c66cf6ae9136acfe49e3b878891093bfd6a608d812eaeac955cn/a Quakbot