URLhaus Database

You are currently viewing the URLhaus database entry for https://jojoexports.com/esse/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633636
URL: https://jojoexports.com/esse/?1
URL Status:Offline
Host: jojoexports.com
Date added:2023-05-16 11:25:39 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116410 created on 2023-05-16 11:26:08 UTC)
Takedown time:2 days, 11 hours, 31 minutes Poor (down since 2023-05-18 22:57:13 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Tnoyix.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Hwnt.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Wlyxrzzu.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Xhrtzir.jsjs 9d74d1c9fc16f35879c569f8557f6e0977800868a94c9e74c5ce5f7231e1d2e9n/a 
2023-05-18Fxcmzj.jsjs 7ef24e8dba41a6e1f91b0d04f772ccc6300b92293dcb30726bd5052c1e2ccca0n/a Quakbot
2023-05-18Xjxblj.jsjs 784d0c23a7299fe8f5a79ce4f83765cd48535cf1afc25d542a0f854f8049d149Virustotal results 27.12% 
2023-05-18Qjhgwpj.jsjs 00662b73e2bd3a971290d1314c7c89f0f6d0d7244ebb8fde1721be20fa50a8daVirustotal results 30.51% 
2023-05-18Kbwfvdnt.jsjs ef1c6b9ad4a7758ef25a4557fa7bf0a20ab6dd57c36474a91ef75620edd0974dVirustotal results 25.42% Quakbot
2023-05-18Rykf.jsjs a569ce1eb1902d2edf7cffba78e832e764170e48ecfe81ac3adda07c5f42455eVirustotal results 30.51% Quakbot
2023-05-18Zdcr.jsjs cbc57ebccb343515692b47782246ac3ce19ae8ae335ddc9895810261d11cb663Virustotal results 16.95% Quakbot
2023-05-18Geaiugj.jsjs 4bc76e07bcd4d492a60a7464d0a8d6c204b4744fac7ea6748a6b673c6ff31cc5n/a Quakbot
2023-05-18Koifl.jsjs e7958ccd8a002219ae5c0a15fe85c42f33e3433270f0ba102d597f19a494e2e8Virustotal results 27.12% 
2023-05-17Hknviiwt.jsjs c2b44422f7f4e7dc1cd2abeab300413b55a00cd9d34fda7542a467dd852bafb4Virustotal results 27.59% Quakbot
2023-05-17Sebombk.jsjs 939b394768f864f5af2b1e196cb9982563bcbf1157f23f9a873030ba262566c3n/a Quakbot
2023-05-17Vbndga.jsjs 479435405ce11b58fbf16a8d7d4f3f1b2d8952718a2dd79f8c0e4ecb91176be8Virustotal results 32.20% Quakbot
2023-05-17Jnkez.jsjs f4915f167c3fb3624d4d085f3c8bed83ad6edb3d7f55c9b9bb17a4f06111e131n/a Quakbot
2023-05-17Bxgmvos.jsjs 0af9a445f31e51c20a58fad5f35d353da59c49e684bf1db02c436c4d7f7f18a6Virustotal results 27.59% Quakbot
2023-05-17Bzhbwils.jsjs 819c3375d47e95f26e1466039e2ff5a096837d0761bed7564c2366b094c8895bn/a 
2023-05-17Bkjigiiw.jsjs 83743f2158c1cfe6f65635d6a1c2aeec71545802940ab5e083fa9d3a98d650aan/a Quakbot
2023-05-17Jhmjuz.jsjs 39ac88782d43b40c56cd7245203211f747e986908f13072c8d6d6caede0ef79en/a 
2023-05-17Vhxce.jsjs 0eb36df6ac7e73e53c148166b06b5c1bc80d6a92c1718e19711dfd219c02ffd2n/a Quakbot
2023-05-17Anvjd.jsjs a8e76d7ca9db9d8390b954a7bfa1db170eee8e4ae04a9174747da95a137a82b7n/a Quakbot
2023-05-17Srnw.jsjs c67b3ce0bd4184ce86a6663879613cafc6f13a5a44a74fc91728a0b855934ff9n/a Quakbot
2023-05-17Ymsynzw.jsjs 2b48e1f91ebb1211b5c06e9e3a62bcfc566884c235480fc53499a76a772adf73n/a Quakbot
2023-05-17Vwrtlujf.jsjs 1336f0a3a7633d2d18ee881b614bced065e40fb17df7da0ed06fc67347be30cbn/a Quakbot
2023-05-17Dqnrpt.jsjs bf2ee2ffc8180f865b1845e4b6230d5303dbedfd911f72622a89de4c7e29a824n/a Quakbot
2023-05-16Yymb.jsjs 1bb72a94820ba9876ca1e0e3c7ebafa27b3f738d3a7102eab605930c8d02b5a2n/a Quakbot
2023-05-16Ncqjs.jsjs 074dd8f48a3c6f7ba7f9e2dd55f994d8c4ded277c6c4e927d28b74e9d319bc38n/a Quakbot
2023-05-16Ocgsifp.jsjs 7f12385bb85f7c98bfa519d77eb8283aecf90730dfaeec0e6b9919ad7b457c49n/a Quakbot
2023-05-16Sjgn.jsjs 212a0a786ae8475e2536164c9588f3b9a7a897e8f1cb6d7d8e254a4ccbe905b1n/a Quakbot
2023-05-16Jsjlvwza.jsjs e1731a80d6e3ab4b06d757f3bd02ac018ff3db8a9e4f99c20022a58a63e8e1b0n/a Quakbot
2023-05-16Omhf.jsjs c4fc29bda0112dde27ab61f3d54139dfdebb62ae4e3a76776a1a3fb4e89248a7n/a Quakbot
2023-05-16Yiue.jsjs f3fd8bff825b08eeaca1b0134b7a2392e9e9893e3d8b32f692dba359d0995841n/a