URLhaus Database

You are currently viewing the URLhaus database entry for https://epyuflix.com/qnm/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633874
URL: https://epyuflix.com/qnm/?1
URL Status:Offline
Host: epyuflix.com
Date added:2023-05-16 13:14:15 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:15:46 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 8 hours, 35 minutes Poor (down since 2023-05-18 21:51:13 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Amgnvja.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Jnsmr.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Fiuhg.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Uzzdobb.jsjs fae629814f35347be8a9c27137a0647d8595c12c56f0a56c838b3af38436c27dn/a 
2023-05-18Enduk.jsjs bc85062a6ed96ba55f83637c5941ebb10dd8734a7486eb2e716a41e21578b347n/a Quakbot
2023-05-18Lxjnawyx.jsjs 5cf5a460458dbbeb9dc56a1055cc11cf9105c55fae9b828a1884c3899001033eVirustotal results 22.64% 
2023-05-18Vcsjkde.jsjs 4fe762f3bef37ff2896345d647489f0ee60515aaf5da2c93572e1088e91adf79Virustotal results 28.81% 
2023-05-18Xlzkxlt.jsjs 0d6511ddb8cf97d9967367c983015cc45c5ea8c7ae68416f28625637be59caabn/a Quakbot
2023-05-18Zyniflnu.jsjs 6a36fcdbced70acfd047d3132e249ef81960cf97f62f9e391e672db0ecd19f13Virustotal results 27.59% Quakbot
2023-05-18Bxbg.jsjs 1bb623b986a2a31d7b68f61ab99a793274bcd030e6ff4daedab6e150252b27b1Virustotal results 25.42% Quakbot
2023-05-18Cawwbw.jsjs fb639f61394301ec51c3c82b270fa10118b12150f177db33a72560d80ad79f25n/a 
2023-05-18Giqbxwf.jsjs 621b5cf40077c9b8235e3525da2dea7b28a80029ac3f7ee7477d78c780f4b8c7n/a Quakbot
2023-05-18Agrx.jsjs 33e5253fc3841fb30d4467ba7144f20b94bfb5714befb85aa32837899b33859bVirustotal results 27.12% Quakbot
2023-05-17Vldryo.jsjs e7b23f3002dffd67a5026b9ae031fe92c033bd7c37c6bb15323d3bb075275d89Virustotal results 33.33% 
2023-05-17Mvwf.jsjs fcdd7c512aa91e5f6574a7c7ab77a118b9e1af5f2e3b502a5adb136508c4ba47n/a Quakbot
2023-05-17Wjjsjfld.jsjs be61952594d1dcb5774683bd939e4e278b596ba069248f2ff16fc39f2351936fVirustotal results 10.34% Quakbot
2023-05-17Crbpxcbi.jsjs 0e8413c3fd2b87cd2139ba54c718d6b9f305a8bf33d41f05aaaa2639ccde842cn/a Quakbot
2023-05-17Ooenxhw.jsjs b246dc6bd29b7f7bf62fa6cfdb10a17053bed892c03b79d0328d384cf96f799an/a 
2023-05-17Xrbatga.jsjs cfc68b43d74cf7d5fd05920f53d7e80393899308fd60fbcd60c8582770294bc1n/a Quakbot
2023-05-17Yppguwwq.jsjs 4aa5f66645ca2168af894232b630df6e88077c51f4fa33cbe2efd094e057fd02n/a 
2023-05-17Blvasutf.jsjs 415e6ba2ac6c7497dd479b253d43d7113a4ccaac990372809f3b416cbf7b5386n/a Quakbot
2023-05-17Pdildjy.jsjs 5cba920074b575b1c0bb4c40207cba34f8f663c27ca538257e4464ce67e4ef7bn/a Quakbot
2023-05-17Cmcp.jsjs b4fa04818143ae4726337564fbcbf8c6629206853d73d6224334eb27f63299c4n/a 
2023-05-17Lclbfr.jsjs fffbcfa7c88130d09664620811d6d8cd93b49521a63406c5777fa1a22000ad70n/a Quakbot
2023-05-17Rnxdiu.jsjs 0d7014aa63e82e299325bbf998dfe2cf9e9081f824a6a46b8d04ec5e85232cd0n/a Quakbot
2023-05-17Mjmxll.jsjs 524ec56b37560a053bb922c2670fa2bfadd98bf935956570b0b157469e122eb0n/a Quakbot
2023-05-17Zvxz.jsjs b496e1ff72d84b9322a0f02e64d92e370f2785a4e209e3e7ad5e4876fa1d8831n/a Quakbot
2023-05-16Yzpthwyn.jsjs edf1ded1741d8ab2c4910e98510677593dc7fa3e3528398ae50803ba6ba8ba87n/a Quakbot
2023-05-16Qwwf.jsjs 916219aaf55f07f511e914784b199929ba188279e2dcbf3f3353278c0d19c2b5n/a 
2023-05-16Nchfpt.jsjs d65748467f02424212ca56cedb6cb8b72be5b8831f85470322fa3103798015a1n/a Quakbot
2023-05-16Hyndshnv.jsjs 33da98bb911d32b695d04896e8f5d50bd9fcb1421df9ff3cb81d77969f6924dcn/a Quakbot
2023-05-16Vdqfj.jsjs a5a479ff9bf365ef48e3fc8a633daa7c996d3a87b0779d762123b5c937978c85n/a 
2023-05-16Bqjxdpjk.jsjs e7e813920518eb38c764e6529265e92f81fb0d9bdb7875ec31d249f829e44150n/a Quakbot
2023-05-16Vlnkoqpg.jsjs 020b0c887a18dbf455b36839c8cea58f0e2bdcbc4c3e6b08e213b8de0beeb948n/a