URLhaus Database

You are currently viewing the URLhaus database entry for https://usapva.com/undt/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2632805
URL: https://usapva.com/undt/?1
URL Status:Offline
Host: usapva.com
Date added:2023-05-15 15:15:24 UTC
Last online:2023-05-17 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-15 15:19:32 UTC to abuse{at}hivelocity[dot]net)
Takedown time:2 days, 6 hours, 17 minutes Poor (down since 2023-05-17 21:36:41 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-17Sjhyr.jsjs fc437c6d702c5302119f00f15fd16ab7ac0bf3d40875a890571b0d7d670b7a71Virustotal results 18.64% Quakbot
2023-05-17Bjlhw.jsjs 397ed6d5f113de3b5a638878e1ab22bb58f5fb493aaef92441db571bcb4c81b5n/a 
2023-05-17Mifvsd.jsjs b96c9289fab9b7759ba3dd4ea2b84064aa296457443d10064d033d225609b55dVirustotal results 23.73% Quakbot
2023-05-17Acnszkqp.jsjs 5058b0ab18a174398413798e655e1f00408418493c371ea109decdfcde2e1608n/a Quakbot
2023-05-17Caxy.jsjs 8116e7914df0a4fae9adad12da668660206754557fac016131c53fcd305d537fn/a Quakbot
2023-05-17Qaas.jsjs d6af68d3deb8864a96c4932895f72f2891c1f3f68665db2647ca4a5efeb48f7bn/a Quakbot
2023-05-17Vlybapu.jsjs a09b7f4ecb5609622567e705ebf96d876db34abac3a97340ac20151b1c448d2dn/a Quakbot
2023-05-17Lmnsidhy.jsjs bc2724d450fcb9db78773e9d88e381617914da87eded358457b2c1c361163cban/a 
2023-05-17Lwxuhq.jsjs b8af295b2f1234dfa1533feb6d4d8d5c58e712ee9fdeebfe312bedfc25d04610n/a 
2023-05-17Nfwz.jsjs f33d0b37e05d7e0d6212c30d4e62fa1f7d758e8a7400148b2318e8cbe0a8f95dn/a Quakbot
2023-05-17Bjomtkr.jsjs 2401070b0983ede61d64384aa9653d3421eabb33edf20040e65ec63bd2514464n/a Quakbot
2023-05-16Pyhqbi.jsjs cd1002448624c33e111b4c7abb6671b906321e3211ecc2f77bc09b4ed40d10a1n/a Quakbot
2023-05-16Wztdvake.jsjs dec345c4c0df61a9868e9de7fc417241aa5255428520045aafa2fcb01aa4a25en/a Quakbot
2023-05-16Mfstqcdm.jsjs 6cee155e0731e6d420d9783761ca9691978b39d96a3ef0a2ff0670f74c535a45n/a Quakbot
2023-05-16Ucbor.jsjs ca3613d443d842131235240b6fbecd2e42f5a90c2725a1fe94945e0792ef1901n/a 
2023-05-16Fxjhico.jsjs 6049edb9113f6bf743b3a083646a5ee4a0716fcf58999d7c85840a0eafd7120en/a Quakbot
2023-05-16Ypbz.jsjs e30f89959a4e0d7582904e99434c710b35c408d9f8d1d43ab024df1d80cb70c3n/a Quakbot
2023-05-16Hfaedlep.jsjs b8c853f70b32f63c074bdb76b0f24daae2f513326bbb3495e5fac39380a924b3n/a 
2023-05-16Aevzooqg.jsjs 1d1691245a880eb93c5812c8c9b78028e28e425aa7c49bb98eb8a15b2ef57d39n/a Quakbot
2023-05-16Ovcp.jsjs 73a0f72b0c6ecca989fd70d10afb0b88f83bfe128d9bfb68f3fc1e6c2d26c02dn/a 
2023-05-16Yjwfn.jsjs 2c4f784d6d6c0b9e7ac0770dec959a30436e31b03bc96aacbd04e3d24fcce910n/a Quakbot
2023-05-16Fotx.jsjs df28df25904840c3342dca75c41f419568af15e0407b2fc8a5858850264bfca6n/a Quakbot
2023-05-16Teac.jsjs cb4c70ea6e309cbc083a2b19d00ec3ad43be38c208a2ab1b1000e5b89afebc10n/a Quakbot
2023-05-16Cuipdba.jsjs 8c0300ad8c99fe2bda59ff40ac2d7def7ff243a484bb7703187cc0a2865cdd7fn/a Quakbot
2023-05-16Imjk.jsjs e727b1e5de28d428e0622ea13039289741de84c6f41937c1948e293a2a56caban/a Quakbot
2023-05-16Nqxxxqfm.jsjs aab73763bd8d64c48c16adf951785933c8190cf5eabc5367ce6606c107d9920fn/a Quakbot
2023-05-15Ieeyl.jsjs 6a312253cfeff70bd36929f3caac9381133f49f5d7024a3d87574b30e156f809n/a Quakbot
2023-05-15Viyz.jsjs 32b44b1d1803e11bb3715fac8813bfae89a5b644cfb01a44b3f3dce831ee1aa0n/a Quakbot
2023-05-15Knjk.jsjs de8c2a96cb9399b300c6910f5e041e69cf898c174e462000b3489d1d94ca5ab1n/a Quakbot
2023-05-15Ththnts.jsjs 7c25e689f65340258c57a4c2b725bfee7f6ce64c212139422d8861501636d00an/a Quakbot
2023-05-15Peildox.jsjs 0a87679ef5c2ec38e42cda9b15b7e426d452514dc81e00991a9a9293881c4ad3n/a 
2023-05-15Cgodmgz.jsjs d74791e6b7b0a026b52c33a1648b0f03fe687629ae566fdfbfcb8743de0d8c90n/a Quakbot