URLhaus Database

You are currently viewing the URLhaus database entry for https://studiopsicologiaroma.com/dnai/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2632612
URL: https://studiopsicologiaroma.com/dnai/?1
URL Status:Offline
Host: studiopsicologiaroma.com
Date added:2023-05-15 15:14:30 UTC
Last online:2023-05-17 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-15 15:16:56 UTC to abuse{at}serverplan[dot]com)
Takedown time:2 days, 6 hours, 42 minutes Poor (down since 2023-05-17 21:59:02 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-17Gjcsld.jsjs de678b4a37c6c15a808f0289a0185302b696546ff234a9c180ca99ac8bb1f313n/a GuLoader
2023-05-17Fnmpvjgm.jsjs 576d767be1b5ee880a56263521aef9366435f9ff583a68aebc426d7da2c02e2aVirustotal results 29.82% Quakbot
2023-05-17Zjjmwqs.jsjs 5155a314d6e44ed6eb4d65e80d368d8bcd4e8674e293bce8d712b03395d22f6fVirustotal results 11.86% Quakbot
2023-05-17Intpzlk.jsjs 6a2c26dc0efdfc1c4fdf83525f29de723f3f77f866558ce277756af920925c89Virustotal results 27.12% Quakbot
2023-05-17Hiwg.jsjs 67ff580532af15d6457fe1b6aa59886c46bd5c72906c86b58aae1e7aab70fa3dn/a Quakbot
2023-05-17Qcsknj.jsjs 1cd77905385f0c42fc817556a8df0df76650c7bcc4f1d670bfdf4cefe71c5d76n/a Quakbot
2023-05-17Esrxd.jsjs 944417e6086f0a8dc6f17fd56f6d9d0ea83263d96c0531725e8ae8f4c1e35c17n/a Quakbot
2023-05-17Bnbkqmlt.jsjs 730f4704895905d87b25c8dfd317f4a14a313cf4b0df3a407b4f998f9c855a87n/a Quakbot
2023-05-17Nnfeao.jsjs 5e79ab3998cad0594d0d3b8e135e0a022313c1fbf0170b82cab5fcdfccdb7e51n/a 
2023-05-17Nrefrusj.jsjs dad238c4e19da3ced9bd818957cb8d6f63753ee30f2d48b6c33c80d08132ebcdn/a 
2023-05-17Ikxrllvd.jsjs 5d670e79b0604656ab22191d582b480845f3e9880a3f364123365bc966c03f0en/a Quakbot
2023-05-16Gkjpcfy.jsjs 7ea1ea0aeb655e03e342ec14af54a081366f475544f22a54725aee56f4152a7dn/a Quakbot
2023-05-16Knlaev.jsjs 431424acebcf87f86a97bb4124b2432279419cef9e70f4d88c5aa2ad3a662a0cn/a 
2023-05-16Xwwpkzn.jsjs 4e7ae7691278aa6c8965ba56484358deb3217575826489c758f388f9cad0e60en/a Quakbot
2023-05-16Jkzjrgz.jsjs bcc846f7ca9be47d0b39d6d0ace0004f4827050928984dcbd9a1d2f9b6976c22n/a 
2023-05-16Lzrphd.jsjs 0fe0e0b0caf8cc884eda1590fe15f1c826f3c9a77b04db98c7d42b186b11392fn/a Quakbot
2023-05-16Xwacrr.jsjs c7291f1efae470fb5fdd59cc8e901a1414fceb681b37849e1e432e752e050a6cn/a Quakbot
2023-05-16Dqjslqma.jsjs cc17cf34765a0b8257935f11c10567a4568d0e0e2bc172e3d0faf278527e16fan/a Quakbot
2023-05-16Votaqr.jsjs 425e69e930639cc206bdaf0e9c118b8b7b3f7b86019462fbaf1fde15ad4c62c1n/a Quakbot
2023-05-16Hlmff.jsjs 17d69849c1baf09fd7f145ce280c3eaaea8b6f8a28dd766e5054a0bb726797e4n/a 
2023-05-16Omdscin.jsjs 5d931d69992cd2b2e8b6430b0e1baaf1f34dc65d7175e3aa3d69881f21a741a7n/a 
2023-05-16Wlrq.jsjs 6578f9d22f0353158c3d702a0bc407766195ddb07d3b28c0b3515e80f9a3bf4fn/a Quakbot
2023-05-16Tllvtpu.jsjs b8bdb25b7f45241b30068f1222e6ea3bada7143483f75593b090efbca12ee03bn/a Quakbot
2023-05-16Qinoksr.jsjs adee9b281c03d0b4281ac41a773fbce68250b3064866fa2d8b260db6cece6acan/a Quakbot
2023-05-16Uaqcbvfu.jsjs 960a23ae3ad865d517d1f64ba89cddbd71174faf1e253f1d45d454a7b62591fcn/a Quakbot
2023-05-15Wnwlw.jsjs d0f3cf5616cd0ba39f9fb84dc7f8cccf0c541bca9548d0d0174791445446bad8n/a Quakbot
2023-05-15Fqbnsi.jsjs 1320e0804e8986a9e766815533cb39d290ad08df500138258133356dc3115a13n/a Quakbot
2023-05-15Xjplt.jsjs c539c0070e2d91acd3f5e95eb3ef1fdd47c267e83efe2d39e0e089232c6825d6n/a 
2023-05-15Pcgvdu.jsjs 9124be04b79fc0ceccc7cda1b771c5cfe28558d01cf6e1918175ca2a4ef8c93en/a Quakbot
2023-05-15Bymazfx.jsjs d7a0ada3b56571e266585aaf2ec6bc678a66c6907e8d79eaa9114ef0044df540n/a Quakbot
2023-05-15Ijqzd.jsjs d2fdd837ec2344219f84a48193c384c6d6243c11c9532d2afa40d84131d5af35n/a Quakbot
2023-05-15Jydczt.jsjs 4932360eaf73b08eeedb9cebc8e43acf1ffc29e30baf292c1881ced50da3ee58n/a Quakbot