URLhaus Database

You are currently viewing the URLhaus database entry for https://qaziakashahmad.com/baa/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633623
URL: https://qaziakashahmad.com/baa/?1
URL Status:Offline
Host: qaziakashahmad.com
Date added:2023-05-16 11:25:38 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:27:37 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 11 hours, 18 minutes Poor (down since 2023-05-18 22:46:18 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Fxrrc.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Cqzob.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Piysorz.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 29.09% 
2023-05-18Wxxc.jsjs 3f81d638187365133a7541ec95cc8cdedd33693b4fd6331e5fddb2281147b873Virustotal results 30.51% Quakbot
2023-05-18Fjywsssq.jsjs bfbec36fede661575f19295dcf1df9ba2fa3f0ca817dd9cc5efbd152f86a999dVirustotal results 23.73% Quakbot
2023-05-18Omwczj.jsjs ec038ef76ec39d36971e8a801105bd271b7e7c72a23435f57313e54e0faaac27Virustotal results 17.31% Quakbot
2023-05-18Ivjgopbi.jsjs 24c2f222f6f2809f7c5dda15d789a41d9424dfce3714fe71bed9fbb0e077503en/a Quakbot
2023-05-18Uoutc.jsjs 47838303934003e958511bf93e4b40816c144d7ddb6c99ad7cdda7145ee5dcf8Virustotal results 24.14% Quakbot
2023-05-18Vmdy.jsjs 0f979704b112aec8ec69c28f0075d45f2ed1aa14ddaa3effca523aaba13f0a6fVirustotal results 25.86% Quakbot
2023-05-18Djsk.jsjs ca99a531b2e34c4f23683a2cf2f4a2e81bcb2cc4975ba287d0bc6ef71563472cn/a Quakbot
2023-05-18Wjavod.jsjs c1460321f81f5ddaf0e6965fdc14511326240b2d261c1e2c98e92f73eb1accd4n/a Quakbot
2023-05-17Ffssk.jsjs f3cf1988e5b288b64fc34cf15045d67a4fcd2c9c61549510e3df907ea1f61cf8Virustotal results 27.12% Quakbot
2023-05-17Gliqgb.jsjs f3f5b182d275d4c04caa73e7abc7c40748f810123832c294c35b3b4bf997ea3eVirustotal results 27.12% 
2023-05-17Jwvpslpt.jsjs 6d5e3d77360658771bba4d35e8dd94a77d30f33a7c30ab86b66e271b54d2a638Virustotal results 20.69% Quakbot
2023-05-17Mrqa.jsjs fc4e17680da39bbf2dfbf388da243c919927a825eca7d8de8a39d74be04968e9Virustotal results 31.03% Quakbot
2023-05-17Ymtfix.jsjs 447b96999dd079d4e5bbdefc464fbae41be6c1d6f55fa0d6dc0cf9db6f3490b2Virustotal results 23.73% Quakbot
2023-05-17Pctxmbmt.jsjs 5b03a98354c24b442061c45caca4e261ba88fe1d68187bd4c44f84773d562a6dn/a Quakbot
2023-05-17Wbnwytys.jsjs 39ac88782d43b40c56cd7245203211f747e986908f13072c8d6d6caede0ef79eVirustotal results 30.51% 
2023-05-17Apubn.jsjs 5155a314d6e44ed6eb4d65e80d368d8bcd4e8674e293bce8d712b03395d22f6fn/a Quakbot
2023-05-17Lovjplfy.jsjs 92622b0097451de9c2bf9348a500b0c46073cb06c9347b0cb865cb88f880cc77n/a Quakbot
2023-05-17Vgdygl.jsjs 0544bf1339e168d61c8a2c320779294625384a0ec3d8cf703751351fb8bbeb09n/a Quakbot
2023-05-17Thloita.jsjs f62f4f614b76c6aba03d22634101e6c440bddeab5e33447585b48a6e46d3d432n/a Quakbot
2023-05-17Jxkthdup.jsjs 677dba848419ee4fd1dbe5bc17dfad921fda6572246d64be7fe82be7977c057an/a Quakbot
2023-05-17Ysabza.jsjs ae2500825c542be397dd72933049eb9b04b2fc3a63ad7dc74246acd3a6be21cdn/a Quakbot
2023-05-17Fyrdd.jsjs 2a1c1b7ce991477f5429552e30fc1c09ca130e62d66c82c2dda9089c5562b7a4n/a Quakbot
2023-05-16Ervbvc.jsjs 732bceaca0f8e5a645f17f08277921cd5a4316ff6f4f93b3284631d5b3315357n/a Quakbot
2023-05-16Vefo.jsjs 5c267ecf12c1b63592f1a5f84a338ed2b4d103ee567c1250d0de327d97f9a5f2n/a Quakbot
2023-05-16Jinl.jsjs 17ce7528c71e8d5301d64cf2d48fa8473c71cde7247e93cb8493ba95a0baf3a6n/a Quakbot
2023-05-16Csmbrma.jsjs ddbb22125c93a40ca18f9142b8b48a85b2929501c7831ee5842fa27c01cf6445n/a 
2023-05-16Lafd.jsjs 9b91a115cbe03bd4f4e69ee212e37eb4cce81b6920ee2f5df73e57ca6a007857n/a Quakbot
2023-05-16Vwvnyayq.jsjs 8f86d7c8c3f7d59a6bc8412098c9cabc406fe15263ee676e870f3742848e2d08n/a Quakbot
2023-05-16Geflllz.jsjs 73a81880e12cdf150d924ca998ff9d4653545fbdf7dea371a3b957767e7cfed1n/a Quakbot
2023-05-16Sefk.jsjs 6367d5b9e287674c993c234345686314a3cf191d15062ed0cd7cab4b28fd06ben/a 
2023-05-16Tdxt.jsjs 0fda62ce706c8ea5f9944162021016b6fb226496730abe682e8c667b32a9ddd2n/a Quakbot