URLhaus Database

You are currently viewing the URLhaus database entry for https://webdreamsconsultancy.com/iicl/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633930
URL: https://webdreamsconsultancy.com/iicl/?1
URL Status:Offline
Host: webdreamsconsultancy.com
Date added:2023-05-16 13:14:33 UTC
Last online:2023-05-18 20:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-17 15:38:07 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 7 hours, 34 minutes Poor (down since 2023-05-18 20:50:05 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Bexzbkyp.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Mcxkr.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182en/a 
2023-05-18Yqzzxisx.jsjs 9a649ac76d537c5f4ceb023745e2fcb3a6ed8443c46ac1f2dbd7da98f0487deen/a 
2023-05-18Zqkpdx.jsjs bfbec36fede661575f19295dcf1df9ba2fa3f0ca817dd9cc5efbd152f86a999dVirustotal results 23.73% Quakbot
2023-05-18Zbjfexxv.jsjs 0c1a4acb8216ade3632625958fc7427a5f996f5570d05d649a0e49be5e748ee9Virustotal results 27.12% Quakbot
2023-05-18Jrtb.jsjs 5f98b59055620e884f40e504321e65af6a6ff2e7eff1035ff136dc57e98e0cb1Virustotal results 25.86% Quakbot
2023-05-18Lwgaynqk.jsjs 5385fad188601d9e6dde0c124799956c0f227ef163e10a45533ba701150ef12fVirustotal results 11.76% Quakbot
2023-05-18Eidjcit.jsjs e0a76560e4dfa1a02a0ed9070737950e644f0b851388f7a580a8c384ba1ae3aaVirustotal results 28.81% 
2023-05-18Taylkyba.jsjs a569ce1eb1902d2edf7cffba78e832e764170e48ecfe81ac3adda07c5f42455eVirustotal results 30.51% Quakbot
2023-05-18Knbisj.jsjs 0259d5d40b143ebaaf60af05f38a325f660c922eb6201a18e664d949c3be13a3n/a Quakbot
2023-05-18Jbwjowg.jsjs 0b26bdb33f82264e6ee139e028f16f756cf3c276a5c8fdc923aa5d5e2e385872Virustotal results 24.14% Quakbot
2023-05-17Rrovy.jsjs 24cf08aad92d93dfabb65546276958ba1bad72825e0af1a4fe5d2a2f0d2a451fn/a Quakbot
2023-05-17Yrtiee.jsjs 62497d1af3f04d7da40a34f39d4cb3b28e855a47c2507372bfa759e66adfa3f6Virustotal results 11.86% Quakbot
2023-05-17Uislb.jsjs f865f1501145c736f9f72ffa6b3431effc20f094261818dfc60ace530d2aacebn/a Quakbot
2023-05-17Obsnu.jsjs 17dcb0baeee21444da6b254c7dcd1d98989c6a0c089b8d79530a2c2a83dc34d3n/a 
2023-05-17Epypeiya.jsjs 32191ec86c3fda99957a4e78362b4bad01545ffe830b5b5c5c32ed9c92fc58ebn/a Quakbot
2023-05-17Aaigrpa.jsjs cb46274d330ebea266c559fd5e391bd171816f40b8a0d960dbacf22c23a94ea3n/a Quakbot
2023-05-17Imxt.jsjs 9992a7c1ac03c78d2395f55820f9ac6e7ddca51d747b443183c09f8f2395f2ecn/a Quakbot
2023-05-17Bcvjawv.jsjs b2e8ad3382fcd8f44807ecfd0814db81682a0b49c76074c7b5ad5dc315b522c3n/a Quakbot
2023-05-17Dagojb.jsjs 16a304372c40e965cb3c3e0bcaff32b4633577823cda3cceb755ad39dc78f564n/a Quakbot
2023-05-17Qrmbwfh.jsjs f4513ce2f6bceb66bb3991e0945955b46aaae9e20d749478813450aedbd66843n/a Quakbot
2023-05-17Jkytojp.jsjs a3024813ca8633510f27fa341c5cc88f65294b534b35030f2c766924ceb1259bn/a Quakbot
2023-05-17Rmmyq.jsjs fa26c206fa082b5c8b6ca91e50a15e154462bf3f4e7dd0c98fa5afd78c46b9fdn/a Quakbot
2023-05-17Ierhgjqu.jsjs 08780fb95fc60a2f073bed485277a70a5e3c8e23c7517de8d53cb560b006a934n/a Quakbot
2023-05-17Poeepsg.jsjs 8525b90ca6e4a2e79b315bbaa696591d88830a699e7d19bce0ab38dd9b2e3e88n/a Quakbot
2023-05-16Yjhifipz.jsjs f695c43a6d07566f4ac4057f4f120b2b5e26607b9c9d3fe8bfcd391f12b0e0b7n/a Quakbot
2023-05-16Lpimgqau.jsjs 5314120b1be33def5b3bb7c4c754e4f9f21c665986818a72d3bea2dc39697070n/a 
2023-05-16Ofvmisrs.jsjs 0f225960652319978e034ae775021c9d1020db55aa649d9f0cec40e6c92690e5n/a Quakbot
2023-05-16Ycwlsd.jsjs 5785f45e51805e26c6b202e2668828a39a56c0c070f17e998746f0ab838e1858n/a Quakbot
2023-05-16Ccdwgzj.jsjs e8c89f7a2202daf928bc628c21f5695cde8f533db688d152070e333f368ce9fbn/a Quakbot
2023-05-16Bbaowv.jsjs 51c7dceed76a86db46586092ef0370fa84bf60570b65344b6c0625a28c438588n/a Quakbot
2023-05-16Ehgrol.jsjs 062d1de72e612c6f7cd66a1491014fbe8f190c582b638e85ec029ff866c5f9c5n/a Quakbot