URLhaus Database

You are currently viewing the URLhaus database entry for https://bamhealthcareventures.com/sai/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2632819
URL: https://bamhealthcareventures.com/sai/?1
URL Status:Offline
Host: bamhealthcareventures.com
Date added:2023-05-15 15:15:28 UTC
Last online:2023-05-17 23:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-15 15:19:48 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 7 hours, 45 minutes Poor (down since 2023-05-17 23:05:13 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-17Njrufql.jsjs 568dbf92f0bf53b20857f863e58e7f82287fe96c9dc066c782f5f82c64287a75Virustotal results 25.00% GuLoader
2023-05-17Oxfxdxg.jsjs c1044908da1da906878008c59c922860ec35f46da707552ee2bc0ecd86b9c0adn/a Quakbot
2023-05-17Zymdpn.jsjs 1d57c903d9a9f7a6aafe34d3d44ced534b1878b64b93029c391c25c05c708094Virustotal results 24.14% Quakbot
2023-05-17Taresw.jsjs 17ee5a686914f6713574da4e30d7902af9bdfc03eb0173e1143cc97a4fa37b75Virustotal results 22.81% Quakbot
2023-05-17Ybht.jsjs 9fe91aecf500ad9c63e2325310e5a0f358434ce9e04f697e1173ad6af1956453Virustotal results 25.42% Quakbot
2023-05-17Ncqac.jsjs 4ade6f7d7cfcd03dbffdfe401ed93fa601500252c858fa6010e54b0587fa0249n/a Quakbot
2023-05-17Xyjqge.jsjs 648a996d0ff5adf991310ac265455f7229e41bd82c6427c7d252bbfd0561ab6dn/a Quakbot
2023-05-17Atlmbvzg.jsjs ce00ada90772768f1b99d48387d1d4de0855099a7083925d757fa4e812345eeen/a Quakbot
2023-05-17Yanpqp.jsjs 78fb1c4b3e3c196874c6e9d29d17cd066834bc08edc68ca58cbde65e388768a7n/a 
2023-05-17Lougx.jsjs 046b69647c86dd34faaf7fcde3424454b947810d5434169f69df8e3d4fe1de90n/a Quakbot
2023-05-17Phuteo.jsjs 6f65aa070abe55f41c7b951900979382ab9ff88f161de366abcb1a40e4b7ddbcn/a Quakbot
2023-05-17Yfzhmjh.jsjs d7421b3a16456892f691196ea3c97c44797601a9b5e2dee7ed6bcf15d307ba66n/a Quakbot
2023-05-17Mbszhswv.jsjs f623d8e941a53ba10e5cd0463e9dc400709d95300bc5eb60173be97776280affn/a 
2023-05-16Dokbh.jsjs 0f619c4af30e7bcd7c70735b65677e479b6bd57f50fe3cb8785af1599072348cn/a Quakbot
2023-05-16Nvzoeq.jsjs 08c04dd45114479042d8fc6a383c236cc643a552d4862b1cf8e1529223aa2e2an/a Quakbot
2023-05-16Ewgmxhi.jsjs 39a03bf726e3e9a45f7ba747863feca778c3577cc4b900d11514f71d39a41089n/a Quakbot
2023-05-16Eiszogq.jsjs 5dd9c84ae83cef8852ab64ea254ec6ee8e2a671d433d0c8f6f9bffc1d3bd52ban/a 
2023-05-16Tolya.jsjs 7c173a97789f3b5af08adbb0bc92c81ba5cfcd960bd3db9b0dd0011e79d4847dn/a Quakbot
2023-05-16Vzapolm.jsjs dae423e7f4e50e0767f9c44c5cf19c2e858a4210bd2a28c2aea32e3702b880c6n/a 
2023-05-16Exvu.jsjs d48df137c0871e3e3efafa5bdc6af6799a0bce3b13bbf87c8879acbd2f6e1bf1n/a Quakbot
2023-05-16Vwjefiu.jsjs cc9abeb96f6a0d36fcab6e19af5bc73843548dcdf566c73598944ed2e3502f50n/a Quakbot
2023-05-16Pcau.jsjs d94592454ace67f2d2f58deac2ffd41f94d6629a8c82b29d93d72f22995c4667n/a Quakbot
2023-05-16Loxdqtac.jsjs 109c370d77d411565845339109c9e93aff8b48cc3214066636ae33b52820b35bn/a 
2023-05-16Hbnco.jsjs 150c5a371a5ffe066eacc8bc859a1f427e6b6b84db2362a122f62fc9a007b7d0n/a Quakbot
2023-05-16Xvhdcyq.jsjs 618348c6c3eb81f8a3fe468f2d15cf77cc48df28c467ab7aec216f4740f19ec4n/a Quakbot
2023-05-16Lhkbti.jsjs f4326ab265a4375ad9b3b971162fa8a0fea19b08a3a3e465c41323a418fa0234n/a Quakbot
2023-05-16Mlfph.jsjs e7ce64ae751efff103188e01413735189d84415136fb587747c0d5ce8e980c82n/a Quakbot
2023-05-15Hfunyn.jsjs f6e8125cdbe733daf99d6e4df4a21cb8da9fb87da8dc312197b01ba30a02e52en/a Quakbot
2023-05-15Vyus.jsjs 469e2c535723f83a1b0417d2cca40d4b01cde2318665fb80be569bb04cf615e3n/a Quakbot
2023-05-15Xaok.jsjs 8d780c89dab0fa41479e3c96c11864b0534dea85a0505102957adc98b70f9754n/a Quakbot
2023-05-15Yogrfgah.jsjs f5e570bc58a2cd39069cb8cd28fb1532fd408343f45adf72f72dd7921e71988fn/a Quakbot
2023-05-15Upvyd.jsjs c3928a999d3deb9a369069a055059e3833bf35175e8563b1d7623132ec9f79ban/a Quakbot
2023-05-15Pqdkmqq.zipzip ad296ef16a81496c94827db36fbd5f2c6a6ddaecfda13294f192eb0345d19514n/a Quakbot