URLhaus Database

You are currently viewing the URLhaus database entry for https://avitaltranceformation.com/mi/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633658
URL: https://avitaltranceformation.com/mi/?1
URL Status:Offline
Host: avitaltranceformation.com
Date added:2023-05-16 11:25:46 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:28:05 UTC to abuse{at}bluehost[dot]com)
Takedown time:2 days, 9 hours, 53 minutes Poor (down since 2023-05-18 21:21:39 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Wwmwts.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Dcnpwx.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Pempfxvy.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780n/a 
2023-05-18Wzjnna.jsjs bb118ed7175733d7b31163818a3948e5e35d0e3ab3627a549e93cf6afa196585Virustotal results 29.31% 
2023-05-18Tatbfq.jsjs c66769c1beccde8a71bc20172ba3978dfa20fa8e27c21976b94c10327af6d4caVirustotal results 27.12% Quakbot
2023-05-18Hbsk.jsjs 7a1083b3edcdb5d47bf9938417f339c556c4737e9886bb9cd51ce8eceb3dc5dcVirustotal results 30.51% Quakbot
2023-05-18Qvcbqn.jsjs 4a224a82cefc07c64c7c22363f17593d43b9ab03d82d39624000798d29cd331en/a 
2023-05-18Rykncpe.jsjs be782f3af4554ce0188bf903632e461191f0020d22f70c2760c1f9d32b21bfban/a 
2023-05-18Omhshtlv.jsjs fd0ca1aeb929c31a64a1ec9c5027c0c2c644161a6fe7faacf6ea8ec30ca8806an/a Quakbot
2023-05-18Jmyby.jsjs a1f08963f5715bb8830f2ea036c6be1f8a5f34bc8a6bc799c36611f79e54b14dn/a Quakbot
2023-05-17Kkscndk.jsjs b3c3f0880fe1ebd5b9f5146a8164da0834ee29a37e5a1cd8e534efe15c786daen/a Quakbot
2023-05-17Ugohasy.jsjs 399c7eece18438ba4f325cfc3863d0603d1237732a310fa2124a136ff2a335afn/a Quakbot
2023-05-17Pxqf.jsjs f276da1a81b23b7f647bba9fedb53f4e8df35e0456b09c909184c6c45bcd9d99n/a Quakbot
2023-05-17Cwucke.jsjs e5f9fc33236b5ba2988d71e8585b3802d96cde07263ae499ce6ac56cc9db183aVirustotal results 27.12% Quakbot
2023-05-17Mvvmyt.jsjs 7ef24e8dba41a6e1f91b0d04f772ccc6300b92293dcb30726bd5052c1e2ccca0n/a Quakbot
2023-05-17Zvtnx.jsjs dc0d873178c61dae13dac14d65611d4716e9c28ebfa216e32126dbdd1ac971ben/a Quakbot
2023-05-17Qfdbw.jsjs eb40b9246889e25a0aa869bfab07adf9622ef027a8ef2ca488d9926b5a39718fn/a Quakbot
2023-05-17Tinlux.jsjs 553048e1b904995408000fad35bacac9f574e3e64e6cc15f6b44541cc75b53f3n/a 
2023-05-17Jnba.jsjs c8c570d51819b732572aafce2a277d0945c804ae4b70a3b4900d8f053a3b545fn/a Quakbot
2023-05-17Jjsv.jsjs 52a007ea52d6c1acf0b49ec08389a7c880d580833767ed9f8b3ae1975cb21b45n/a Quakbot
2023-05-17Vxptgdbb.jsjs b023a84c31172c000abd75afe8de4812d8bf4e93079ce3bb1a698e2c23d75fa0n/a Quakbot
2023-05-17Adlu.jsjs 5ed8a68fdf1569c7ac72b75b586eb86486958d6655045607a31a517aa5e88e03n/a Quakbot
2023-05-17Ofrt.jsjs cb0ed2d8c7451997852a9a3385b021c7b72df790697a064ade8b3afec4279092n/a Quakbot
2023-05-16Fecqltv.jsjs 4fbf3940c80365200ee61f493f99814eb6151e9b3acbe5a06eb332b2038b6600n/a Quakbot
2023-05-16Ngvavkka.jsjs 74b4818ab7225380a7468dfa386d0c89c1ff4489a782f2b2f556d9a8f8368e0an/a Quakbot
2023-05-16Hycbbbih.jsjs b9c5da080710bdc0e332d2f71085cd33415276b43fa9f6275fd6b950de343b4fn/a Quakbot
2023-05-16Puqzlgf.jsjs 105e2faf6b1e9166287d8830f7e1a9fac464877b8150b1b14eb596203479da16n/a Quakbot
2023-05-16Gfioz.jsjs 30aa044efb96c5730d55a63a8c1f904bbf8c555db06344a3143fbd8dc801b936n/a Quakbot
2023-05-16Buxnoc.jsjs 9aa1589387d17290d8770b8d4f72f5cfa4a30e8e00f4c8b3e463fe382d15ba76n/a