URLhaus Database

You are currently viewing the URLhaus database entry for https://almarfh.net/lsq/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2632481
URL: https://almarfh.net/lsq/?1
URL Status:Offline
Host: almarfh.net
Date added:2023-05-15 14:49:06 UTC
Last online:2023-05-17 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-15 14:50:16 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 6 hours, 28 minutes Poor (down since 2023-05-17 21:18:20 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-17Ejqr.jsjs 17c72916bd400a92cce59ce208e3dc0e55b97f9b3926f0819456072bfb9090efn/a Quakbot
2023-05-17Wvhpkcjc.jsjs c3e99de4200fa77aa025ca9c3691f352cd668d0a77b4f467305f66cb4f933618Virustotal results 16.95% Quakbot
2023-05-17Xrgwxpuc.jsjs fa6d3526e896cb3ecf22f942020f813ff05b231a0755ca03e5588b547131c9a7n/a Quakbot
2023-05-17Usyw.jsjs d7efcadce017eaba7ee055cac3f1fb9842bd54107fb46729f546ede523c09e5an/a Quakbot
2023-05-17Mlraqmej.jsjs 04b3f1f116a7708cdedfe0d8666eb67090ed3a68f9536288919107e395a0fef9Virustotal results 27.12% Quakbot
2023-05-17Bgohcpgq.jsjs 1eaeb0800e5cf78a2590fb2ea6859c5f0bb66ad09354a079964ab9c7e6381781n/a Quakbot
2023-05-17Avgpjym.jsjs d265e4034b494dff664e1e81bba8bdb31265089d9590e954b88587849d3a0ed5n/a Quakbot
2023-05-17Ersv.jsjs ad4d42f1c7f3d23d9c5fb13cf8bf617d39ba84603645c602f214a89343b03dfen/a Quakbot
2023-05-17Jzjniilp.jsjs 70669c19c4d8d8c7d1f5886545d59816ceafb93e8e4e5aa981f376c16c4f5d68n/a Quakbot
2023-05-17Pwvyw.jsjs ffa649e7f5e2137f9e8ff9b39b64faf655a374b5566abd22255ddcb93fd74b2cn/a 
2023-05-17Ouiou.jsjs 327326e5bb95739543ab552bf2ff36ceb9bd423411a9e3d69070a8b644f3f273n/a Quakbot
2023-05-17Ipjhmh.jsjs 9d63cce765713a224e60b963c1311c633da6ed5516eecc0a744b39a9c416b5fcn/a 
2023-05-17Otmvimb.jsjs 9465756c0fcb3193c5612dd7a7cc886b06489797aa72efda69a7eaf72dae85b1n/a Quakbot
2023-05-17Dogyi.jsjs 90d445423e17cfbd0c1275e05467acdb88082e6e921663c1224f930197af2325n/a Quakbot
2023-05-16Mcbzj.jsjs 9c097231229304e3f4667e9bdcd34024404570728a6652dd19dd24641474eae4n/a Quakbot
2023-05-16Kavug.jsjs bd01f8151374101510e8bae2905e359b426736a1e172752321c438f98dc7281bn/a Quakbot
2023-05-16Fytrjs.jsjs d30dfd30491a16e84d3b75a6561dae78f9f974aaf7c0ed70529777c1b2809f25n/a 
2023-05-16Smejmr.jsjs 7351dfb16cb63a21ab4d033a1a581dc15e1106b3c74c9a49c2f8d4aa61ce4388n/a 
2023-05-16Hkrmzth.jsjs 2ad02a3b78893cda6ca2178dfa58a5e078578ce0da7fb052f5d1ce8234aa5addn/a Quakbot
2023-05-16Qnoilt.jsjs f1aaa3c2f0dab306a3a4083ae6a8deb256529f116475b15c08519c692189ef9an/a Quakbot
2023-05-16Lndtjt.jsjs 4ccefff791736573f419f864054ec9a094b6d274baed44c3977f4faac235a7bfn/a Quakbot
2023-05-16Clutvnr.jsjs c9a85d7d8d5ac61162588704b2573e73021d82a73a85ab69753aa2272108c603n/a Quakbot
2023-05-16Alzoq.jsjs 3a7527f8ed730f2c82a5bbf236f9d4f892c43d79ff74b7a5e20721d6ae7675c8n/a Quakbot
2023-05-16Qlyglrut.jsjs bbc5d74e6d1c039f2187c96da0bebcdca73f693c819ce95b36625181b19ceb50n/a Quakbot
2023-05-16Lumlafrb.jsjs 530170a65880a86ff4fa3c9bfb60f9d040d8a046284c9aa0a4ed0a3a4cef900dn/a Quakbot
2023-05-16Qywv.jsjs 6a10ea3b08888eaa21e0ef4a4e2522635a98739701877c68b8bfa4f0d05c06d8n/a Quakbot
2023-05-16Bflrnyf.jsjs 8c4c9d515973b55628c4347944479b99d8a7267128d4ffee797c61fcd1f421e2n/a Quakbot
2023-05-16Dhbtqk.jsjs e3dc22638e306185e29f814e3e8615cbf057f8c26d3a1896b861220c8906b862n/a Quakbot
2023-05-15Ezkvp.jsjs 31c184add4c155cfae7bfc012062a0da5b65d46f8fd560d54d70ae5c40f4b7fan/a Quakbot
2023-05-15Beeudyjh.jsjs 509601365b9601242013f35ac2c385261822a5ab2b0da36154d0643e56ba9ab0n/a Quakbot
2023-05-15Tpige.jsjs 12279f8a834f65a31bcf36bcbc70991263418be2ef44fa62398b8099c1f32204n/a Quakbot
2023-05-15Dcjog.jsjs e57bffe074073856f86d6cd13a7f6e969e3d2b8226c19b23bad2971b9a56f67dn/a Quakbot
2023-05-15Czukc.jsjs e1226fc8f949d4b8f3a4d0e865450f24054e9e15365023a58cb8642d2c70e549n/a