URLhaus Database

You are currently viewing the URLhaus database entry for https://thestrategylogic.com/emt/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633677
URL: https://thestrategylogic.com/emt/?1
URL Status:Offline
Host: thestrategylogic.com
Date added:2023-05-16 11:25:52 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:28:20 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 11 hours, 13 minutes Poor (down since 2023-05-18 22:41:47 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Sqrbuvoc.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Nsfvnv.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Leaxl.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Hcni.jsjs 8a8c4a374674592c4a5cd69c8ebbcf737a5a19c3e4f64f9e21b5822026349e0an/a 
2023-05-18Zshqlr.jsjs 4a2d1d02742e1dbb3fdee1d9ff6862a5a45e7920404df24a06740007d4b653d5Virustotal results 25.86% Quakbot
2023-05-18Jaduit.jsjs 59b0a76ebb16b7e92fd7040cce169d3cd207567b8293852c5bc0d44574f68077n/a Quakbot
2023-05-18Pnttfkwg.jsjs 5ed8c2a8ffd44a6f80d52c65210bcb3ab9bbfc42a217a03db9d435fe66f68833Virustotal results 25.42% Quakbot
2023-05-18Ecvq.jsjs 36fa7b7d4e7fc7c9366c2fa6533c47fd96cdc2d9a6f2c3a9025fc4271c5d4c18Virustotal results 24.14% Quakbot
2023-05-18Xjkkxs.jsjs f093b882b8fd4a20a6b626c96af959ed31285d4cd57354e4cf7de124fb062b81Virustotal results 30.51% Quakbot
2023-05-18Qzuqzdcl.jsjs b87903d0aa16eb59b3bd58047ae31f7e370cc478a7b6d952e262fe4e56abb4e3Virustotal results 26.67% Quakbot
2023-05-18Quoug.jsjs f16b3c48ca1ba324e53c48a72c3bc53329423b16779e1cd1d0d40447f39cfefaVirustotal results 16.95% Quakbot
2023-05-18Mhhvaai.jsjs 246f0936618439433071e920bc87c631f7506091006fb43ae80612f430c0846aVirustotal results 26.32% 
2023-05-17Eugb.jsjs f14437be247480b6af38f3ccdd4ba46e6e55eb7b3d706b8df711f63558b8703fn/a 
2023-05-17Fobatfh.jsjs 0857b5e40844024689620ed0e9d9fbef8b9b295f54e11fba7dd9693f59ce40fdVirustotal results 27.12% Quakbot
2023-05-17Uupn.jsjs 928de378e1b8690de67deab709ed80da406ac542daf31e7c5859f02c0b9a4240n/a Quakbot
2023-05-17Tycmeqqm.jsjs 0c72f8db70d3f144ec7cb21515e337377b9aa689dad88dfbf1720634c8b70453Virustotal results 30.51% Quakbot
2023-05-17Pqvqqrxp.jsjs 860e36fc5c8d21dbe486debbb3dc78ef1409446eb46d7c84b937f01cd3075364Virustotal results 29.31% 
2023-05-17Xfcuep.jsjs 35c35c65a46137ab025bfda60be1ea1c10a10b9cae6e337415b9c7b2ebd3df3en/a Quakbot
2023-05-17Ybshj.jsjs 2936b6742f1d05f0f4625a1582b4bb5e44cf16340984eb0eaf2118709e5f7933n/a 
2023-05-17Izchzelb.jsjs 0eb36df6ac7e73e53c148166b06b5c1bc80d6a92c1718e19711dfd219c02ffd2n/a Quakbot
2023-05-17Qpxcx.jsjs 746cf57f4e2b6c0c83d4008b26dc061badf2f573217fece5f19351aeb214587an/a Quakbot
2023-05-17Yambcfk.jsjs a48124f5391742b43def7022977dbb051866fe543316e601f5d2c2dc777e1125n/a Quakbot
2023-05-17Ptluzefw.jsjs 63e606e1da44b17ce497e6f5a87ca9f25f0d9b9bb14acfabefde98d26a6016c5n/a Quakbot
2023-05-17Cshej.jsjs a498c2b94c4058ed795a8204b243080b8069f0cf47efb5491a17e2942a168905n/a Quakbot
2023-05-17Jbfc.jsjs ec2dc201e2e24adec659cdf7af11f41978d4569328d090fe9497c12b1278b604n/a Quakbot
2023-05-17Rzbm.jsjs c3ad265d6165769580f0aa3db8de479c22eba3f3fa24d92aff77a65111cdba50n/a Quakbot
2023-05-17Vpamx.jsjs eedfca8146ef7abd77e001e831b5e714da87491f1eda015a68ee9e50f639d2bcn/a Quakbot
2023-05-17Vzsjy.jsjs 1168af8d32f7763f88687ac75b914ec20a59a3870c4c7a078c78a3513fc4f89an/a Quakbot
2023-05-16Knqqgoxk.jsjs 3fda2236e7688801236b45f0af9200494564b8346677badec78d4ddd8fe65eean/a Quakbot
2023-05-16Niqkfoz.jsjs 8b458eed27179c903b6c99d4672087506bfcfd0aade3fce9a9f8bcf68bf71a0en/a Quakbot
2023-05-16Jzuxkxu.jsjs 6e0c2c1ea49fe598995850aa1cce04b5b3ac33885599d4d80227040c93f551b4n/a Quakbot
2023-05-16Jjntc.jsjs c20707910066cdccd5ac1265f25ecf376118c62b903a972e78704feedb168867n/a 
2023-05-16Rolkr.jsjs 5cba5091cce82a34a51451177ca9074966cb9687e8905e16b55a78b214135b27n/a 
2023-05-16Eaiyzy.jsjs 2109d076a7615d96179dc8708027cce1885c46a805e239e543d5192a873eda99n/a Quakbot
2023-05-16Kdiej.jsjs e848b843f06803dbe064cd3f887db9f6ec4d2b4e19767dbab3c2da6dd24be69dn/a