URLhaus Database

You are currently viewing the URLhaus database entry for https://abuylike.com/aur/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633548
URL: https://abuylike.com/aur/?1
URL Status:Offline
Host: abuylike.com
Date added:2023-05-16 11:25:15 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:26:23 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 9 hours, 44 minutes Poor (down since 2023-05-18 21:10:24 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Drsrue.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Cualz.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Qlsrsros.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780n/a 
2023-05-18Mtvsnf.jsjs 19f01a32bff6fe9b165ef850e438aa1e9f6ca0de31dcfa4ad489b61367cab1e2Virustotal results 25.42% 
2023-05-18Frdwc.jsjs c9405181760bf1482ac0fcca4034002716ef5a48bacdfd80e3cb5353db6fff56Virustotal results 25.42% Quakbot
2023-05-18Tnuh.jsjs 09ae96eb664bab43c15f8208e579fc06cb4e92d817de28ade6659d138ca9571en/a 
2023-05-18Sknec.jsjs 683503e1ee6accf36b4e270156fa48982aeb9619157f07c35c1dbbfeb8a43e7dVirustotal results 29.31% Quakbot
2023-05-18Czcgvusz.jsjs 7f1024ee7a57ad586eb6a36dbb25ba4f7e78cbd55b3c87d5209716b7628bc53cVirustotal results 28.81% Quakbot
2023-05-18Uqsx.jsjs e1210e09ca90b4d9b1cdd3dd947495e7f1666426a71a9032c997d1abcd93f686Virustotal results 27.12% Quakbot
2023-05-18Npkuutbt.jsjs 5ed8c2a8ffd44a6f80d52c65210bcb3ab9bbfc42a217a03db9d435fe66f68833Virustotal results 25.42% Quakbot
2023-05-18Yuehjc.jsjs 0473836cfc335949eae38f3049dd3932d818dc6cbbe8c178f72c74370912d088Virustotal results 28.81% Quakbot
2023-05-18Rwcvm.jsjs 09f9e4d8ef85ba407416a7d168207db81c2000eabea300624e17d81f58bd0b18Virustotal results 31.03% Quakbot
2023-05-17Csfisjt.jsjs 56e7ef28abd5d99579c0cda0cafc94f64335c3b99a2c4a88b27c75bc943583d6n/a 
2023-05-17Lkzpwyl.jsjs 6f1a5f81c661643e1367ba7f42de50ede7d8841c0eb4bd7e13f5922b8a539766Virustotal results 29.31% Quakbot
2023-05-17Qkyy.jsjs ca99a531b2e34c4f23683a2cf2f4a2e81bcb2cc4975ba287d0bc6ef71563472cn/a Quakbot
2023-05-17Izxqfuz.jsjs 59eafea575993fa2b9b1a5a60ec2852f5cbda6491cc6c163e79d91e7fc9b1d7eVirustotal results 30.51% Quakbot
2023-05-17Ltwfw.jsjs 5089e9979f6a45bba9ac940e1e725185230875623b2242cad8dfcf968141f073n/a Quakbot
2023-05-17Hwyd.jsjs 07d1842292aa2619ebfbb551eff5580fb24f945283f3de4298dc06f9493b6b20n/a 
2023-05-17Wockkok.jsjs be02faee112b2fadd321e9dc04052da5d6878b651ca3f0917bcd130e9b181997n/a Quakbot
2023-05-17Jbpxo.jsjs 776d8a71051af3366abd415d6f0a09235ba4e27d2df549fd2082282b73ad8e92n/a Quakbot
2023-05-17Wahmkwf.jsjs 129d13efda79f36c38c9a313fcc531e55d5293c1ae4891b0d183935902e11884n/a Quakbot
2023-05-17Ytjr.jsjs 9eb0902bc1112f4f2408082001af38f7e690d8c1309aa6acf38189ca45f9f394n/a Quakbot
2023-05-17Wwweeefy.jsjs 9e399ec318a119bd5aa7a2469479c6d12ba5e643f02587e767ea9694eb5814e4n/a Quakbot
2023-05-17Dauobr.jsjs ba8c953b716a62f678748d76136fb286f27ebe9baa709028e4c1ad62a50dff36n/a Quakbot
2023-05-17Gcywaxjl.jsjs 5d32a4067d4370105fd86bcea6a69abf0d1ba6d40862fe7b1175c600e25be864n/a 
2023-05-17Dsyn.jsjs e85be0e1d3eb5df8ca3e65ec09976e0289012ea1a6aa6ce27b7b6128fb51cbd6n/a Quakbot
2023-05-17Taxw.jsjs b25e38226ca0b6b12683c6cd5d32fb3cc127b40132845b643bdb02f7cd499eebn/a Quakbot
2023-05-16Gvywi.jsjs 662c0b715d74eca9d53976bff9b861c66859f21a1c421c9c8f58c41380891c58n/a Quakbot
2023-05-16Uzwy.jsjs c176e52846eaa2c957b26ce2d4d5772613beaf2a32fe48fbb703562284a2dad1n/a Quakbot
2023-05-16Rzbgnnym.jsjs 1f651e38a7a3f99518ae53b7bba388014c27e91c3916e1f6d84f34d3b6e6332an/a 
2023-05-16Eahab.jsjs d2a422c48299d812ae3fd66befda49ca11ba6dd7901fa57268e3a8ba1c32b0f6n/a Quakbot
2023-05-16Rvvvpj.jsjs 8372d0cea692c648decf538a458187e9f3525387933019aa3f1a99e67927e5edn/a Quakbot
2023-05-16Icxh.jsjs 1e80a6f6df7f17fb9a9a80a10c337aed3c5d09b7195765d7cbf88ed822d47b9dn/a Quakbot
2023-05-16Wbujbvv.jsjs 74aefc86a6cc49ac3c0a10003b67f7f938940fd6a9f94cd89ba477ef7a8f5fdfn/a Quakbot