URLhaus Database

You are currently viewing the URLhaus database entry for https://bimskol.org/otin/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633673
URL: https://bimskol.org/otin/?1
URL Status:Offline
Host: bimskol.org
Date added:2023-05-16 11:25:50 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:28:16 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 9 hours, 49 minutes Poor (down since 2023-05-18 21:18:07 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Ylnpg.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Wolmqouz.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Pwfaotu.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Jvbxjfd.jsjs 2c55a1f8c3579ec813595ce4f2f940d663596a2866c56f09e4cd9205db100aa4n/a 
2023-05-18Yasb.jsjs e4e514b57ab086485b47e1413c71a7e9bebc8c84c6615f90bf252d04c98fb5ebn/a Quakbot
2023-05-18Zbcjdgex.jsjs 09d00cc1758af4e79c7a38e65ba9555ccb18dcc1f628a22c1d9bd5a337b03d88n/a Quakbot
2023-05-18Mtwjayp.jsjs b4bbe3eb6f77c745b1c296728e15c69c6b766df2aa51d6d745ce4e5fee415e06n/a 
2023-05-18Qxpfjpa.jsjs 9459a0cb6bc3dff0f7972ac6852fb2f11dace3df33eded8be946a0ca5f1160d7n/a Quakbot
2023-05-18Fxcqa.jsjs 44d23f66a1f4b2d201da3bd9764d30d67431194d1ffbbc0ee587ea63d892dee1n/a Quakbot
2023-05-18Wycrj.jsjs f7bc14c8c137444d5d046f1c1304ca9eb96509ce61adeffaa967dc07f21c17d7n/a Quakbot
2023-05-18Npavo.jsjs be61952594d1dcb5774683bd939e4e278b596ba069248f2ff16fc39f2351936fVirustotal results 10.34% Quakbot
2023-05-18Ugijdsav.jsjs c7018ff287088c076eb317d0b9402bc9dda25e832c0b205e91a3aeef7468bcd4Virustotal results 33.90% Quakbot
2023-05-18Lbho.jsjs fd0ca1aeb929c31a64a1ec9c5027c0c2c644161a6fe7faacf6ea8ec30ca8806an/a Quakbot
2023-05-17Echnvpqg.jsjs 43783ef70654df6b8b4c8d132454112d675abe8da1b8cacb358490d7b2159998n/a Quakbot
2023-05-17Ilxnrg.jsjs c3f8749b256087bbe0dcc6d662f467c1d34f701e65acfb75292a72aba0657e26Virustotal results 32.20% 
2023-05-17Ohfcwngm.jsjs e3086e125c0def5547c4247942eaf8cdeb0e4e581562f9cef5e20b6978761c61Virustotal results 32.76% Quakbot
2023-05-17Scwloxdp.jsjs 6325a36db9c4fb5af943871bce9ae9c80002f6d9379e71cd94bdefe0342b14f5n/a Quakbot
2023-05-17Cfxeewqx.jsjs dfa59aec9d3aea04d54bc6bcacf0f7a1fc618f9981bc4a0955947134999d2ae9n/a Quakbot
2023-05-17Ytli.jsjs 13429cf0cc28ad9378b2b6c46f7c85f5356150262bfc598353fc15c0530e893an/a Quakbot
2023-05-17Aabt.jsjs 812cc57a966264823ac9c3e7a2ec885f1ade0a4a304ac4ef12554bbf9328338an/a Quakbot
2023-05-17Zgez.jsjs 9d96d83450b8f77f6088aa474d14dfdafd4332b308716dc0323e6a0318e2a9afn/a Quakbot
2023-05-17Vpueiud.jsjs ffef3445c648046545d9d5c185a01f6041df4ee7cdcb8744426c7b543b1a2dfen/a Quakbot
2023-05-17Whxjk.jsjs 954b494a7a75b366f88f997e5c842aeaea8b0fdc27a4925c39a0cc0e16f86c6fn/a 
2023-05-17Tvslk.jsjs 9a86be8189abec77b7d30b51e77386fe37294587d1384a6080d37231fcb8c9afn/a Quakbot
2023-05-17Ktkfri.jsjs 8bde7944ac89ec256df4e688a575bac0c088dbc5f88bea3f8379be716fa7c5c9n/a Quakbot
2023-05-17Ugfnexk.jsjs 5d2df57451db57ec914598c12025c5d51a88a848da8fc6f4edc3bf42942202aan/a Quakbot
2023-05-17Nvtllc.jsjs 93f8ef964c1358d3fe0710ef2efac50e52d468bb5ca6ed4fa669b268b0524cb6n/a Quakbot
2023-05-17Eekqfg.jsjs 837a47bfd87b41f731ee5efb370e211539c90cad624fa858f9421fdda6e3fc16n/a Quakbot
2023-05-16Vkgtxhty.jsjs 2be0d95116cdbf47e2b843bf19f4c92b94bf311f38f3bb4f4cfb2006dc177796n/a 
2023-05-16Fcfbe.jsjs 5ba4a723058c803f9b273bd2662167a105c71753ea5531c87ad0b8b8568e497an/a 
2023-05-16Eybmvqfq.jsjs e995e80146d6333c5daaf6653ef97accda1e016e9355f30499f8986b61a076ddn/a Quakbot
2023-05-16Qynlrol.jsjs 00743c311878b6e3e0cf5d6a82a385f66e4b9be5418c3c301314312f0f0dedb5n/a Quakbot
2023-05-16Jzisl.jsjs 2e62e793c6ab2a6136c48aa530ee5093bde09d2baa0b31e12a38f03efe7cafc2n/a 
2023-05-16Bmpnqdw.jsjs de0e1e39ba63cb10bf04abb1c88ce6d7e592f280d80cb2f5a16592520ac11068n/a Quakbot
2023-05-16Rrharvk.jsjs 469308c8d1c20a846596ba2445bd5f8d014db787f5076e4b3b5292c504f28e1fn/a Quakbot