URLhaus Database

You are currently viewing the URLhaus database entry for https://ghadmoshrek.com/isa/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633003
URL: https://ghadmoshrek.com/isa/?1
URL Status:Offline
Host: ghadmoshrek.com
Date added:2023-05-15 17:22:10 UTC
Last online:2023-05-17 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-15 17:23:18 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 5 hours, 15 minutes Poor (down since 2023-05-17 22:38:38 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-17Qzrmxt.jsjs c3b7288bc652fda94fb09ac95870f66d2e355b6637b09d5c9fd1b7d64d660a52Virustotal results 25.86% 
2023-05-17Vjmyjvbj.jsjs 6003ec795de91a5d5a9a9abb15e037b5f4dcd8cbf43bac5330005fdda61c603aVirustotal results 25.86% Quakbot
2023-05-17Aktfmy.jsjs d6e5d8bb312aa607d892cd90a910040c5ff30ee3a76f41fd9c177f3c09b59f21n/a Quakbot
2023-05-17Tbpmuqdp.jsjs 73b1e3fe01be0b7a83d8ac43d397530b110d3ece6e3ff93d424b36d0b7336aa8n/a Quakbot
2023-05-17Vbjoil.jsjs ba7f993248a05baa4fc8af51ce3e8f89889e817065c4b964cb37bfc088ae75d1n/a Quakbot
2023-05-17Bzuaw.jsjs 62497d1af3f04d7da40a34f39d4cb3b28e855a47c2507372bfa759e66adfa3f6n/a Quakbot
2023-05-17Uwhmx.jsjs 93be05e8c37282bca34649a25ba07962fb7da33e5799c01e05c15cc3b72589ecn/a Quakbot
2023-05-17Ppeuqrvu.jsjs a7f7cc707e5cd516db49daffd9dff56afbc34727e93bac680787bbd32366b3dcn/a Quakbot
2023-05-17Satu.jsjs ac09c783beca737d034e2b69d4730a91fd8aa670d6e825b368a260c86f1000acn/a Quakbot
2023-05-17Ckdggzib.jsjs 478dd28b0bf84e04a2a1aa743637d6ffb5fbcf316f1e5a5f1e0c80030981b393n/a Quakbot
2023-05-17Ftmm.jsjs bd5a8be5d84424c878b60caeba0cda96c550639f1b2059c4269dd38431c29605n/a 
2023-05-17Pnrsgx.jsjs b5c4ca48d604bbac514a750fd991bc78cb7d323e2f5b951af0d5833a2289d1afn/a Quakbot
2023-05-17Hlticxri.jsjs ee2381f61f0661bdbf0cab773cf87ad848c08ae381066fafba9ac71df4ef02fcn/a Quakbot
2023-05-16Xzfa.jsjs ea86e5386587858b36372144a46fbbc3b51cf7da39a8dda852a8104d34f5bc5cn/a Quakbot
2023-05-16Uvrkzu.jsjs b76b95db1ac02f04b49e4e3d0c0845b535cc2eb1700cd3bc242a81f8469fdf8dn/a Quakbot
2023-05-16Ijwxow.jsjs 7c00d2e0849b588607c1cbcffe49660fef663eb5cb6a33679d892dfa8b84349fn/a Quakbot
2023-05-16Crkr.jsjs 521a1cee4f3aac331092048d4d9f02ff2659f3c2a386c4f9d89abb5433d4aafbn/a Quakbot
2023-05-16Ryqla.jsjs e5ad1a95d9e93d374ebe0d47833a1ef18887406559b0edc0bd7846a039c7043en/a Quakbot
2023-05-16Lfbwmhlr.jsjs 5d1ab2cfc44e906fc3e659f1e6e6d126875d2d583586e7f61cbefd4c4ba69d0fn/a Quakbot
2023-05-16Ypwmjdg.jsjs 0cbdd0ba60e9b4b2295501119053b48780fa5d982f47b75647274c0e4b71301fn/a Quakbot
2023-05-16Funtww.jsjs 5b74fdf33a743d9fb610ee7006540931e3f500a3092e9bd284a1f4dbcd813a86n/a 
2023-05-16Kfjkocp.jsjs a875d0cd6776189cb58dfde5ba63a6aa6bfc5afd9a8bd29196de4f1be10b90c3n/a Quakbot
2023-05-16Ymsyknlr.jsjs 2241949a59f71bf0f1b813209fd8158be5b34a0b3531ca348b653e4c318385een/a Quakbot
2023-05-16Vsybis.jsjs b68650e3de0be63012ff8cbbfb9350929e425cc6a5047ab9a22b436960be8764n/a Quakbot
2023-05-16Vcwh.jsjs 5ea3fb83e1f683d2d44b8637541b5504a42df0920d8f64dbd90ba0be4fec0513n/a Quakbot
2023-05-16Iyagktci.jsjs a8c8d7e5d3fe44a3b34e307547961e0a3a07e2abbcc09a6b1999cf224234155cn/a Quakbot
2023-05-15Jphybhu.jsjs dfa6a3ae09f5c15cb7a8fd199a83bedc930af86562d79c9a4c5d81f19c8e797an/a Quakbot
2023-05-15Ukve.jsjs aa5185e1022914121404ab757e34a3d9a0b484bcf954f0551aaefe47dcca409dn/a 
2023-05-15Nopdn.jsjs 2ee43e2defa1518596850d77de82b3d4e4e4234cf6a4caa4f3e710e64cb6b3e0n/a Quakbot
2023-05-15Imlfv.jsjs 43f7507c9d789b3cdc069f991a8df6377feef54313b6458cd4d044820958be16n/a Quakbot
2023-05-15Iwvq.jsjs 0fdd26af10aa64147c0761ea8fdb252f5c6b85cd8af92b1dfd219135eeb92fdfn/a Quakbot
2023-05-15Ukxh.jsjs 94b747ee8c172996caccff6b934522e7be2bead70d698f6aa9a10325685049b4n/a Quakbot