URLhaus Database

You are currently viewing the URLhaus database entry for https://safes-endocrine.com/qeer/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633587
URL: https://safes-endocrine.com/qeer/?1
URL Status:Offline
Host: safes-endocrine.com
Date added:2023-05-16 11:25:29 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:27:01 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 10 hours, 39 minutes Poor (down since 2023-05-18 22:06:20 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Xihqcrc.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Mocznrse.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Rewqtdpf.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Ttadqaf.jsjs eee919ac998485dba6690d0ef5b0552aaafb70340e5458dab6116b25ae21606cn/a 
2023-05-18Chcg.jsjs d1a4226b93ce7e197a1d0a500323d097493998ae6d92816b4793bac2150218f2Virustotal results 27.12% Quakbot
2023-05-18Tfykpewh.jsjs 2e6fa76c0870d4318d71a8defd95759f831cb88397931327f00478d853bc9525n/a Quakbot
2023-05-18Fsxge.jsjs c3e99de4200fa77aa025ca9c3691f352cd668d0a77b4f467305f66cb4f933618Virustotal results 16.95% Quakbot
2023-05-18Uwrho.jsjs d2ecbbc4d10634ac3f47ce638df6c4302d7335ab985c09f6accdfe4df322dddeVirustotal results 36.21% 
2023-05-18Kpuj.jsjs 759b7245c8f5cd0c5db7853442c740696c4a66caf8aae6a281b32f063f6c660an/a Quakbot
2023-05-18Brsfnay.jsjs 8a9af030d5759e428811a44e1582012c64fdef7059286c4c1693f13566e2d3b1n/a Quakbot
2023-05-18Yvtmh.jsjs 2b2ddaf766a72a62c3247e520317d64f6b32231d8802b99b861cdbcd872a7ef0Virustotal results 27.12% Quakbot
2023-05-18Ozsuklhj.jsjs 93bba231e08381a78fea4f6623a38ef11130273ca9bad59f5132b68797d90d23n/a Quakbot
2023-05-17Cthht.jsjs 4657c8d962a15da8cdc6ff3c1ab3d492a89eebdd09249e8d29eea382791500abVirustotal results 28.00% Quakbot
2023-05-17Cboag.jsjs bb62ccf9fa803df4844b790350de975a1f8ea136f9334e3563a5e8ecf4d9b601Virustotal results 25.42% 
2023-05-17Dpwwmrz.jsjs b45fa98328f6170801cd88be88f4ac670f2266e2ed383e78f37fdd5d860dc695Virustotal results 30.51% Quakbot
2023-05-17Rgsiwbe.jsjs f21a9095152b5a7124af37bde4000f76717ad002ec5e40bb2b86dc71839dabeaVirustotal results 30.51% Quakbot
2023-05-17Yepdtfb.jsjs 3ff223428a9d2b7b897fd823e4add6ae4cc119c86e47eb073bdbf5a578a17226Virustotal results 20.69% Quakbot
2023-05-17Emwtp.jsjs 2971e245d875fcb96bbbbcff59e1a34e0490ae85f5e8abd688b28772bca0b30fn/a Quakbot
2023-05-17Iztzw.jsjs 32710b418e9ddc449d0548590b62ac23975ad6efba53cc55cb1551326e182cb9n/a Quakbot
2023-05-17Ylbiv.jsjs e1f86c377a5fb822c6704735ae1fc4f80bddbea822ee597fe99762e575e05ba2n/a Quakbot
2023-05-17Annihoz.jsjs aaa75aeb97df1db785500a45cf5335dc041eaf3f402cdb3a131c843a5af203b0n/a 
2023-05-17Fszown.jsjs 9685a29f6443b04d1ece44cf23b24d3132986b09c61d9ac61d190c61dbc0a4a8n/a 
2023-05-17Jmnsn.jsjs 06f57ae6ae371261eba8b6a2a8b143cc4eff5e84856a06ae07e7bb70ed1592efn/a Quakbot
2023-05-17Sflqeb.jsjs 7b8fb63983e12243a72c25c030f123609690e2de2189951c56f94f6faffb35f0n/a Quakbot
2023-05-17Sjei.jsjs 24023cf0aad4d46e19ddd9d4dbb652e534e844baeaa401b6b72e790e7b3c51a7n/a Quakbot
2023-05-17Phynlwx.jsjs bd6bd12d9b4e8374461cd5c656b0d637c049c0b143edc21beafd3fee3cb49127n/a Quakbot
2023-05-16Shnha.jsjs 7ab03f3d1435104db2be57ad1445e61f81f9e22803f8b973768da67c0282a7cfn/a 
2023-05-16Fkqwnug.jsjs 2ebf0839a3b5548290a31db44167ad7603b730a66d13a9c76d67067852553de8n/a Quakbot
2023-05-16Awdnskx.jsjs ad06bdb98ca8b7564fc5aa138ff614837f9fd29a6d9fb28784d69bc24bd2104dn/a Quakbot
2023-05-16Uyagm.jsjs f5b7345848a6374062815195e28ae5e439acbae4ae55e0bf4132d32e33d61c3en/a Quakbot
2023-05-16Zhffqo.jsjs 149d6feeace8a696bd040db0d67ebdc772a00b7f16fc2eb7e9c88a3b041449c0n/a Quakbot
2023-05-16Yjmmqxn.jsjs 2985631ac2d28a935320277ccd006186193cd77fe6b3cbd48ac62d8f0464b2dbn/a Quakbot
2023-05-16Hnibxpnn.jsjs 6d1812e430b98fd72c86b78e1c389085350424ea58842e4fccb66b3f6b4d9017n/a Quakbot
2023-05-16Ayfbg.jsjs 44d0b27aca80383c6b3b314e018acfbaf5732ddae854671f0110ac2502d049ddn/a Quakbot
2023-05-16Hplfhpf.jsjs df13c20c12d9b14b9761cfccac307ec162d2d2cf2c0780ebf1ed559482c384aan/a Quakbot