URLhaus Database

You are currently viewing the URLhaus database entry for https://keyurahealthcare.com/va/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633873
URL: https://keyurahealthcare.com/va/?1
URL Status:Offline
Host: keyurahealthcare.com
Date added:2023-05-16 13:14:15 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:15:34 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 7 hours, 58 minutes Poor (down since 2023-05-18 21:14:28 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Zopxhm.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Sdkvem.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 23.73% 
2023-05-18Pkafb.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Iabkqq.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Ehlhrvac.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021an/a 
2023-05-18Gahw.jsjs 65f23cfe3e7aef568faf72894b6fd0f1c6086287ac499272ed273ffd035b1a69n/a 
2023-05-18Tqtyvh.jsjs da144ecfed0906bbac01d116a74626cd6fd7ec833680cd9ff8107dc94db16496Virustotal results 28.07% Quakbot
2023-05-18Eufkickw.jsjs c321a1664d74da4f73b983c793c4059b38202d4116be2e9f53f9aa1d4320d830Virustotal results 24.14% Quakbot
2023-05-18Zybokh.jsjs 7e29b555dd10291e663446073640ea5519a3e38a3655264511bf14299c86dccbVirustotal results 24.14% Quakbot
2023-05-18Dbtu.jsjs 83743f2158c1cfe6f65635d6a1c2aeec71545802940ab5e083fa9d3a98d650aan/a Quakbot
2023-05-18Nyuaujt.jsjs 3f3578034596c52f8ed357e2c3f37660c2f5af439da7fde722d26c629f457d03n/a Quakbot
2023-05-18Uvme.jsjs e3c9723f0c4736015e73df036ab893acc6c4160034969cd8a155187d7f0b0205Virustotal results 30.51% Quakbot
2023-05-18Pyowhna.jsjs 24579cbeb7c33196bff853d67ce422776e45c942b057519eb6a6c453ed30ac62Virustotal results 30.51% 
2023-05-18Btgi.jsjs 020f938e3e5a80465883b947cf72e1604c794e693956eee1cc4707135129fd43n/a Quakbot
2023-05-17Awzlainb.jsjs 9ed630b44354fa9a5b12648e092b487dbecee08d6aad53bf5d2695dbea9b9cc6Virustotal results 32.20% Quakbot
2023-05-17Pltxcal.jsjs 64b83f23408d2a7227fa4c862e4bafcc65ec650c57113690f264fd64d4b9bfceVirustotal results 27.12% Quakbot
2023-05-17Uzsa.jsjs 7cfdf6db2bcad8f5b911ac39a8da45e6a8bc3e53c287742c8afc09821a544c0fVirustotal results 29.31% Quakbot
2023-05-17Sknll.jsjs 05dab37be019900d575f8a51485f2baecb4fe212712970c486fb711a173c6290n/a Quakbot
2023-05-17Inaof.jsjs 4de2124d922958dc3b36346c1906578b79f12a6388ef771a7f8503c21e30af78n/a Quakbot
2023-05-17Knvu.jsjs f37d3c915b896922eed07327ecc8b944fcab1445d20c02c26c5aab8d91473b45n/aQuakbot
2023-05-17Uerita.jsjs 41d25fd2c9445a58f5ae64b05b6042873508bfb85efe4b1b00c3c1b03c4f930bn/a 
2023-05-17Buss.jsjs eaea721c8922e13bc9050c88d1f56896e6fe8307aeec9aec10d855db1e952720n/a Quakbot
2023-05-17Jnpiq.jsjs a4e2865cb1a7049ad5c3793fc60d379a07d3394e3f1ab1cc1f63b29df9daa902n/a Quakbot
2023-05-17Shwac.jsjs 63e6b3c75e70a74bd0602961a83f9d3fb6fed11081b89e6e2ebab7f6f96547c5n/a 
2023-05-17Mworznp.jsjs c51629a401d1257e0c3d591d42c6aa0dc6f7c50aa33bfb659fc10d6c210272d9n/a Quakbot
2023-05-17Jhsbo.jsjs 30488830ed68810d2c0142be30cebba698472f14d33d8533d8c02025f74e0919n/a Quakbot
2023-05-17Qavyefui.jsjs 9bdd8b526e7714ae611c7c911a05ae6fa0a1a4ccf7faeb921b743d063f5b13b1n/a Quakbot
2023-05-17Yyfi.jsjs e45823f49b61f40171ffcbf73434e1400c5c342467cd41b26f038fd371ca037fn/a Quakbot
2023-05-16Uynuyo.jsjs c4e0795ed87c610de13363a56803a130c7fb44d9c3502773785a917c6cb43cbbn/a Quakbot
2023-05-16Younyk.jsjs aeaa1c806e0f9f457f292ca2f8a6b477decd2587a38426fed843cf0fe92e39b2n/a Quakbot
2023-05-16Lvvjcnd.jsjs 07986a303ed9c5887c21709330ac4141e2e281bba33828daed535f606950db43n/a Quakbot
2023-05-16Kelp.jsjs d93b17a155de960bd685346446d1df26f7b1cc7ca4602bcd4bc34e7c11696c2bn/a Quakbot
2023-05-16Bjcvxd.jsjs 380a058ed2802c5cd549f8d9f70138da9d4078ae27b10854345410111c5c10c7n/a Quakbot
2023-05-16Tvnk.jsjs 75794ebae7d318ffe14a4cc41d14314900018bcf7dd563558f9201fb9b16e24fn/a Quakbot
2023-05-16Kwahxn.jsjs 55ee4072f670f372b2701b08110fc249e91fd986582e213d3a5d5774cf85aa4an/a Quakbot