URLhaus Database

You are currently viewing the URLhaus database entry for https://pfixs.com/mimp/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633615
URL: https://pfixs.com/mimp/?1
URL Status:Offline
Host: pfixs.com
Date added:2023-05-16 11:25:36 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116408 created on 2023-05-16 11:26:07 UTC)
Takedown time:2 days, 9 hours, 52 minutes Poor (down since 2023-05-18 21:18:21 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Zdlve.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Efai.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Izls.jsjs cf6a180771e394e7eb5bba9d8c70212bf04c5ab240606e685becd335095ea61bn/a 
2023-05-18Kobuoro.jsjs 12551eef6e57f08df39d1185caa198cce871f9b27d1fb58cd74228fc3a949b99Virustotal results 30.51% Quakbot
2023-05-18Rdno.jsjs 0e6261c9c8d05c96074d71e8c45d5c3dbb78736803c84ec4565a0db8dd83510bVirustotal results 29.63% Quakbot
2023-05-18Lwdf.jsjs 62046b91a066c98a15aeba46b02ff8ae453c2d23d8e39a7e7eb2fb4d322464cfVirustotal results 27.59% Quakbot
2023-05-18Bovohp.jsjs f65cfd45df99f110dd5e24acdcb4a032a333c2d5f289d2867feb0d7fc6aa1960n/a Quakbot
2023-05-18Ysnzjpw.jsjs ad9d5d545cd208607067a384f752e68873813a4863a25840901805e6778a5f43n/a 
2023-05-18Ohqzjqj.jsjs 5e2610a338e8ef5c3c882966366fdd36d988d79233ad84071b96fe04a7ea18cbVirustotal results 30.51% Quakbot
2023-05-18Fdqga.jsjs eac6096d9525ff200431210339d6a028b68233173ae11df47f57222dc631697dVirustotal results 35.59% Quakbot
2023-05-18Beetvrzo.jsjs 98e65224d86b8f3b2be7f45d6b5bc6711e25eba8a298bf06d24ad94bfa8b2089n/a Quakbot
2023-05-18Wdejmf.jsjs e34af5d0c51c9f5403ca9b2aad48f7f772322fade0dff21b839a90ac6420cd87Virustotal results 27.59% Quakbot
2023-05-17Ohmfjnbb.jsjs 614b789451a47511f7b28865dc84ac5a5214ce91e53b5f9ebf50cc64c5cff4d0Virustotal results 25.42% Quakbot
2023-05-17Afujpoz.jsjs 7524d906b4d42ae7fd1e5e15cb503e8b54fdc1afa702a0b4e4c5f1d6f99edd1bVirustotal results 30.51% Quakbot
2023-05-17Qshadcqp.jsjs 973858251132d0779245a2e9dd301914a73702dadb9512759bce343a0fa1cb23n/a Quakbot
2023-05-17Wojmzr.jsjs 55ba4dfbf0eeacaace5287a51196c8d2e3c7ae79a65fd07a27fd6024ca40bc13Virustotal results 16.95% Quakbot
2023-05-17Wmsgpmz.jsjs d7c515caf105f46c900f5862443f7dccfef29b7544788a80e4bf47e410fb0106n/a 
2023-05-17Ledno.jsjs 51351bc77c5c23de367e4fdd74a87fd4ea6a100dd396c2f78dde57c715543f3dn/a Quakbot
2023-05-17Ugzvinoe.jsjs 9da26f54018ef7b69e7ca172d1ef9d1de643acee030e0b25c66a5f27867c8833n/a Quakbot
2023-05-17Gonatoo.jsjs 2b31600ae9ba1c091c48ff33c700ad0fa5d0076f97f954e89afacadfe8c15f8dn/a Quakbot
2023-05-17Duqzsyi.jsjs 7e09b3c98795d425ec19dbc3ab68e2965f15231176dc78aee52956fe7ecb0dben/a Quakbot
2023-05-17Jvkpk.jsjs 9fe64b6f0fe04547830600bb4cd9c10241b2e39bfbe17800d16677a5b2997bafn/a Quakbot
2023-05-17Psxbpazk.jsjs ba2da02c279dd1933403342445106367e50f3c030eeede50a319e962b36b7d70n/a Quakbot
2023-05-17Vuiy.jsjs 08a232d14f4d01e3a5850a7cb763f360dec0816401f976b981b5e2b83b8e106en/a Quakbot
2023-05-17Ozaz.jsjs cdfbd0d8d1ff9748675104ab270323718a87182fb56ab0f72a1a3e0dbf831c8dn/a Quakbot
2023-05-16Etqc.jsjs 35e65f424ba4ac2846ecc4fd8a4f71cadf2d4ab98e7201f527a03c4c536a6e15n/a Quakbot
2023-05-16Tdqsj.jsjs 3094b66b96336b53fe5cff13126481294ab2a004176311adec59471f0c0d7ff9n/a Quakbot
2023-05-16Yhlbe.jsjs 5a275fe78650bc0efe525b85d3c7ad6d321dae68bb06d34854d90b13fd4540c0n/a Quakbot
2023-05-16Aovcmwma.jsjs a1d5b7553cbff9406f3f9038753edd9af7718c41d78ffdc4522d389a649ef021n/a Quakbot
2023-05-16Igkoj.jsjs d6862c6b44d42b0e9d5ef521012d2d723133fa0900490f7522b33504280bcd35n/a Quakbot
2023-05-16Pmybyp.jsjs 7cbc665b86d545b3efdff494ac5c4c90719090ea3877b240cc835bb911f5a5a9n/a 
2023-05-16Tignpag.jsjs 68050c8db9faf818fb2e6c09053ac2bc23b34843bc5334e271981ecd19b66944n/a Quakbot
2023-05-16Ruco.jsjs ac8c0ec467655f636ea134c9731bcdb742099b0fce3a1e84b30edcc9959bf32en/a Quakbot
2023-05-16Sfzcp.jsjs bf5d7bccdbe0f3f3fd86556e3091cc97b7079e584095e4ad5c9d5b4aa42c5c16n/a Quakbot