URLhaus Database

You are currently viewing the URLhaus database entry for https://haaamim.com/ben/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633725
URL: https://haaamim.com/ben/?1
URL Status:Offline
Host: haaamim.com
Date added:2023-05-16 11:26:06 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:29:02 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 9 hours, 35 minutes Poor (down since 2023-05-18 21:04:57 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Lojvtk.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Mzjs.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Ebchu.jsjs c026101383579517c7d5e351b9be63bab02363daf116d77402550b24eab687e4n/a 
2023-05-18Rabl.jsjs 9a649ac76d537c5f4ceb023745e2fcb3a6ed8443c46ac1f2dbd7da98f0487deen/a 
2023-05-18Pcszhp.jsjs 872a8726044bc6afb068028c44ba1376f7a3a6835147e080a9c5b7de41d634afVirustotal results 25.86% Quakbot
2023-05-18Jyab.jsjs 66a44d6ecc0bff8550c4f8fd93b40851e019bac6297339dd180d268ed9bba451n/a 
2023-05-18Tuekge.jsjs a569ce1eb1902d2edf7cffba78e832e764170e48ecfe81ac3adda07c5f42455eVirustotal results 30.51% Quakbot
2023-05-18Uslufu.jsjs 0b38200ce89d27eea5fb23346b4015cb585d0af5fd4f176a7c9bdb20ae369a4eVirustotal results 25.42% Quakbot
2023-05-18Mkzhwg.jsjs c1064ed6356f294c6981938454ee3a3712e5e63930c1554a3c1602eacbd6554dVirustotal results 25.42% 
2023-05-18Kawhco.jsjs 0efda647b9e6537d80702573e14dad4cae7edd5bb92d94eea0f136b93fdc03b7n/a Quakbot
2023-05-18Rrcroxq.jsjs 8aa9df652c080c1ab6754cea7be1a61ae330512a5ddbc9af51177cbeb20da8e4n/a Quakbot
2023-05-17Ajrmfi.jsjs 6a2c26dc0efdfc1c4fdf83525f29de723f3f77f866558ce277756af920925c89Virustotal results 27.12% Quakbot
2023-05-17Ypmry.jsjs 3e80a8823bae07e1aca749a62a6da2c57f0f80ebb6d4a8cd1be2ea749d3af45cVirustotal results 17.24% Quakbot
2023-05-17Oicawha.jsjs e4e514b57ab086485b47e1413c71a7e9bebc8c84c6615f90bf252d04c98fb5ebn/a Quakbot
2023-05-17Jwqaobbl.jsjs ca42f27ebd7d4d5472c9652e26b5cd7d9f089e838ea85a8ac5f1c51b37e83e30n/a Quakbot
2023-05-17Svelht.jsjs 14ce409dfb31225a9aa73965aca14ef09852a03cf69033bf2deac2a816796a31n/a 
2023-05-17Qazfnf.jsjs 8fe6b80c39f345411e663560d164edb44cbf0ad7ba4914ba79f02bb403348f27n/a Quakbot
2023-05-17Jwlot.jsjs 029c7e0d1aaf9b325f8d1adf729b367d04954a895d6c1988c91f700855d91db6n/a Quakbot
2023-05-17Qznyij.jsjs 8cb9812b4c0409176b2f0770497520692218130496cf0a2a363b4606ce28f506n/a Quakbot
2023-05-17Oafqz.jsjs ff546185a020fc38062a1bb34fd6110d8fa4dac8ba27d929ac2efba5e0b8c6bcn/a Quakbot
2023-05-17Ujwu.jsjs 4ba0da33cac7affea0a931c8a50852c9102ba97773264e1fee2f00e9656680b1n/a Quakbot
2023-05-17Vjsdb.jsjs 7735b9ffbb2b4f9ead11b8560132d42b66f0adefd6c6acc6249ec1e8a23d79d5n/a Quakbot
2023-05-17Dedrbjf.jsjs 39f5211a10dda3bf059a4e63f499fc0fb46fe22a2e8490cfb75d6b4cc85571c7n/a Quakbot
2023-05-17Bdopo.jsjs 43f6e54f850df2e1ee85dfc996f341890974bc70ff9a6e9ffca8fcae70244af6n/a Quakbot
2023-05-17Qznq.jsjs ef1f21ef8f2fa8eef063629522977a334cff6d69c368c0c33dd070a375b4f658n/a Quakbot
2023-05-17Xziphpi.jsjs e9c8cd91fa2dcb016a8c2cfe2c8577fe0f915be863ebcff8232760aaf4f7b5den/a Quakbot
2023-05-16Oaaso.jsjs f7c7d2c277c138d8090ab17a929c5fe952cac7e595c8b2f8881601510e46b29bn/a 
2023-05-16Ekimf.jsjs 9cc82502c7aa0b8b1424e7b931693c32dc816699c95039e63471ac4981a61208n/a Quakbot
2023-05-16Drqc.jsjs 6c9d6622cbdb20c859799c6e6051ecad00cbaf0a3084a93bb75a8221df5ba4bcn/a Quakbot
2023-05-16Kznbk.jsjs 12e8b37feef58e7b63498ba26522d4c5f7a347d43729921fea58e54440b99766n/a Quakbot
2023-05-16Pivmzn.jsjs c70aa774ba26925fa5780ae2dd20f540ebd066185e9a5a9811b476c5ef8f943fn/a Quakbot
2023-05-16Rivthwyg.jsjs 32064cea5bf090f863b68ff5fdfe3d3875327d38f35189d7ba29430767e93dcen/a Quakbot
2023-05-16Qpusmyeg.jsjs 65d45b5c16a9bad97a379ed75c6e6282931c283020fd1232e36ff142665a4c9en/a Quakbot
2023-05-16Rgszqb.jsjs aa0bbea02c015db5a8d3d4d25d21da4cce1b76c8851bec3412caf06e8b38a2edn/a Quakbot