URLhaus Database

You are currently viewing the URLhaus database entry for https://noidacityguide.com/hsnl/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633915
URL: https://noidacityguide.com/hsnl/?1
URL Status:Offline
Host: noidacityguide.com
Date added:2023-05-16 13:14:27 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116525 created on 2023-05-16 13:15:17 UTC)
Takedown time:2 days, 8 hours, 50 minutes Poor (down since 2023-05-18 22:06:15 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Dfimfkhd.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 23.33% 
2023-05-18Yxvupcnk.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Xleq.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Ebsp.jsjs f69f5d5cac085d248ad21e8de6d2af3cfa508f71d5abc3fc0ec18edf236cb59bn/a 
2023-05-18Ldgi.jsjs 16e669d4d5391d00940846a4f52891c84d175cd3dabd4f776ef0b2b352c4f2c2n/a Quakbot
2023-05-18Iken.jsjs 3b367e99561731587beb5622ae151a88c15c2153723768a743a9b7f635cf1303Virustotal results 33.90% Quakbot
2023-05-18Jzwqksn.jsjs 8116e7914df0a4fae9adad12da668660206754557fac016131c53fcd305d537fVirustotal results 32.69% Quakbot
2023-05-18Hfzo.jsjs fcddde4aefcc392bf143eaab986f85fa9fea69d7d232194ecf6c3080b8b60a1fn/a Quakbot
2023-05-18Wkpuab.jsjs a1353f7898cc49901d6c5dc01063b60be173f0ab2378d18348e3b766cd3a9913Virustotal results 25.42% Quakbot
2023-05-18Alunt.jsjs b243ce7f5b24e6eab35ff99fcc718064f5897388b337460b05226b50e50b7dfen/a Quakbot
2023-05-18Wxcel.jsjs 47f14a8b9c04f43e700eff818ff6490f28ae0bcba08118d1af9f0b06c96779a1Virustotal results 29.31% 
2023-05-18Ujmahsi.jsjs e5e55c026d33a226eeaecaec0b1f0e887452329d55151ca363f093722745e770n/a Quakbot
2023-05-18Efrdidrs.jsjs 67c42e2dba1a888a502921f8497455eea4965e6a313718853b1782317b27c950n/a Quakbot
2023-05-17Ixaro.jsjs 928455b0e6b3a04da2d4fc9cc17de42c52ae2a640937dcbc9a048f76050c138eVirustotal results 28.30% Quakbot
2023-05-17Ezopaeg.jsjs 72b50fe52615ed2facfe5a1517ed75f7ba6d2d98e26968645dd646186fa5fef9Virustotal results 24.14% Quakbot
2023-05-17Oittq.jsjs 3833419abb83fe2369255a23b3fa983e65047ca005c0dee0d772efbdbf8ee75fn/a Quakbot
2023-05-17Ndxxvyff.jsjs 426babf013bd614f1197dea8df2fac24ddfb79398b8310b46631885ec666eb54n/a Quakbot
2023-05-17Iwrqcn.jsjs 9b2f8c74295c1bedca1e85a34eca84634c652741d93c24d9c5586926552a77a5n/a Quakbot
2023-05-17Lixyvhfp.jsjs 7aabd12a63a4289e6a5f5fc62d866ed2ade8e917a6f2d203bdfd37c0f87ab265n/a Quakbot
2023-05-17Arot.jsjs 86cf4c93687b588dae11523a8db9355990fe06f4481aa096e4acfcd8555b8e25n/a Quakbot
2023-05-17Vwdgdb.jsjs 05a174be6e69239d5415bddd3b69c313e19d290dec792e1b5bff0340b4cbd0f5n/a Quakbot
2023-05-17Tbuxiax.jsjs c6c88d3a06ae8f933c9c6f4b5f90b10627d15224cfa0e06ade93c8401927db16n/a Quakbot
2023-05-17Sycviza.jsjs 5c2888ee772eab6ae5fea241fba3b03fa889c41b2b6350fd2392d9126092b785n/a Quakbot
2023-05-17Obcixgce.jsjs 13f864306ed8a1ee7c00eefd1a68a3a46aefb7749ac1aa1b7611b94efa8bc853n/a Quakbot
2023-05-17Jtkmone.jsjs f7e63e13d88a3a33cf6d95b4215b6870400dfa0f3441391f59a89d97635ef253n/a Quakbot
2023-05-17Lmfe.jsjs 3474113425a08c21a3ac688a1ef8612c8fa364b3a84fcea863d59eb0c5a31715n/a Quakbot
2023-05-16Edkbafcf.jsjs 2cadd9489063c1dc085a817bc00ef8bba3e00da26041c2ece457bd1617897264n/a Quakbot
2023-05-16Jxmhejso.jsjs bf28779e39c0ce790bb56b351fd6a50c4226beaa3f539f96dd8c4983a878a31fn/a Quakbot
2023-05-16Wjeovpkh.jsjs ac9f1f3598144112b67ae7cfd0b07f7b58dec0bdc457343bd0a76332d2a4c530n/a Quakbot
2023-05-16Oddrjnav.jsjs 91a59ebaf957a8c3c72b9f3936903abd8771583f70209a6b9e445fa202a40aeen/a Quakbot
2023-05-16Vnmbm.jsjs 3718af71ea402774180bdaab2e2384bfc4fab4c25422df0625dca497c2abbf81n/a Quakbot
2023-05-16Jomcjdp.jsjs f8b3aa3664c530e6be756d9b1e5e88701310f21f5f4d51ed29278da30cff1a35n/a Quakbot
2023-05-16Urgxgrn.jsjs 59a1bf315f3f09a7a12f268de987f71359870b32202eabbdab81bc89787a7596n/a Quakbot