URLhaus Database

You are currently viewing the URLhaus database entry for https://ftrack.org/cno/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633986
URL: https://ftrack.org/cno/?1
URL Status:Offline
Host: ftrack.org
Date added:2023-05-16 13:14:47 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:17:37 UTC to abuse{at}contabo[dot]de)
Takedown time:2 days, 8 hours, 17 minutes Poor (down since 2023-05-18 21:34:44 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Kdrdf.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Cgllmtgk.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Ngcojwen.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Nytx.jsjs b743ee7e6a1ade0ee378a26843ed3a2ee6a785a5f5d94653cc70972ea5d1f1cbn/a 
2023-05-18Eiqmagh.jsjs 882f433be14420954cf276d10abb6b832e89ab1dc301d2d047538fab217afdabn/a Quakbot
2023-05-18Tllrsm.jsjs c5a390d1bf67c2241e5a9cb33cab3e83b41d4319c494c9f15d864cff3015e95dVirustotal results 16.95% Quakbot
2023-05-18Ooomaqo.jsjs 2ea57f7ed2c3148b87f87bed297e9f780f369a71667342ed01a88fc779a24eefVirustotal results 33.33% 
2023-05-18Sqrivil.jsjs 2ac229fd994bdb64a7cde85dae50a0f2f6a3229eed9afc763d5f8d0e9b4f0ef9Virustotal results 20.83% Quakbot
2023-05-18Ewgeax.jsjs 00101ce136b60da252cd994cf9a49191259f677d6b7f56801b5d6084e3b5a1a5n/a 
2023-05-18Vdttauwu.jsjs be782f3af4554ce0188bf903632e461191f0020d22f70c2760c1f9d32b21bfban/a 
2023-05-18Xvrldsm.jsjs 14ce409dfb31225a9aa73965aca14ef09852a03cf69033bf2deac2a816796a31n/a 
2023-05-17Mwsboho.jsjs c2b560cbbb7dc30cad06a2a6b715f07591269b172bde5101a639fbb04e4dd9cfVirustotal results 27.12% 
2023-05-17Ojkysz.jsjs e82f04f537f593c6f5469d18db6332febdcd169b2dc920ed7619f9edab951f03Virustotal results 29.31% Quakbot
2023-05-17Qscizhjz.jsjs cb6a65f1e6220e908455c9dfaf1b69114b9b0c5666dc2b80f597d2c1e4ab29c7n/a Quakbot
2023-05-17Fgvdxcz.jsjs 7a515185d1c204dc897de0e485dd2dd335341156b5b7764220fb6df27fdbeb16Virustotal results 25.86% Quakbot
2023-05-17Yetuqg.jsjs 962531faf5a4bccd1d88868db9f0b5a79c3073f110ae5e4b9f61d7ea15f8b855n/a Quakbot
2023-05-17Odgqzor.jsjs f91b22ef75c62115177abfa54ffc898319098f3de31ddf0b2a964dae96c3b376n/a Quakbot
2023-05-17Petmxaiu.jsjs 8a9af030d5759e428811a44e1582012c64fdef7059286c4c1693f13566e2d3b1n/a Quakbot
2023-05-17Jpmvgf.jsjs 5382511d86a2d24fb5f8fcb921bbfd21b64b9c071494bcfd096e738c2464ebdfn/a Quakbot
2023-05-17Gpfekyyq.jsjs 4464b5ab44d6b561aab78297a65eb05dbefa63fde1d5be97517e4a5dd911d075n/a Quakbot
2023-05-17Bhmohc.jsjs 3e0c07d08ef1c300df1c7248afcc41a48284c538556201acca2c919edb8a5837n/a Quakbot
2023-05-17Nzkzo.jsjs bed9dde6c007dca15241a4938f326a6a95072993b5e95b7d46d9bcd1444ba618n/a Quakbot
2023-05-17Gosrj.jsjs b8a269a9ad03a6f73965024b9b61077f74ba397c66d67bb3e4a82cf8d65892dan/a Quakbot
2023-05-17Dyxwwng.jsjs 79a398e16b01a3e6244a45cf447066b60403b98d9402861a59af5aadf4c9d17an/a Quakbot
2023-05-17Jckllhcy.jsjs da4c426dbe1b813914a6a07502095b1cccb200c318325eb47c53a74c3f2c0095n/a Quakbot
2023-05-17Lseyjaf.jsjs bf339166e7c05e7438864d09a14fb23114d3812781dd9f717aa2830ddbfb7be3n/a Quakbot
2023-05-16Tsbaubht.jsjs 352d92465eb77e3804292b87343dba44de5d65b8dcdbdbf69887ab87d38281e1n/a Quakbot
2023-05-16Prwenuf.jsjs aeca72790698e6608cceca84f8ba1b0401f53f21731d896fb91c2f3d6b4a02ccn/a 
2023-05-16Blvq.jsjs 34509dfe00301f6f6be6b29c9053f1875e7934634857adbfa69a5a8f9f510e8dn/a 
2023-05-16Tqixxcf.jsjs 4d5b26ca25b720b38d606434e3cbcb393e900936c45f7997990bc96a406da4b8n/a Quakbot
2023-05-16Hqoua.jsjs 30697821d0b2ac21ba26d2ee66158441b08d0ec37b119548f5f7aa293903f793n/a Quakbot