URLhaus Database

You are currently viewing the URLhaus database entry for https://uniquefragrances.com/aiq/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633606
URL: https://uniquefragrances.com/aiq/?1
URL Status:Offline
Host: uniquefragrances.com
Date added:2023-05-16 11:25:31 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:23:08 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 10 hours, 21 minutes Poor (down since 2023-05-18 21:48:36 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Hbtges.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 23.33% 
2023-05-18Tiup.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Swqj.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Ggwbcni.jsjs 3d10ba185aef5b94ea0dbd65e8cef98df5fe6d880ebb68e010192b1282bcd121n/a 
2023-05-18Evzar.jsjs e50fb972f8f78042286895b6d869daf014f5e8082e3c3989ca853daee780a6aan/a Quakbot
2023-05-18Wcfzpczn.jsjs 8c854caf958691cbcce8d6a84edd87a8ead04c306a6a625c058d479d3b472059n/a Quakbot
2023-05-18Wdol.jsjs 70a531a610e47641bb1c9aa721282178341c6ccae5578f0ba31a38cfc5cad76eVirustotal results 27.12% Quakbot
2023-05-18Vkzhwtzh.jsjs 4765e3f8945205cf00c99d49497f3f90e74523fec9fdbd0bf9ea1f6163c07512n/a Quakbot
2023-05-18Ciymh.jsjs 2971e245d875fcb96bbbbcff59e1a34e0490ae85f5e8abd688b28772bca0b30fVirustotal results 34.48% Quakbot
2023-05-18Nhjakati.jsjs 0c7c96dd589f0bc1676f7af1371bc70cbf50d310293d070ff8e1fef3df4533f9Virustotal results 24.14% 
2023-05-18Mfnnm.jsjs f3f5b182d275d4c04caa73e7abc7c40748f810123832c294c35b3b4bf997ea3eVirustotal results 27.12% 
2023-05-18Vsdfxz.jsjs 1d2471f7acbab8882ea6f628275c501f0f81e0aeab5ee16537702bd849e8ba6bn/a Quakbot
2023-05-17Noas.jsjs 8506e3c5de62fa6173656a51f4f41a0986ccb9fa55bea9cfcb878c6df2bd88c7n/a Quakbot
2023-05-17Bfvaanf.jsjs 7f96290dff45385bfd8340f07e433e56831a66a593d5472a2ef8da6d665f355bn/a Quakbot
2023-05-17Wmiev.jsjs c5cd6ca0ca7e79a3c24d0b2e608780ee8eff700153663539c8be58f273a24565n/a Quakbot
2023-05-17Hnfjv.jsjs 59eafea575993fa2b9b1a5a60ec2852f5cbda6491cc6c163e79d91e7fc9b1d7eVirustotal results 30.51% Quakbot
2023-05-17Gpqgtfub.jsjs d298331f4833111dff68336933087e322debd03460a21ee0d22d0d8e2b5f7ca1n/a Quakbot
2023-05-17Tfvo.jsjs 555220330c615686c8a042f7d99f74d150a132b4d580ce95d1a7b6db412b77eaVirustotal results 25.86% Quakbot
2023-05-17Dkqj.jsjs 6cc345a8ad3df8d8da07821f31095f9c217201e0065038c5bb7e15aae14a9035n/a 
2023-05-17Wrjll.jsjs f74f3f66b468e91f7060adfeff51f084fd09fb44b5d93a66ce1b2cccdd016bdcn/a Quakbot
2023-05-17Awlfdfyw.jsjs d826b3c8830ba2480cc91e825bbeef5a9f3075bf98a91338c1ab36aa6bef1907n/a Quakbot
2023-05-17Wjmn.jsjs 201d822f690cfbb4a847c16dd9504a7a713bc40bdd2dce34069e66dfc28b21fen/a Quakbot
2023-05-17Yuhpyt.jsjs 8583da70abe3703e73ca441f020949101ecf7b247ff738f58cc9884df7554421n/a Quakbot
2023-05-17Nrowc.jsjs b8a2669e4ffe2f9b2bcd98a0c73e2d1e2fe81d3e09036cf1ffa37d3207f399f4n/a Quakbot
2023-05-17Bsxbdgz.jsjs 3b951c2508534e6fae6f3e340c36f7207d6c0838a1e4db67db442a01687286b1n/a Quakbot
2023-05-17Vgsyurqk.jsjs d522a4299e49df30c6bee57b238d65952e35e0e140d078ddc802264d5d8dc8d8n/a Quakbot
2023-05-17Tovbw.jsjs f1760952243f98fb898f9fde61d230509eac492df8c7d2ffe94bb0bcc3f8c09cn/a Quakbot
2023-05-16Wohpnfc.jsjs cbb722534c26c5fe76c1d93109719528c6f2e94bffe329289197ded1442f17efn/a Quakbot
2023-05-16Nflq.jsjs b5e5b16d0ca64e9fc35937f347a7d7cce7273f5afbaea661e37c03be84571705n/a Quakbot
2023-05-16Cbdl.jsjs 2eb6c2b3c8e62bb10a08bfd16f1f1de87ab2e650ca940b6c2a32cc4bdbde3221n/a Quakbot
2023-05-16Thifo.jsjs 5e44beb26b977b7b930ae594b72da042c576ed07bc03772117bbff32a91086e7n/a 
2023-05-16Segvjig.jsjs 475c672328002e6a57fd94f1d00a0ca52ca28971fd45f35e3fbae350815fb605n/a 
2023-05-16Lrav.jsjs fe07524e190831a8197bd1f164203a785388b10aa1f6e4de7c3b3bff60b70dfcn/a 
2023-05-16Ijls.jsjs 6112d71bae2e36d98d1ceedc0ac9cd3282b20cf6e5af865bfff3d8291eb67bd4n/a Quakbot
2023-05-16Ortzqrue.jsjs 8c74f02174c5e6db7d5c3b9bbcf82356a5b3b80f71392a98b5f5b45f157744cfn/a