URLhaus Database

You are currently viewing the URLhaus database entry for https://jobs-sa.net/tapq/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633632
URL: https://jobs-sa.net/tapq/?1
URL Status:Offline
Host: jobs-sa.net
Date added:2023-05-16 11:25:39 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:27:46 UTC to abuse{at}nl[dot]leaseweb[dot]com)
Takedown time:2 days, 9 hours, 53 minutes Poor (down since 2023-05-18 21:21:34 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Nhdc.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Txjducg.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Vvhyv.jsjs 89a5619b05f410a9eefab49337f1c6feaa69f4c6a3ffcc96807e7cff8d1904a5n/a 
2023-05-18Vefv.jsjs 426babf013bd614f1197dea8df2fac24ddfb79398b8310b46631885ec666eb54n/a Quakbot
2023-05-18Fnmubzq.jsjs e70a77365ffdf3f446781b46a826a0796adf73d479c783efd6763a7d83aec549n/a 
2023-05-18Jnmzdx.jsjs 9ac768cf3025869132bdb78aad3f4505cd8dd7e5ddc218e64d6645ba8db5e4f4n/a GuLoader
2023-05-18Mcql.jsjs c0a6fc4067da1b60a94f906dee1dd115392e21c209a0c86a40573a53c4a5024bn/a Quakbot
2023-05-18Vyqy.jsjs 285384a5ccf94492475a9af926ddb24dc621f5b0f19df79f8ed7366ca130d544n/a Quakbot
2023-05-18Akvsb.jsjs 029c7e0d1aaf9b325f8d1adf729b367d04954a895d6c1988c91f700855d91db6n/a Quakbot
2023-05-18Ffimna.jsjs 7b501e67649c8608b6333e95e174a2d3db77d745651cf4142c43e79b0e1ed927n/a 
2023-05-18Vmcmuud.jsjs 57924347ed17b5b79fa35f9c3f130733079566dd527de61c8d1691c0e4f0a7f2Virustotal results 27.12% Quakbot
2023-05-18Rhnp.jsjs e378d6c2c0b5f5ad7404ae59dc73fb118bbc687f0b78b8526939d18e1a151bban/a 
2023-05-17Ibbix.jsjs 981c8836ca3485400bc8fa7a73067986d2347ba02a058d61f1ee31be71d09a3cVirustotal results 25.42% Quakbot
2023-05-17Tjzbx.jsjs 1d2471f7acbab8882ea6f628275c501f0f81e0aeab5ee16537702bd849e8ba6bn/a Quakbot
2023-05-17Vjojsg.jsjs a5f0035e2f6ab21d643775a304ea994d963bc0ad712a5ae1a9ebb1a5298f7adbn/a 
2023-05-17Xibra.jsjs 9d4e35c32d73270df3c5bf64cd693e2933e614075af8f15eeacb3fcd142f8ceeVirustotal results 28.81% Quakbot
2023-05-17Fbgelaao.jsjs 04b3f1f116a7708cdedfe0d8666eb67090ed3a68f9536288919107e395a0fef9Virustotal results 27.12% Quakbot
2023-05-17Pnhntst.jsjs 71122ff461bd77e00f131eb7f52d813ed7a1fdb3262bba2adb83ee04085152f9n/a 
2023-05-17Aaorz.jsjs a84137be3c601ed49f9f8eba583b662769989e05beafda8a8e3ff08817a9b26dn/a Quakbot
2023-05-17Mgdq.jsjs 1d470e36c090632f12a17893f29a8466e5765da68723fa6ca736c0ab96b49264n/a Quakbot
2023-05-17Juma.jsjs 155c5beed0a1a3f4d2d7582f971997401f958aa8cec5c8ef82152e23f2dbd75dn/a Quakbot
2023-05-17Hjttl.jsjs bf5c1255fa9b4ded95f729187ee40f637d0e994c91267a730246f73d5b2132ecn/a Quakbot
2023-05-17Akbnafb.jsjs 316855a96a584a264ceeb583227f3eb551ae959848e46bdebb5da1cb9f90c392n/a Quakbot
2023-05-17Kbkvylli.jsjs 0be256a88b83dfd9285cd3c58d1b682bafd783b82c34db29a06f8043f5e452bcn/a 
2023-05-17Ynuwlpws.jsjs cf463f4c4e5b9f1bd9ac2c39089c081013e50e008576533be202d8c24d0f9aa4n/a Quakbot
2023-05-17Mubef.jsjs 97c195b226c8ecb9cdf271714f90fee87430f62c46fde1e22baa6e6f1b033d6fn/a Quakbot
2023-05-16Eaufy.jsjs a357907a0e0bc1a3342633ca7d66a703032225119737e24ca17cb5c57dccea71n/a 
2023-05-16Lznno.jsjs 91b3013f0dc0219fb30c42a41e7894b2dfef5aad4530d9105314e38b9988e9aen/a Quakbot
2023-05-16Pdtdhjsh.jsjs 347e5d142a27934dd9f1e4230e60c2a309137e9c91d415401f176f06859fc668n/a Quakbot
2023-05-16Fihegq.jsjs d9635741cb57d97f530ba51a30a49e273a29bc58b051cab67f68ba4c569401e8n/a Quakbot
2023-05-16Ewtig.jsjs 4b702ad2075336c46ca98728b5e4573e8609b8c038ca4d40402a12cc4b259afbn/a Quakbot
2023-05-16Lsiru.jsjs 9501ef4402d86f6a6c77ed4beb7160b64d6b9b6764f0e1242de81ead100b3a37n/a 
2023-05-16Jqtq.jsjs 82ac188b68c5124fdd273b764135e279a869279546b87df43fc130a6b2212c7fn/a Quakbot