URLhaus Database

You are currently viewing the URLhaus database entry for https://invbor.com/oh/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633648
URL: https://invbor.com/oh/?1
URL Status:Offline
Host: invbor.com
Date added:2023-05-16 11:25:43 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:27:57 UTC to abuse{at}dimenoc[dot]com)
Takedown time:2 days, 10 hours, 9 minutes Poor (down since 2023-05-18 21:37:18 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Awdcufp.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Igxpp.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Aavlb.jsjs d1482f5a65149300085c304a5bf6667dd4f4f2b0a5b3d7a0e9133297b37300b8n/a 
2023-05-18Whmkan.jsjs e21d7ce5a24617b4a823482fea8b703cee1f434028f5ee807b3d77bcb4197988Virustotal results 13.79% Quakbot
2023-05-18Fxrvwjpa.jsjs ed4b4009ba340ee9369058f34b9f50d2cb0057933fa2033412123538dd6093ecn/a Quakbot
2023-05-18Glgdfzee.jsjs 4fe762f3bef37ff2896345d647489f0ee60515aaf5da2c93572e1088e91adf79Virustotal results 28.81% 
2023-05-18Brdw.jsjs 8eec4b2ca78d1d8b62a875c3a6b16a0a9053aeaf65f1e6cca22000629ab71432Virustotal results 27.12% Quakbot
2023-05-18Nzuu.jsjs a2f17ffca655028bf5663349090771ded5e0eac6f65e71d0fc151816a2dc7342Virustotal results 23.73% 
2023-05-18Thgkl.jsjs 3dfefc0e91ce9c601581448bcc12aa145f0ae317f0c3bf6cd09b4605cf679ce0Virustotal results 25.45% 
2023-05-17Iqcbgl.jsjs 724461f309ab96d511ced805b91951db475a6c036216777c4f4570a3ce7fbac5n/a Quakbot
2023-05-17Phqqbebo.jsjs 81c46b64d5ec7559ae3287d14b77e2574baf7808d818c8b6f2375da96a544c50Virustotal results 27.12% 
2023-05-17Dnpfwqj.jsjs 80fc6bc22b972a2f7976468afbf26152a90501570de0a295a92cc9b9c55b15ean/a Quakbot
2023-05-17Aovrbgyg.jsjs a84a8c5338c73e889cff9d58c510657f8624b8deedf847eef71befacab5ed60eVirustotal results 20.00% Quakbot
2023-05-17Rwcn.jsjs 798823d6f774c2380137f2e4d5c8a16ea4cec5e96284dfed0891528bdf512376Virustotal results 25.42% Quakbot
2023-05-17Vydom.jsjs 42c81982e5f4b734f8ff57da5bebf9b6d8f79c468dd97a2b69b831657bbc8258n/a Quakbot
2023-05-17Ikfuj.jsjs bb118ed7175733d7b31163818a3948e5e35d0e3ab3627a549e93cf6afa196585n/a 
2023-05-17Ppkdujs.jsjs 696a11ec887f450d5599ba293d0ce3d2bc6b107dc94fa7d7e453f067ad7ec5e2n/a Quakbot
2023-05-17Jmxgotx.jsjs 24c509f0dfdf64b7e516b3a7f6132b6e23782b0ad08d50eb4eb8c4e7c83ad85bn/a Quakbot
2023-05-17Kvbaylmo.jsjs 501d9891db1cf11b8f9de0446f6eadfb2f6a8d74719d0c2aa5dd7e8d4a5c29bdn/a Quakbot
2023-05-17Ybidx.jsjs a14d62c2c3b43cfddb76abec5e5f0f084331110c2fae6054a70bcda4443c7906n/a 
2023-05-17Wagbk.jsjs 93a773a18c8bc93083f8f38eb2c9f56b38d23195989d593a2b49560833de2cc1n/a Quakbot
2023-05-17Inbnjm.jsjs 84a0d9aa73a8268617018c3a2087a1d4b667bc2442ac7977eb0ad2844ef0d592n/a Quakbot
2023-05-17Zbba.jsjs 4e104736cbea37967023af148f8fc5e2ccd5873f7cd90f669e53f03fe229462an/a 
2023-05-17Koealmz.jsjs db40c3ca7834cd759c3cc853266d9bda6ebd94534b116737fd3bc480cf300bc0n/a Quakbot
2023-05-16Ygwl.jsjs f303d0c398c8490dcb951edb737ca542d249b496b743d81bc80b4c972d73d455n/a 
2023-05-16Wtdjsa.jsjs 13d38b3cb98931be42b21335b2f5c12a75ab8991ab847e62e0904583f06d3b99n/a Quakbot
2023-05-16Tohpir.jsjs 2aedae6f00eafe1233fe24ebb27a443ca57a3d8ffd19404cf81b7582614b84d9n/a Quakbot
2023-05-16Wqpamact.jsjs 5e8632fc10d377c4ecf60f1f45aa6bc12d13666513cd76c07a6ede82f26755f4n/a Quakbot
2023-05-16Fmie.jsjs c75e333c2413ca198e22b6dd34398546a47b156e6c0c147b58364aababee1716n/a Quakbot
2023-05-16Dtveu.jsjs 3c060d1c4d01d16b8e130d5be513d2f186bbb1a8fe46699efdc2d3efa79155f5n/a 
2023-05-16Brod.jsjs 6b0a6be4819450af5214bde0b996d92abc4c6256c11e9f3ccce565451fc73b7bn/a Quakbot
2023-05-16Ngkme.jsjs f3660b76b552f963df69fba76b6457b968cb16431b3547e3dcae97e4da655c0bn/a Quakbot