URLhaus Database

You are currently viewing the URLhaus database entry for https://torqdev.com/ars/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633916
URL: https://torqdev.com/ars/?1
URL Status:Offline
Host: torqdev.com
Date added:2023-05-16 13:14:27 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116526 created on 2023-05-16 13:15:18 UTC)
Takedown time:2 days, 8 hours, 10 minutes Poor (down since 2023-05-18 21:25:51 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Ffync.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Cvcwenx.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Rnwqi.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Ykktopb.jsjs 103fe9dc59325bc38c98524186c10a14e7f9a3db43ec9ccb986383814b76dd9bn/a 
2023-05-18Owmatns.jsjs 9f16a38888bf7c130dfc15dff72eda59b2621e7c1048f157a4cf51e9bcb2e280Virustotal results 32.20% Quakbot
2023-05-18Cuvh.jsjs 482b7c299dee3be25a3be3b76fb1498df5fc3e081d157b3734fa41fd8fbb5cccVirustotal results 27.12% Quakbot
2023-05-18Sscwexx.jsjs 148afa4bdc9cc4fbfe4816e01d70172a2fba4ead24c822bd4cc936cb0efefaddn/a 
2023-05-18Hhobl.jsjs 67ff580532af15d6457fe1b6aa59886c46bd5c72906c86b58aae1e7aab70fa3dVirustotal results 25.42% Quakbot
2023-05-18Ocpdr.jsjs b7a9d786648f1049f8c0964593b9fa3983e6066f5674ff98d438cf5ec9d592f4n/a Quakbot
2023-05-18Sfmkuqt.jsjs 99ad6e2718d4fa53c8b3e7479802548afcde5a374d0563ab49ffb0405d8e435an/a Quakbot
2023-05-18Shcjxy.jsjs 2b2ddaf766a72a62c3247e520317d64f6b32231d8802b99b861cdbcd872a7ef0Virustotal results 27.12% Quakbot
2023-05-18Afufw.jsjs 494e69eca209ceb575b3ad74ff164605bc99c57a7621108280f95412b64e0becn/a Quakbot
2023-05-18Jzloelnd.jsjs 562698d61476d96d6f3b0fd847585b9c5e4d1f9eb96f8153ba577725aa0eb697Virustotal results 27.12% Quakbot
2023-05-17Fwdlq.jsjs 269dec903e55df2babe1cb8bb498ac7fe56d2a079cdf89c2d5c354b7a8fa1250n/a Quakbot
2023-05-17Euuig.jsjs c1b685d3448c37f78c922a2a19a51272e6cba29bcc9f50ae1266bc064074f257Virustotal results 16.95% Quakbot
2023-05-17Pyjt.jsjs 92f5060e9693041974047a3d61fa5f29676b1451f9f09d9dcef17ecdde52367dVirustotal results 28.81% Quakbot
2023-05-17Eabi.jsjs f33a199b902aff95c3dede5cbfe632298042593120c23bc925987f2dcdcfce53n/a Quakbot
2023-05-17Khgx.jsjs ef903a00f557175fbe1af9263796fbdaad81dc6578e948729821675219196f43n/a Quakbot
2023-05-17Mqjmbjmo.jsjs 029b6f2d9cfb0a2a335c9b9377c1dac9e71206e55f6f82c7d3c0e2edceb9b734n/a 
2023-05-17Hfxhaxqa.jsjs 6d803b50163c0e1350885095f69c37de20bc02e82d04bd3de2c9ba098d36c204n/a Quakbot
2023-05-17Ftwub.jsjs 5a3e96411301840bd96b0b49365a05165264f0a0b6d9cd43e312efdc34ef4e0bn/a Quakbot
2023-05-17Rsqnq.jsjs a18a2313121cac6a40acf6ed31aaab0e4028831c77ade46b17cd7152b2ce90dcn/a 
2023-05-17Deacrg.jsjs 403e74c6bd0c2ce50f4fda7f5d44e3b99188980166d21d391a83b758a725851bn/a Quakbot
2023-05-17Txyscs.jsjs f3ca2059de4b1908ae75c093c6ae819d47980871b9e5c60b97bdaafcc7fe76dfn/a 
2023-05-17Etoez.jsjs 7becc026d98b34fde442062bfbb88b6ff8708a92800f7f007a39bd5bae3f7aacn/a Quakbot
2023-05-17Vkliowj.jsjs 145d305db5f4cf2f4bf6a8215e1012f6e8e8aef4f6e3b78e602a258d60ed046an/a 
2023-05-16Rwnawaq.jsjs 3f2b16c26a3b95afb9ff03d561186bc2ea8b89be27db2322470b6744893c89f2n/a Quakbot
2023-05-16Ouulhacw.jsjs 95d7ca8124b02515fb646aad23b84d28cc86a3aa1c89532256593042cbb2a203n/a Quakbot
2023-05-16Qxwlz.jsjs 8152ab7fc809306dda66aab224d32f4be547c23ad62f76b199a350d89f7ce9b1n/a Quakbot
2023-05-16Penwf.jsjs 165da8d3b2f00f72f151cc5e31c53f435964265e20befbb3ad915244f72e1688n/a 
2023-05-16Xxnymdze.jsjs 676f687855530a108484a5d34a10f2ef4809ecb792e707a0db8509425623f294n/a Quakbot
2023-05-16Xedut.jsjs 56cd42d2fea0fe1be2ed97a2ec245f7c04e229b5c1001a5b4d83f809c61f5da4n/a Quakbot
2023-05-16Hvecnum.jsjs cdd217113e730a29d71ff9ee37ac446f1218cd7da70fcc140de593e7a8f9f3d7n/a Quakbot
2023-05-16Nlbezsa.jsjs f557403c7e6e185ad4cd616207caa8b83931bb761774645d61af01af48a09a06n/a