URLhaus Database

You are currently viewing the URLhaus database entry for https://saltnsalt360.com/tui/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633734
URL: https://saltnsalt360.com/tui/?1
URL Status:Offline
Host: saltnsalt360.com
Date added:2023-05-16 11:26:08 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 11:29:12 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 10 hours, 37 minutes Poor (down since 2023-05-18 22:06:57 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Bmrjmuhw.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Minvbhwg.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Hpvy.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Xxbr.jsjs b127aaba3bc3e8f0636ce18136f4f6f33d4609c6cb446a25f17650e7bbcf3c22n/a 
2023-05-18Oosa.jsjs bb118ed7175733d7b31163818a3948e5e35d0e3ab3627a549e93cf6afa196585Virustotal results 29.31% 
2023-05-18Orluauci.jsjs 0204463c040334db593942c0e48063d6f6df33cbfba1fdbf8bfe51aa0bf83372Virustotal results 27.59% Quakbot
2023-05-18Uxbrfpt.jsjs f0dbb6e29c6d7e8d5463a1e716423776b0aa2be9fedbdd957adf165559ca8a5dVirustotal results 28.30% 
2023-05-18Pqgu.jsjs 3a16d7765c95e4f1c085fb18814d67ba3d65e6bf93e38d064ef74c1f9d15ac83n/a Quakbot
2023-05-18Raftclf.jsjs 0f979704b112aec8ec69c28f0075d45f2ed1aa14ddaa3effca523aaba13f0a6fVirustotal results 25.86% Quakbot
2023-05-18Ijxmfdvv.jsjs a3b99e8c39ad9b207f02de2422a94864986aae304adc635dc0cda1b27ac9e322n/a 
2023-05-18Utmzjtf.jsjs ed3b42a466d5debc63224e8439d69996fd4f174cfcae800ac31dd8dcb69c921dVirustotal results 31.58% Quakbot
2023-05-18Ysfab.jsjs 64b83f23408d2a7227fa4c862e4bafcc65ec650c57113690f264fd64d4b9bfceVirustotal results 27.12% Quakbot
2023-05-17Pvsswv.jsjs 753569ed5b6539685798c9810e39b6c67eab5c08103e0c79d4cc2f1c16cd8ac4n/a 
2023-05-17Avhxyqcj.jsjs 43f0a123b00abe19f1412b6fff2944e5bf4436a2ba20e3493ba9708ee5088c8bVirustotal results 24.14% Quakbot
2023-05-17Seewwlcp.jsjs 32191ec86c3fda99957a4e78362b4bad01545ffe830b5b5c5c32ed9c92fc58ebn/a Quakbot
2023-05-17Uelft.jsjs 8a9af030d5759e428811a44e1582012c64fdef7059286c4c1693f13566e2d3b1n/a Quakbot
2023-05-17Edzwtk.jsjs 8f29c702a43f99c1cfc18167ff61035ac4068757aba92e0eb5e9dde5ad72a0cdVirustotal results 31.03% Quakbot
2023-05-17Qgge.jsjs b866fb32a73c9c9a6de4c2fa92651d4d8d7f72f0fe66af797867274e8a889e85n/a Quakbot
2023-05-17Nwswuh.jsjs 743cf712f367f3c69cc6bfc3a3734a66d19bef6e76aabcc6a8b97c534a3b5557n/a Quakbot
2023-05-17Rafa.jsjs 4de3c0071371884b0a2e8815554e19a2c0d89112e1bd9bc512d30aa306d3f0a9n/a Quakbot
2023-05-17Dguf.jsjs 5150f3dc08f34c75bd97c93a984cb434b5a5484d03ef463d17c28d9861e5cb72n/a Quakbot
2023-05-17Uravd.jsjs be41d19792d4769b772320bb7f182476cf6cfa3cbd68c1964cff27e80486472en/a Quakbot
2023-05-17Ieuffud.jsjs dab5faa10dbd31dc7799646821878e11c8194b4f29e4ef00c78f1ebae6df42cbn/a Quakbot
2023-05-17Mavy.jsjs 6a80b186de2c15b472251eb37a897ae38f9cbcac881959d75ce2db7a3b84fd05n/a Quakbot
2023-05-17Jycnmmp.jsjs 1a5497583d03f273e0990562706e478631b0485bea1f4ba15bc30fab891ee282n/a Quakbot
2023-05-17Ccqfn.jsjs c9731eb3b51b005e2b500f6d55d5f8c15a1e39d9251a2d91f39c7c9f3a2e495bn/a Quakbot
2023-05-17Pqpdjh.jsjs bd5d4e6834206ddf56c895fd73303413d6d68d6722a4a1c39d6b4453b65a5717n/a Quakbot
2023-05-16Txvvheu.jsjs 4ed9343b4009072e62bc0b98717a3b7065bdccfae204be87e9e82cae831bb108n/a Quakbot
2023-05-16Nipqzj.jsjs de97bdf126e03af0350530c69ac34ce12754f940ecfd7d6ab69f7214d382fa95n/a Quakbot
2023-05-16Hpkzu.jsjs 43dda9297ae349ea26e56bd80b54d4158995fbfe80c98373a2248ba9224fcbc6n/a 
2023-05-16Hnavknnl.jsjs 446fd5a0c81dd99ad3669643a734ee2e48df6dde58830c55fd8b04d5f8bc0acbn/a Quakbot
2023-05-16Mile.jsjs d1feaed48d120cd71f0228915e9b022a93a02cf7171405fbfaf748d1f789d7e4n/a Quakbot
2023-05-16Dtie.jsjs dde6c9ad5c7dc1396bb9f434312f6022e54fa6371f38b03a61ba7a17dba510bdn/a 
2023-05-16Mhjbft.jsjs bee7e4a481739e4c788161e388be007177f31f989ec42173d2e0174cf4d815f0n/a Quakbot
2023-05-16Yzbxoubj.jsjs 1b80a2c7e7f34646d9f9b48244dfaa05aebe36117c55c00636f5dcff4ec489e5n/a Quakbot