URLhaus Database

You are currently viewing the URLhaus database entry for https://avitallevy.com/la/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633694
URL: https://avitallevy.com/la/?1
URL Status:Offline
Host: avitallevy.com
Date added:2023-05-16 11:25:56 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:28:05 UTC to abuse{at}bluehost[dot]com)
Takedown time:2 days, 9 hours, 34 minutes Poor (down since 2023-05-18 21:02:18 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Ysoq.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Hprqvnnh.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Hqbc.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4n/a
2023-05-18Ngpadn.jsjs 813dd17d88922ba0046abcdb7529341dc2f0b483fa892a39ab55e0b4922516e7n/a 
2023-05-18Sjjh.jsjs 5cc7756639a24d5a8e14f7884507a76c1eb16843689035a0792202694705accan/a Quakbot
2023-05-18Daezass.jsjs 9459a0cb6bc3dff0f7972ac6852fb2f11dace3df33eded8be946a0ca5f1160d7n/a Quakbot
2023-05-18Vxgbs.jsjs a18a3c0e37cfc92a00d139f4aebd7996690f4428dea318f028570bf9037d8aban/a 
2023-05-18Jcyed.jsjs 2810143d11f9ad7077972f807f2dc04a3f22746f81b7d8365d879e722c0b3551Virustotal results 17.24% Quakbot
2023-05-18Wiamx.jsjs e0a76560e4dfa1a02a0ed9070737950e644f0b851388f7a580a8c384ba1ae3aaVirustotal results 28.81% 
2023-05-18Nlrokglj.jsjs 42c81982e5f4b734f8ff57da5bebf9b6d8f79c468dd97a2b69b831657bbc8258Virustotal results 32.20% Quakbot
2023-05-18Pipec.jsjs c408bd9762412a5776d177862b5ac082170428db1332d9ba6c28929b506a4858Virustotal results 33.90% 
2023-05-17Kvyih.jsjs ad227c276250c72ebaf4c13e5d960347009d0762b8c2e696a35b36232e0eeff0Virustotal results 27.12% Quakbot
2023-05-17Redlljo.jsjs 119865e21bd0f564ac17f9e36940d9360139b87392fa02dce3483f1a789ab4abVirustotal results 24.14% Quakbot
2023-05-17Lwcg.jsjs bc08bfae3a441cb9485634aeda5f5ae4cbbe5e36cd98ce7b2812cd62ed4e5034Virustotal results 25.42% 
2023-05-17Duofdy.jsjs d67719607166b2f101544e674067b1d8a66a134620ce0e19794356da09e033ebn/a Quakbot
2023-05-17Wnagh.jsjs 0ae16f66866567a01f4af47c0c7b2e49d1e54eba4e457b2de97f88c48016cedcVirustotal results 30.51% Quakbot
2023-05-17Xkrdjfsp.jsjs a7a7249194b741b44bab1befd74e783ba57af2f211b597961892dcbe975544c2n/a Quakbot
2023-05-17Ujueklp.jsjs 7f4b255930c48f8c5845c7ee4b70176ed27fac14ad26798578fbdaf327bc1157n/a Quakbot
2023-05-17Klat.jsjs 1ec5affa9a1ddbefc2169fa56dd7fae5632cdf1cec5c59e9f53fb2f602462853n/a 
2023-05-17Aupozt.jsjs 5feecc5ae66702ac69e2f7f54ff01f016c81664d485ed9e2459f92711b687d68n/a Quakbot
2023-05-17Ffisc.jsjs 7869eacc6ebe2d7e728c220c58fb301e8f235812ac909899199f90847ae663e7n/a Quakbot
2023-05-17Ochxek.jsjs 58207aecb96709b131da7731b2196e28bf932ae53be92168ff649355e0d30afcn/a Quakbot
2023-05-17Fzis.jsjs b1620aadf693609df5497b81ccc7902b87c35a165dace1711a341183cafcd6ddn/a Quakbot
2023-05-17Xvjk.jsjs 8fe854f5558011df68650196fc4a2e2dfd4da4be234680c0dd43a2be4aaf9ef7n/a Quakbot
2023-05-17Mbwmoxn.jsjs a048e7f815d30d3a9acdef3c5aa697305990719d99dccd2761ed5f0f59904cd9n/a Quakbot
2023-05-16Lbovxifv.jsjs a15bebcda05416c6932727a5053990b1cb8db0a2573da524dffecaf0f57f48b7n/a Quakbot
2023-05-16Smamitd.jsjs c820f1d3a825526fb4154e43280ff328deb05d4dbf4138668781b25ab64c6cefn/a Quakbot
2023-05-16Nmfibs.jsjs 185a01e3f7cbe9b20e0b1244312827665b3b2e5f0f883dd83adf27fc5bccb89cn/a Quakbot
2023-05-16Mentc.jsjs 52b9fdaa0ef6d1bd9c0283a7a3178e0ececc53b180c596044676cf2a2124d427n/a Quakbot
2023-05-16Geknyv.jsjs c20183c2f5fc936b278cb092bb490c1afea3cc6f5bbc56cdbf98afdeb05ced2cn/a Quakbot
2023-05-16Edtu.jsjs d5e99eab11613d51a743614373c22aaee889b5d546bb464ec9e6f9d94a604445n/a Quakbot
2023-05-16Eoxzyul.jsjs 5e950b618900840459962d0ae71927fd06500becae9271cc7d0b3cdbf884013cn/a Quakbot
2023-05-16Tuyp.jsjs 69734a79a9f7d6c94dc11ebda1cdcd58d62db85a603e598e0b7a0bec7ba95a39n/a 
2023-05-16Cbdpt.jsjs ff7e1d8c18ebfcfbf871c903ee98c22d4ed4eb80ad103c0f90d0b97a30fb6136n/a