URLhaus Database

You are currently viewing the URLhaus database entry for https://opencartar.com/recn/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633620
URL: https://opencartar.com/recn/?1
URL Status:Offline
Host: opencartar.com
Date added:2023-05-16 11:25:37 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:26:37 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 11 hours, 7 minutes Poor (down since 2023-05-18 22:33:57 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Yyij.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 23.73% 
2023-05-18Evjl.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Wtzlpw.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Ftpw.jsjs 6dae1707072b0c200903a9131f40191ea2299d2afc193f2ce97e4f11460ad7e9n/a 
2023-05-18Vmbmbwft.jsjs 90854b60ab6b30c83f8839a6d1977dc7968771625bc4a6751d30fa1ff505912bVirustotal results 27.12% Quakbot
2023-05-18Cjrj.jsjs 256b5693dd43ba9ac782255a11f52251481f5d72c27042d4b6f9bb05aed317f2Virustotal results 24.14% Quakbot
2023-05-18Irhgylfc.jsjs 98e65224d86b8f3b2be7f45d6b5bc6711e25eba8a298bf06d24ad94bfa8b2089n/a Quakbot
2023-05-18Upuqknpo.jsjs 3cc62e68f657fa870eabb640cd8e651d4ee69a242db9feadeecdbe6a0435ea99n/a Quakbot
2023-05-18Hrup.jsjs 076515d52f5219c37701ac4b38e72e4f6a809dffce463343615c3fb079c9ec89Virustotal results 26.67% Quakbot
2023-05-18Ecnuba.jsjs cb296a47f490cbc70541030b87a0b2d9eb6c1253da849e9e37e7912f2fff796dVirustotal results 35.59% 
2023-05-18Awohola.jsjs e1f86c377a5fb822c6704735ae1fc4f80bddbea822ee597fe99762e575e05ba2Virustotal results 25.86% Quakbot
2023-05-18Rmxctvcr.jsjs 2ea57f7ed2c3148b87f87bed297e9f780f369a71667342ed01a88fc779a24eefVirustotal results 33.33% 
2023-05-17Fqzei.jsjs 19add01de5eb9fa85d7bed9badc8daf24f0083faf06b7eaecd8b1efb21be5428Virustotal results 25.42% Quakbot
2023-05-17Lzjjrz.jsjs 00662b73e2bd3a971290d1314c7c89f0f6d0d7244ebb8fde1721be20fa50a8daVirustotal results 30.51% 
2023-05-17Tczhfxau.jsjs f093b882b8fd4a20a6b626c96af959ed31285d4cd57354e4cf7de124fb062b81Virustotal results 30.51% Quakbot
2023-05-17Vuae.jsjs e5c5a60b175cb60af996c9c06d7956eb02b365460e950ac7662bb4ea5c87d9c0n/a Quakbot
2023-05-17Wrvnlcmd.jsjs 2bcfc438cf9c0a4f72832a134f6709c7596645ff3d738abe3b2fd53250ed50f9Virustotal results 22.41% Quakbot
2023-05-17Coani.jsjs f91b22ef75c62115177abfa54ffc898319098f3de31ddf0b2a964dae96c3b376n/a Quakbot
2023-05-17Hejkyh.jsjs 4df2da0e1a60159c49866a7e3899e305f80766c9bae6b676bf18955d4e2ee8ecn/a Quakbot
2023-05-17Xjsufzw.jsjs 3d84d8394ed3f2569f362746c384979ffe586ce0ea287131840dfa855c937a39n/a Quakbot
2023-05-17Hjvh.jsjs f44d3220e014f978b5f38efbe65392c02aed017df3a27aa377efc7ae421e755an/a Quakbot
2023-05-17Ypgkh.jsjs 63adeb919861df828e16b1074ae33251d1b3bbec01782ce07e749dfe75bba802n/a Quakbot
2023-05-17Dwvvqedy.jsjs 12817ad63a94967d8ccbfcc1345a8175f698ffb5cbd25b19b313064c3fcc2d4en/a 
2023-05-17Luft.jsjs b94fbc087571f0780e1c7562c34cdd01b994fe08370f14e1eb3240ba0d17f1ccn/a Quakbot
2023-05-17Arykyn.jsjs 30fb31f6801c1b4a0094425d88db1d6e7d0b1a357ffe2c155040c13415c850edn/a 
2023-05-17Pgjm.jsjs cb158aa183d0b3627d85d9d8e668d9c4db00f00b096b9d1dbc8f5abdc6a533e7n/a Quakbot
2023-05-17Dovkahvc.jsjs 76569f8fcd27e5658375d717e7bdfd6b6c706efff3ec83ee649461e4faa23a13n/a Quakbot
2023-05-16Sztfqr.jsjs 77bfb018ccf75d91871ec2237006eca4755124bf5936cf5affb50e771c174d2en/a 
2023-05-16Oxys.jsjs cde3dbf222f120f2e4bfb0bce86828cd73fa6b06198f82c68818bc678b9ad225n/a 
2023-05-16Cxwudbw.jsjs 2e4a718882a55d06ade83616becd9ab5d934ba5db415de88020d167ad1de585bn/a Quakbot
2023-05-16Cbfthl.jsjs dcc4a44ec94215c8228b4e09fb86979fd853dca9df7a5a7d1cae7eaa91b29283n/a Quakbot
2023-05-16Afcdlpeh.jsjs fbb07bfafd2f83c1d901ce86d598e796572ad8e37c917b9c2279184c53b5d434n/a Quakbot
2023-05-16Znixaz.jsjs ed5c4145ead948db94ad6c3145d89f27b08dc844f5ac05fab250c90803f6b8f8n/a Quakbot
2023-05-16Tqafoft.jsjs bf6a28326d9bbd55ff73b709c5a615600329276a6d4126489d574298889faa08n/a Quakbot