URLhaus Database

You are currently viewing the URLhaus database entry for https://silvaspainting.com/nidr/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633929
URL: https://silvaspainting.com/nidr/?1
URL Status:Offline
Host: silvaspainting.com
Date added:2023-05-16 13:14:33 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:16:38 UTC to abuse{at}godaddy[dot]com)
Takedown time:2 days, 9 hours, 36 minutes Poor (down since 2023-05-18 22:53:21 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Todnq.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Ttnduo.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Dysabkyi.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Vyhy.jsjs 6e4ecf35e1db74808bf17a794d1f8e53e54bdc01d65f1451d655fb090071656bn/a 
2023-05-18Xndnsunr.jsjs 3ff223428a9d2b7b897fd823e4add6ae4cc119c86e47eb073bdbf5a578a17226Virustotal results 20.69% Quakbot
2023-05-18Eguad.jsjs 6880ce894904976fa0bcca1c18a48cf2a862737e355802fd26301563e6a09454Virustotal results 27.12% Quakbot
2023-05-18Oricegcc.jsjs 10f759e97a48df574fc941e1fdddf412b2e5a598d13829c47c202527d7d36ee6n/a 
2023-05-18Hivrdt.jsjs b87903d0aa16eb59b3bd58047ae31f7e370cc478a7b6d952e262fe4e56abb4e3Virustotal results 26.67% Quakbot
2023-05-18Lunjd.jsjs f064ddce080fc01f0b5b378227f89a1ee2f48034efc22bcdba315de07adb217eVirustotal results 28.33% Quakbot
2023-05-18Zeqwoe.jsjs 8fe6b80c39f345411e663560d164edb44cbf0ad7ba4914ba79f02bb403348f27n/a Quakbot
2023-05-18Aaxhhs.jsjs f72249d2446e19299c3e74d70064253963b884cc61a402aaa18a78e044f901ecVirustotal results 31.03% Quakbot
2023-05-18Kyqnh.jsjs 2a95cf3c1e69da726dd11f2d5621a546ce89b168fa1cab3506197a63de008d69Virustotal results 11.86% Quakbot
2023-05-17Cgamo.jsjs 905a894ac3b18458a8372c05faec1cd015ea3d7f3a5d248f87684a3062f2ca5fn/a Quakbot
2023-05-17Qqajwka.jsjs 68f73fa35cc8f6df9d84c782adc127c0af8e5c03ac541bbbee241e8edfdf685fVirustotal results 27.12% Quakbot
2023-05-17Uvxsgn.jsjs 3e294b83a7ced7203c04c79e0e2893c636344ba211f59ff49a66d91a93fe3bc4n/a Quakbot
2023-05-17Xlhp.jsjs 2a38d5dd759f5e13e433429b8fbed42e9b1fa7de9f671bf87d0739862847c16an/aQuakbot
2023-05-17Rumptcnx.jsjs 3657123d41437d5c2c4b48b03e14153b367398907ae10d30021c974941a5b64cn/a Quakbot
2023-05-17Hzuk.jsjs 13efaa86942839a33c87960d6b95861ace793c07390276ffb3d9329cfeb07034n/a 
2023-05-17Vtsljoke.jsjs 320db1d64ed5a7a4ed401ebf9861a9776e220be46c59f4113bebf562f9e506f3n/a 
2023-05-17Fedqyg.jsjs 458f163cb38b3017027b8aa3f34079754e9612f795af98bb0248e6189e8e0a7dn/a Quakbot
2023-05-17Nsee.jsjs b4d725c9b09999fab154d279faa66a3458dd4599c23e75e83d1f41bd40ed640dn/a Quakbot
2023-05-17Tyzbcxva.jsjs eb400e27696216366621682970fb6319be53838e6f818cea3d282bd0104595e4n/a 
2023-05-17Cyswq.jsjs 5e7d92319b7cc67ae66c5f15d450c8b7c82a3fefef33e678df70e9a03e93cec8n/a Quakbot
2023-05-17Rcsyf.jsjs 24dd0ac26353110e9b368bad92f9314c97f04a4c36a7269f13e0b84259e29784n/a Quakbot
2023-05-17Tsvmuxk.jsjs 480df1e7311a5ac451e8137a73f18f5851fd9d2c8e49ef16daeeb9da0ca24254n/a 
2023-05-16Cnefvry.jsjs 48b8cd9093efe36768a392c3f75f28704cdb4140a99791df1a623a10dc0aa969n/a Quakbot
2023-05-16Ivnuj.jsjs da926ace6cf27b0347f555353c90e00a97943d841f13bb2970e9e2e0dcc87ee4n/a Quakbot
2023-05-16Kheqy.jsjs ca4ebcac06c0df5cb39db3e8601b367963bb6c062b2f6d46d2fa16fe10941ee1n/a Quakbot
2023-05-16Vupcg.jsjs 8d752cd8b507d7088a9b5f7890485ae8b737f3518c53ed937f9221cead9b8dd8n/a 
2023-05-16Spgv.jsjs 022c4bce3179aede83f64913781587b6866d77cfef5baf4f7fdd6e666bbd4fe1n/a Quakbot
2023-05-16Swgekwto.jsjs 87dfe9f878278745713d2e127c69add44ec671065a408868c3a4d99698ce6f9en/a Quakbot
2023-05-16Mqjuv.jsjs eb7f2ae177e414c785eb302e78ac9a297bc6bcbcfba55f63e57a1f20bcc558e3n/a Quakbot
2023-05-16Vlutsqv.jsjs ab5fa724d692d0a88b1f4de46eee4a3c94f2a1f1e5e1f77ebd770cfa1b48bbf7n/a